certmonger-0.78.6/0000775000175000017500000000000012645513301010764 500000000000000certmonger-0.78.6/tests/0000775000175000017500000000000012645513301012126 500000000000000certmonger-0.78.6/tests/certmonger.conf0000664000175000017500000000011012645513264015062 00000000000000[defaults] notification_method = stdout [selfsign] validity_period = 1d certmonger-0.78.6/tests/functions0000664000175000017500000000242312645513264014012 00000000000000#!/bin/bash function initnssdb() { dir=`echo "$1" | cut -f2- -d:` if ! test -d "$dir"/rosubdir ; then mkdir -m 500 "$dir"/rosubdir fi if test -d "$dir"/rwsubdir ; then chmod u+w "$dir"/rwsubdir/* || true rm -f "$dir"/rwsubdir/* else mkdir -m 700 "$dir"/rwsubdir fi echo "" > "$dir"/oldpin echo "" > "$dir"/oldpin2 echo "" >> "$dir"/oldpin2 echo "$2" > "$dir"/newpin echo "$2" > "$dir"/newpin2 echo "$2" >> "$dir"/newpin2 certutil -d "$1" -W -f "$dir"/oldpin -@ "$dir"/oldpin2 > /dev/null certutil -d "$1" -W -f "$dir"/oldpin -@ "$dir"/newpin2 > /dev/null certutil -d "$1" -W -f "$dir"/newpin -@ "$dir"/newpin2 > /dev/null certutil -d "$1"/rwsubdir -W -f "$dir"/oldpin -@ "$dir"/oldpin2 > /dev/null certutil -d "$1"/rwsubdir -W -f "$dir"/oldpin -@ "$dir"/newpin2 > /dev/null certutil -d "$1"/rwsubdir -W -f "$dir"/newpin -@ "$dir"/newpin2 > /dev/null chmod u-w "$dir"/rwsubdir/* } function run_certutil() { dd if=/dev/urandom of="$dir"/noise bs=1024 count=1 > /dev/null 2> /dev/null certutil "$@" -z "$dir"/noise } function run_dos2unix() { dos2unix "$@" 2>&1 | sed -e s,Unix,unix,g -e s,UNIX,unix,g -e s,'format \.\.\.','format...',g } function run_unix2dos() { unix2dos "$@" 2>&1 | sed -e s,Unix,unix,g -e s,UNIX,unix,g -e s,'format \.\.\.','format...',g } certmonger-0.78.6/tests/run-tests.sh0000775000175000017500000000610612645513264014364 00000000000000#!/bin/bash tmpfile=`mktemp ${TMPDIR:-/tmp}/runtestsXXXXXX` if test -z "$tmpfile" ; then echo Error creating temporary file. exit 1 else trap 'rm -f "$tmpfile"' EXIT fi tmpdir=`mktemp -d ${TMPDIR:-/tmp}/runtestsXXXXXX` if test -z "$tmpdir" ; then echo Error creating temporary directory. exit 1 else trap 'rm -f "$tmpfile"; rm -fr "$tmpdir"' EXIT fi mkdir -m 500 "$tmpdir"/rosubdir mkdir -m 700 "$tmpdir"/rwsubdir trap 'rm -f "$tmpfile"; chmod u+w "$tmpdir"/* ; rm -fr "$tmpdir"' EXIT unset DBUS_SESSION_BUS_ADDRESS eval `dbus-launch --sh-syntax` if test -z "$DBUS_SESSION_BUS_ADDRESS" ; then echo Error launching session bus. exit 1 else trap 'rm -f "$tmpfile"; chmod u+w "$tmpdir"/* ; rm -fr "$tmpdir"; kill "$DBUS_SESSION_BUS_PID"' EXIT fi srcdir=${srcdir:-`pwd`} pushd "$srcdir" > /dev/null srcdir=`pwd` popd > /dev/null builddir=${builddir:-`pwd`} pushd "$builddir" > /dev/null builddir=`pwd` popd > /dev/null toolsdir=${toolsdir:-${builddir}/tools} export builddir export srcdir export toolsdir export tmpdir cd "$builddir" CERTMONGER_CONFIG_DIR=${srcdir} export CERTMONGER_CONFIG_DIR stat=0 subdirs= if test $# -eq 0 ; then subdirs=`cd "$srcdir"; ls -1 | grep '^[0-9]'` fi for testid in "$@" $subdirs ; do if test -x "$srcdir"/"$testid"/prequal.sh ; then if ! "$srcdir"/"$testid"/prequal.sh ; then echo "Skipping test "$testid"." continue fi fi RUNVALGRIND=${VALGRIND:+valgrind --log-file="$builddir"/"$testid"/valgrind/%p.log --trace-children=yes --track-origins=yes} if test -n "$RUNVALGRIND" ; then rm -fr "$builddir"/"$testid"/valgrind mkdir -p "$builddir"/"$testid"/valgrind fi if test -x "$srcdir"/"$testid"/run.sh ; then pushd "$srcdir"/"$testid" > /dev/null rm -fr "$tmpdir"/* mkdir -m 500 "$tmpdir"/rosubdir mkdir -m 700 "$tmpdir"/rwsubdir if test -r ./expected.out ; then echo -n "Running test "$testid"... " $RUNVALGRIND ./run.sh "$tmpdir" > "$tmpfile" 2> "$tmpdir"/errors sed -i "s|${TMPDIR:-/tmp}/runtests....../|\${tmpdir}/|g" "$tmpfile" "$tmpdir/errors" stat=1 for i in expected.out* ; do if ! test -s "$i" ; then break fi if cmp -s "$tmpfile" "$i" 2> /dev/null ; then stat=0 echo "OK" cp $tmpfile "$builddir"/"$testid"/actual.out cp "$tmpdir"/errors "$builddir"/"$testid"/actual.err break fi done if test $stat -eq 1 ; then echo "FAIL" diff -u expected.out "$tmpfile" | sed s,"^\+\+\+ $tmpfile","+++ actual",g cp $tmpfile "$builddir"/"$testid"/actual.out cp "$tmpdir"/errors "$builddir"/"$testid"/actual.err fi else echo "Running test "$testid"." $RUNVALGRIND ./run.sh "$tmpdir" stat=$? fi if test -n "$RUNVALGRIND" ; then echo > $tmpfile if grep "ERROR SUMMARY" "$builddir"/"$testid"/valgrind/*.log | grep -v '0 errors' | cut -f1 -d: | xargs grep Command: $tmpfile | grep -qv "Command: /usr" ; then echo valgrind detected errors fi fi for i in "$tmpdir"/core* ; do if test -s "$i"; then cp "$i" . fi done popd > /dev/null if test $stat -ne 0 ; then break fi else echo "No test defined in "$testid", skipping." fi done exit $stat certmonger-0.78.6/tests/Makefile.in0000664000175000017500000006500312645513271014125 00000000000000# Makefile.in generated by automake 1.15 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2014 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @HAVE_DBM_NSSDB_TRUE@am__append_1 = \ @HAVE_DBM_NSSDB_TRUE@ 007-certsave-dbm \ @HAVE_DBM_NSSDB_TRUE@ 011-dbinit-dbm \ @HAVE_DBM_NSSDB_TRUE@ 012-dbadd-dbm \ @HAVE_DBM_NSSDB_TRUE@ 013-enckey-dbm \ @HAVE_DBM_NSSDB_TRUE@ 015-lockedkey-dbm \ @HAVE_DBM_NSSDB_TRUE@ 017-notoken-dbm \ @HAVE_DBM_NSSDB_TRUE@ 034-perms-dbm @HAVE_SQL_NSSDB_TRUE@am__append_2 = \ @HAVE_SQL_NSSDB_TRUE@ 007-certsave-sql \ @HAVE_SQL_NSSDB_TRUE@ 011-dbinit-sql \ @HAVE_SQL_NSSDB_TRUE@ 012-dbadd-sql \ @HAVE_SQL_NSSDB_TRUE@ 013-enckey-sql \ @HAVE_SQL_NSSDB_TRUE@ 015-lockedkey-sql \ @HAVE_SQL_NSSDB_TRUE@ 017-notoken-sql \ @HAVE_SQL_NSSDB_TRUE@ 034-perms-sql @HAVE_DSA_TRUE@am__append_3 = \ @HAVE_DSA_TRUE@ 001-keyiread-dsa \ @HAVE_DSA_TRUE@ 002-keygen-dsa \ @HAVE_DSA_TRUE@ 003-csrgen-dsa \ @HAVE_DSA_TRUE@ 004-selfsign-dsa @HAVE_EC_TRUE@am__append_4 = \ @HAVE_EC_TRUE@ 001-keyiread-ec \ @HAVE_EC_TRUE@ 002-keygen-ec \ @HAVE_EC_TRUE@ 003-csrgen-ec \ @HAVE_EC_TRUE@ 004-selfsign-ec subdir = tests ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/intlmacosx.m4 \ $(top_srcdir)/m4/lib-ld.m4 $(top_srcdir)/m4/lib-link.m4 \ $(top_srcdir)/m4/lib-prefix.m4 $(top_srcdir)/m4/nls.m4 \ $(top_srcdir)/m4/po.m4 $(top_srcdir)/m4/progtest.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/src/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ distdir am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CERTMONGER_CFLAGS = @CERTMONGER_CFLAGS@ CERTMONGER_LIBS = @CERTMONGER_LIBS@ CERTMONGER_PVT_ADDRESS_ENV = @CERTMONGER_PVT_ADDRESS_ENV@ CFLAGS = @CFLAGS@ CM_CERTMASTER_CA_NAME = @CM_CERTMASTER_CA_NAME@ CM_DBUS_NAME = @CM_DBUS_NAME@ CM_DEFAULT_CERT_LIFETIME = @CM_DEFAULT_CERT_LIFETIME@ CM_DEFAULT_IDLE_TIMEOUT = @CM_DEFAULT_IDLE_TIMEOUT@ CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ CM_DEFAULT_POPULATE_UNIQUE_ID = @CM_DEFAULT_POPULATE_UNIQUE_ID@ CM_DEFAULT_PUBKEY_SIZE = @CM_DEFAULT_PUBKEY_SIZE@ CM_DEFAULT_TTL_LIST = @CM_DEFAULT_TTL_LIST@ CM_HOMEDIR = @CM_HOMEDIR@ CM_IPA_CA_NAME = @CM_IPA_CA_NAME@ CM_LOCAL_CA_NAME = @CM_LOCAL_CA_NAME@ CM_MINIMUM_DSA_KEY_SIZE = @CM_MINIMUM_DSA_KEY_SIZE@ CM_MINIMUM_EC_KEY_SIZE = @CM_MINIMUM_EC_KEY_SIZE@ CM_MINIMUM_RSA_KEY_SIZE = @CM_MINIMUM_RSA_KEY_SIZE@ CM_NOTIFICATION_ENV = @CM_NOTIFICATION_ENV@ CM_SELF_SIGN_CA_NAME = @CM_SELF_SIGN_CA_NAME@ CM_STORE_CAS_DIRECTORY = @CM_STORE_CAS_DIRECTORY@ CM_STORE_CAS_DIRECTORY_ENV = @CM_STORE_CAS_DIRECTORY_ENV@ CM_STORE_CONFIG_DIRECTORY_ENV = @CM_STORE_CONFIG_DIRECTORY_ENV@ CM_STORE_LOCAL_CA_DIRECTORY = @CM_STORE_LOCAL_CA_DIRECTORY@ CM_STORE_LOCAL_CA_DIRECTORY_ENV = @CM_STORE_LOCAL_CA_DIRECTORY_ENV@ CM_STORE_REQUESTS_DIRECTORY = @CM_STORE_REQUESTS_DIRECTORY@ CM_STORE_REQUESTS_DIRECTORY_ENV = @CM_STORE_REQUESTS_DIRECTORY_ENV@ CM_STORE_SYSTEM_LOCK_FILE = @CM_STORE_SYSTEM_LOCK_FILE@ CM_STORE_SYSTEM_LOCK_FILE_ENV = @CM_STORE_SYSTEM_LOCK_FILE_ENV@ CM_TMPDIR = @CM_TMPDIR@ CM_TMPDIR_ENV = @CM_TMPDIR_ENV@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CURL_CFLAGS = @CURL_CFLAGS@ CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ GETCERT_CFLAGS = @GETCERT_CFLAGS@ GETCERT_LIBS = @GETCERT_LIBS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GMP_CFLAGS = @GMP_CFLAGS@ GMP_LIBS = @GMP_LIBS@ GMSGFMT = @GMSGFMT@ GMSGFMT_015 = @GMSGFMT_015@ GREP = @GREP@ IDN_CFLAGS = @IDN_CFLAGS@ IDN_LIBS = @IDN_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTLLIBS = @INTLLIBS@ INTL_MACOSX_LIBS = @INTL_MACOSX_LIBS@ KRB5_CFLAGS = @KRB5_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ KRB5_LIBS = @KRB5_LIBS@ LDAP_CFLAGS = @LDAP_CFLAGS@ LDAP_LIBS = @LDAP_LIBS@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBINTL = @LIBINTL@ LIBOBJS = @LIBOBJS@ LIBS = @LIBS@ LTLIBICONV = @LTLIBICONV@ LTLIBINTL = @LTLIBINTL@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAN_DSA = @MAN_DSA@ MAN_EC = @MAN_EC@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ NO_MAN_DSA = @NO_MAN_DSA@ NO_MAN_EC = @NO_MAN_EC@ NSS_CFLAGS = @NSS_CFLAGS@ NSS_LIBS = @NSS_LIBS@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OPENSSL_SSL_CFLAGS = @OPENSSL_SSL_CFLAGS@ OPENSSL_SSL_LIBS = @OPENSSL_SSL_LIBS@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ POPT_CFLAGS = @POPT_CFLAGS@ POPT_LIBS = @POPT_LIBS@ POSUB = @POSUB@ RANLIB = @RANLIB@ RESOLV_LIBS = @RESOLV_LIBS@ SESSIONBUSSERVICESDIR = @SESSIONBUSSERVICESDIR@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ STRIP = @STRIP@ SYSTEMBUSSERVICESDIR = @SYSTEMBUSSERVICESDIR@ SYSTEMD = @SYSTEMD@ SYSTEMDSYSTEMUNITDIR = @SYSTEMDSYSTEMUNITDIR@ SYSVINIT = @SYSVINIT@ TALLOC_CFLAGS = @TALLOC_CFLAGS@ TALLOC_LIBS = @TALLOC_LIBS@ TEVENT_CFLAGS = @TEVENT_CFLAGS@ TEVENT_LIBS = @TEVENT_LIBS@ TMPFILES = @TMPFILES@ USE_NLS = @USE_NLS@ UUID_CFLAGS = @UUID_CFLAGS@ UUID_LIBS = @UUID_LIBS@ VERSION = @VERSION@ XGETTEXT = @XGETTEXT@ XGETTEXT_015 = @XGETTEXT_015@ XGETTEXT_EXTRA_OPTIONS = @XGETTEXT_EXTRA_OPTIONS@ XMLRPC_CFLAGS = @XMLRPC_CFLAGS@ XMLRPC_C_CONFIG = @XMLRPC_C_CONFIG@ XMLRPC_LIBS = @XMLRPC_LIBS@ XML_CFLAGS = @XML_CFLAGS@ XML_LIBS = @XML_LIBS@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_CC = @ac_ct_CC@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ mybindir = @mybindir@ mylibexecdir = @mylibexecdir@ mysbindir = @mysbindir@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ SUBDIRS = tools EXTRA_DIST = \ run-tests.sh functions certmonger.conf tools/cachain.sh \ 001-keyiread/run.sh \ 001-keyiread/expected.out \ 001-keyiread-rsa/run.sh \ 001-keyiread-rsa/expected.out \ 001-keyiread-dsa/run.sh \ 001-keyiread-dsa/expected.out \ 001-keyiread-ec/run.sh \ 001-keyiread-ec/expected.out \ 001-keyiread-ec/expected.out.2 \ 001-keyiread-ec/expected.out.3 \ 001-keyiread-ec/expected.out.4 \ 002-keygen/prequal.sh \ 002-keygen/run.sh \ 002-keygen/expected.out \ 002-keygen-rsa/prequal.sh \ 002-keygen-rsa/run.sh \ 002-keygen-rsa/expected.out \ 002-keygen-dsa/prequal.sh \ 002-keygen-dsa/run.sh \ 002-keygen-dsa/expected.out \ 002-keygen-dsa/expected.out.2 \ 002-keygen-dsa/expected.out.3 \ 002-keygen-ec/prequal.sh \ 002-keygen-ec/run.sh \ 002-keygen-ec/expected.out \ 002-keygen-ec/expected.out.2 \ 002-keygen-ec/expected.out.3 \ 002-keygen-ec/expected.out.4 \ 003-csrgen/run.sh \ 003-csrgen/expected.out \ 003-csrgen-rsa/run.sh \ 003-csrgen-rsa/expected.out \ 003-csrgen-dsa/run.sh \ 003-csrgen-dsa/expected.out \ 003-csrgen-ec/run.sh \ 003-csrgen-ec/expected.out \ 004-selfsign/run.sh \ 004-selfsign/expected.out \ 004-selfsign-rsa/run.sh \ 004-selfsign-rsa/expected.out \ 004-selfsign-dsa/run.sh \ 004-selfsign-dsa/expected.out \ 004-selfsign-ec/run.sh \ 004-selfsign-ec/expected.out \ 005-dbusm/run.sh \ 005-dbusm/expected.out \ 006-serial/run.sh \ 006-serial/expected.out \ 007-certsave/prequal.sh \ 007-certsave/run.sh \ 007-certsave/expected.out \ 007-certsave-dbm/prequal.sh \ 007-certsave-dbm/run.sh \ 007-certsave-dbm/expected.out \ 007-certsave-sql/prequal.sh \ 007-certsave-sql/run.sh \ 007-certsave-sql/expected.out \ 008-certread/run.sh \ 008-certread/expected.out \ 009-oiddict/run.sh \ 009-oiddict/expected.out \ 010-iterate/run.sh \ 010-iterate/expected.out \ 011-dbinit/expected.out \ 011-dbinit/run.sh \ 011-dbinit-dbm/expected.out \ 011-dbinit-dbm/run.sh \ 011-dbinit-sql/expected.out \ 011-dbinit-sql/run.sh \ 012-dbadd/expected.out \ 012-dbadd/run.sh \ 012-dbadd-dbm/expected.out \ 012-dbadd-dbm/run.sh \ 012-dbadd-sql/expected.out \ 012-dbadd-sql/run.sh \ 013-enckey/expected.out \ 013-enckey/run.sh \ 013-enckey-dbm/expected.out \ 013-enckey-dbm/run.sh \ 013-enckey-sql/expected.out \ 013-enckey-sql/run.sh \ 014-prefs/expected.out \ 014-prefs/run.sh \ 015-lockedkey/expected.out \ 015-lockedkey/run.sh \ 015-lockedkey-dbm/expected.out \ 015-lockedkey-dbm/run.sh \ 015-lockedkey-sql/expected.out \ 015-lockedkey-sql/run.sh \ 016-dates/expected.out \ 016-dates/run.sh \ 017-notoken/expected.out \ 017-notoken/run.sh \ 017-notoken-dbm/expected.out \ 017-notoken-dbm/run.sh \ 017-notoken-sql/expected.out \ 017-notoken-sql/run.sh \ 018-pembase/expected.out \ 018-pembase/run.sh \ 019-dparse/expected.out \ 019-dparse/run.sh \ 019-dparse/good.* \ 019-dparse/bad.* \ 020-xparse/*.xml \ 021-resume/expected.out \ 021-resume/run.sh \ 022-base64/expected.out \ 022-base64/run.sh \ 023-cadata/expected.out \ 023-cadata/run.sh \ 024-citerate/expected.out \ 024-citerate/run.sh \ 025-casave/expected.out \ 025-casave/run.sh \ 026-local/expected.out \ 026-local/run.sh \ 027-hooks/expected.out \ 027-hooks/run.sh \ 028-dbus/expected.out \ 028-dbus/entry 028-dbus/bogus-entry \ 028-dbus/prequal.sh \ 028-dbus/run.sh \ 028-dbus/runsub.sh \ 028-dbus/simpleprop.py \ 028-dbus/walk.py \ 029-canonize/expected.out \ 029-canonize/run.sh \ 030-rekey/expected.out \ 030-rekey/run.sh \ 031-pkcs7/prequal.sh \ 031-pkcs7/expected.out \ 031-pkcs7/run.sh \ 032-chain/expected.out \ 032-chain/run.sh \ 033-scep/expected.out \ 033-scep/run.sh \ 034-perms/expected.out \ 034-perms/run.sh \ 034-perms-dbm/expected.out \ 034-perms-dbm/run.sh \ 034-perms-sql/expected.out \ 034-perms-sql/run.sh \ 035-json/expected.out \ 035-json/run.sh \ 035-json/good.* \ 035-json/bad.* \ 036-getcert/expected.out \ 036-getcert/run.sh \ 037-rekey2/expected.out \ 037-rekey2/run.sh subdirs = 001-keyiread 001-keyiread-rsa 002-keygen 002-keygen-rsa \ 003-csrgen 003-csrgen-rsa 004-selfsign 004-selfsign-rsa \ 005-dbusm 006-serial 007-certsave 008-certread 009-oiddict \ 010-iterate 011-dbinit 012-dbadd 013-enckey 014-prefs \ 015-lockedkey 016-dates 017-notoken 018-pembase 019-dparse \ 021-resume 022-base64 023-cadata 024-citerate 025-casave \ 026-local 027-hooks 028-dbus 029-canonize 030-rekey 031-pkcs7 \ 032-chain 033-scep 034-perms 035-json 036-getcert 037-rekey2 \ $(am__append_1) $(am__append_2) $(am__append_3) \ $(am__append_4) all: all-recursive .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign tests/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign tests/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done check-am: all-am check: check-recursive all-am: Makefile installdirs: installdirs-recursive installdirs-am: install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic mostlyclean-am distclean: distclean-recursive -rm -f Makefile distclean-am: clean-am distclean-generic distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-generic pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: .MAKE: $(am__recursive_targets) install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am check \ check-am clean clean-generic cscopelist-am ctags ctags-am \ distclean distclean-generic distclean-tags distdir dvi dvi-am \ html html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-man install-pdf install-pdf-am \ install-ps install-ps-am install-strip installcheck \ installcheck-am installdirs installdirs-am maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic pdf \ pdf-am ps ps-am tags tags-am uninstall uninstall-am .PRECIOUS: Makefile check: all for required in certutil cmsutil pk12util openssl diff cmp mktemp \ dos2unix unix2dos dbus-launch ; do \ which $$required || exit 1; \ done env srcdir=$(srcdir) \ builddir=$(top_builddir)/tests \ $(srcdir)/run-tests.sh $(subdirs) # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/tests/Makefile.am0000664000175000017500000001244612645513264014121 00000000000000SUBDIRS = tools EXTRA_DIST = \ run-tests.sh functions certmonger.conf tools/cachain.sh \ 001-keyiread/run.sh \ 001-keyiread/expected.out \ 001-keyiread-rsa/run.sh \ 001-keyiread-rsa/expected.out \ 001-keyiread-dsa/run.sh \ 001-keyiread-dsa/expected.out \ 001-keyiread-ec/run.sh \ 001-keyiread-ec/expected.out \ 001-keyiread-ec/expected.out.2 \ 001-keyiread-ec/expected.out.3 \ 001-keyiread-ec/expected.out.4 \ 002-keygen/prequal.sh \ 002-keygen/run.sh \ 002-keygen/expected.out \ 002-keygen-rsa/prequal.sh \ 002-keygen-rsa/run.sh \ 002-keygen-rsa/expected.out \ 002-keygen-dsa/prequal.sh \ 002-keygen-dsa/run.sh \ 002-keygen-dsa/expected.out \ 002-keygen-dsa/expected.out.2 \ 002-keygen-dsa/expected.out.3 \ 002-keygen-ec/prequal.sh \ 002-keygen-ec/run.sh \ 002-keygen-ec/expected.out \ 002-keygen-ec/expected.out.2 \ 002-keygen-ec/expected.out.3 \ 002-keygen-ec/expected.out.4 \ 003-csrgen/run.sh \ 003-csrgen/expected.out \ 003-csrgen-rsa/run.sh \ 003-csrgen-rsa/expected.out \ 003-csrgen-dsa/run.sh \ 003-csrgen-dsa/expected.out \ 003-csrgen-ec/run.sh \ 003-csrgen-ec/expected.out \ 004-selfsign/run.sh \ 004-selfsign/expected.out \ 004-selfsign-rsa/run.sh \ 004-selfsign-rsa/expected.out \ 004-selfsign-dsa/run.sh \ 004-selfsign-dsa/expected.out \ 004-selfsign-ec/run.sh \ 004-selfsign-ec/expected.out \ 005-dbusm/run.sh \ 005-dbusm/expected.out \ 006-serial/run.sh \ 006-serial/expected.out \ 007-certsave/prequal.sh \ 007-certsave/run.sh \ 007-certsave/expected.out \ 007-certsave-dbm/prequal.sh \ 007-certsave-dbm/run.sh \ 007-certsave-dbm/expected.out \ 007-certsave-sql/prequal.sh \ 007-certsave-sql/run.sh \ 007-certsave-sql/expected.out \ 008-certread/run.sh \ 008-certread/expected.out \ 009-oiddict/run.sh \ 009-oiddict/expected.out \ 010-iterate/run.sh \ 010-iterate/expected.out \ 011-dbinit/expected.out \ 011-dbinit/run.sh \ 011-dbinit-dbm/expected.out \ 011-dbinit-dbm/run.sh \ 011-dbinit-sql/expected.out \ 011-dbinit-sql/run.sh \ 012-dbadd/expected.out \ 012-dbadd/run.sh \ 012-dbadd-dbm/expected.out \ 012-dbadd-dbm/run.sh \ 012-dbadd-sql/expected.out \ 012-dbadd-sql/run.sh \ 013-enckey/expected.out \ 013-enckey/run.sh \ 013-enckey-dbm/expected.out \ 013-enckey-dbm/run.sh \ 013-enckey-sql/expected.out \ 013-enckey-sql/run.sh \ 014-prefs/expected.out \ 014-prefs/run.sh \ 015-lockedkey/expected.out \ 015-lockedkey/run.sh \ 015-lockedkey-dbm/expected.out \ 015-lockedkey-dbm/run.sh \ 015-lockedkey-sql/expected.out \ 015-lockedkey-sql/run.sh \ 016-dates/expected.out \ 016-dates/run.sh \ 017-notoken/expected.out \ 017-notoken/run.sh \ 017-notoken-dbm/expected.out \ 017-notoken-dbm/run.sh \ 017-notoken-sql/expected.out \ 017-notoken-sql/run.sh \ 018-pembase/expected.out \ 018-pembase/run.sh \ 019-dparse/expected.out \ 019-dparse/run.sh \ 019-dparse/good.* \ 019-dparse/bad.* \ 020-xparse/*.xml \ 021-resume/expected.out \ 021-resume/run.sh \ 022-base64/expected.out \ 022-base64/run.sh \ 023-cadata/expected.out \ 023-cadata/run.sh \ 024-citerate/expected.out \ 024-citerate/run.sh \ 025-casave/expected.out \ 025-casave/run.sh \ 026-local/expected.out \ 026-local/run.sh \ 027-hooks/expected.out \ 027-hooks/run.sh \ 028-dbus/expected.out \ 028-dbus/entry 028-dbus/bogus-entry \ 028-dbus/prequal.sh \ 028-dbus/run.sh \ 028-dbus/runsub.sh \ 028-dbus/simpleprop.py \ 028-dbus/walk.py \ 029-canonize/expected.out \ 029-canonize/run.sh \ 030-rekey/expected.out \ 030-rekey/run.sh \ 031-pkcs7/prequal.sh \ 031-pkcs7/expected.out \ 031-pkcs7/run.sh \ 032-chain/expected.out \ 032-chain/run.sh \ 033-scep/expected.out \ 033-scep/run.sh \ 034-perms/expected.out \ 034-perms/run.sh \ 034-perms-dbm/expected.out \ 034-perms-dbm/run.sh \ 034-perms-sql/expected.out \ 034-perms-sql/run.sh \ 035-json/expected.out \ 035-json/run.sh \ 035-json/good.* \ 035-json/bad.* \ 036-getcert/expected.out \ 036-getcert/run.sh \ 037-rekey2/expected.out \ 037-rekey2/run.sh subdirs = \ 001-keyiread \ 001-keyiread-rsa \ 002-keygen \ 002-keygen-rsa \ 003-csrgen \ 003-csrgen-rsa \ 004-selfsign \ 004-selfsign-rsa \ 005-dbusm \ 006-serial \ 007-certsave \ 008-certread \ 009-oiddict \ 010-iterate \ 011-dbinit \ 012-dbadd \ 013-enckey \ 014-prefs \ 015-lockedkey \ 016-dates \ 017-notoken \ 018-pembase \ 019-dparse \ 021-resume \ 022-base64 \ 023-cadata \ 024-citerate \ 025-casave \ 026-local \ 027-hooks \ 028-dbus \ 029-canonize \ 030-rekey \ 031-pkcs7 \ 032-chain \ 033-scep \ 034-perms \ 035-json \ 036-getcert \ 037-rekey2 if HAVE_DBM_NSSDB subdirs += \ 007-certsave-dbm \ 011-dbinit-dbm \ 012-dbadd-dbm \ 013-enckey-dbm \ 015-lockedkey-dbm \ 017-notoken-dbm \ 034-perms-dbm endif if HAVE_SQL_NSSDB subdirs += \ 007-certsave-sql \ 011-dbinit-sql \ 012-dbadd-sql \ 013-enckey-sql \ 015-lockedkey-sql \ 017-notoken-sql \ 034-perms-sql endif if HAVE_DSA subdirs += \ 001-keyiread-dsa \ 002-keygen-dsa \ 003-csrgen-dsa \ 004-selfsign-dsa endif if HAVE_EC subdirs += \ 001-keyiread-ec \ 002-keygen-ec \ 003-csrgen-ec \ 004-selfsign-ec endif check: all for required in certutil cmsutil pk12util openssl diff cmp mktemp \ dos2unix unix2dos dbus-launch ; do \ which $$required || exit 1; \ done env srcdir=$(srcdir) \ builddir=$(top_builddir)/tests \ $(srcdir)/run-tests.sh $(subdirs) certmonger-0.78.6/tests/tools/0000775000175000017500000000000012645513301013266 500000000000000certmonger-0.78.6/tests/tools/submit.c0000664000175000017500000001074412645513264014673 00000000000000/* * Copyright (C) 2009,2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/store-int.h" #include "../../src/store.h" #include "../../src/submit.h" #include "../../src/submit-e.h" #include "../../src/submit-u.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, char **argv) { struct cm_submit_state *state; struct cm_store_ca *ca; struct cm_store_entry *entry; int fd, ret, i; void *parent; char *p; #ifdef HAVE_UUID cm_submit_uuid_fixed_for_testing = 1; /* use fixed UUIDs */ #endif cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); if (argc > 2) { ca = cm_store_files_ca_read(parent, argv[1]); if (ca == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return -1; } entry = cm_store_files_entry_read(parent, argv[2]); if (entry == NULL) { printf("Error reading %s: %s.\n", argv[2], strerror(errno)); return -1; } } else { printf("Specify a CA file and an entry file as the two " "arguments.\n"); return -1; } state = cm_submit_start(ca, entry); if (state != NULL) { for (;;) { fd = cm_submit_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_submit_ready(state) == 0) { break; } } if (cm_submit_issued(state) == 0) { while (strlen(entry->cm_cert) > 0) { i = strlen(entry->cm_cert) - 1; if (entry->cm_cert[i] == '\n') { entry->cm_cert[i] = '\0'; } else { break; } } p = talloc_asprintf(entry, "%s\n", entry->cm_cert); talloc_free(entry->cm_cert); entry->cm_cert = p; printf("%s", entry->cm_cert); ret = CM_SUBMIT_STATUS_ISSUED; } else if (cm_submit_save_ca_cookie(state) == 0) { printf("Certificate not issued, saved a cookie.\n"); ret = CM_SUBMIT_STATUS_WAIT; } else if (cm_submit_rejected(state) == 0) { if (entry->cm_ca_error != NULL) { printf("Request rejected: %s.\n", entry->cm_ca_error); } else { printf("Request rejected.\n"); } ret = CM_SUBMIT_STATUS_REJECTED; } else if (cm_submit_unreachable(state) == 0) { if (entry->cm_ca_error != NULL) { printf("CA was unreachable: %s.\n", entry->cm_ca_error); } else { printf("CA was unreachable.\n"); } ret = CM_SUBMIT_STATUS_UNREACHABLE; } else if (cm_submit_unconfigured(state) == 0) { if (entry->cm_ca_error != NULL) { printf("CA helper was un- or " "under-configured: %s.\n", entry->cm_ca_error); } else { printf("CA helper was un- or " "under-configured.\n"); } ret = CM_SUBMIT_STATUS_UNCONFIGURED; } else if (cm_submit_need_scep_messages(state) == 0) { if (entry->cm_ca_error != NULL) { printf("CA helper needs SCEP " "messages: %s.\n", entry->cm_ca_error); } else { printf("CA helper needs SCEP " "messages.\n"); } ret = CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES; } else if (cm_submit_need_rekey(state) == 0) { if (entry->cm_ca_error != NULL) { printf("CA helper says we need to " "rekey: %s.\n", entry->cm_ca_error); } else { printf("CA helper says we need to " "rekey.\n"); } ret = CM_SUBMIT_STATUS_NEED_REKEY; } else { printf("Can't explain what happened.\n"); ret = -1; } cm_submit_done(state); } else { printf("Failed to start.\n"); ret = -1; } cm_store_entry_save(entry); cm_store_ca_save(ca); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/srv.c0000664000175000017500000000256212645513264014201 00000000000000/* * Copyright (C) 2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/srvloc.h" int main(int argc, char **argv) { int i; struct cm_srvloc *results; for (i = 2; i < argc; i++) { if (cm_srvloc_resolve(NULL, argv[i], argv[1], &results) != 0) { printf("Error resolving \"%s.%s\".\n", argv[i], argv[1]); continue; } while (results != NULL) { printf("%s.%s: %s:%d (%d,%d)\n", argv[i], argv[1], results->host, results->port, results->priority, results->weight); results = results->next; } } return 0; } certmonger-0.78.6/tests/tools/scepgen.c0000664000175000017500000000674712645513264015024 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/scepgen.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "../../src/submit-u.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, char **argv) { struct cm_scepgen_state *state; struct cm_store_ca *ca; struct cm_store_entry *entry; int fd, ret; void *parent; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); if (argc > 2) { ca = cm_store_files_ca_read(parent, argv[1]); if (ca == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return -1; } entry = cm_store_files_entry_read(parent, argv[2]); if (entry == NULL) { printf("Error reading %s: %s.\n", argv[2], strerror(errno)); return 1; } } else { printf("Specify a CA file and an entry file as the two " "arguments.\n"); return 1; } state = cm_scepgen_start(ca, entry); if (state != NULL) { for (;;) { fd = cm_scepgen_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_scepgen_ready(state) == 0) { break; } } if (cm_scepgen_save_scep(state) == 0) { if (entry->cm_minicert != NULL) { printf("minicert:%s\n", entry->cm_minicert); } if (entry->cm_scep_tx != NULL) { printf("tx:%s\n", entry->cm_scep_tx); } if (entry->cm_scep_nonce != NULL) { printf("nonce:%s\n", entry->cm_scep_nonce); } if (entry->cm_scep_req != NULL) { printf("req:%s\n", cm_submit_u_base64_from_text(entry->cm_scep_req)); } if (entry->cm_scep_gic != NULL) { printf("gic:%s\n", cm_submit_u_base64_from_text(entry->cm_scep_gic)); } if (entry->cm_scep_req_next != NULL) { printf("req(next):%s\n", cm_submit_u_base64_from_text(entry->cm_scep_req_next)); } if (entry->cm_scep_gic_next != NULL) { printf("gic(next):%s\n", cm_submit_u_base64_from_text(entry->cm_scep_gic_next)); } ret = 0; } else { printf("Failed to save.\n"); if (cm_scepgen_need_token(state) == 0) { printf("(Need token.)\n"); } else if (cm_scepgen_need_pin(state) == 0) { printf("(Need PIN.)\n"); } else if (cm_scepgen_need_encryption_certs(state) == 0) { printf("(Need server certificates.)\n"); } ret = 1; } cm_scepgen_done(state); } else { printf("Failed to start.\n"); ret = 1; } cm_store_entry_save(entry); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/printenv.c0000664000175000017500000000201612645513264015226 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include int main(int argc, char **argv) { int i, result = 0; char *value; for (i = 1; i < argc; i++) { value = getenv(argv[i]); if (value == NULL) { result = ENOENT; } else { printf("%s\n", value); } } return result; } certmonger-0.78.6/tests/tools/prefs.c0000664000175000017500000000505712645513264014510 00000000000000/* * Copyright (C) 2010 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include "../../src/prefs.h" #include "../../src/store-int.h" int main(int argc, char **argv) { const char *dest; const time_t *ttls; unsigned int i, n_ttls; switch (cm_prefs_preferred_cipher()) { case cm_prefs_aes128: printf("cipher: AES128\n"); break; case cm_prefs_aes256: printf("cipher: AES256\n"); break; case cm_prefs_des: printf("cipher: DES\n"); break; case cm_prefs_des3: printf("cipher: DES3\n"); break; } switch (cm_prefs_preferred_digest()) { case cm_prefs_md5: printf("digest: MD5\n"); break; case cm_prefs_sha1: printf("digest: SHA1\n"); break; case cm_prefs_sha256: printf("digest: SHA256\n"); break; case cm_prefs_sha384: printf("digest: SHA384\n"); break; case cm_prefs_sha512: printf("digest: SHA512\n"); break; } if (cm_prefs_notify_ttls(&ttls, &n_ttls) == 0) { printf("notify_ttls: "); for (i = 0; i < n_ttls; i++) { printf("%s%llu", ((i > 0) ? ", " : ""), (unsigned long long) ttls[i]); } printf("\n"); } if (cm_prefs_enroll_ttls(&ttls, &n_ttls) == 0) { printf("enroll_ttls: "); for (i = 0; i < n_ttls; i++) { printf("%s%llu", ((i > 0) ? ", " : ""), (unsigned long long) ttls[i]); } printf("\n"); } dest = cm_prefs_notification_destination(); switch (cm_prefs_notification_method()) { case cm_notification_unspecified: printf("notification: UNSPECIFIED:%s\n", dest); break; case cm_notification_none: printf("notification: NONE\n"); break; case cm_notification_syslog: printf("notification: SYSLOG:%s\n", dest); break; case cm_notification_email: printf("notification: MAILTO:%s\n", dest); break; case cm_notification_stdout: printf("notification: STDOUT\n"); break; case cm_notification_command: printf("notification: COMMAND:%s\n", dest); break; } return 0; } certmonger-0.78.6/tests/tools/pk7verify.c0000664000175000017500000000773512645513264015324 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/pkcs7.h" #include "../../src/store.h" #include "../../src/util-o.h" int main(int argc, char **argv) { struct stat st; int fd, i, j, root = 0, n_roots = 0, n_others = 0; ssize_t len; void *parent; char **roots, **others, *p, *digest = NULL; char *tx = NULL, *msgtype = NULL, *pkistatus = NULL, *failinfo = NULL; unsigned char *snonce = NULL, *rnonce = NULL, *payload = NULL; size_t snonce_length = 0, rnonce_length = 0, payload_length = 0; unsigned char *data, buf[BUFSIZ]; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); util_o_init(); ERR_load_crypto_strings(); parent = talloc_new(NULL); roots = talloc_array_ptrtype(parent, roots, argc); others = talloc_array_ptrtype(parent, others, argc); for (i = 1; i < argc; i++) { if (strcmp(argv[i], "-r") == 0) { root = 1; continue; } fd = open(argv[i], O_RDONLY); if (fd == -1) { fprintf(stderr, "Error opening \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } if (fstat(fd, &st) == -1) { fprintf(stderr, "Error statting \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } p = talloc_size(parent, st.st_size + 1); if (p == NULL) { fprintf(stderr, "Out of memory.\n"); return 1; } memset(p, '\0', st.st_size + 1); len = 0; while (len < st.st_size) { j = read(fd, p + len, st.st_size - len); if (j <= 0) { fprintf(stderr, "Read error on \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } len += j; } close(fd); if (root) { roots[n_roots++] = p; root = 0; } else { others[n_others++] = p; } } roots[n_roots] = NULL; others[n_others] = NULL; len = 0; data = NULL; while ((i = read(STDIN_FILENO, buf, sizeof(buf))) > 0) { data = talloc_realloc_size(parent, data, len + i); if (data == NULL) { fprintf(stderr, "Out of memory.\n"); return 1; } memcpy(data + len, buf, i); len += i; } if (len == 0) { fprintf(stderr, "No data to verify.\n"); return 1; } i = cm_pkcs7_verify_signed(data, len, (const char **) roots, (const char **) others, NID_pkcs7_data, parent, &digest, &tx, &msgtype, &pkistatus, &failinfo, &snonce, &snonce_length, &rnonce, &rnonce_length, &payload, &payload_length); if (i == 0) { printf("verify passed\n"); } else { printf("verify failed\n"); } if (digest != NULL) { printf("digest:%s\n", digest); } if (tx != NULL) { printf("tx:%s\n", tx); } if (msgtype != NULL) { printf("msgtype:%s\n", msgtype); } if (pkistatus != NULL) { printf("pkistatus:%s\n", pkistatus); } if (failinfo != NULL) { printf("failinfo:%s\n", failinfo); } if (snonce != NULL) { printf("snonce:%s\n", cm_store_base64_from_bin(parent, snonce, snonce_length)); } if (rnonce != NULL) { printf("rnonce:%s\n", cm_store_base64_from_bin(parent, rnonce, rnonce_length)); } if (payload != NULL) { printf("payload:%s\n", cm_store_base64_from_bin(parent, payload, payload_length)); } talloc_free(parent); return i; } certmonger-0.78.6/tests/tools/pk7parse.c0000664000175000017500000000520712645513264015122 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/pkcs7.h" int main(int argc, char **argv) { struct stat st; int fd, i, j, n_buffers = 0; ssize_t len; void *parent; unsigned char *p; const unsigned char **buffers; size_t *lengths; char *label, *leaf, *top, **certs; parent = talloc_new(NULL); buffers = talloc_array_ptrtype(parent, buffers, argc); lengths = talloc_array_ptrtype(parent, lengths, argc); label = ""; for (i = 1; i < argc; i++) { fd = open(argv[i], O_RDONLY); if (fd == -1) { fprintf(stderr, "Error opening \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } if (fstat(fd, &st) == -1) { fprintf(stderr, "Error statting \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } p = talloc_size(buffers, st.st_size); if (p == NULL) { fprintf(stderr, "Out of memory.\n"); return 1; } memset(p, 0, st.st_size); len = 0; while (len < st.st_size) { j = read(fd, p + len, st.st_size - len); if (j <= 0) { fprintf(stderr, "Read error on \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } len += j; } close(fd); buffers[n_buffers] = p; lengths[n_buffers] = st.st_size; if (n_buffers > 0) { label = talloc_asprintf_append(label, ",%s", argv[i]); } else { label = talloc_strdup(parent, argv[i]); } n_buffers++; } if (cm_pkcs7_parsev(CM_PKCS7_LEAF_PREFER_ENCRYPT, parent, &leaf, &top, &certs, NULL, NULL, n_buffers, buffers, lengths) != 0) { fprintf(stderr, "\"%s\": parse error.\n", argv[i]); return 1; } printf("[%s]\nTOP:\n%sLEAF:\n%s", label, top ? top : "", leaf ? leaf : ""); for (i = 0; (certs != NULL) && (certs[i] != NULL); i++) { printf("%d:\n%s", i + 1, certs[i]); } talloc_free(parent); return 0; } certmonger-0.78.6/tests/tools/pk7env.c0000664000175000017500000001101312645513264014570 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/pkcs7.h" #include "../../src/store.h" #define CSR1 "-----BEGIN CERTIFICATE REQUEST-----" #define CSR2 "-----BEGIN NEW CERTIFICATE REQUEST-----" #define CERT "-----BEGIN CERTIFICATE-----" int main(int argc, char **argv) { struct stat st; int fd, i, j; ssize_t len; size_t length; void *parent; char *p[3]; unsigned char *enveloped; parent = talloc_new(NULL); i = 1; while (i < argc) { fd = open(argv[i], O_RDONLY); if (fd == -1) { fprintf(stderr, "Error opening \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } if (fstat(fd, &st) == -1) { fprintf(stderr, "Error statting \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } p[0] = talloc_size(parent, st.st_size + 1); if (p[0] == NULL) { fprintf(stderr, "Out of memory.\n"); return 1; } memset(p[0], 0, st.st_size + 1); len = 0; while (len < st.st_size) { j = read(fd, p[0] + len, st.st_size - len); if (j <= 0) { fprintf(stderr, "Read error on \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } len += j; } close(fd); i++; if (i >= argc) { return 1; } fd = open(argv[i], O_RDONLY); if (fd == -1) { fprintf(stderr, "Error opening \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } if (fstat(fd, &st) == -1) { fprintf(stderr, "Error statting \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } p[1] = talloc_size(parent, st.st_size + 1); if (p[1] == NULL) { fprintf(stderr, "Out of memory.\n"); return 1; } memset(p[1], 0, st.st_size + 1); len = 0; while (len < st.st_size) { j = read(fd, p[1] + len, st.st_size - len); if (j <= 0) { fprintf(stderr, "Read error on \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } len += j; } close(fd); i++; if ((strncmp(p[1], CSR1, strlen(CSR1)) == 0) || (strncmp(p[1], CSR2, strlen(CSR2)) == 0)) { if (cm_pkcs7_envelope_csr(p[0], cm_prefs_des3, p[1], &enveloped, &length) != 0) { fprintf(stderr, "\"%s\"(\"%s\"): enveloping error.\n", argv[i - 2], argv[i - 1]); return 1; } printf("%s\n", cm_store_base64_from_bin(NULL, enveloped, length)); free(enveloped); continue; } if (i >= argc) { return 1; } fd = open(argv[i], O_RDONLY); if (fd == -1) { fprintf(stderr, "Error opening \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } if (fstat(fd, &st) == -1) { fprintf(stderr, "Error statting \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } p[2] = talloc_size(parent, st.st_size + 1); if (p[2] == NULL) { fprintf(stderr, "Out of memory.\n"); return 1; } memset(p[2], 0, st.st_size + 1); len = 0; while (len < st.st_size) { j = read(fd, p[2] + len, st.st_size - len); if (j <= 0) { fprintf(stderr, "Read error on \"%s\": %s.\n", argv[i], strerror(errno)); return 1; } len += j; } close(fd); i++; if ((strncmp(p[1], CERT, strlen(CERT)) == 0) && (strncmp(p[2], CERT, strlen(CERT)) == 0)) { if (cm_pkcs7_generate_ias(p[1], p[2], &enveloped, &length) != 0) { fprintf(stderr, "\"%s\",\"%s\": generating error.\n", argv[i - 2], argv[i - 1]); return 1; } printf("%s\n", cm_store_base64_from_bin(NULL, enveloped, length)); free(enveloped); if (cm_pkcs7_envelope_ias(p[0], cm_prefs_des3, p[1], p[2], &enveloped, &length) != 0) { fprintf(stderr, "\"%s\"(\"%s\",\"%s\"): enveloping error.\n", argv[i - 3], argv[i - 2], argv[i - 1]); return 1; } printf("%s\n", cm_store_base64_from_bin(NULL, enveloped, length)); free(enveloped); continue; } } return 0; } certmonger-0.78.6/tests/tools/pk7decrypt.c0000664000175000017500000000540012645513264015455 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/pkcs7.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "../../src/submit-int.h" #include "../../src/util-o.h" int main(int argc, char **argv) { unsigned char *payload = NULL, *data, buf[BUFSIZ]; size_t payload_length = 0; struct cm_submit_decrypt_envelope_args args; void *parent; ssize_t len; int i; void (*decrypt)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length) = NULL; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); parent = talloc_new(NULL); if (argc < 2) { fprintf(stderr, "Name of entry file required.\n"); return 1; } memset(&args, 0, sizeof(args)); args.entry = cm_store_files_entry_read(parent, argv[1]); if (args.entry == NULL) { fprintf(stderr, "Error reading entry from \"%s\".\n", argv[1]); return 1; } len = 0; data = NULL; while ((i = read(STDIN_FILENO, buf, sizeof(buf))) > 0) { data = talloc_realloc_size(parent, data, len + i); if (data == NULL) { fprintf(stderr, "Out of memory.\n"); return 1; } memcpy(data + len, buf, i); len += i; } if (len == 0) { fprintf(stderr, "No data to verify.\n"); return 1; } switch (args.entry->cm_key_storage_type) { case cm_key_storage_none: break; case cm_key_storage_nssdb: decrypt = cm_submit_n_decrypt_envelope; break; case cm_key_storage_file: decrypt = cm_submit_o_decrypt_envelope; break; } if (decrypt != NULL) { (*decrypt)(data, len, &args, &payload, &payload_length); } if ((payload != NULL) && (payload_length > 0)) { printf("payload:%s\n", cm_store_base64_from_bin(parent, payload, payload_length)); } else { printf("decrypt error\n"); } talloc_free(parent); return ((payload != NULL) && (payload_length > 0)) ? 0 : 1; } certmonger-0.78.6/tests/tools/pem2base.c0000664000175000017500000000235712645513264015067 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include "../../src/submit-u.h" int main(int argc, char **argv) { char buf[LINE_MAX], *p = NULL, *q; while (fgets(buf, sizeof(buf), stdin) != NULL) { if (p == NULL) { p = strdup(buf); } else { q = malloc(strlen(p) + strlen(buf) + 1); if (q != NULL) { stpcpy(stpcpy(q, p), buf); free(p); p = q; } } } printf("%s\n", cm_submit_u_base64_from_text(p)); return 0; } certmonger-0.78.6/tests/tools/payload.c0000664000175000017500000000372612645513264015023 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" int main(int argc, char **argv) { int i; unsigned int len; unsigned char *p, *q, buf[LINE_MAX]; SECItem encoded; CERTSignedData signed_data; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); p = NULL; len = 0; while ((i = read(STDIN_FILENO, buf, sizeof(buf))) > 0) { q = realloc(p, len + i); if (q == NULL) { perror("malloc"); free(p); return 1; } p = q; memcpy(p + len, buf, i); len += i; } memset(&encoded, 0, sizeof(encoded)); encoded.data = p; encoded.len = len; memset(&signed_data, 0, sizeof(signed_data)); if (SEC_ASN1DecodeItem(NULL, &signed_data, CERT_SignedDataTemplate, &encoded) == SECSuccess) { len = 0; while (len < signed_data.data.len) { i = write(STDOUT_FILENO, signed_data.data.data + len, signed_data.data.len - len); if (i <= 0) { perror("write"); return 1; } len += i; } } return 0; } certmonger-0.78.6/tests/tools/oid2name.c0000664000175000017500000000213212645513264015056 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include "../../src/log.h" #include "../../src/oiddict.h" int main(int argc, char **argv) { int i; const char *name; void *parent; parent = talloc_new(NULL); for (i = 1; i < argc; i++) { name = cm_oid_to_name(parent, argv[i]); if (name != NULL) { printf("%s\n", name); } else { return 1; } } talloc_free(parent); return 0; } certmonger-0.78.6/tests/tools/name2oid.c0000664000175000017500000000213012645513264015054 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include "../../src/log.h" #include "../../src/oiddict.h" int main(int argc, char **argv) { int i; const char *oid; void *parent; parent = talloc_new(NULL); for (i = 1; i < argc; i++) { oid = cm_oid_from_name(parent, argv[i]); if (oid != NULL) { printf("%s\n", oid); } else { return 1; } } talloc_free(parent); return 0; } certmonger-0.78.6/tests/tools/ls.c0000664000175000017500000000360012645513264013777 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/log.h" const char * uidname(uid_t uid) { static struct passwd *pwd; static char name[LINE_MAX]; if ((pwd != NULL) && (pwd->pw_uid == uid)) { return pwd->pw_name; } pwd = getpwuid(uid); if ((pwd != NULL) && (pwd->pw_uid == uid)) { return pwd->pw_name; } snprintf(name, sizeof(name), "%lu", (unsigned long) uid); return name; } const char * gidname(gid_t gid) { static struct group *grp; static char name[LINE_MAX]; if ((grp != NULL) && (grp->gr_gid == gid)) { return grp->gr_name; } grp = getgrgid(gid); if ((grp != NULL) && (grp->gr_gid == gid)) { return grp->gr_name; } snprintf(name, sizeof(name), "%lu", (unsigned long) gid); return name; } int main(int argc, char **argv) { struct stat st; int i; for (i = 1; i < argc; i++) { if (stat(argv[i], &st) == -1) { fprintf(stderr, "stat(%s): %s\n", argv[i], strerror(errno)); } else { printf("%s:%s|%04o|%s\n", uidname(st.st_uid), gidname(st.st_gid), st.st_mode & 07777, argv[i]); } } return 0; } certmonger-0.78.6/tests/tools/listnicks.c0000664000175000017500000000455312645513264015374 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" int main(int argc, char **argv) { struct cm_store_entry *entry; int i; void *parent; CERTCertList *certlist; CERTCertListNode *node; SECStatus error; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); parent = talloc_new(NULL); if (argc > 1) { entry = cm_store_files_entry_read(parent, argv[1]); if (entry == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return 1; } } else { printf("Specify an entry file as the single argument.\n"); return 1; } if (entry->cm_cert_storage_type != cm_cert_storage_nssdb) { cm_log(1, "Storage type is not NSSDB.\n"); return 1; } /* Open the database. */ error = NSS_Init(entry->cm_cert_storage_location); if (error != SECSuccess) { cm_log(1, "Unable to open NSS database.\n"); _exit(1); } /* Walk the list of names, if we got one. */ certlist = PK11_ListCerts(PK11CertListAll, NULL); if (certlist != NULL) { /* Delete the existing cert. */ i = 0; for (node = CERT_LIST_HEAD(certlist); !CERT_LIST_EMPTY(certlist) && !CERT_LIST_END(node, certlist); node = CERT_LIST_NEXT(node)) { printf("%d: \"%s\"\n", ++i, node->cert->nickname); } CERT_DestroyCertList(certlist); } talloc_free(parent); if (NSS_Shutdown() != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } return 0; } certmonger-0.78.6/tests/tools/libexecdir.c0000664000175000017500000000150012645513264015470 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include int main(int argc, char **argv) { printf("%s\n", CM_DEFAULT_HELPER_PATH); return 0; } certmonger-0.78.6/tests/tools/keyiread.c0000664000175000017500000001272312645513264015164 00000000000000/* * Copyright (C) 2009,2011,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/keyiread.h" #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } static const char * type_name(enum cm_key_algorithm alg) { switch (alg) { case cm_key_rsa: return "RSA"; break; #ifdef CM_ENABLE_DSA case cm_key_dsa: return "DSA"; break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: return "EC"; break; #endif default: assert(0); break; } return NULL; } int main(int argc, const char **argv) { struct cm_keyiread_state *state; struct cm_store_entry *entry; int fd, ret, need_pin, summary = 0, minimum = -1, i; void *parent; const char *filename; poptContext pctx; struct poptOption popts[] = { {"summary", 's', POPT_ARG_NONE, &summary, 0, NULL, NULL}, {"minimum", 'm', POPT_ARG_INT, &minimum, 0, NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("keyiread", argc, argv, popts, 0); while ((i = poptGetNextOpt(pctx)) > 0) { continue; } if (i != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); if (poptPeekArg(pctx) != NULL) { filename = poptGetArg(pctx); entry = cm_store_files_entry_read(parent, filename); if (entry == NULL) { printf("Error reading %s: %s.\n", filename, strerror(errno)); return 1; } } else { printf("Specify an entry file as the single argument.\n"); return 1; } entry->cm_key_type.cm_key_size = 0; state = cm_keyiread_start(entry); if (state != NULL) { for (;;) { fd = cm_keyiread_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_keyiread_ready(state) == 0) { break; } } need_pin = cm_keyiread_need_pin(state); cm_keyiread_done(state); if (entry->cm_key_type.cm_key_size != 0) { if (entry->cm_key_next_type.cm_key_size != 0) { if (summary) { if (minimum > 0) { if ((entry->cm_key_next_type.cm_key_size >= minimum * 0.9) && (entry->cm_key_type.cm_key_size >= minimum * 0.9)) { printf("OK (%s >= ~%d after %s >= ~%d).\n", type_name(entry->cm_key_next_type.cm_key_algorithm), minimum, type_name(entry->cm_key_type.cm_key_algorithm), minimum); } else { printf("NOT OK (%s:%d < %d after %s:%d < %d).\n", type_name(entry->cm_key_next_type.cm_key_algorithm), entry->cm_key_next_type.cm_key_size, minimum, type_name(entry->cm_key_type.cm_key_algorithm), entry->cm_key_type.cm_key_size, minimum); } } else { printf("OK (%s after %s).\n", type_name(entry->cm_key_next_type.cm_key_algorithm), type_name(entry->cm_key_type.cm_key_algorithm)); } } else { printf("OK (%s:%d after %s:%d).\n", type_name(entry->cm_key_next_type.cm_key_algorithm), entry->cm_key_next_type.cm_key_size, type_name(entry->cm_key_type.cm_key_algorithm), entry->cm_key_type.cm_key_size); } } else { if (summary) { if (minimum > 0) { if (entry->cm_key_type.cm_key_size >= minimum * 0.9) { printf("OK (%s >= ~%d).\n", type_name(entry->cm_key_type.cm_key_algorithm), minimum); } else { printf("NOT OK (%s:%d < %d).\n", type_name(entry->cm_key_type.cm_key_algorithm), entry->cm_key_type.cm_key_size, minimum); } } else { printf("OK (%s).\n", type_name(entry->cm_key_type.cm_key_algorithm)); } } else { printf("OK (%s:%d).\n", type_name(entry->cm_key_type.cm_key_algorithm), entry->cm_key_type.cm_key_size); } } ret = 0; } else { switch (entry->cm_key_storage_type) { case cm_key_storage_none: printf("No key to read.\n"); break; case cm_key_storage_file: printf("Failed to read key \"%s\".\n", entry->cm_key_storage_location); break; case cm_key_storage_nssdb: printf("Failed to read key \"%s\":\"%s\".\n", entry->cm_key_storage_location, entry->cm_key_nickname); break; } if (need_pin == 0) { printf("(Need PIN.)\n"); } ret = 1; } } else { printf("Failed to start.\n"); ret = 1; } cm_store_entry_save(entry); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/keygen.c0000664000175000017500000000567612645513264014662 00000000000000/* * Copyright (C) 2009,2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/keygen.h" #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, char **argv) { struct cm_keygen_state *state; struct cm_store_entry *entry; int fd, ret; void *parent; const char *ktype = "UNKNOWN"; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); parent = talloc_new(NULL); if (argc > 1) { entry = cm_store_files_entry_read(parent, argv[1]); if (entry == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return 1; } } else { printf("Specify an entry file as the single argument.\n"); return 1; } state = cm_keygen_start(entry); if (state != NULL) { for (;;) { fd = cm_keygen_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_keygen_ready(state) == 0) { break; } } switch (entry->cm_key_storage_type) { case cm_key_storage_none: ktype = "NONE"; break; case cm_key_storage_file: ktype = "FILE"; break; case cm_key_storage_nssdb: ktype = "NSS"; break; } if (cm_keygen_saved_keypair(state) == 0) { printf("OK.\n"); ret = 0; } else if (cm_keygen_need_pin(state) == 0) { printf("Failed to save %s:%s: need PIN.\n", ktype, entry->cm_key_storage_location); ret = 1; } else if (cm_keygen_need_token(state) == 0) { printf("Failed to save %s:%s: token not present.\n", ktype, entry->cm_key_storage_location); ret = 1; } else if (cm_keygen_need_perms(state) == 0) { printf("Failed to save %s:%s: need fs permissions.\n", ktype, entry->cm_key_storage_location); ret = 1; } else { printf("Failed to save %s:%s, don't know why.\n", ktype, entry->cm_key_storage_location); ret = 1; } cm_keygen_done(state); } else { printf("Failed to start.\n"); ret = 1; } cm_store_entry_save(entry); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/json-utf8.c0000664000175000017500000000540112645513264015217 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include "../../src/json.h" int main(int argc, char **argv) { uint32_t point, point2; char buf[7]; int n, o; for (point = 0; point < 0x5000000; point++) { if ((point >= 0xd800) && (point <= 0xdfff)) { continue; } n = cm_json_point_to_utf8_length(point); switch (n) { case 1: if (point > 0x7f) { fprintf(stderr, "error at point %lu: %d\n", (unsigned long) point, n); return n; } break; case 2: if ((point < 0x80) || (point > 0x7ff)) { fprintf(stderr, "error at point %lu: %d\n", (unsigned long) point, n); return n; } break; case 3: if ((point < 0x800) || (point > 0xffff)) { fprintf(stderr, "error at point %lu: %d\n", (unsigned long) point, n); return n; } break; case 4: if ((point < 0x10000) || (point > 0x1fffff)) { fprintf(stderr, "error at point %lu: %d\n", (unsigned long) point, n); return n; } break; case 5: if ((point < 0x200000) || (point > 0x3ffffff)) { fprintf(stderr, "error at point %lu: %d\n", (unsigned long) point, n); return n; } break; case 6: if ((point < 0x4000000) || (point > 0x7fffffff)) { fprintf(stderr, "error at point %lu: %d\n", (unsigned long) point, n); return n; } break; default: fprintf(stderr, "error at point %lu: %d\n", (unsigned long) point, n); return 7; break; } memset(buf, '\0', sizeof(buf)); o = cm_json_point_to_utf8(point, buf, sizeof(buf)); if (o != n) { fprintf(stderr, "error at encoding of %lu: %d\n", (unsigned long) point, o); return 8; } o = cm_json_utf8_to_point(buf, &point2); if (o != n) { fprintf(stderr, "error at decoding of %s (%lu): %d\n", buf, (unsigned long) point, o); return 8; } if (point2 != point) { fprintf(stderr, "decode mismatch: expected \"%s\" to be %lu, got %lu\n", buf, (unsigned long) point, (unsigned long) point2); return 9; } } return 0; } certmonger-0.78.6/tests/tools/json.c0000664000175000017500000001065412645513264014341 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include #include "../../src/json.h" int main(int argc, const char **argv) { struct stat st; char *e, *e2, *e3, *e4, *path = NULL; const char *left, *filename; struct cm_json *j, *j2, *j3; void *parent; int i, n, r, fd, ret = 0, quiet = 0; poptContext pctx; struct poptOption popts[] = { {"quiet", 'q', POPT_ARG_NONE, &quiet, 0, NULL, NULL}, {"path", 'p', POPT_ARG_STRING, &path, 0, NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; parent = talloc_new(NULL); pctx = poptGetContext("json", argc, argv, popts, 0); while ((i = poptGetNextOpt(pctx)) > 0) { continue; } if (i != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } while ((filename = poptGetArg(pctx)) != NULL) { fd = open(filename, O_RDONLY); if (fd == -1) { ret = errno; fprintf(stderr, "open(\"%s\"): %s\n", filename, strerror(errno)); continue; } if (fstat(fd, &st) == -1) { ret = errno; fprintf(stderr, "stat(\"%s\"): %s\n", filename, strerror(errno)); continue; } e = talloc_size(parent, st.st_size); if (e == NULL) { ret = errno; fprintf(stderr, "malloc(): %s\n", strerror(errno)); continue; } r = 0; while (r < st.st_size) { n = read(fd, e + r, st.st_size - r); if (n <= 0) { ret = errno; break; } r += n; } if (r < st.st_size) { fprintf(stderr, "read(): %s\n", strerror(errno)); close(fd); break; } close(fd); i = cm_json_decode(parent, e, st.st_size, &j, &left); if (i != 0) { ret = -1; fprintf(stderr, "decode(\"%.*s\"): %s\n", (int) (st.st_size - (left - e)), left, cm_json_decode_strerror(i)); continue; } if (left - e != st.st_size) { if (left - e < st.st_size) { fprintf(stderr, "decode(%.*s) has %lld bytes leftover:\n%.*s\n", (int) st.st_size, filename, (long long) (st.st_size - (left - e)), (int) (st.st_size - (left - e)), left); } else { fprintf(stderr, "decode(%.*s) overran by %lld\n", (int) st.st_size, filename, (long long) (left - e - st.st_size)); } ret = -1; continue; } e2 = cm_json_encode(parent, j); if (e2 == NULL) { ret = -1; fprintf(stderr, "encode(1) failed\n"); continue; } i = cm_json_decode(parent, e2, -1, &j2, &left); if (i != 0) { ret = -1; fprintf(stderr, "decode(\"%s\"): %s\n", left, cm_json_decode_strerror(i)); continue; } st.st_size = strlen(e2); if (left - e2 != st.st_size) { ret = -1; if (left - e2 < st.st_size) { fprintf(stderr, "decode() has %lld bytes leftover:\n%s\n", (long long) (st.st_size - (left - e2)), left); } else { fprintf(stderr, "decode() overran by %lld\n", (long long) (left - e2 - st.st_size)); } continue; } e3 = cm_json_encode(parent, j2); if (e3 == NULL) { ret = -1; fprintf(stderr, "encode(2) failed\n"); continue; } if (strcmp(e2, e3) != 0) { ret = -1; fprintf(stderr, "encode() round-trip failed: \"%s\" != \"%s\"\n", e2, e3); continue; } if (path != NULL) { j3 = cm_json_find(j2, path); if (j3 == NULL) { ret = -1; fprintf(stderr, "unable to find \"%s\"\n", path); continue; } e4 = cm_json_encode(parent, j3); if (e4 == NULL) { ret = -1; fprintf(stderr, "encode(3) failed\n"); continue; } } else { j3 = NULL; e4 = NULL; } if (!quiet) { if (strchr(filename, '/') != NULL) { filename = strrchr(filename, '/') + 1; } if (path != NULL) { printf("[%s]\n%s\n", filename, e4); } else { printf("[%s]\n%s\n", filename, e3); } } } talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/iterate.c0000664000175000017500000001474712645513264015034 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/iterate.h" #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; if (fd >= 0) { FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } else { sleep(1); } } struct cm_context { struct cm_store_ca *ca; struct cm_store_entry *entry; }; static struct cm_store_ca * get_ca_by_index(struct cm_context *cm, int i) { if (i == 0) { return cm->ca; } else { return NULL; } } static int get_n_cas(struct cm_context *cm) { return (cm->ca != NULL) ? 1 : 0; } static struct cm_store_entry * get_entry_by_index(struct cm_context *cm, int i) { if (i == 0) { return cm->entry; } else { return NULL; } } static int get_n_entries(struct cm_context *cm) { return (cm->entry != NULL) ? 1 : 0; } int main(int argc, char **argv) { struct cm_context *cm; enum cm_state old_state; int readfd, delay; void *parent, *istate; char *p, *q, *continue_states, *stop_states, *tmp; const char *state; enum cm_time when; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); cm = talloc_ptrtype(parent, cm); if (cm == NULL) { return 1; } memset(cm, 0, sizeof(*cm)); if (argc > 3) { cm->ca = cm_store_files_ca_read(parent, argv[1]); if (cm->ca == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return 1; } cm->entry = cm_store_files_entry_read(parent, argv[2]); if (cm->entry == NULL) { printf("Error reading %s: %s.\n", argv[2], strerror(errno)); return 1; } if ((cm->entry->cm_ca_nickname == NULL) || (cm->ca->cm_nickname == NULL) || (strcasecmp(cm->entry->cm_ca_nickname, cm->ca->cm_nickname) != 0)) { talloc_free(cm->ca); cm->ca = NULL; } continue_states = argv[3]; stop_states = NULL; if ((argc > 4) && (strlen(argv[4]) > 0)) { stop_states = argv[4]; if (strlen(continue_states) == 0) { continue_states = NULL; } } } else { printf("Specify a CA file and an entry file as the first " "two arguments, a list of continue states as the " "third, and perhaps a list of stop states as the " "fourth.\n"); return 1; } old_state = cm->entry->cm_state; state = cm_store_state_as_string(cm->entry->cm_state); if (cm_iterate_entry_init(cm->entry, &istate) != 0) { printf("Error initializing.\n"); return 1; } if (old_state != cm->entry->cm_state) { printf("%s\n-(RESET)-\n", state); } old_state = CM_INVALID; state = cm_store_state_as_string(cm->entry->cm_state); printf("%s\n-START-\n", state); fflush(NULL); while (cm_iterate_entry(cm->entry, cm->ca, cm, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, NULL, NULL, istate, &when, &delay, &readfd) == 0) { state = cm_store_state_as_string(cm->entry->cm_state); switch (when) { case cm_time_now: if (cm->entry->cm_state != old_state) { printf("%s\n", state); } else { printf("%s (now)\n", state); } break; case cm_time_soon: if (cm->entry->cm_state != old_state) { printf("%s\n", state); } else { printf("%s (soon)\n", state); } break; case cm_time_soonish: if (cm->entry->cm_state != old_state) { printf("%s\n", state); } else { printf("%s (soonish)\n", state); } break; case cm_time_delay: if (cm->entry->cm_state != old_state) { printf("delay=%ld\n%s\n", (long) delay, state); } else { printf("delay=%ld (again)\n%s (again)\n", (long) delay, state); } break; case cm_time_no_time: if (cm->entry->cm_state != old_state) { printf("%s\n", state); } break; } if ((cm->entry->cm_state == old_state) && ((when != cm_time_no_time) || (readfd == -1))) { /* If we didn't change state, stop. */ printf("-STUCK- (%d:%ld)\n", when, (long) delay); fflush(NULL); state = NULL; break; } if (stop_states != NULL) { /* Check if this state is in our stop-states list. */ for (p = stop_states; *p != '\0'; p = q + strspn(q, ",")) { q = p + strcspn(p, ","); tmp = talloc_strndup(parent, p, q - p); if (cm->entry->cm_state == cm_store_state_from_string(tmp)) { fflush(NULL); talloc_free(tmp); break; } talloc_free(tmp); } if (*p != '\0') { /* We found a match. Stop here. */ printf("-STOP-\n"); fflush(NULL); state = NULL; break; } } /* Check if this state is in our continue-states list. */ if (continue_states != NULL) { for (p = continue_states; *p != '\0'; p = q + strspn(q, ",")) { q = p + strcspn(p, ","); tmp = talloc_strndup(parent, p, q - p); if (cm->entry->cm_state == cm_store_state_from_string(tmp)) { fflush(NULL); talloc_free(tmp); break; } talloc_free(tmp); } /* If we didn't find a match, stop here. */ if (*p == '\0') { printf("-STOP-\n"); fflush(NULL); state = NULL; break; } } /* Wait. */ switch (when) { case cm_time_now: break; case cm_time_soon: sleep(CM_DELAY_SOON); break; case cm_time_soonish: sleep(CM_DELAY_SOONISH); break; case cm_time_delay: sleep(delay); break; case cm_time_no_time: wait_to_read(readfd); break; } state = cm_store_state_as_string(cm->entry->cm_state); old_state = cm->entry->cm_state; } if (state != NULL) { printf("-ERROR-\n"); fflush(NULL); } cm_iterate_entry_done(cm->entry, istate); talloc_free(parent); return 0; } certmonger-0.78.6/tests/tools/hooks.c0000664000175000017500000001340712645513264014512 00000000000000/* * Copyright (C) 2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/hook.h" #include "../../src/log.h" #include "../../src/store-int.h" #include "../../src/store.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } static struct cm_store_ca **ca; static struct cm_store_entry **entry; static int n_cas, n_entries; static int get_n_cas(struct cm_context *ctx) { return n_cas; } static struct cm_store_ca * get_ca_by_index(struct cm_context *ctx, int n) { return ca[n]; } static int get_n_entries(struct cm_context *ctx) { return n_entries; } static struct cm_store_entry * get_entry_by_index(struct cm_context *ctx, int n) { return entry[n]; } int main(int argc, const char **argv) { struct cm_hook_state *state; struct cm_store_ca *tmpca, **tmpcas; struct cm_store_entry *tmpentry, **tmpentries; int fd, i, c, verbose = 0; void *parent; const char *name; poptContext pctx; struct poptOption popts[] = { {"ca", 'c', POPT_ARG_STRING, NULL, 'c', NULL, "FILENAME"}, {"entry", 'e', POPT_ARG_STRING, NULL, 'e', NULL, "FILENAME"}, {"before-command", 'B', POPT_ARG_STRING, NULL, 'B', NULL, "NICKNAME"}, {"after-command", 'C', POPT_ARG_STRING, NULL, 'C', NULL, "NICKNAME"}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; cm_log_set_method(cm_log_stderr); cm_set_fips_from_env(); parent = talloc_new(NULL); pctx = poptGetContext("hooks", argc, argv, popts, 0); if (pctx == NULL) { return -1; } if (argc > 2) { while ((c = poptGetNextOpt(pctx)) > 0) { cm_log_set_level(verbose); switch (c) { case 'v': verbose++; break; case 'c': name = poptGetOptArg(pctx); tmpca = cm_store_files_ca_read(parent, name); if (tmpca == NULL) { printf("Error reading %s: %s.\n", name, strerror(errno)); return -1; } tmpcas = talloc_array_ptrtype(parent, tmpcas, n_cas + 2); if (tmpcas == NULL) { printf("Out of memory.\n"); return -1; } if (n_cas > 0) { memcpy(tmpcas, ca, n_cas * sizeof(ca[0])); } tmpcas[n_cas++] = tmpca; tmpcas[n_cas] = NULL; ca = tmpcas; break; case 'e': name = poptGetOptArg(pctx); tmpentry = cm_store_files_entry_read(parent, name); if (tmpentry == NULL) { printf("Error reading %s: %s.\n", name, strerror(errno)); return -1; } tmpentries = talloc_array_ptrtype(parent, tmpentries, n_entries + 2); if (tmpentries == NULL) { printf("Out of memory.\n"); return -1; } if (n_entries > 0) { memcpy(tmpentries, entry, n_entries * sizeof(entry[0])); } tmpentries[n_entries++] = tmpentry; tmpentries[n_entries] = NULL; entry = tmpentries; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } } else { printf("Specify CA files (-c) and entry files (-e) as " "arguments, and nicknames (-B/-C) for actions.\n"); poptPrintUsage(pctx, stdout, 0); return -1; } poptResetContext(pctx); while ((c = poptGetNextOpt(pctx)) > 0) { state = NULL; switch (c) { case 'B': name = poptGetOptArg(pctx); for (i = 0; i < n_entries; i++) { if (strcmp(name, entry[i]->cm_nickname) == 0) { printf("Starting pre-save for entry %s.\n", name); state = cm_hook_start_presave(entry[i], NULL, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); } } for (i = 0; i < n_cas; i++) { if (strcmp(name, ca[i]->cm_nickname) == 0) { printf("Starting pre-save for CA %s.\n", name); state = cm_hook_start_ca_presave(ca[i], NULL, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); } } break; case 'C': name = poptGetOptArg(pctx); for (i = 0; i < n_entries; i++) { if (strcmp(name, entry[i]->cm_nickname) == 0) { printf("Starting post-save for entry %s.\n", name); state = cm_hook_start_postsave(entry[i], NULL, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); } } for (i = 0; i < n_cas; i++) { if (strcmp(name, ca[i]->cm_nickname) == 0) { printf("Starting post-save for CA %s.\n", name); state = cm_hook_start_ca_postsave(ca[i], NULL, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); } } break; } if (state != NULL) { for (;;) { if (cm_hook_ready(state) == 0) { break; } fd = cm_hook_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } } cm_hook_done(state); } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } talloc_free(parent); return 0; } certmonger-0.78.6/tests/tools/dparse.c0000664000175000017500000001077612645513264014653 00000000000000/* * Copyright (C) 2012,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include "../../src/submit.h" #include "../../src/submit-d.h" #include "../../src/submit-e.h" #include "../../src/submit-u.h" int main(int argc, char **argv) { const char *mode, *role, *filename; char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL, *cert = NULL; char *xml, *out = NULL, *err = NULL, **profiles = NULL; dbus_bool_t can_agent; int i, vars; if (argc < 4) { printf("usage: dparse " "{submit|check|review|reject|approve|fetch|profiles} " "{agent|ee} " "reply.xml\n"); return 0; } mode = argv[1]; role = argv[2]; filename = argv[3]; can_agent = (strcasecmp(role, "agent") == 0); xml = cm_submit_u_from_file(filename); if (xml == NULL) { fprintf(stderr, "error reading %s\n", filename); return -1; } if (strcmp(mode, "submit") == 0) { cm_submit_d_submit_result(NULL, xml, &error_code, &error_reason, &error, &status, &requestId, &cert); i = cm_submit_d_submit_eval(NULL, xml, "SUBMIT", can_agent, &out, &err); } else if (strcmp(mode, "check") == 0) { cm_submit_d_check_result(NULL, xml, &error_code, &error_reason, &error, &status, &requestId); i = cm_submit_d_check_eval(NULL, xml, "CHECK", can_agent, &out, &err); } else if (strcmp(mode, "reject") == 0) { cm_submit_d_reject_result(NULL, xml, &error_code, &error_reason, &error, &status, &requestId); i = cm_submit_d_reject_eval(NULL, xml, "REJECT", can_agent, &out, &err); } else if (strcmp(mode, "review") == 0) { cm_submit_d_review_result(NULL, xml, &error_code, &error_reason, &error, &status, &requestId); i = cm_submit_d_review_eval(NULL, xml, "REVIEW", can_agent, &out, &err); } else if (strcmp(mode, "approve") == 0) { cm_submit_d_approve_result(NULL, xml, &error_code, &error_reason, &error, &status, &requestId); i = cm_submit_d_approve_eval(NULL, xml, "APPROVE", can_agent, &out, &err); } else if (strcmp(mode, "fetch") == 0) { cm_submit_d_fetch_result(NULL, xml, &error_code, &error_reason, &error, &status, &requestId, &cert); i = cm_submit_d_fetch_eval(NULL, xml, "FETCH", can_agent, &out, &err); } else if (strcmp(mode, "profiles") == 0) { cm_submit_d_profiles_result(NULL, xml, &error_code, &error_reason, &error, &status, &profiles); i = cm_submit_d_profiles_eval(NULL, xml, "PROFILES", can_agent, &out, &err); } else { fprintf(stderr, "unknown mode \"%s\"\n", mode); return -1; } printf("[%s-as-%s(%s) = %s]\n", mode, can_agent ? "agent" : "end-entity", filename, cm_submit_e_status_text(i)); vars = 0; if (error != NULL) { printf("error=\"%s\"", error); vars++; } if (error_code != NULL) { if (vars > 0) { printf(","); } printf("error_code=\"%s\"", error_code); vars++; } if (error_reason != NULL) { if (vars > 0) { printf(","); } printf("error_reason=\"%s\"", error_reason); vars++; } if (status != NULL) { if (vars > 0) { printf(","); } printf("status=\"%s\"", status); vars++; } if (requestId != NULL) { if (vars > 0) { printf(","); } printf("requestId=\"%s\"", requestId); vars++; } if (cert != NULL) { if (vars > 0) { printf(","); } printf("cert=\"%.*s\"", (int) strcspn(cert, "\r\n"), cert); vars++; } if (vars > 0) { printf("\n"); } while ((out != NULL) && (*out != '\0')) { if (strchr("\r", *out) == NULL) { putchar((unsigned char) *out); } out++; } while ((err != NULL) && (*err != '\0')) { if (strchr("\r", *err) == NULL) { putchar((unsigned char) *err); } err++; } printf("\n"); return 0; } certmonger-0.78.6/tests/tools/dates.c0000664000175000017500000000360212645513264014463 00000000000000/* * Copyright (C) 2010 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include "../../src/submit.h" #include "../../src/submit-u.h" int cm_submit_delta_from_string(const char *deltas, time_t now, time_t *delta); int main(int argc, char **argv) { struct tm when; time_t now, later, delta; int i; if (argc > 1) { for (i = 2; i < argc; i++) { memset(&when, 0, sizeof(when)); when.tm_mday = 1; when.tm_mon = 0; when.tm_year = atoi(argv[1]) - 1900; if (cm_submit_u_delta_from_string(argv[i], now = mktime(&when), &delta) != 0) { printf("Error at \"%s\".\n", argv[i]); delta = 0; } printf("%04d-%02d-%02d %02d:%02d:%02d", when.tm_year + 1900, when.tm_mon + 1, when.tm_mday, when.tm_hour, when.tm_min, when.tm_sec); printf(" + \"%s\" = ", argv[i]); later = now + delta; localtime_r(&later, &when); printf("%04d-%02d-%02d %02d:%02d:%02d", when.tm_year + 1900, when.tm_mon + 1, when.tm_mday, when.tm_hour, when.tm_min, when.tm_sec); printf("\n"); } } return 0; } certmonger-0.78.6/tests/tools/csrgen.c0000664000175000017500000000521512645513264014646 00000000000000/* * Copyright (C) 2009,2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/csrgen.h" #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, char **argv) { struct cm_csrgen_state *state; struct cm_store_entry *entry; int fd, ret, i; void *parent; char *p; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); if (argc > 1) { entry = cm_store_files_entry_read(parent, argv[1]); if (entry == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return 1; } } else { printf("Specify an entry file as the single argument.\n"); return 1; } state = cm_csrgen_start(entry); if (state != NULL) { for (;;) { fd = cm_csrgen_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_csrgen_ready(state) == 0) { break; } } if (cm_csrgen_save_csr(state) == 0) { while (strlen(entry->cm_csr) > 0) { i = strlen(entry->cm_csr) - 1; if (entry->cm_csr[i] == '\n') { entry->cm_csr[i] = '\0'; } else { break; } } p = talloc_asprintf(entry, "%s\n", entry->cm_csr); talloc_free(entry->cm_csr); entry->cm_csr = p; printf("%s", entry->cm_csr); ret = 0; } else { printf("Failed to save.\n"); if (cm_csrgen_need_token(state) == 0) { printf("(Need token.)\n"); } else if (cm_csrgen_need_pin(state) == 0) { printf("(Need PIN.)\n"); } ret = 1; } cm_csrgen_done(state); } else { printf("Failed to start.\n"); ret = 1; } cm_store_entry_save(entry); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/citerate.c0000664000175000017500000001510412645513264015163 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/iterate.h" #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; if (fd >= 0) { FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } else { sleep(1); } } struct cm_context { struct cm_store_ca *ca; struct cm_store_entry *entry; }; static struct cm_store_ca * get_ca_by_index(struct cm_context *cm, int i) { if (i == 0) { return cm->ca; } else { return NULL; } } static int get_n_cas(struct cm_context *cm) { return (cm->ca != NULL) ? 1 : 0; } static struct cm_store_entry * get_entry_by_index(struct cm_context *cm, int i) { if (i == 0) { return cm->entry; } else { return NULL; } } static int get_n_entries(struct cm_context *cm) { return (cm->entry != NULL) ? 1 : 0; } int main(int argc, char **argv) { struct cm_context cm; enum cm_ca_phase_state pstate, old_state; enum cm_ca_phase phase; int readfd, delay; void *parent, *istate; char *p, *q, *continue_states, *stop_states, *tmp; const char *state; enum cm_time when; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); if (argc > 5) { cm.ca = cm_store_files_ca_read(parent, argv[1]); if (cm.ca == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return 1; } cm.entry = cm_store_files_entry_read(parent, argv[2]); if (cm.entry == NULL) { printf("Error reading %s: %s.\n", argv[2], strerror(errno)); return 1; } phase = cm_store_ca_phase_from_string(argv[3]); if ((cm.entry->cm_ca_nickname == NULL) || (cm.ca->cm_nickname == NULL) || (strcasecmp(cm.entry->cm_ca_nickname, cm.ca->cm_nickname) != 0)) { talloc_free(cm.entry); cm.entry = NULL; } pstate = cm_store_ca_state_from_string(argv[4]); continue_states = argv[5]; stop_states = NULL; if ((argc > 6) && (strlen(argv[6]) > 0)) { stop_states = argv[6]; if (strlen(continue_states) == 0) { continue_states = NULL; } } } else { printf("Specify a CA file and an entry file as the first " "two arguments, a phase as the third, an initial " "state as the fourth, a list of continue states as " "the fifth, and perhaps a list of stop states as the " "sixth.\n"); return 1; } if (cm_iterate_ca_init(cm.ca, phase, &istate) != 0) { printf("Error initializing.\n"); return 1; } cm.ca->cm_ca_state[phase] = pstate; old_state = pstate; state = cm_store_ca_state_as_string(old_state); printf("%s\n-START-\n", state); fflush(NULL); delay = 0; readfd = -1; while (cm_iterate_ca(cm.ca, &cm, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, NULL, istate, &when, &delay, &readfd) == 0) { state = cm_store_ca_state_as_string(cm.ca->cm_ca_state[phase]); switch (when) { case cm_time_now: if (cm.ca->cm_ca_state[phase] != old_state) { printf("%s\n", state); } else { printf("%s (now)\n", state); } break; case cm_time_soon: if (cm.ca->cm_ca_state[phase] != old_state) { printf("%s\n", state); } else { printf("%s (soon)\n", state); } break; case cm_time_soonish: if (cm.ca->cm_ca_state[phase] != old_state) { printf("%s\n", state); } else { printf("%s (soonish)\n", state); } break; case cm_time_delay: if (cm.ca->cm_ca_state[phase] != old_state) { printf("delay=%ld\n%s\n", (long) delay, state); } else { printf("delay=%ld (again)\n%s (again)\n", (long) delay, state); } break; case cm_time_no_time: if (cm.ca->cm_ca_state[phase] != old_state) { printf("%s\n", state); } break; } if ((cm.ca->cm_ca_state[phase] == old_state) && ((when != cm_time_no_time) || (readfd == -1))) { /* If we didn't change state, stop. */ printf("-STUCK- (%d:%ld)\n", when, (long) delay); fflush(NULL); state = NULL; break; } if (stop_states != NULL) { /* Check if this state is in our stop-states list. */ for (p = stop_states; *p != '\0'; p = q + strspn(q, ",")) { q = p + strcspn(p, ","); tmp = talloc_strndup(parent, p, q - p); if (cm.ca->cm_ca_state[phase] == cm_store_ca_state_from_string(tmp)) { fflush(NULL); talloc_free(tmp); break; } talloc_free(tmp); } if (*p != '\0') { /* We found a match. Stop here. */ printf("-STOP-\n"); fflush(NULL); state = NULL; break; } } /* Check if this state is in our continue-states list. */ if (continue_states != NULL) { for (p = continue_states; *p != '\0'; p = q + strspn(q, ",")) { q = p + strcspn(p, ","); tmp = talloc_strndup(parent, p, q - p); if (cm.ca->cm_ca_state[phase] == cm_store_ca_state_from_string(tmp)) { fflush(NULL); talloc_free(tmp); break; } talloc_free(tmp); } /* If we didn't find a match, stop here. */ if (*p == '\0') { printf("-STOP-\n"); fflush(NULL); state = NULL; break; } } /* Wait. */ switch (when) { case cm_time_now: break; case cm_time_soon: sleep(CM_DELAY_SOON); break; case cm_time_soonish: sleep(CM_DELAY_SOONISH); break; case cm_time_delay: sleep(delay); break; case cm_time_no_time: wait_to_read(readfd); break; } old_state = cm.ca->cm_ca_state[phase]; state = cm_store_ca_state_as_string(old_state); delay = 0; readfd = -1; } if (state != NULL) { printf("-ERROR-\n"); fflush(NULL); } cm_store_ca_save(cm.ca); cm_iterate_ca_done(cm.ca, istate); talloc_free(parent); return 0; } certmonger-0.78.6/tests/tools/checksig.c0000664000175000017500000000604112645513264015143 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" int main(int argc, char **argv) { int i; unsigned int len; unsigned char *p, *q, buf[LINE_MAX]; SECItem encoded; CERTSignedData signed_data; CERTCertificate cert; SECKEYPublicKey *pubkey; CERTSubjectPublicKeyInfo *spki; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); p = NULL; len = 0; if (NSS_Initialize(".", NULL, NULL, NULL, NSS_INIT_READONLY | NSS_INIT_NOCERTDB | NSS_INIT_NOMODDB) != SECSuccess) { printf("error initializing NSS\n"); return 1; } while ((i = read(STDIN_FILENO, buf, sizeof(buf))) > 0) { q = realloc(p, len + i); if (q == NULL) { perror("malloc"); free(p); return 1; } p = q; memcpy(p + len, buf, i); len += i; } memset(&encoded, 0, sizeof(encoded)); encoded.data = p; encoded.len = len; memset(&signed_data, 0, sizeof(signed_data)); if (SEC_ASN1DecodeItem(NULL, &signed_data, CERT_SignedDataTemplate, &encoded) != SECSuccess) { printf("error decoding certificate\n"); return 1; } memset(&cert, 0, sizeof(cert)); if (SEC_ASN1DecodeItem(NULL, &cert, CERT_CertificateTemplate, &signed_data.data) != SECSuccess) { printf("error decoding certificate data\n"); return 1; } spki = SECKEY_DecodeDERSubjectPublicKeyInfo(&cert.derPublicKey); if (spki == NULL) { printf("error decoding public key info\n"); return 1; } pubkey = SECKEY_ExtractPublicKey(spki); if (pubkey == NULL) { printf("error finding public key\n"); return 1; } if (VFY_VerifyDataWithAlgorithmID(signed_data.data.data, signed_data.data.len, pubkey, &signed_data.signature, &signed_data.signatureAlgorithm, NULL, NULL) != SECSuccess) { printf("error in verification: %s\n", PR_ErrorToName(PORT_GetError())); return 1; } printf("verification OK\n"); SECKEY_DestroyPublicKey(pubkey); SECKEY_DestroySubjectPublicKeyInfo(spki); NSS_Shutdown(); return 0; } certmonger-0.78.6/tests/tools/certsave.c0000664000175000017500000000606512645513264015205 00000000000000/* * Copyright (C) 2009,2011,2013 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/certsave.h" #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, char **argv) { struct cm_certsave_state *state; struct cm_store_entry *entry; int fd, ret; void *parent; const char *ctype; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); if (argc > 1) { entry = cm_store_files_entry_read(parent, argv[1]); if (entry == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return 1; } } else { printf("Specify an entry file as the single argument.\n"); return 1; } state = cm_certsave_start(entry); if (state != NULL) { for (;;) { fd = cm_certsave_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_certsave_ready(state) == 0) { break; } } if (cm_certsave_saved(state) == 0) { ret = 0; } else { ctype = "unknown"; switch (entry->cm_cert_storage_type) { case cm_cert_storage_file: ctype = "FILE"; break; case cm_cert_storage_nssdb: ctype = "NSS"; break; } if (cm_certsave_conflict_subject(state) == 0) { printf("Failed to save (%s:%s), " "subject name conflict.\n", ctype, entry->cm_cert_storage_location); } else if (cm_certsave_conflict_nickname(state) == 0) { printf("Failed to save (%s:%s), " "certificate nickname conflict.\n", ctype, entry->cm_cert_storage_location); } else if (cm_certsave_permissions_error(state) == 0) { printf("Failed to save (%s:%s), " "filesystem permissions error.\n", ctype, entry->cm_cert_storage_location); } else { printf("Failed to save (%s:%s), " "don't know why.\n", ctype, entry->cm_cert_storage_location); } ret = 1; } cm_certsave_done(state); } else { printf("Failed to start.\n"); ret = 1; } cm_store_entry_save(entry); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/certread.c0000664000175000017500000000411612645513264015155 00000000000000/* * Copyright (C) 2009,2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/certread.h" #include "../../src/log.h" #include "../../src/store.h" #include "../../src/store-int.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, char **argv) { struct cm_certread_state *state; struct cm_store_entry *entry; int fd, ret; void *parent; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); cm_set_fips_from_env(); parent = talloc_new(NULL); if (argc > 1) { entry = cm_store_files_entry_read(parent, argv[1]); if (entry == NULL) { printf("Error reading %s: %s.\n", argv[1], strerror(errno)); return 1; } } else { printf("Specify an entry file as the single argument.\n"); return 1; } state = cm_certread_start(entry); if (state != NULL) { for (;;) { fd = cm_certread_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_certread_ready(state) == 0) { break; } } cm_certread_done(state); ret = 0; } else { printf("Failed to start.\n"); ret = 1; } cm_store_entry_save(entry); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/casave.c0000664000175000017500000001217712645513264014634 00000000000000/* * Copyright (C) 2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/casave.h" #include "../../src/log.h" #include "../../src/store-int.h" #include "../../src/store.h" #include "tools.h" struct cm_context { struct cm_store_ca **cas; size_t n_cas; struct cm_store_entry **entries; size_t n_entries; }; static int get_n_cas(struct cm_context *cm) { return cm->n_cas; } static struct cm_store_ca * get_ca_by_index(struct cm_context *cm, int i) { return cm->cas[i]; } static int get_n_entries(struct cm_context *cm) { return cm->n_entries; } static struct cm_store_entry * get_entry_by_index(struct cm_context *cm, int i) { return cm->entries[i]; } static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, const char **argv) { struct cm_casave_state *state; struct cm_store_ca *ca, *save_ca = NULL; struct cm_store_entry *entry, *save_entry = NULL; struct cm_context ctx; int c, fd, ret = -1, verbose = 0; unsigned int j; void *parent; const char *name; poptContext pctx; struct poptOption popts[] = { {"cafile", 'c', POPT_ARG_STRING, NULL, 'c', NULL, "FILENAME"}, {"entry", 'e', POPT_ARG_STRING, NULL, 'e', NULL, "FILENAME"}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("casave", argc, argv, popts, 0); if (pctx == NULL) { return -1; } memset(&ctx, 0, sizeof(ctx)); parent = talloc_new(NULL); poptSetOtherOptionHelp(pctx, "[options...] caname entryname"); while ((c = poptGetNextOpt(pctx)) > 0) { cm_log_set_level(verbose); switch (c) { case 'c': ca = cm_store_files_ca_read(parent, poptGetOptArg(pctx)); if (ca == NULL) { printf("Error reading CA \"%s\".\n", poptGetOptArg(pctx)); return -1; } ctx.cas = talloc_realloc(parent, ctx.cas, struct cm_store_ca *, ctx.n_cas + 2); if (ctx.cas == NULL) { printf("Out of memory.\n"); return -1; } ctx.cas[ctx.n_cas++] = ca; ctx.cas[ctx.n_cas] = NULL; break; case 'e': entry = cm_store_files_entry_read(parent, poptGetOptArg(pctx)); if (entry == NULL) { printf("Error reading entry \"%s\".\n", poptGetOptArg(pctx)); return -1; } ctx.entries = talloc_realloc(parent, ctx.entries, struct cm_store_entry *, ctx.n_entries + 2); if (ctx.entries == NULL) { printf("Out of memory.\n"); return -1; } ctx.entries[ctx.n_entries++] = entry; ctx.entries[ctx.n_entries] = NULL; break; case 'v': verbose++; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); cm_set_fips_from_env(); if (poptPeekArg(pctx) == NULL) { printf("No CA or entry names specified.\n"); return -1; } while ((name = poptGetArg(pctx)) != NULL) { for (j = 0; j < ctx.n_cas; j++) { if (strcmp(name, ctx.cas[j]->cm_nickname) == 0) { save_ca = ctx.cas[j]; } } for (j = 0; j < ctx.n_entries; j++) { if (strcmp(name, ctx.entries[j]->cm_nickname) == 0) { save_entry = ctx.entries[j]; } } } if ((save_ca == NULL) && (save_entry == NULL)) { printf("No known CA or entry names.\n"); return -1; } state = cm_casave_start(save_entry, save_ca, &ctx, &get_ca_by_index, &get_n_cas, &get_entry_by_index, &get_n_entries); if (state != NULL) { for (;;) { if (cm_casave_ready(state) == 0) { break; } fd = cm_casave_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } } if (cm_casave_saved(state) == 0) { ret = 0; } else if (cm_casave_permissions_error(state) == 0) { printf("Permissions error.\n"); ret = 1; } else if (cm_casave_conflict_nickname(state) == 0) { printf("Unresolvable nickname conflict.\n"); ret = 2; } else if (cm_casave_conflict_subject(state) == 0) { printf("Unresolvable subject name conflict.\n"); ret = 3; } else { printf("Unknown error.\n"); ret = -1; } cm_casave_done(state); } else { printf("Failed to start.\n"); ret = -1; } for (j = 0; j < ctx.n_cas; j++) { cm_store_ca_save(ctx.cas[j]); } for (j = 0; j < ctx.n_entries; j++) { cm_store_entry_save(ctx.entries[j]); } talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/canon.c0000664000175000017500000000215712645513264014465 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include "../../src/store.h" int main(int argc, char **argv) { int i; char *result; for (i = 1; i < argc; i++) { result = cm_store_canonicalize_path(NULL, argv[i]); if (result == NULL) { printf("\"%s\": (null)\n", argv[i]); return 1; } else { printf("\"%s\": \"%s\"\n", argv[i], result); } } return 0; } certmonger-0.78.6/tests/tools/cadata.c0000664000175000017500000001056312645513264014604 00000000000000/* * Copyright (C) 2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include #include "../../src/cadata.h" #include "../../src/log.h" #include "../../src/store-int.h" #include "../../src/store.h" #include "../../src/submit-e.h" #include "tools.h" static void wait_to_read(int fd) { fd_set rfds; struct timeval tv; FD_ZERO(&rfds); FD_SET(fd, &rfds); tv.tv_sec = 1; tv.tv_usec = 0; select(fd + 1, &rfds, NULL, NULL, &tv); } int main(int argc, const char **argv) { struct cm_cadata_state *state; struct cm_store_ca *ca; int c, fd, ret = CM_SUBMIT_STATUS_REJECTED; int iflag = 0, cflag = 0, pflag = 0, dflag = 0, eflag = 0, rflag = 0; int Cflag = 0, sflag = 0, verbose = 0; const char *cafile; unsigned i; void *parent; struct { struct cm_cadata_state * (*start)(struct cm_store_ca *); int *flag; } flags[] = { {cm_cadata_start_identify, &iflag}, {cm_cadata_start_certs, &cflag}, {cm_cadata_start_profiles, &pflag}, {cm_cadata_start_default_profile, &dflag}, {cm_cadata_start_enroll_reqs, &eflag}, {cm_cadata_start_renew_reqs, &rflag}, {cm_cadata_start_capabilities, &Cflag}, {cm_cadata_start_encryption_certs, &sflag}, }; poptContext pctx; struct poptOption popts[] = { {"identity", 'i', POPT_ARG_NONE, &iflag, 0, NULL, NULL}, {"root-certs", 'c', POPT_ARG_NONE, &cflag, 0, NULL, NULL}, {"profiles", 'p', POPT_ARG_NONE, &pflag, 0, NULL, NULL}, {"default-profile", 'd', POPT_ARG_NONE, &dflag, 0, NULL, NULL}, {"enroll-reqs", 'e', POPT_ARG_NONE, &eflag, 0, NULL, NULL}, {"renew-reqs", 'r', POPT_ARG_NONE, &rflag, 0, NULL, NULL}, {"capabilities", 'C', POPT_ARG_NONE, &Cflag, 0, NULL, NULL}, {"encryption-certs", 's', POPT_ARG_NONE, &sflag, 0, NULL, NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("cadata", argc, argv, popts, 0); if (pctx == NULL) { return 1; } poptSetOtherOptionHelp(pctx, "[options...] cafile"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'v': verbose++; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); cm_set_fips_from_env(); parent = talloc_new(NULL); cafile = poptGetArg(pctx); if (cafile != NULL) { ca = cm_store_files_ca_read(parent, cafile); if (ca == NULL) { printf("Error reading %s: %s.\n", cafile, strerror(errno)); return -1; } } else { printf("Specify a CA file as an argument.\n"); return -1; } for (i = 0; i < sizeof(flags) / sizeof(flags[0]); i++) { if (*(flags[i].flag) == 0) { continue; } state = (*(flags[i].start))(ca); if (state != NULL) { for (;;) { fd = cm_cadata_get_fd(state); if (fd != -1) { wait_to_read(fd); } else { sleep(1); } if (cm_cadata_ready(state) == 0) { break; } } if (cm_cadata_unsupported(state) == 0) { printf("Helper doesn't implement.\n"); ret = CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } else if (cm_cadata_unreachable(state) == 0) { printf("CA was unreachable.\n"); ret = CM_SUBMIT_STATUS_UNREACHABLE; } else if (cm_cadata_unconfigured(state) == 0) { printf("CA helper was un- or " "under-configured.\n"); ret = CM_SUBMIT_STATUS_UNCONFIGURED; } else if (cm_cadata_modified(state) == 0) { ret = CM_SUBMIT_STATUS_ISSUED; } else { printf("CA helper provided data.\n"); ret = -1; } cm_cadata_done(state); } else { printf("Failed to start.\n"); ret = -1; } } cm_store_ca_save(ca); talloc_free(parent); return ret; } certmonger-0.78.6/tests/tools/base64.c0000664000175000017500000000504112645513264014446 00000000000000/* * Copyright (C) 2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include #include "../../src/store.h" int main(int argc, const char **argv) { unsigned char buf[LINE_MAX], *p = NULL, *q; unsigned int length, i, j; int decode = 0, encode = 0, hex = 0; const char *s; int c, l; poptContext pctx; struct poptOption popts[] = { {"decode", 'd', POPT_ARG_NONE, &decode, 'd', NULL, NULL}, {"encode", 'e', POPT_ARG_NONE, &encode, 'e', NULL, NULL}, {"hex", 'h', POPT_ARG_NONE, &hex, 'h', "encode from hex / decode to hex", NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("base64", argc, argv, popts, 0); if (pctx == NULL) { return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { continue; } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } if ((decode && encode) || (!decode && !encode)) { poptPrintUsage(pctx, stdout, 0); return 1; } length = 0; while ((l = read(STDIN_FILENO, buf, sizeof(buf))) > 0) { q = realloc(p, length + l + 1); if (q == NULL) { perror("realloc"); free(p); return 1; } memcpy(q + length, buf, l); q[length + l] = '\0'; p = q; length += l; } if (decode) { j = 3 * howmany(length, 4) + 1; q = malloc(j); i = cm_store_base64_to_bin((const char *) p, -1, q, j); if (hex) { s = cm_store_hex_from_bin(NULL, q, i); printf("%s\n", s); } else { length = i; i = 0; while (i < length) { j = write(STDOUT_FILENO, q + i, length - i); if (j <= 0) { break; } i += j; } } } else { if (encode) { if (hex) { s = cm_store_base64_from_hex(NULL, (const char *) p); printf("%s\n", s); } else { s = cm_store_base64_from_bin(NULL, p, length); printf("%s\n", s); } } } free(p); return 0; } certmonger-0.78.6/tests/tools/base2pem.c0000664000175000017500000000371412645513264015065 00000000000000/* * Copyright (C) 2011,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/submit-u.h" int main(int argc, const char **argv) { char buf[LINE_MAX], *p = NULL, *q, *type = "CERTIFICATE"; int dos = 1, c; poptContext pctx; struct poptOption popts[] = { {"dos", 'd', POPT_ARG_NONE, NULL, 'd', "output using DOS-style end-of-lines", NULL}, {"unix", 'u', POPT_ARG_NONE, NULL, 'u', "output using Unix-style end-of-lines", NULL}, {"type", 't', POPT_ARG_STRING | POPT_ARGFLAG_SHOW_DEFAULT, &type, 0, "data type to claim", NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("base2pem", argc, argv, popts, 0); if (pctx == NULL) { return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'd': dos = 1; break; case 'u': dos = 0; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } while (fgets(buf, sizeof(buf), stdin) != NULL) { if (p == NULL) { p = strdup(buf); } else { q = malloc(strlen(p) + strlen(buf) + 1); if (q != NULL) { stpcpy(stpcpy(q, p), buf); free(p); p = q; } } } printf("%s", cm_submit_u_pem_from_base64(type, dos, p)); return 0; } certmonger-0.78.6/tests/tools/addcinfo.c0000664000175000017500000000515112645513264015133 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include #include #include #include #include #include #include "../../src/log.h" struct content_info { SECItem content_type, content; }; static const SEC_ASN1Template content_info_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(struct content_info), }, { .kind = SEC_ASN1_OBJECT_ID, .offset = offsetof(struct content_info, content_type), .sub = &SEC_ObjectIDTemplate, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_CONTEXT_SPECIFIC | 0 | SEC_ASN1_CONSTRUCTED | SEC_ASN1_EXPLICIT, .offset = offsetof(struct content_info, content), .sub = &SEC_AnyTemplate, .size = sizeof(SECItem), }, { 0, 0, NULL, 0 }, }; int main(int argc, char **argv) { unsigned char *buffer = NULL, buf[BUFSIZ]; int i, n = 0; unsigned int j; SECItem encoded; SECOidData *enveloped; struct content_info ci; cm_log_set_method(cm_log_stderr); cm_log_set_level(3); while ((i = read(STDIN_FILENO, buf, sizeof(buf))) > 0) { buffer = realloc(buffer, n + i); if (buffer == NULL) { cm_log(0, "Out of memory.\n"); return 1; } memcpy(buffer + n, buf, i); n += i; } memset(&ci, 0, sizeof(ci)); enveloped = SECOID_FindOIDByTag(SEC_OID_PKCS7_ENVELOPED_DATA); if (enveloped == NULL) { cm_log(0, "Internal error: %s.\n", PR_ErrorToName(PORT_GetError())); return 1; } ci.content_type = enveloped->oid; ci.content.data = buffer; ci.content.len = n; memset(&encoded, 0, sizeof(encoded)); if (SEC_ASN1EncodeItem(NULL, &encoded, &ci, content_info_template) != &encoded) { cm_log(0, "Encoding error: %s.\n", PR_ErrorToName(PORT_GetError())); return 1; } n = encoded.len; j = 0; while ((i = write(STDOUT_FILENO, encoded.data + j, encoded.len - j)) > 0) { j += i; if (j >= encoded.len) { break; } } return 0; } certmonger-0.78.6/tests/tools/tools.c0000664000175000017500000000206712645513264014527 00000000000000/* * Copyright (C) 2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "../../src/config.h" #include #include #include "../../src/util-n.h" #include "tools.h" void cm_set_fips_from_env(void) { enum force_fips_mode force; if ((getenv("CERTMONGER_FORCE_FIPS") != NULL) && (atoi(getenv("CERTMONGER_FORCE_FIPS")) != 0)) { force = do_force_fips; } else { force = do_not_force_fips; } util_n_set_fips(force); } certmonger-0.78.6/tests/tools/tools.h0000664000175000017500000000140012645513264014522 00000000000000/* * Copyright (C) 2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef tools_h #define tools_h void cm_set_fips_from_env(void); #endif certmonger-0.78.6/tests/tools/tm.c0000664000175000017500000000173212645513264014005 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include "../../src/tm.h" time_t cm_time(time_t *dest) { long t; if (getenv("CM_FORCE_TIME") != NULL) { t = atol(getenv("CM_FORCE_TIME")); if (dest != NULL) { *dest = t; } return t; } else { return time(dest); } } certmonger-0.78.6/tests/tools/Makefile.in0000664000175000017500000016132012645513271015264 00000000000000# Makefile.in generated by automake 1.15 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2014 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @PIE_TRUE@am__append_1 = -fPIC @PIE_TRUE@am__append_2 = -fPIC -pie noinst_PROGRAMS = keyiread$(EXEEXT) keygen$(EXEEXT) csrgen$(EXEEXT) \ submit$(EXEEXT) certread$(EXEEXT) certsave$(EXEEXT) \ oid2name$(EXEEXT) name2oid$(EXEEXT) iterate$(EXEEXT) \ prefs$(EXEEXT) dates$(EXEEXT) listnicks$(EXEEXT) \ pem2base$(EXEEXT) base2pem$(EXEEXT) dparse$(EXEEXT) \ payload$(EXEEXT) checksig$(EXEEXT) base64$(EXEEXT) \ cadata$(EXEEXT) citerate$(EXEEXT) casave$(EXEEXT) \ hooks$(EXEEXT) libexecdir$(EXEEXT) canon$(EXEEXT) srv$(EXEEXT) \ addcinfo$(EXEEXT) ls$(EXEEXT) json$(EXEEXT) json-utf8$(EXEEXT) \ printenv$(EXEEXT) $(am__EXEEXT_1) @HAVE_OPENSSL_TRUE@am__append_3 = pk7parse pk7env scepgen pk7verify pk7decrypt subdir = tests/tools ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/intlmacosx.m4 \ $(top_srcdir)/m4/lib-ld.m4 $(top_srcdir)/m4/lib-link.m4 \ $(top_srcdir)/m4/lib-prefix.m4 $(top_srcdir)/m4/nls.m4 \ $(top_srcdir)/m4/po.m4 $(top_srcdir)/m4/progtest.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/src/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = LIBRARIES = $(noinst_LIBRARIES) AR = ar ARFLAGS = cru AM_V_AR = $(am__v_AR_@AM_V@) am__v_AR_ = $(am__v_AR_@AM_DEFAULT_V@) am__v_AR_0 = @echo " AR " $@; am__v_AR_1 = libtools_a_AR = $(AR) $(ARFLAGS) libtools_a_LIBADD = am_libtools_a_OBJECTS = tm.$(OBJEXT) tools.$(OBJEXT) libtools_a_OBJECTS = $(am_libtools_a_OBJECTS) @HAVE_OPENSSL_TRUE@am__EXEEXT_1 = pk7parse$(EXEEXT) pk7env$(EXEEXT) \ @HAVE_OPENSSL_TRUE@ scepgen$(EXEEXT) pk7verify$(EXEEXT) \ @HAVE_OPENSSL_TRUE@ pk7decrypt$(EXEEXT) PROGRAMS = $(noinst_PROGRAMS) addcinfo_SOURCES = addcinfo.c addcinfo_OBJECTS = addcinfo-addcinfo.$(OBJEXT) addcinfo_LDADD = $(LDADD) am__DEPENDENCIES_1 = addcinfo_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) addcinfo_LINK = $(CCLD) $(addcinfo_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ base2pem_SOURCES = base2pem.c base2pem_OBJECTS = base2pem.$(OBJEXT) base2pem_LDADD = $(LDADD) base2pem_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) base64_SOURCES = base64.c base64_OBJECTS = base64.$(OBJEXT) base64_LDADD = $(LDADD) base64_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) cadata_SOURCES = cadata.c cadata_OBJECTS = cadata.$(OBJEXT) cadata_LDADD = $(LDADD) cadata_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) canon_SOURCES = canon.c canon_OBJECTS = canon.$(OBJEXT) canon_LDADD = $(LDADD) canon_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) casave_SOURCES = casave.c casave_OBJECTS = casave.$(OBJEXT) casave_LDADD = $(LDADD) casave_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) certread_SOURCES = certread.c certread_OBJECTS = certread.$(OBJEXT) certread_LDADD = $(LDADD) certread_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) certsave_SOURCES = certsave.c certsave_OBJECTS = certsave.$(OBJEXT) certsave_LDADD = $(LDADD) certsave_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) checksig_SOURCES = checksig.c checksig_OBJECTS = checksig-checksig.$(OBJEXT) checksig_LDADD = $(LDADD) checksig_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) checksig_LINK = $(CCLD) $(checksig_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ am__dirstamp = $(am__leading_dot)dirstamp am_citerate_OBJECTS = citerate.$(OBJEXT) ../../src/store-gen.$(OBJEXT) citerate_OBJECTS = $(am_citerate_OBJECTS) citerate_LDADD = $(LDADD) citerate_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) csrgen_SOURCES = csrgen.c csrgen_OBJECTS = csrgen.$(OBJEXT) csrgen_LDADD = $(LDADD) csrgen_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) dates_SOURCES = dates.c dates_OBJECTS = dates.$(OBJEXT) dates_LDADD = $(LDADD) dates_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) am_dparse_OBJECTS = dparse-dparse.$(OBJEXT) \ ../../src/dparse-submit-d.$(OBJEXT) dparse_OBJECTS = $(am_dparse_OBJECTS) am__DEPENDENCIES_2 = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) dparse_DEPENDENCIES = $(am__DEPENDENCIES_2) $(am__DEPENDENCIES_1) dparse_LINK = $(CCLD) $(dparse_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ hooks_SOURCES = hooks.c hooks_OBJECTS = hooks.$(OBJEXT) hooks_LDADD = $(LDADD) hooks_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) iterate_SOURCES = iterate.c iterate_OBJECTS = iterate.$(OBJEXT) iterate_LDADD = $(LDADD) iterate_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) json_SOURCES = json.c json_OBJECTS = json.$(OBJEXT) json_LDADD = $(LDADD) json_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) json_utf8_SOURCES = json-utf8.c json_utf8_OBJECTS = json-utf8.$(OBJEXT) json_utf8_LDADD = $(LDADD) json_utf8_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) keygen_SOURCES = keygen.c keygen_OBJECTS = keygen.$(OBJEXT) keygen_LDADD = $(LDADD) keygen_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) keyiread_SOURCES = keyiread.c keyiread_OBJECTS = keyiread.$(OBJEXT) keyiread_LDADD = $(LDADD) keyiread_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) libexecdir_SOURCES = libexecdir.c libexecdir_OBJECTS = libexecdir.$(OBJEXT) libexecdir_LDADD = $(LDADD) libexecdir_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) listnicks_SOURCES = listnicks.c listnicks_OBJECTS = listnicks-listnicks.$(OBJEXT) listnicks_LDADD = $(LDADD) listnicks_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) listnicks_LINK = $(CCLD) $(listnicks_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ ls_SOURCES = ls.c ls_OBJECTS = ls.$(OBJEXT) ls_LDADD = $(LDADD) ls_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) name2oid_SOURCES = name2oid.c name2oid_OBJECTS = name2oid.$(OBJEXT) name2oid_LDADD = $(LDADD) name2oid_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) oid2name_SOURCES = oid2name.c oid2name_OBJECTS = oid2name.$(OBJEXT) oid2name_LDADD = $(LDADD) oid2name_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) payload_SOURCES = payload.c payload_OBJECTS = payload-payload.$(OBJEXT) payload_LDADD = $(LDADD) payload_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) payload_LINK = $(CCLD) $(payload_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ pem2base_SOURCES = pem2base.c pem2base_OBJECTS = pem2base.$(OBJEXT) pem2base_LDADD = $(LDADD) pem2base_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) pk7decrypt_SOURCES = pk7decrypt.c pk7decrypt_OBJECTS = pk7decrypt.$(OBJEXT) pk7decrypt_LDADD = $(LDADD) pk7decrypt_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) pk7env_SOURCES = pk7env.c pk7env_OBJECTS = pk7env.$(OBJEXT) pk7env_LDADD = $(LDADD) pk7env_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) pk7parse_SOURCES = pk7parse.c pk7parse_OBJECTS = pk7parse.$(OBJEXT) pk7parse_LDADD = $(LDADD) pk7parse_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) pk7verify_SOURCES = pk7verify.c pk7verify_OBJECTS = pk7verify.$(OBJEXT) pk7verify_LDADD = $(LDADD) pk7verify_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) prefs_SOURCES = prefs.c prefs_OBJECTS = prefs.$(OBJEXT) prefs_LDADD = $(LDADD) prefs_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) printenv_SOURCES = printenv.c printenv_OBJECTS = printenv.$(OBJEXT) printenv_LDADD = $(LDADD) printenv_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) scepgen_SOURCES = scepgen.c scepgen_OBJECTS = scepgen.$(OBJEXT) scepgen_LDADD = $(LDADD) scepgen_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) am_srv_OBJECTS = srv.$(OBJEXT) ../../src/srvloc.$(OBJEXT) srv_OBJECTS = $(am_srv_OBJECTS) srv_DEPENDENCIES = $(am__DEPENDENCIES_2) submit_SOURCES = submit.c submit_OBJECTS = submit.$(OBJEXT) submit_LDADD = $(LDADD) submit_DEPENDENCIES = libtools.a ../../src/libcm.a \ $(srcdir)/../../src/env-system.c libtools.a \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) SCRIPTS = $(noinst_SCRIPTS) AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = DEFAULT_INCLUDES = -I.@am__isrc@ -I$(top_builddir)/src depcomp = $(SHELL) $(top_srcdir)/depcomp am__depfiles_maybe = depfiles am__mv = mv -f AM_V_lt = $(am__v_lt_@AM_V@) am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) am__v_lt_0 = --silent am__v_lt_1 = COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) AM_V_CC = $(am__v_CC_@AM_V@) am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) am__v_CC_0 = @echo " CC " $@; am__v_CC_1 = CCLD = $(CC) LINK = $(CCLD) $(AM_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_CCLD = $(am__v_CCLD_@AM_V@) am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) am__v_CCLD_0 = @echo " CCLD " $@; am__v_CCLD_1 = SOURCES = $(libtools_a_SOURCES) addcinfo.c base2pem.c base64.c \ cadata.c canon.c casave.c certread.c certsave.c checksig.c \ $(citerate_SOURCES) csrgen.c dates.c $(dparse_SOURCES) hooks.c \ iterate.c json.c json-utf8.c keygen.c keyiread.c libexecdir.c \ listnicks.c ls.c name2oid.c oid2name.c payload.c pem2base.c \ pk7decrypt.c pk7env.c pk7parse.c pk7verify.c prefs.c \ printenv.c scepgen.c $(srv_SOURCES) submit.c DIST_SOURCES = $(libtools_a_SOURCES) addcinfo.c base2pem.c base64.c \ cadata.c canon.c casave.c certread.c certsave.c checksig.c \ $(citerate_SOURCES) csrgen.c dates.c $(dparse_SOURCES) hooks.c \ iterate.c json.c json-utf8.c keygen.c keyiread.c libexecdir.c \ listnicks.c ls.c name2oid.c oid2name.c payload.c pem2base.c \ pk7decrypt.c pk7env.c pk7parse.c pk7verify.c prefs.c \ printenv.c scepgen.c $(srv_SOURCES) submit.c am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags am__DIST_COMMON = $(srcdir)/Makefile.in $(top_srcdir)/depcomp DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CERTMONGER_CFLAGS = @CERTMONGER_CFLAGS@ CERTMONGER_LIBS = @CERTMONGER_LIBS@ CERTMONGER_PVT_ADDRESS_ENV = @CERTMONGER_PVT_ADDRESS_ENV@ CFLAGS = @CFLAGS@ $(am__append_1) CM_CERTMASTER_CA_NAME = @CM_CERTMASTER_CA_NAME@ CM_DBUS_NAME = @CM_DBUS_NAME@ CM_DEFAULT_CERT_LIFETIME = @CM_DEFAULT_CERT_LIFETIME@ CM_DEFAULT_IDLE_TIMEOUT = @CM_DEFAULT_IDLE_TIMEOUT@ CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ CM_DEFAULT_POPULATE_UNIQUE_ID = @CM_DEFAULT_POPULATE_UNIQUE_ID@ CM_DEFAULT_PUBKEY_SIZE = @CM_DEFAULT_PUBKEY_SIZE@ CM_DEFAULT_TTL_LIST = @CM_DEFAULT_TTL_LIST@ CM_HOMEDIR = @CM_HOMEDIR@ CM_IPA_CA_NAME = @CM_IPA_CA_NAME@ CM_LOCAL_CA_NAME = @CM_LOCAL_CA_NAME@ CM_MINIMUM_DSA_KEY_SIZE = @CM_MINIMUM_DSA_KEY_SIZE@ CM_MINIMUM_EC_KEY_SIZE = @CM_MINIMUM_EC_KEY_SIZE@ CM_MINIMUM_RSA_KEY_SIZE = @CM_MINIMUM_RSA_KEY_SIZE@ CM_NOTIFICATION_ENV = @CM_NOTIFICATION_ENV@ CM_SELF_SIGN_CA_NAME = @CM_SELF_SIGN_CA_NAME@ CM_STORE_CAS_DIRECTORY = @CM_STORE_CAS_DIRECTORY@ CM_STORE_CAS_DIRECTORY_ENV = @CM_STORE_CAS_DIRECTORY_ENV@ CM_STORE_CONFIG_DIRECTORY_ENV = @CM_STORE_CONFIG_DIRECTORY_ENV@ CM_STORE_LOCAL_CA_DIRECTORY = @CM_STORE_LOCAL_CA_DIRECTORY@ CM_STORE_LOCAL_CA_DIRECTORY_ENV = @CM_STORE_LOCAL_CA_DIRECTORY_ENV@ CM_STORE_REQUESTS_DIRECTORY = @CM_STORE_REQUESTS_DIRECTORY@ CM_STORE_REQUESTS_DIRECTORY_ENV = @CM_STORE_REQUESTS_DIRECTORY_ENV@ CM_STORE_SYSTEM_LOCK_FILE = @CM_STORE_SYSTEM_LOCK_FILE@ CM_STORE_SYSTEM_LOCK_FILE_ENV = @CM_STORE_SYSTEM_LOCK_FILE_ENV@ CM_TMPDIR = @CM_TMPDIR@ CM_TMPDIR_ENV = @CM_TMPDIR_ENV@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CURL_CFLAGS = @CURL_CFLAGS@ CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ GETCERT_CFLAGS = @GETCERT_CFLAGS@ GETCERT_LIBS = @GETCERT_LIBS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GMP_CFLAGS = @GMP_CFLAGS@ GMP_LIBS = @GMP_LIBS@ GMSGFMT = @GMSGFMT@ GMSGFMT_015 = @GMSGFMT_015@ GREP = @GREP@ IDN_CFLAGS = @IDN_CFLAGS@ IDN_LIBS = @IDN_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTLLIBS = @INTLLIBS@ INTL_MACOSX_LIBS = @INTL_MACOSX_LIBS@ KRB5_CFLAGS = @KRB5_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ KRB5_LIBS = @KRB5_LIBS@ LDAP_CFLAGS = @LDAP_CFLAGS@ LDAP_LIBS = @LDAP_LIBS@ LDFLAGS = @LDFLAGS@ $(am__append_2) LIBICONV = @LIBICONV@ LIBINTL = @LIBINTL@ LIBOBJS = @LIBOBJS@ LIBS = @LIBS@ LTLIBICONV = @LTLIBICONV@ LTLIBINTL = @LTLIBINTL@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAN_DSA = @MAN_DSA@ MAN_EC = @MAN_EC@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ NO_MAN_DSA = @NO_MAN_DSA@ NO_MAN_EC = @NO_MAN_EC@ NSS_CFLAGS = @NSS_CFLAGS@ NSS_LIBS = @NSS_LIBS@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OPENSSL_SSL_CFLAGS = @OPENSSL_SSL_CFLAGS@ OPENSSL_SSL_LIBS = @OPENSSL_SSL_LIBS@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ POPT_CFLAGS = @POPT_CFLAGS@ POPT_LIBS = @POPT_LIBS@ POSUB = @POSUB@ RANLIB = @RANLIB@ RESOLV_LIBS = @RESOLV_LIBS@ SESSIONBUSSERVICESDIR = @SESSIONBUSSERVICESDIR@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ STRIP = @STRIP@ SYSTEMBUSSERVICESDIR = @SYSTEMBUSSERVICESDIR@ SYSTEMD = @SYSTEMD@ SYSTEMDSYSTEMUNITDIR = @SYSTEMDSYSTEMUNITDIR@ SYSVINIT = @SYSVINIT@ TALLOC_CFLAGS = @TALLOC_CFLAGS@ TALLOC_LIBS = @TALLOC_LIBS@ TEVENT_CFLAGS = @TEVENT_CFLAGS@ TEVENT_LIBS = @TEVENT_LIBS@ TMPFILES = @TMPFILES@ USE_NLS = @USE_NLS@ UUID_CFLAGS = @UUID_CFLAGS@ UUID_LIBS = @UUID_LIBS@ VERSION = @VERSION@ XGETTEXT = @XGETTEXT@ XGETTEXT_015 = @XGETTEXT_015@ XGETTEXT_EXTRA_OPTIONS = @XGETTEXT_EXTRA_OPTIONS@ XMLRPC_CFLAGS = @XMLRPC_CFLAGS@ XMLRPC_C_CONFIG = @XMLRPC_C_CONFIG@ XMLRPC_LIBS = @XMLRPC_LIBS@ XML_CFLAGS = @XML_CFLAGS@ XML_LIBS = @XML_LIBS@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_CC = @ac_ct_CC@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ mybindir = @mybindir@ mylibexecdir = @mylibexecdir@ mysbindir = @mysbindir@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ AM_CFLAGS = $(TALLOC_CFLAGS) $(TEVENT_CFLAGS) $(DBUS_CFLAGS) $(KRB5_CFLAGS) \ $(XMLRPC_CFLAGS) $(IDN_CFLAGS) $(UUID_CFLAGS) $(LDAP_CFLAGS) \ $(POPT_CFLAGS) -I$(builddir)/../../src LDADD = libtools.a ../../src/libcm.a $(srcdir)/../../src/env-system.c \ libtools.a $(OPENSSL_LIBS) $(CERTMONGER_LIBS) $(KRB5_LIBS) $(IDN_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(RESOLV_LIBS) $(POPT_LIBS) $(LTLIBICONV) noinst_SCRIPTS = cachain.sh noinst_LIBRARIES = libtools.a libtools_a_SOURCES = ../../src/tm.h tm.c tools.h tools.c listnicks_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) payload_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) checksig_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) addcinfo_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) dparse_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) dparse_SOURCES = dparse.c ../../src/submit-d.c dparse_LDADD = $(LDADD) $(XML_LIBS) citerate_SOURCES = citerate.c ../../src/store-gen.c srv_SOURCES = srv.c ../../src/srvloc.c srv_LDADD = $(LDADD) all: all-am .SUFFIXES: .SUFFIXES: .c .o .obj $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign tests/tools/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign tests/tools/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): clean-noinstLIBRARIES: -test -z "$(noinst_LIBRARIES)" || rm -f $(noinst_LIBRARIES) libtools.a: $(libtools_a_OBJECTS) $(libtools_a_DEPENDENCIES) $(EXTRA_libtools_a_DEPENDENCIES) $(AM_V_at)-rm -f libtools.a $(AM_V_AR)$(libtools_a_AR) libtools.a $(libtools_a_OBJECTS) $(libtools_a_LIBADD) $(AM_V_at)$(RANLIB) libtools.a clean-noinstPROGRAMS: -test -z "$(noinst_PROGRAMS)" || rm -f $(noinst_PROGRAMS) addcinfo$(EXEEXT): $(addcinfo_OBJECTS) $(addcinfo_DEPENDENCIES) $(EXTRA_addcinfo_DEPENDENCIES) @rm -f addcinfo$(EXEEXT) $(AM_V_CCLD)$(addcinfo_LINK) $(addcinfo_OBJECTS) $(addcinfo_LDADD) $(LIBS) base2pem$(EXEEXT): $(base2pem_OBJECTS) $(base2pem_DEPENDENCIES) $(EXTRA_base2pem_DEPENDENCIES) @rm -f base2pem$(EXEEXT) $(AM_V_CCLD)$(LINK) $(base2pem_OBJECTS) $(base2pem_LDADD) $(LIBS) base64$(EXEEXT): $(base64_OBJECTS) $(base64_DEPENDENCIES) $(EXTRA_base64_DEPENDENCIES) @rm -f base64$(EXEEXT) $(AM_V_CCLD)$(LINK) $(base64_OBJECTS) $(base64_LDADD) $(LIBS) cadata$(EXEEXT): $(cadata_OBJECTS) $(cadata_DEPENDENCIES) $(EXTRA_cadata_DEPENDENCIES) @rm -f cadata$(EXEEXT) $(AM_V_CCLD)$(LINK) $(cadata_OBJECTS) $(cadata_LDADD) $(LIBS) canon$(EXEEXT): $(canon_OBJECTS) $(canon_DEPENDENCIES) $(EXTRA_canon_DEPENDENCIES) @rm -f canon$(EXEEXT) $(AM_V_CCLD)$(LINK) $(canon_OBJECTS) $(canon_LDADD) $(LIBS) casave$(EXEEXT): $(casave_OBJECTS) $(casave_DEPENDENCIES) $(EXTRA_casave_DEPENDENCIES) @rm -f casave$(EXEEXT) $(AM_V_CCLD)$(LINK) $(casave_OBJECTS) $(casave_LDADD) $(LIBS) certread$(EXEEXT): $(certread_OBJECTS) $(certread_DEPENDENCIES) $(EXTRA_certread_DEPENDENCIES) @rm -f certread$(EXEEXT) $(AM_V_CCLD)$(LINK) $(certread_OBJECTS) $(certread_LDADD) $(LIBS) certsave$(EXEEXT): $(certsave_OBJECTS) $(certsave_DEPENDENCIES) $(EXTRA_certsave_DEPENDENCIES) @rm -f certsave$(EXEEXT) $(AM_V_CCLD)$(LINK) $(certsave_OBJECTS) $(certsave_LDADD) $(LIBS) checksig$(EXEEXT): $(checksig_OBJECTS) $(checksig_DEPENDENCIES) $(EXTRA_checksig_DEPENDENCIES) @rm -f checksig$(EXEEXT) $(AM_V_CCLD)$(checksig_LINK) $(checksig_OBJECTS) $(checksig_LDADD) $(LIBS) ../../src/$(am__dirstamp): @$(MKDIR_P) ../../src @: > ../../src/$(am__dirstamp) ../../src/$(DEPDIR)/$(am__dirstamp): @$(MKDIR_P) ../../src/$(DEPDIR) @: > ../../src/$(DEPDIR)/$(am__dirstamp) ../../src/store-gen.$(OBJEXT): ../../src/$(am__dirstamp) \ ../../src/$(DEPDIR)/$(am__dirstamp) citerate$(EXEEXT): $(citerate_OBJECTS) $(citerate_DEPENDENCIES) $(EXTRA_citerate_DEPENDENCIES) @rm -f citerate$(EXEEXT) $(AM_V_CCLD)$(LINK) $(citerate_OBJECTS) $(citerate_LDADD) $(LIBS) csrgen$(EXEEXT): $(csrgen_OBJECTS) $(csrgen_DEPENDENCIES) $(EXTRA_csrgen_DEPENDENCIES) @rm -f csrgen$(EXEEXT) $(AM_V_CCLD)$(LINK) $(csrgen_OBJECTS) $(csrgen_LDADD) $(LIBS) dates$(EXEEXT): $(dates_OBJECTS) $(dates_DEPENDENCIES) $(EXTRA_dates_DEPENDENCIES) @rm -f dates$(EXEEXT) $(AM_V_CCLD)$(LINK) $(dates_OBJECTS) $(dates_LDADD) $(LIBS) ../../src/dparse-submit-d.$(OBJEXT): ../../src/$(am__dirstamp) \ ../../src/$(DEPDIR)/$(am__dirstamp) dparse$(EXEEXT): $(dparse_OBJECTS) $(dparse_DEPENDENCIES) $(EXTRA_dparse_DEPENDENCIES) @rm -f dparse$(EXEEXT) $(AM_V_CCLD)$(dparse_LINK) $(dparse_OBJECTS) $(dparse_LDADD) $(LIBS) hooks$(EXEEXT): $(hooks_OBJECTS) $(hooks_DEPENDENCIES) $(EXTRA_hooks_DEPENDENCIES) @rm -f hooks$(EXEEXT) $(AM_V_CCLD)$(LINK) $(hooks_OBJECTS) $(hooks_LDADD) $(LIBS) iterate$(EXEEXT): $(iterate_OBJECTS) $(iterate_DEPENDENCIES) $(EXTRA_iterate_DEPENDENCIES) @rm -f iterate$(EXEEXT) $(AM_V_CCLD)$(LINK) $(iterate_OBJECTS) $(iterate_LDADD) $(LIBS) json$(EXEEXT): $(json_OBJECTS) $(json_DEPENDENCIES) $(EXTRA_json_DEPENDENCIES) @rm -f json$(EXEEXT) $(AM_V_CCLD)$(LINK) $(json_OBJECTS) $(json_LDADD) $(LIBS) json-utf8$(EXEEXT): $(json_utf8_OBJECTS) $(json_utf8_DEPENDENCIES) $(EXTRA_json_utf8_DEPENDENCIES) @rm -f json-utf8$(EXEEXT) $(AM_V_CCLD)$(LINK) $(json_utf8_OBJECTS) $(json_utf8_LDADD) $(LIBS) keygen$(EXEEXT): $(keygen_OBJECTS) $(keygen_DEPENDENCIES) $(EXTRA_keygen_DEPENDENCIES) @rm -f keygen$(EXEEXT) $(AM_V_CCLD)$(LINK) $(keygen_OBJECTS) $(keygen_LDADD) $(LIBS) keyiread$(EXEEXT): $(keyiread_OBJECTS) $(keyiread_DEPENDENCIES) $(EXTRA_keyiread_DEPENDENCIES) @rm -f keyiread$(EXEEXT) $(AM_V_CCLD)$(LINK) $(keyiread_OBJECTS) $(keyiread_LDADD) $(LIBS) libexecdir$(EXEEXT): $(libexecdir_OBJECTS) $(libexecdir_DEPENDENCIES) $(EXTRA_libexecdir_DEPENDENCIES) @rm -f libexecdir$(EXEEXT) $(AM_V_CCLD)$(LINK) $(libexecdir_OBJECTS) $(libexecdir_LDADD) $(LIBS) listnicks$(EXEEXT): $(listnicks_OBJECTS) $(listnicks_DEPENDENCIES) $(EXTRA_listnicks_DEPENDENCIES) @rm -f listnicks$(EXEEXT) $(AM_V_CCLD)$(listnicks_LINK) $(listnicks_OBJECTS) $(listnicks_LDADD) $(LIBS) ls$(EXEEXT): $(ls_OBJECTS) $(ls_DEPENDENCIES) $(EXTRA_ls_DEPENDENCIES) @rm -f ls$(EXEEXT) $(AM_V_CCLD)$(LINK) $(ls_OBJECTS) $(ls_LDADD) $(LIBS) name2oid$(EXEEXT): $(name2oid_OBJECTS) $(name2oid_DEPENDENCIES) $(EXTRA_name2oid_DEPENDENCIES) @rm -f name2oid$(EXEEXT) $(AM_V_CCLD)$(LINK) $(name2oid_OBJECTS) $(name2oid_LDADD) $(LIBS) oid2name$(EXEEXT): $(oid2name_OBJECTS) $(oid2name_DEPENDENCIES) $(EXTRA_oid2name_DEPENDENCIES) @rm -f oid2name$(EXEEXT) $(AM_V_CCLD)$(LINK) $(oid2name_OBJECTS) $(oid2name_LDADD) $(LIBS) payload$(EXEEXT): $(payload_OBJECTS) $(payload_DEPENDENCIES) $(EXTRA_payload_DEPENDENCIES) @rm -f payload$(EXEEXT) $(AM_V_CCLD)$(payload_LINK) $(payload_OBJECTS) $(payload_LDADD) $(LIBS) pem2base$(EXEEXT): $(pem2base_OBJECTS) $(pem2base_DEPENDENCIES) $(EXTRA_pem2base_DEPENDENCIES) @rm -f pem2base$(EXEEXT) $(AM_V_CCLD)$(LINK) $(pem2base_OBJECTS) $(pem2base_LDADD) $(LIBS) pk7decrypt$(EXEEXT): $(pk7decrypt_OBJECTS) $(pk7decrypt_DEPENDENCIES) $(EXTRA_pk7decrypt_DEPENDENCIES) @rm -f pk7decrypt$(EXEEXT) $(AM_V_CCLD)$(LINK) $(pk7decrypt_OBJECTS) $(pk7decrypt_LDADD) $(LIBS) pk7env$(EXEEXT): $(pk7env_OBJECTS) $(pk7env_DEPENDENCIES) $(EXTRA_pk7env_DEPENDENCIES) @rm -f pk7env$(EXEEXT) $(AM_V_CCLD)$(LINK) $(pk7env_OBJECTS) $(pk7env_LDADD) $(LIBS) pk7parse$(EXEEXT): $(pk7parse_OBJECTS) $(pk7parse_DEPENDENCIES) $(EXTRA_pk7parse_DEPENDENCIES) @rm -f pk7parse$(EXEEXT) $(AM_V_CCLD)$(LINK) $(pk7parse_OBJECTS) $(pk7parse_LDADD) $(LIBS) pk7verify$(EXEEXT): $(pk7verify_OBJECTS) $(pk7verify_DEPENDENCIES) $(EXTRA_pk7verify_DEPENDENCIES) @rm -f pk7verify$(EXEEXT) $(AM_V_CCLD)$(LINK) $(pk7verify_OBJECTS) $(pk7verify_LDADD) $(LIBS) prefs$(EXEEXT): $(prefs_OBJECTS) $(prefs_DEPENDENCIES) $(EXTRA_prefs_DEPENDENCIES) @rm -f prefs$(EXEEXT) $(AM_V_CCLD)$(LINK) $(prefs_OBJECTS) $(prefs_LDADD) $(LIBS) printenv$(EXEEXT): $(printenv_OBJECTS) $(printenv_DEPENDENCIES) $(EXTRA_printenv_DEPENDENCIES) @rm -f printenv$(EXEEXT) $(AM_V_CCLD)$(LINK) $(printenv_OBJECTS) $(printenv_LDADD) $(LIBS) scepgen$(EXEEXT): $(scepgen_OBJECTS) $(scepgen_DEPENDENCIES) $(EXTRA_scepgen_DEPENDENCIES) @rm -f scepgen$(EXEEXT) $(AM_V_CCLD)$(LINK) $(scepgen_OBJECTS) $(scepgen_LDADD) $(LIBS) ../../src/srvloc.$(OBJEXT): ../../src/$(am__dirstamp) \ ../../src/$(DEPDIR)/$(am__dirstamp) srv$(EXEEXT): $(srv_OBJECTS) $(srv_DEPENDENCIES) $(EXTRA_srv_DEPENDENCIES) @rm -f srv$(EXEEXT) $(AM_V_CCLD)$(LINK) $(srv_OBJECTS) $(srv_LDADD) $(LIBS) submit$(EXEEXT): $(submit_OBJECTS) $(submit_DEPENDENCIES) $(EXTRA_submit_DEPENDENCIES) @rm -f submit$(EXEEXT) $(AM_V_CCLD)$(LINK) $(submit_OBJECTS) $(submit_LDADD) $(LIBS) mostlyclean-compile: -rm -f *.$(OBJEXT) -rm -f ../../src/*.$(OBJEXT) distclean-compile: -rm -f *.tab.c @AMDEP_TRUE@@am__include@ @am__quote@../../src/$(DEPDIR)/dparse-submit-d.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../src/$(DEPDIR)/srvloc.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@../../src/$(DEPDIR)/store-gen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/addcinfo-addcinfo.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/base2pem.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/base64.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/cadata.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/canon.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/casave.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/certread.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/certsave.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/checksig-checksig.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/citerate.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/csrgen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dates.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dparse-dparse.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/hooks.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/iterate.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/json-utf8.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/json.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/keygen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/keyiread.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libexecdir.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/listnicks-listnicks.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/ls.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/name2oid.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/oid2name.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/payload-payload.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/pem2base.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/pk7decrypt.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/pk7env.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/pk7parse.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/pk7verify.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/prefs.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/printenv.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scepgen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/srv.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tools.Po@am__quote@ .c.o: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.o$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ $< &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< .c.obj: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.obj$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ `$(CYGPATH_W) '$<'` &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` addcinfo-addcinfo.o: addcinfo.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(addcinfo_CFLAGS) $(CFLAGS) -MT addcinfo-addcinfo.o -MD -MP -MF $(DEPDIR)/addcinfo-addcinfo.Tpo -c -o addcinfo-addcinfo.o `test -f 'addcinfo.c' || echo '$(srcdir)/'`addcinfo.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/addcinfo-addcinfo.Tpo $(DEPDIR)/addcinfo-addcinfo.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='addcinfo.c' object='addcinfo-addcinfo.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(addcinfo_CFLAGS) $(CFLAGS) -c -o addcinfo-addcinfo.o `test -f 'addcinfo.c' || echo '$(srcdir)/'`addcinfo.c addcinfo-addcinfo.obj: addcinfo.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(addcinfo_CFLAGS) $(CFLAGS) -MT addcinfo-addcinfo.obj -MD -MP -MF $(DEPDIR)/addcinfo-addcinfo.Tpo -c -o addcinfo-addcinfo.obj `if test -f 'addcinfo.c'; then $(CYGPATH_W) 'addcinfo.c'; else $(CYGPATH_W) '$(srcdir)/addcinfo.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/addcinfo-addcinfo.Tpo $(DEPDIR)/addcinfo-addcinfo.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='addcinfo.c' object='addcinfo-addcinfo.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(addcinfo_CFLAGS) $(CFLAGS) -c -o addcinfo-addcinfo.obj `if test -f 'addcinfo.c'; then $(CYGPATH_W) 'addcinfo.c'; else $(CYGPATH_W) '$(srcdir)/addcinfo.c'; fi` checksig-checksig.o: checksig.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(checksig_CFLAGS) $(CFLAGS) -MT checksig-checksig.o -MD -MP -MF $(DEPDIR)/checksig-checksig.Tpo -c -o checksig-checksig.o `test -f 'checksig.c' || echo '$(srcdir)/'`checksig.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/checksig-checksig.Tpo $(DEPDIR)/checksig-checksig.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='checksig.c' object='checksig-checksig.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(checksig_CFLAGS) $(CFLAGS) -c -o checksig-checksig.o `test -f 'checksig.c' || echo '$(srcdir)/'`checksig.c checksig-checksig.obj: checksig.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(checksig_CFLAGS) $(CFLAGS) -MT checksig-checksig.obj -MD -MP -MF $(DEPDIR)/checksig-checksig.Tpo -c -o checksig-checksig.obj `if test -f 'checksig.c'; then $(CYGPATH_W) 'checksig.c'; else $(CYGPATH_W) '$(srcdir)/checksig.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/checksig-checksig.Tpo $(DEPDIR)/checksig-checksig.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='checksig.c' object='checksig-checksig.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(checksig_CFLAGS) $(CFLAGS) -c -o checksig-checksig.obj `if test -f 'checksig.c'; then $(CYGPATH_W) 'checksig.c'; else $(CYGPATH_W) '$(srcdir)/checksig.c'; fi` dparse-dparse.o: dparse.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -MT dparse-dparse.o -MD -MP -MF $(DEPDIR)/dparse-dparse.Tpo -c -o dparse-dparse.o `test -f 'dparse.c' || echo '$(srcdir)/'`dparse.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dparse-dparse.Tpo $(DEPDIR)/dparse-dparse.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dparse.c' object='dparse-dparse.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -c -o dparse-dparse.o `test -f 'dparse.c' || echo '$(srcdir)/'`dparse.c dparse-dparse.obj: dparse.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -MT dparse-dparse.obj -MD -MP -MF $(DEPDIR)/dparse-dparse.Tpo -c -o dparse-dparse.obj `if test -f 'dparse.c'; then $(CYGPATH_W) 'dparse.c'; else $(CYGPATH_W) '$(srcdir)/dparse.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dparse-dparse.Tpo $(DEPDIR)/dparse-dparse.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dparse.c' object='dparse-dparse.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -c -o dparse-dparse.obj `if test -f 'dparse.c'; then $(CYGPATH_W) 'dparse.c'; else $(CYGPATH_W) '$(srcdir)/dparse.c'; fi` ../../src/dparse-submit-d.o: ../../src/submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -MT ../../src/dparse-submit-d.o -MD -MP -MF ../../src/$(DEPDIR)/dparse-submit-d.Tpo -c -o ../../src/dparse-submit-d.o `test -f '../../src/submit-d.c' || echo '$(srcdir)/'`../../src/submit-d.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../src/$(DEPDIR)/dparse-submit-d.Tpo ../../src/$(DEPDIR)/dparse-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../src/submit-d.c' object='../../src/dparse-submit-d.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -c -o ../../src/dparse-submit-d.o `test -f '../../src/submit-d.c' || echo '$(srcdir)/'`../../src/submit-d.c ../../src/dparse-submit-d.obj: ../../src/submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -MT ../../src/dparse-submit-d.obj -MD -MP -MF ../../src/$(DEPDIR)/dparse-submit-d.Tpo -c -o ../../src/dparse-submit-d.obj `if test -f '../../src/submit-d.c'; then $(CYGPATH_W) '../../src/submit-d.c'; else $(CYGPATH_W) '$(srcdir)/../../src/submit-d.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) ../../src/$(DEPDIR)/dparse-submit-d.Tpo ../../src/$(DEPDIR)/dparse-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='../../src/submit-d.c' object='../../src/dparse-submit-d.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dparse_CFLAGS) $(CFLAGS) -c -o ../../src/dparse-submit-d.obj `if test -f '../../src/submit-d.c'; then $(CYGPATH_W) '../../src/submit-d.c'; else $(CYGPATH_W) '$(srcdir)/../../src/submit-d.c'; fi` listnicks-listnicks.o: listnicks.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(listnicks_CFLAGS) $(CFLAGS) -MT listnicks-listnicks.o -MD -MP -MF $(DEPDIR)/listnicks-listnicks.Tpo -c -o listnicks-listnicks.o `test -f 'listnicks.c' || echo '$(srcdir)/'`listnicks.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/listnicks-listnicks.Tpo $(DEPDIR)/listnicks-listnicks.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='listnicks.c' object='listnicks-listnicks.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(listnicks_CFLAGS) $(CFLAGS) -c -o listnicks-listnicks.o `test -f 'listnicks.c' || echo '$(srcdir)/'`listnicks.c listnicks-listnicks.obj: listnicks.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(listnicks_CFLAGS) $(CFLAGS) -MT listnicks-listnicks.obj -MD -MP -MF $(DEPDIR)/listnicks-listnicks.Tpo -c -o listnicks-listnicks.obj `if test -f 'listnicks.c'; then $(CYGPATH_W) 'listnicks.c'; else $(CYGPATH_W) '$(srcdir)/listnicks.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/listnicks-listnicks.Tpo $(DEPDIR)/listnicks-listnicks.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='listnicks.c' object='listnicks-listnicks.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(listnicks_CFLAGS) $(CFLAGS) -c -o listnicks-listnicks.obj `if test -f 'listnicks.c'; then $(CYGPATH_W) 'listnicks.c'; else $(CYGPATH_W) '$(srcdir)/listnicks.c'; fi` payload-payload.o: payload.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(payload_CFLAGS) $(CFLAGS) -MT payload-payload.o -MD -MP -MF $(DEPDIR)/payload-payload.Tpo -c -o payload-payload.o `test -f 'payload.c' || echo '$(srcdir)/'`payload.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/payload-payload.Tpo $(DEPDIR)/payload-payload.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='payload.c' object='payload-payload.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(payload_CFLAGS) $(CFLAGS) -c -o payload-payload.o `test -f 'payload.c' || echo '$(srcdir)/'`payload.c payload-payload.obj: payload.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(payload_CFLAGS) $(CFLAGS) -MT payload-payload.obj -MD -MP -MF $(DEPDIR)/payload-payload.Tpo -c -o payload-payload.obj `if test -f 'payload.c'; then $(CYGPATH_W) 'payload.c'; else $(CYGPATH_W) '$(srcdir)/payload.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/payload-payload.Tpo $(DEPDIR)/payload-payload.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='payload.c' object='payload-payload.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(payload_CFLAGS) $(CFLAGS) -c -o payload-payload.obj `if test -f 'payload.c'; then $(CYGPATH_W) 'payload.c'; else $(CYGPATH_W) '$(srcdir)/payload.c'; fi` ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-am TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-am CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-am cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(LIBRARIES) $(PROGRAMS) $(SCRIPTS) installdirs: install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) -rm -f ../../src/$(DEPDIR)/$(am__dirstamp) -rm -f ../../src/$(am__dirstamp) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-noinstLIBRARIES clean-noinstPROGRAMS \ mostlyclean-am distclean: distclean-am -rm -rf ../../src/$(DEPDIR) ./$(DEPDIR) -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-tags dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -rf ../../src/$(DEPDIR) ./$(DEPDIR) -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-compile mostlyclean-generic pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: .MAKE: install-am install-strip .PHONY: CTAGS GTAGS TAGS all all-am check check-am clean clean-generic \ clean-noinstLIBRARIES clean-noinstPROGRAMS cscopelist-am ctags \ ctags-am distclean distclean-compile distclean-generic \ distclean-tags distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am install-dvi \ install-dvi-am install-exec install-exec-am install-html \ install-html-am install-info install-info-am install-man \ install-pdf install-pdf-am install-ps install-ps-am \ install-strip installcheck installcheck-am installdirs \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-compile mostlyclean-generic pdf pdf-am ps ps-am \ tags tags-am uninstall uninstall-am .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/tests/tools/Makefile.am0000664000175000017500000000250512645513264015254 00000000000000AM_CFLAGS = $(TALLOC_CFLAGS) $(TEVENT_CFLAGS) $(DBUS_CFLAGS) $(KRB5_CFLAGS) \ $(XMLRPC_CFLAGS) $(IDN_CFLAGS) $(UUID_CFLAGS) $(LDAP_CFLAGS) \ $(POPT_CFLAGS) -I$(builddir)/../../src LDADD = libtools.a ../../src/libcm.a $(srcdir)/../../src/env-system.c \ libtools.a $(OPENSSL_LIBS) $(CERTMONGER_LIBS) $(KRB5_LIBS) $(IDN_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(RESOLV_LIBS) $(POPT_LIBS) $(LTLIBICONV) noinst_SCRIPTS = cachain.sh if PIE CFLAGS += -fPIC LDFLAGS += -fPIC -pie endif noinst_PROGRAMS = keyiread keygen csrgen submit certread certsave oid2name \ name2oid iterate prefs dates listnicks pem2base base2pem \ dparse payload checksig base64 cadata citerate casave hooks \ libexecdir canon srv addcinfo ls json json-utf8 printenv noinst_LIBRARIES = libtools.a if HAVE_OPENSSL noinst_PROGRAMS += pk7parse pk7env scepgen pk7verify pk7decrypt endif libtools_a_SOURCES = ../../src/tm.h tm.c tools.h tools.c listnicks_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) payload_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) checksig_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) addcinfo_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) dparse_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) dparse_SOURCES = dparse.c ../../src/submit-d.c dparse_LDADD = $(LDADD) $(XML_LIBS) citerate_SOURCES = citerate.c ../../src/store-gen.c srv_SOURCES = srv.c ../../src/srvloc.c srv_LDADD = $(LDADD) certmonger-0.78.6/tests/tools/cachain.sh0000775000175000017500000000466412645513264015155 00000000000000#!/bin/bash -e digest=sha1 keytype=rsa:1024 serial=12345678 cat > openssl.cnf << EOF [req] x509_extensions = x509 distinguished_name = name prompt = no [name] CN = Test Top-Level CA [x509] basicConstraints = CA:true keyUsage = digitalSignature,nonRepudiation,keyEncipherment,dataEncipherment,keyCertSign,cRLSign subjectKeyIdentifier=hash EOF openssl req -new -newkey $keytype -keyout ca0.key -nodes -config openssl.cnf -x509 -set_serial $serial -out ca0.crt i=0 : > ca.txt echo $((serial+1)) > ca.srl while test $i -lt ${1:-8} ; do i=$((i+1)) cat > openssl.cnf <<- EOF [req] distinguished_name = distinguished_name prompt = no [ca] default_ca = default_ca distinguished_name = distinguished_name [default_ca] private_key = `pwd`/ca$((i-1)).key certificate = `pwd`/ca$((i-1)).crt database = `pwd`/ca.txt serial = `pwd`/ca.srl new_certs_dir = `pwd` distinguished_name = distinguished_name default_md = $digest prompt = no policy = policy default_days = 365 x509_extensions = x509_extensions [distinguished_name] CN = Test Level $i CA [policy] CN = supplied [x509_extensions] basicConstraints = CA:true keyUsage = digitalSignature,nonRepudiation,keyEncipherment,dataEncipherment,keyCertSign,cRLSign subjectKeyIdentifier=hash EOF if test $((i%2)) == 0 ; then echo authorityKeyIdentifier=keyid,issuer >> openssl.cnf fi openssl req -new -newkey $keytype -keyout ca$i.key -nodes -config openssl.cnf -out ca$i.req openssl ca -batch -config openssl.cnf -key ca$((i-1)).key -cert ca$((i-1)).crt -in ca$i.req -out ca$i.crt -notext done cat > openssl.cnf <<- EOF [req] distinguished_name = distinguished_name prompt = no [ca] default_ca = default_ca distinguished_name = distinguished_name [default_ca] private_key = `pwd`/ca$i.key certificate = `pwd`/ca$i.crt database = `pwd`/ca.txt serial = `pwd`/ca.srl new_certs_dir = `pwd` distinguished_name = distinguished_name default_md = $digest prompt = no policy = policy default_days = 365 x509_extensions = x509_extensions [distinguished_name] CN = Test EE Cert [policy] CN = supplied [x509_extensions] basicConstraints = CA:false keyUsage = digitalSignature,nonRepudiation,keyEncipherment,dataEncipherment subjectKeyIdentifier=hash EOF if test $((i%2)) == 0 ; then echo authorityKeyIdentifier=keyid,issuer >> openssl.cnf fi openssl req -new -newkey $keytype -keyout ee.key -nodes -config openssl.cnf -out ee.req openssl ca -batch -config openssl.cnf -key ca$i.key -cert ca$i.crt -in ee.req -out ee.crt -notext certmonger-0.78.6/tests/037-rekey2/0000775000175000017500000000000012645513301013636 500000000000000certmonger-0.78.6/tests/037-rekey2/run.sh0000775000175000017500000001440412645513264014734 00000000000000#!/bin/bash -e cd "$tmpdir" CERTMONGER_CONFIG_DIR="$tmpdir" export CERTMONGER_CONFIG_DIR source "$srcdir"/functions # Set a "maximum" key lifetime of 68 years, for the sake of systems where I # don't want to work around 32-bit time_t just now. echo '[Lifetime = 68y.]' cat > certmonger.conf << EOF [defaults] notification_method=STDERR max_key_use_count=20 max_key_lifetime=68y [selfsign] validity_period=1y EOF # Issue on 2000-01-01 for one year. cat > ca.self <<- EOF id=Self ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=1235 ca_internal_issue_time=946684800 EOF # Set up a basic certificate. cat > entry.openssl <<- EOF id=Test ca_name=Self key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile autorenew=1 EOF # Run through the whole enrollment process. $toolsdir/iterate ca.self entry.openssl NEED_KEY_PAIR,GENERATING_KEY_PAIR,HAVE_KEY_PAIR $toolsdir/iterate ca.self entry.openssl NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO,NEED_CSR $toolsdir/iterate ca.self entry.openssl NEED_CSR,GENERATING_CSR,HAVE_CSR $toolsdir/iterate ca.self entry.openssl NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CERT,START_SAVING_CERT,SAVING_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS $toolsdir/iterate ca.self entry.openssl NEED_TO_READ_CERT,READING_CERT,SAVED_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED # Now kick it and see what we decide to do next. Expect NEED_CSR/HAVE_KEY_PAIR. echo key_generated_date=20000000000000 >> entry.openssl $toolsdir/iterate ca.self entry.openssl MONITORING rm -f ca.self entry.openssl keyfile certfile # Set a "maximum" key lifetime of 1 year. echo '[Lifetime = 1y.]' cat > certmonger.conf << EOF [defaults] notification_method=STDERR max_key_use_count=20 max_key_lifetime=1y [selfsign] validity_period=1y EOF # Issue on 2000-01-01 for one year. cat > ca.self <<- EOF id=Self ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=1235 ca_internal_issue_time=946684800 EOF # Set up a basic certificate. cat > entry.openssl <<- EOF id=Test ca_name=Self key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile autorenew=1 EOF # Run through the whole enrollment process. $toolsdir/iterate ca.self entry.openssl NEED_KEY_PAIR,GENERATING_KEY_PAIR,HAVE_KEY_PAIR $toolsdir/iterate ca.self entry.openssl NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO,NEED_CSR $toolsdir/iterate ca.self entry.openssl NEED_CSR,GENERATING_CSR,HAVE_CSR $toolsdir/iterate ca.self entry.openssl NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CERT,START_SAVING_CERT,SAVING_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS $toolsdir/iterate ca.self entry.openssl NEED_TO_READ_CERT,READING_CERT,SAVED_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED # Now kick it and see what we decide to do next. Expect NEED_KEY_PAIR. echo key_generated_date=20000000000000 >> entry.openssl $toolsdir/iterate ca.self entry.openssl MONITORING rm -f ca.self entry.openssl keyfile certfile # Set a "maximum" key use count of 2. echo '[Uses = 2.]' cat > certmonger.conf << EOF [defaults] notification_method=STDERR max_key_use_count=2 max_key_lifetime=100y [selfsign] validity_period=1y EOF # Issue on 2000-01-01 for one year. cat > ca.self <<- EOF id=Self ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=1235 ca_internal_issue_time=946684800 EOF # Set up a basic certificate. cat > entry.openssl <<- EOF id=Test ca_name=Self key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile autorenew=1 EOF # Run through the whole enrollment process. $toolsdir/iterate ca.self entry.openssl NEED_KEY_PAIR,GENERATING_KEY_PAIR,HAVE_KEY_PAIR $toolsdir/iterate ca.self entry.openssl NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO,NEED_CSR $toolsdir/iterate ca.self entry.openssl NEED_CSR,GENERATING_CSR,HAVE_CSR $toolsdir/iterate ca.self entry.openssl NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CERT,START_SAVING_CERT,SAVING_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS $toolsdir/iterate ca.self entry.openssl NEED_TO_READ_CERT,READING_CERT,SAVED_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED # Now kick it and see what we decide to do next. Expect NEED_CSR/HAVE_KEY_PAIR. echo key_generated_date=20000000000000 >> entry.openssl $toolsdir/iterate ca.self entry.openssl MONITORING rm -f ca.self entry.openssl keyfile certfile # Set a "maximum" key use count of 1. echo '[Uses = 1.]' cat > certmonger.conf << EOF [defaults] notification_method=STDERR max_key_use_count=1 max_key_lifetime=100y [selfsign] validity_period=1y EOF # Issue on 2000-01-01 for one year. cat > ca.self <<- EOF id=Self ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=1235 ca_internal_issue_time=946684800 EOF # Set up a basic certificate. cat > entry.openssl <<- EOF id=Test ca_name=Self key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile autorenew=1 EOF # Run through the whole enrollment process. $toolsdir/iterate ca.self entry.openssl NEED_KEY_PAIR,GENERATING_KEY_PAIR,HAVE_KEY_PAIR $toolsdir/iterate ca.self entry.openssl NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO,NEED_CSR $toolsdir/iterate ca.self entry.openssl NEED_CSR,GENERATING_CSR,HAVE_CSR $toolsdir/iterate ca.self entry.openssl NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CERT,START_SAVING_CERT,SAVING_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS $toolsdir/iterate ca.self entry.openssl NEED_TO_READ_CERT,READING_CERT,SAVED_CERT $toolsdir/iterate ca.self entry.openssl NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED # Now kick it and see what we decide to do next. Expect NEED_KEY_PAIR. echo key_generated_date=20000000000000 >> entry.openssl $toolsdir/iterate ca.self entry.openssl MONITORING rm -f ca.self entry.openssl keyfile certfile echo Test complete. certmonger-0.78.6/tests/037-rekey2/expected.out0000664000175000017500000000560012645513264016121 00000000000000[Lifetime = 68y.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO -STOP- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR -STOP- GENERATING_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT -STOP- NEED_TO_SUBMIT -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- SAVED_CERT -START- NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT -STOP- NEED_TO_READ_CERT -START- READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED -STOP- NEED_TO_NOTIFY_ISSUED_SAVED -START- NOTIFYING_ISSUED_SAVED MONITORING -STOP- MONITORING -START- NEED_CSR -STOP- [Lifetime = 1y.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO -STOP- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR -STOP- GENERATING_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT -STOP- NEED_TO_SUBMIT -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- SAVED_CERT -START- NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT -STOP- NEED_TO_READ_CERT -START- READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED -STOP- NEED_TO_NOTIFY_ISSUED_SAVED -START- NOTIFYING_ISSUED_SAVED MONITORING -STOP- MONITORING -START- NEED_KEY_PAIR -STOP- [Uses = 2.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO -STOP- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR -STOP- GENERATING_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT -STOP- NEED_TO_SUBMIT -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- SAVED_CERT -START- NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT -STOP- NEED_TO_READ_CERT -START- READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED -STOP- NEED_TO_NOTIFY_ISSUED_SAVED -START- NOTIFYING_ISSUED_SAVED MONITORING -STOP- MONITORING -START- NEED_CSR -STOP- [Uses = 1.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO -STOP- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR -STOP- GENERATING_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT -STOP- NEED_TO_SUBMIT -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- SAVED_CERT -START- NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT -STOP- NEED_TO_READ_CERT -START- READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED -STOP- NEED_TO_NOTIFY_ISSUED_SAVED -START- NOTIFYING_ISSUED_SAVED MONITORING -STOP- MONITORING -START- NEED_KEY_PAIR -STOP- Test complete. certmonger-0.78.6/tests/036-getcert/0000775000175000017500000000000012645513301014071 500000000000000certmonger-0.78.6/tests/036-getcert/run.sh0000775000175000017500000002132612645513264015170 00000000000000#!/bin/bash -e cd "$tmpdir" mkdir "$tmpdir"/cas "$tmpdir"/requests "$tmpdir"/local "$tmpdir"/files "$tmpdir"/db "$tmpdir"/backup timeout=900 cat > $tmpdir/cas/local << EOF id=local ca_type=EXTERNAL ca_external_helper="$builddir"/../src/local-submit -d "$tmpdir"/local EOF cat > $tmpdir/cas/jerkca << EOF id=jerkca ca_type=EXTERNAL ca_external_helper="$toolsdir"/printenv CERTMONGER_CERTIFICATE EOF run() { env CERTMONGER_CONFIG_DIR="$tmpdir" CERTMONGER_TMPDIR="$tmpdir" \ CERTMONGER_REQUESTS_DIR="$tmpdir"/requests \ CERTMONGER_CAS_DIR="$tmpdir"/cas \ "$builddir"/../src/certmonger-session -L -P "$tmpdir/certmonger.sock" -n -c "$*" } listfiles() { echo -n certs: echo -n certs: 1>&2 ls -1 files/*cert* | wc -l ls -1 files/*cert* 1>&2 for cert in "$tmpdir"/files/*cert* ; do head -n 1 "$cert" done echo -n keys: echo -n keys: 1>&2 ls -1 files/*key* | wc -l ls -1 files/*key* 1>&2 for key in "$tmpdir"/files/*key* ; do head -n 1 "$key" done } listdb() { : > "$tmpdir"/db/pinfile echo -n certs: echo -n certs: 1>&2 certutil -L -d "$tmpdir"/db | grep -v Nickname | grep -v '^$' | grep -v ,S/MIME, | wc -l certutil -L -d "$tmpdir"/db | wc -l 1>&2 echo -n keys: echo -n keys: 1>&2 certutil -K -d "$tmpdir"/db -f "$tmpdir"/db/pinfile | grep -v Checking | grep -v '^$' | wc -l certutil -K -d "$tmpdir"/db -f "$tmpdir"/db/pinfile 1>&2 } extract() { pk12util -d "$tmpdir"/db -n first -o "$tmpdir"/files/p12 -W "" -K "" openssl pkcs12 -nokeys -nomacver -in "$tmpdir"/files/p12 -passin pass: -nodes | awk '/BEGIN/,/END/{print}' > "$1"/cert openssl pkcs12 -nocerts -nomacver -in "$tmpdir"/files/p12 -passin pass: -nodes | awk '/BEGIN/,/END/{print}' > "$1"/key echo -n cert: head -n 1 "$1"/cert | wc -l echo -n key: head -n 1 "$1"/key | wc -l } REQOPTS="-N cn=First" # First round. echo '[Files, initial.]' run "$builddir"/../src/getcert request -c local -I first -w --wait-timeout=$timeout $REQOPTS -f "$tmpdir"/files/cert -k "$tmpdir"/files/key listfiles # Save the key and cert we just generated, and generate a new certificate. cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup echo '[Files, resubmit.]' run "$builddir"/../src/getcert resubmit -c local -w --wait-timeout=$timeout -f "$tmpdir"/files/cert listfiles # Make sure we have a new certificate and the key is unchanged. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key || echo ERROR: keys were changed on resubmit cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert && echo ERROR: cert was not changed on resubmit # Save the key and cert we just generated, and generate a new key and # certificate. Force its serial number, since it'll be used as part of the # name when it's renamed out of the way later. cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup echo 1235 > "$tmpdir"/local/serial echo '[Files, rekey]' run "$builddir"/../src/getcert rekey -c local -w --wait-timeout=$timeout -f "$tmpdir"/files/cert listfiles # Make sure we have a new certificate and key. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key && echo ERROR: keys were not changed on rekey cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert && echo ERROR: cert was not changed on rekey # Save the key and cert we just generated, and generate a new key and certificate. echo key_preserve=1 >> "$tmpdir"/requests/* cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup echo '[Files, rekey with preserve=1]' run "$builddir"/../src/getcert rekey -c local -w --wait-timeout=$timeout -f "$tmpdir"/files/cert listfiles # Make sure we have a new certificate and key, and that the old key still # exists where we expect it to be. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key && echo ERROR: keys were not changed on rekey cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert && echo ERROR: cert was not changed on rekey cmp -s "$tmpdir"/backup/key "$tmpdir"/files/key.1235.key || echo ERROR: old keys were not saved on rekey # Save the key and cert we just generated, and try to generate a new key and certificate. rm -f "$tmpdir"/files/key.* cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup echo '[Files, rekey with jerk CA]' run "$builddir"/../src/getcert rekey -c jerkca -w --wait-timeout=$timeout -f "$tmpdir"/files/cert listfiles # Make sure we didn't nuke the old key, but we should have been able to get rid of the candidate key. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key || echo ERROR: keys were changed on failed rekey cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert || echo ERROR: cert was not changed on failed rekey rm -f "$tmpdir"/requests/* "$tmpdir"/local/* "$tmpdir"/files/* "$tmpdir"/db/* "$tmpdir"/backup/* # First round. echo '[Database, initial.]' run "$builddir"/../src/getcert request -c local -I first -w --wait-timeout=$timeout $REQOPTS -d "$tmpdir"/db -n first listdb extract "$tmpdir"/backup # Save the key and cert we just generated, and generate a new certificate. echo '[Database, resubmit]' run "$builddir"/../src/getcert resubmit -c local -w --wait-timeout=$timeout -d "$tmpdir"/db -n first listdb extract "$tmpdir"/files # Make sure we have a new certificate and the key is unchanged. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key || echo ERROR: keys were changed on resubmit cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert && echo ERROR: cert was not changed on resubmit # Save the key and cert we just generated, and generate a new key and # certificate. Force its serial number, since it'll be used as part of the # name when it's renamed out of the way later. cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup echo 1235 > "$tmpdir"/local/serial echo '[Database, rekey]' run "$builddir"/../src/getcert rekey -c local -w --wait-timeout=$timeout -d "$tmpdir"/db -n first listdb extract "$tmpdir"/files # Make sure we have a new certificate and key. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key && echo ERROR: keys were not changed on rekey cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert && echo ERROR: cert was not changed on rekey # Save the key and cert we just generated. echo key_preserve=1 >> "$tmpdir"/requests/* cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup # ID is based on a hash of the public key, so use that for comparison, since # pk12util can't export a key that doesn't have a certificate to go with it. certutil -K -d "$tmpdir"/db -f "$tmpdir"/db/pinfile | grep -v Checking | grep -v '^$' | awk '{print $3}' > "$tmpdir"/backup/id # Generate a new key and certificate. echo '[Database, rekey with preserve=1]' run "$builddir"/../src/getcert rekey -c local -w --wait-timeout=$timeout -d "$tmpdir"/db -n first listdb extract "$tmpdir"/files # Make sure we have a new certificate and key, and that the old key still # exists where we expect it to be. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key && echo ERROR: keys were not changed on rekey cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert && echo ERROR: cert was not changed on rekey certutil -K -d "$tmpdir"/db -f "$tmpdir"/db/pinfile | grep -v Checking | grep -v first | grep -v '^$' | awk '{print $3}' > "$tmpdir"/files/id.old cmp -s "$tmpdir"/backup/id "$tmpdir"/files/id.old || echo ERROR: old keys were not saved on rekey # Save the key and cert we just generated. cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup # ID is based on a hash of the public key, so use that for comparison, since # pk12util can't export a key that doesn't have a certificate to go with it. certutil -K -d "$tmpdir"/db -f "$tmpdir"/db/pinfile | grep -v Checking | grep -v '^$' | awk '{print $3}' > "$tmpdir"/backup/id # Try to generate a new key and certificate. echo '[Database, rekey with jerk CA]' run "$builddir"/../src/getcert rekey -c jerkca -w --wait-timeout=$timeout -d "$tmpdir"/db -n first listdb extract "$tmpdir"/files # Make sure we didn't nuke the old key. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key || echo ERROR: keys were changed on failed rekey cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert || echo ERROR: cert was not changed on failed rekey echo key_preserve=0 >> "$tmpdir"/requests/* # Save the key and cert we just generated. cp "$tmpdir"/files/cert "$tmpdir"/files/key "$tmpdir"/backup # ID is based on a hash of the public key, so use that for comparison, since # pk12util can't export a key that doesn't have a certificate to go with it. certutil -K -d "$tmpdir"/db -f "$tmpdir"/db/pinfile | grep -v Checking | grep -v '^$' | awk '{print $3}' > "$tmpdir"/backup/id # Try to generate a new key and certificate. echo '[Database, rekey with jerk CA, nonpreserving]' run "$builddir"/../src/getcert rekey -c jerkca -w --wait-timeout=$timeout -d "$tmpdir"/db -n first listdb extract "$tmpdir"/files # Make sure we didn't nuke the old key. cmp -s "$tmpdir"/files/key "$tmpdir"/backup/key || echo ERROR: keys were changed on failed rekey cmp -s "$tmpdir"/files/cert "$tmpdir"/backup/cert || echo ERROR: cert was not changed on failed rekey echo OK certmonger-0.78.6/tests/036-getcert/expected.out0000664000175000017500000000261012645513264016352 00000000000000[Files, initial.] New signing request "first" added. certs:1 -----BEGIN CERTIFICATE----- keys:1 -----BEGIN PRIVATE KEY----- [Files, resubmit.] Resubmitting "first" to "local". certs:1 -----BEGIN CERTIFICATE----- keys:1 -----BEGIN PRIVATE KEY----- [Files, rekey] Resubmitting "first" to "local". certs:1 -----BEGIN CERTIFICATE----- keys:1 -----BEGIN PRIVATE KEY----- [Files, rekey with preserve=1] Resubmitting "first" to "local". certs:1 -----BEGIN CERTIFICATE----- keys:2 -----BEGIN PRIVATE KEY----- -----BEGIN PRIVATE KEY----- [Files, rekey with jerk CA] Resubmitting "first" to "jerkca". certs:1 -----BEGIN CERTIFICATE----- keys:1 -----BEGIN PRIVATE KEY----- [Database, initial.] New signing request "first" added. certs:1 keys:1 pk12util: PKCS12 EXPORT SUCCESSFUL cert:1 key:1 [Database, resubmit] Resubmitting "first" to "local". certs:1 keys:1 pk12util: PKCS12 EXPORT SUCCESSFUL cert:1 key:1 [Database, rekey] Resubmitting "first" to "local". certs:1 keys:1 pk12util: PKCS12 EXPORT SUCCESSFUL cert:1 key:1 [Database, rekey with preserve=1] Resubmitting "first" to "local". certs:1 keys:2 pk12util: PKCS12 EXPORT SUCCESSFUL cert:1 key:1 [Database, rekey with jerk CA] Resubmitting "first" to "jerkca". certs:1 keys:3 pk12util: PKCS12 EXPORT SUCCESSFUL cert:1 key:1 [Database, rekey with jerk CA, nonpreserving] Resubmitting "first" to "jerkca". certs:1 keys:3 pk12util: PKCS12 EXPORT SUCCESSFUL cert:1 key:1 OK certmonger-0.78.6/tests/035-json/0000775000175000017500000000000012645513301013404 500000000000000certmonger-0.78.6/tests/035-json/bad.90000664000175000017500000000001112645513264014144 00000000000000{"key":} certmonger-0.78.6/tests/035-json/bad.80000664000175000017500000000000512645513264014146 00000000000000{[]} certmonger-0.78.6/tests/035-json/bad.60000664000175000017500000000000512645513264014144 00000000000000foo" certmonger-0.78.6/tests/035-json/bad.50000664000175000017500000000000512645513264014143 00000000000000"foo certmonger-0.78.6/tests/035-json/bad.40000664000175000017500000000651512645513264014156 00000000000000{"certificate":"-----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgIOAQAAAAABPWT1Paf0wU4wDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTMwMzEzMTc0ODQ3WhcNMTQwMzEzMTc0 ODQ3WjBuMQswCQYDVQQGEwJVUzEXMBUGA1UECBMOTk9SVEggQ0FST0xJTkExEDAO BgNVBAcTB1JhbGVpZ2gxEDAOBgNVBAoTB1JlZCBIYXQxCzAJBgNVBAsTAklUMRUw EwYDVQQDFAwqLnJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC8NmWLQuAdaMTQ2Ae8AVPUKDEdCNtGBE4It5hb4xL9cHSzQeBaMDm9UR5X w5DLR93TQFL+Rc9mLbrBhIz9eacrs5qpUp4i5XhgnvEN7vBsUyFjZqQ+W5Zqs5Cv yMVv+rkRRa22hYPqFNM0R0lBPLltZO6+58VA53ttr87JOdPZsdomJtzruXz9ceLg ZnDULmIfZFhw7bz0Y9qAURSsULpIjLwWsGjOlNpPSTisCNwNWrmT4KerD8RnCXy+ keWZPSw9RgMBbyYD6am0nj2/JPmkv390F6HYi6f/0OyefKqZEaPgwDmhEiW6K2Ps qodUKMcfBFJNgPs6ZuqOLnGILVyrAgMBAAGjgdEwgc4wHwYDVR0jBBgwFoAUBJhg 34AblkldZVYtpSwJJArs3LkwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5v bW5pcm9vdC5jb20vUHVibGljU3VyZVNlcnZlclNWLmNybDAdBgNVHQ4EFgQUC5p5 rlungiFqeTNw0HOISTrudr8wCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG+EIBAQQEAwIGwDAN BgkqhkiG9w0BAQUFAAOCAQEAJC1PfXXjM3Y2ifPlzauQgLHiizx3XeIB86AXJHL2 N77UMfkSYmUJraWZX3Ye7icDbRwNHLIDJMfpjgcwnC+ZB+byyvmtjGjcTuqVZpXS 2JU8kgGxNlEjCd4NsumpzollG1W1iDorBCt9bHp8b4isLD+jSnqbWKnvuEUle0ad Pi7xjf9BidMvYUEBpJsd9rA1LQtp/ZfxxA6RtgCeXjQPexjsvf6SLKyrmacHZcMJ b6JbhXMTzB7QZjR3IooqzXS8T/2zBxDUSH4fJ4o0KSkY8cjNCCxdnkXL96PC9KQ5 kV1Ad3iHw/TnJjzrJJs3o92pRR/JtF0Jw6dszNP1Sn68uA== -----END CERTIFICATE-----","roots":{"CA1":"-----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE-----","CA2":"-----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE-----"},"CA3":"chain":{"-----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- "}} certmonger-0.78.6/tests/035-json/bad.30000664000175000017500000000002112645513264014137 00000000000000This is amazing. certmonger-0.78.6/tests/035-json/bad.20000664000175000017500000000163112645513264014146 00000000000000"0‚Ž0‚v »•+an^IO¸ÃøªÔrB50  *†H†÷  0P1 0U Local Signing Authority1,0*U #bb952b61-6e5e494f-b8c3f8aa-d47242350 150428175118Z 160428175118Z0P1 0U Local Signing Authority1,0*U #bb952b61-6e5e494f-b8c3f8aa-d47242350‚\"0  *†H†÷ ‚0‚ ‚Σi~`E‹-fñ:½í©kö¬$ùqR¸uV¥)åÇû*¥>y v”F}*?Û¬“‡q ®¡¡JÖ$Ï\"G[MáîíÔÍÆû@꫼ÝCP«¼/wãÝÏD2Ã;lÚáé>¹kAƦ©K¡Å.Fñ,ü¦–êÆòž¢Àaë6´ïŠ Š^µso›cm05 È]©6}|Vÿ =Hõ6Ò˜¬§”èS8?lJ ¦tŸ9U–‡ÙEÝnRœÕ05>} <ã \"Ø E9Ú0Òþ¾”Ðrlrd 9í:Tc{@ta¿€|3»b_ÆâX¶E×¹ëÄÓ£c0a0Uÿ00U;QÚt.YM§=íS$î‘aÆx0U#0€;QÚt.YM§=íS$î‘aÆx0Uÿ†0  *†H†÷  ‚ÁàßÏ‹H|é¦É]žO­‘8‹²gêdþ|†èBl¯ô¼µÎPMHØf4w±ÀØÿà³;éD۸ߘE´³GûèpøÒ߀[5i@¿‰T`ÒöË#Ö3Tž:.ßÿ9ò‹°›hï3?6™/ w©bÇ~ù™Ç”åãÊ„˜Wíûçº5Ÿ³¯9¼¦àã,OÃr =¡¨TÕ5-xeå§I&îŒÆà¢ÃvÃMªˆÐÌl˜—L-Q¨áI|šæiÜ5I ÿ òs âAàW_5f\"šõŠâ©Ú v^MÄà‘ß 65Þ¯ÎJšFCVæû™ÕÓ“ICÑã€" certmonger-0.78.6/tests/035-json/bad.1e0000664000175000017500000000060712645513264014314 00000000000000 { "Image": { "Width": 800, "Height": 600, "Title": "View from 15th Floor", "Thumbnail": { "Url": "http://www.example.com/image/481989943", "Height": 125, "Width": 100 }, "Animated" : false, "IDs": [116, 943, 234, 38793] } }[] certmonger-0.78.6/tests/035-json/bad.1d0000664000175000017500000000056212645513264014313 00000000000000 { "Image": { {"Width": 800, "Height": 600}: "View from 15th Floor", "Thumbnail": { "Url": "http://www.example.com/image/481989943", "Height": 125, "Width": 100 }, "Animated" : false, "IDs": [116, 943, 234, 38793] } } certmonger-0.78.6/tests/035-json/bad.1c0000664000175000017500000000060712645513264014312 00000000000000 { "Image": { ["Width"]: 800, "Height": 600, "Title": "View from 15th Floor", "Thumbnail": { "Url": "http://www.example.com/image/481989943", "Height": 125, "Width": 100 }, "Animated" : false, "IDs": [116, 943, 234, 38793] } } certmonger-0.78.6/tests/035-json/bad.1b0000664000175000017500000000060612645513264014310 00000000000000 { "Image": { "Width": 800, "Height": 600, "Title": "View from 15th Floor", "Thumbnail": { "Url": "http://www.example.com/image/481989943", "Height": 125, "Width": 100 }, "Animated" : false, "IDs": [116, 943, 234, 38793] }, } certmonger-0.78.6/tests/035-json/bad.1a0000664000175000017500000000060612645513264014307 00000000000000 { "Image": { "Width": 800, "Height": 600, "Title": "View from 15th Floor", "Thumbnail": { "Url": "http://www.example.com/image/481989943", "Height": 125, "Width": 100 }, "Animated" : false, "IDs": [116, 943, 234, 38793] } }, certmonger-0.78.6/tests/035-json/bad.150000664000175000017500000000004412645513264014227 00000000000000":\uD801\uDC1F:\uD802:have a drink" certmonger-0.78.6/tests/035-json/bad.10000664000175000017500000000060412645513264014144 00000000000000 { "Image": { "Width": 800, "Height": 600, "Title": "View from 15th Floor", "Thumbnail": { "Url": "http://www.example.com/image/481989943", "Height": 125, "Width": 100 } "Animated" : false, "IDs": [116, 943, 234, 38793] } } certmonger-0.78.6/tests/035-json/good.90000664000175000017500000000000312645513264014347 00000000000000-1 certmonger-0.78.6/tests/035-json/good.80000664000175000017500000000000512645513264014350 00000000000000[{}] certmonger-0.78.6/tests/035-json/good.70000664000175000017500000000000312645513264014345 00000000000000{} certmonger-0.78.6/tests/035-json/good.60000664000175000017500000000000312645513264014344 00000000000000[] certmonger-0.78.6/tests/035-json/good.50000664000175000017500000000000512645513264014345 00000000000000true certmonger-0.78.6/tests/035-json/good.40000664000175000017500000000000312645513264014342 0000000000000042 certmonger-0.78.6/tests/035-json/good.30000664000175000017500000000002012645513264014340 00000000000000 "Hello world!" certmonger-0.78.6/tests/035-json/good.2c0000664000175000017500000000044212645513264014512 00000000000000 [ { "precision": "zip", "Latitude": 37.7668, "Longitude": -122.3959, "Address": "", "City": "SAN FRANCISCO", "State": "CA", "Zip": "94107", "Country": "US" }] certmonger-0.78.6/tests/035-json/good.2b0000664000175000017500000000043012645513264014506 00000000000000 { "precision": "zip", "Latitude": 37.371991, "Longitude": -122.026020, "Address": "", "City": "SUNNYVALE", "State": "CA", "Zip": "94085", "Country": "US" } certmonger-0.78.6/tests/035-json/good.2a0000664000175000017500000000043012645513264014505 00000000000000 { "precision": "zip", "Latitude": 37.7668, "Longitude": -122.3959, "Address": "", "City": "SAN FRANCISCO", "State": "CA", "Zip": "94107", "Country": "US" } certmonger-0.78.6/tests/035-json/good.220000664000175000017500000000155112645513264014433 00000000000000{"menu": { "header": "SVG Viewer", "items": [ {"id": "Open"}, {"id": "OpenNew", "label": "Open New"}, null, {"id": "ZoomIn", "label": "Zoom In"}, {"id": "ZoomOut", "label": "Zoom Out"}, {"id": "OriginalView", "label": "Original View"}, null, {"id": "Quality"}, {"id": "Pause"}, {"id": "Mute"}, null, {"id": "Find", "label": "Find..."}, {"id": "FindAgain", "label": "Find Again"}, {"id": "Copy"}, {"id": "CopyAgain", "label": "Copy Again"}, {"id": "CopySVG", "label": "Copy SVG"}, {"id": "ViewSVG", "label": "View SVG"}, {"id": "ViewSource", "label": "View Source"}, {"id": "SaveAs", "label": "Save As"}, null, {"id": "Help"}, {"id": "About", "label": "About Adobe CVG Viewer..."} ] }} certmonger-0.78.6/tests/035-json/good.210000664000175000017500000000661412645513264014437 00000000000000{"web-app": { "servlet": [ { "servlet-name": "cofaxCDS", "servlet-class": "org.cofax.cds.CDSServlet", "init-param": { "configGlossary:installationAt": "Philadelphia, PA", "configGlossary:adminEmail": "ksm@pobox.com", "configGlossary:poweredBy": "Cofax", "configGlossary:poweredByIcon": "/images/cofax.gif", "configGlossary:staticPath": "/content/static", "templateProcessorClass": "org.cofax.WysiwygTemplate", "templateLoaderClass": "org.cofax.FilesTemplateLoader", "templatePath": "templates", "templateOverridePath": "", "defaultListTemplate": "listTemplate.htm", "defaultFileTemplate": "articleTemplate.htm", "useJSP": false, "jspListTemplate": "listTemplate.jsp", "jspFileTemplate": "articleTemplate.jsp", "cachePackageTagsTrack": 200, "cachePackageTagsStore": 200, "cachePackageTagsRefresh": 60, "cacheTemplatesTrack": 100, "cacheTemplatesStore": 50, "cacheTemplatesRefresh": 15, "cachePagesTrack": 200, "cachePagesStore": 100, "cachePagesRefresh": 10, "cachePagesDirtyRead": 10, "searchEngineListTemplate": "forSearchEnginesList.htm", "searchEngineFileTemplate": "forSearchEngines.htm", "searchEngineRobotsDb": "WEB-INF/robots.db", "useDataStore": true, "dataStoreClass": "org.cofax.SqlDataStore", "redirectionClass": "org.cofax.SqlRedirection", "dataStoreName": "cofax", "dataStoreDriver": "com.microsoft.jdbc.sqlserver.SQLServerDriver", "dataStoreUrl": "jdbc:microsoft:sqlserver://LOCALHOST:1433;DatabaseName=goon", "dataStoreUser": "sa", "dataStorePassword": "dataStoreTestQuery", "dataStoreTestQuery": "SET NOCOUNT ON;select test='test';", "dataStoreLogFile": "/usr/local/tomcat/logs/datastore.log", "dataStoreInitConns": 10, "dataStoreMaxConns": 100, "dataStoreConnUsageLimit": 100, "dataStoreLogLevel": "debug", "maxUrlLength": 500}}, { "servlet-name": "cofaxEmail", "servlet-class": "org.cofax.cds.EmailServlet", "init-param": { "mailHost": "mail1", "mailHostOverride": "mail2"}}, { "servlet-name": "cofaxAdmin", "servlet-class": "org.cofax.cds.AdminServlet"}, { "servlet-name": "fileServlet", "servlet-class": "org.cofax.cds.FileServlet"}, { "servlet-name": "cofaxTools", "servlet-class": "org.cofax.cms.CofaxToolsServlet", "init-param": { "templatePath": "toolstemplates/", "log": 1, "logLocation": "/usr/local/tomcat/logs/CofaxTools.log", "logMaxSize": "", "dataLog": 1, "dataLogLocation": "/usr/local/tomcat/logs/dataLog.log", "dataLogMaxSize": "", "removePageCache": "/content/admin/remove?cache=pages&id=", "removeTemplateCache": "/content/admin/remove?cache=templates&id=", "fileTransferFolder": "/usr/local/tomcat/webapps/content/fileTransferFolder", "lookInContext": 1, "adminGroupID": 4, "betaServer": true}}], "servlet-mapping": { "cofaxCDS": "/", "cofaxEmail": "/cofaxutil/aemail/*", "cofaxAdmin": "/admin/*", "fileServlet": "/static/*", "cofaxTools": "/tools/*"}, "taglib": { "taglib-uri": "cofax.tld", "taglib-location": "/WEB-INF/tlds/cofax.tld"}}} certmonger-0.78.6/tests/035-json/good.200000664000175000017500000000113612645513264014430 00000000000000{"widget": { "debug": "on", "window": { "title": "Sample Konfabulator Widget", "name": "main_window", "width": 500, "height": 500 }, "image": { "src": "Images/Sun.png", "name": "sun1", "hOffset": 250, "vOffset": 250, "alignment": "center" }, "text": { "data": "Click Here", "size": 36, "style": "bold", "name": "text1", "hOffset": 250, "vOffset": 100, "alignment": "center", "onMouseUp": "sun1.opacity = (sun1.opacity / 100) * 90;" } }} certmonger-0.78.6/tests/035-json/good.20000664000175000017500000000110212645513264014341 00000000000000 [ { "precision": "zip", "Latitude": 37.7668, "Longitude": -122.3959, "Address": "", "City": "SAN FRANCISCO", "State": "CA", "Zip": "94107", "Country": "US" }, { "precision": "zip", "Latitude": 37.371991, "Longitude": -122.026020, "Address": "", "City": "SUNNYVALE", "State": "CA", "Zip": "94085", "Country": "US" } ] certmonger-0.78.6/tests/035-json/good.190000664000175000017500000000036212645513264014440 00000000000000{"menu": { "id": "file", "value": "File", "popup": { "menuitem": [ {"value": "New", "onclick": "CreateNewDoc()"}, {"value": "Open", "onclick": "OpenDoc()"}, {"value": "Close", "onclick": "CloseDoc()"} ] } }} certmonger-0.78.6/tests/035-json/good.180000664000175000017500000000110712645513264014435 00000000000000{ "glossary": { "title": "example glossary", "GlossDiv": { "title": "S", "GlossList": { "GlossEntry": { "ID": "SGML", "SortAs": "SGML", "GlossTerm": "Standard Generalized Markup Language", "Acronym": "SGML", "Abbrev": "ISO 8879:1986", "GlossDef": { "para": "A meta-markup language, used to create markup languages such as DocBook.", "GlossSeeAlso": ["GML", "XML"] }, "GlossSee": "markup" } } } } } certmonger-0.78.6/tests/035-json/good.170000664000175000017500000000242112645513264014434 00000000000000"-----BEGIN CERTIFICATE----- MIIDjjCCAnagAwIBAgIRALuVK2FuXklPuMP4qtRyQjUwDQYJKoZIhvcNAQELBQAw UDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRob3JpdHkxLDAqBgNVBAMMI2Ji OTUyYjYxLTZlNWU0OTRmLWI4YzNmOGFhLWQ0NzI0MjM1MB4XDTE1MDQyODE3NTEx OFoXDTE2MDQyODE3NTExOFowUDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRo b3JpdHkxLDAqBgNVBAMMI2JiOTUyYjYxLTZlNWU0OTRmLWI4YzNmOGFhLWQ0NzI0 MjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhejaX5gRYuQLRFm 8Tq97akBa/asJPlxUrh1Vh+lKeXH+yqlPnkWoHaURn0UKj8Q26yTh3ENrqESoUrW JM8iR1tN4e7t1M3GGvscQOoVq7zdQ1CrGbwvd+Pdz0QTHzIEwzts2hfh6T65a0HG phGpS6EAxS5G8Sz8ppbqxgfynqLAYes2tBHvio0KFYpejbVzbxibE2NtMDULyF2p Nn18Vv8aoD1I9TbSmAKsp5ToUwc4P2xKCaZ0nzlVGZaH2UXdblKc1Y8wNRs+fQ0G PBzjDSLYCkU52jDSFf6+lNBybHJkDDntOlRje0B0Yb+AfDO7Yl/G4h5Yth9F17mB 68R/0wIDAQABo2MwYTAPBgNVHRMBAf8EBTADAQEBMB0GA1UdDgQWBBQ7Udp0Ln9Z Tac97VONJO6RYcZ4jTAfBgNVHSMEGDAWgBQ7Udp0Ln9ZTac97VONJO6RYcZ4jTAO BgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQELBQADggEBAMHg38+LFUh86abJXZ5P rZE4i7Jn6mT+fIboQgZsrxn0vLXOGFBNSNhmNBp3scDY/+CzO+lE27jfGphFtJ2z R/vocPjS34BbNWkEBkCPv4lUYNL2yyPWM1SeOi7f/znyi7CbaAfvMz82mS8KAXep Ysd+GvmZCMcClOXjyoSYV+3757o1n7OvOQIBnbymH+DjLE/Dcg09oahUBtV/NS0D eGXlp39JJu6MxuAeooHDdsOPTaociNDMbJiXTC1RGqjhSXyaneZp3B01SQgMD/8N 8nOg4kHgV181Zg4imvWK4qnaoHZeTcTgkd8MNjXeAq/OSppGQw5W5vuZ1dOTSUPR 44A= -----END CERTIFICATE----- " certmonger-0.78.6/tests/035-json/good.160000664000175000017500000000242012645513264014432 00000000000000"-----BEGIN CERTIFICATE----- MIIDjjCCAnagAwIBAgIRALuVK2FuXklPuMP4qtRyQjUwDQYJKoZIhvcNAQELBQAw UDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRob3JpdHkxLDAqBgNVBAMMI2Ji OTUyYjYxLTZlNWU0OTRmLWI4YzNmOGFhLWQ0NzI0MjM1MB4XDTE1MDQyODE3NTEx OFoXDTE2MDQyODE3NTExOFowUDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRo b3JpdHkxLDAqBgNVBAMMI2JiOTUyYjYxLTZlNWU0OTRmLWI4YzNmOGFhLWQ0NzI0 MjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhejaX5gRYuQLRFm 8Tq97akBa/asJPlxUrh1Vh+lKeXH+yqlPnkWoHaURn0UKj8Q26yTh3ENrqESoUrW JM8iR1tN4e7t1M3GGvscQOoVq7zdQ1CrGbwvd+Pdz0QTHzIEwzts2hfh6T65a0HG phGpS6EAxS5G8Sz8ppbqxgfynqLAYes2tBHvio0KFYpejbVzbxibE2NtMDULyF2p Nn18Vv8aoD1I9TbSmAKsp5ToUwc4P2xKCaZ0nzlVGZaH2UXdblKc1Y8wNRs+fQ0G PBzjDSLYCkU52jDSFf6+lNBybHJkDDntOlRje0B0Yb+AfDO7Yl/G4h5Yth9F17mB 68R/0wIDAQABo2MwYTAPBgNVHRMBAf8EBTADAQEBMB0GA1UdDgQWBBQ7Udp0Ln9Z Tac97VONJO6RYcZ4jTAfBgNVHSMEGDAWgBQ7Udp0Ln9ZTac97VONJO6RYcZ4jTAO BgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQELBQADggEBAMHg38+LFUh86abJXZ5P rZE4i7Jn6mT+fIboQgZsrxn0vLXOGFBNSNhmNBp3scDY/+CzO+lE27jfGphFtJ2z R/vocPjS34BbNWkEBkCPv4lUYNL2yyPWM1SeOi7f/znyi7CbaAfvMz82mS8KAXep Ysd+GvmZCMcClOXjyoSYV+3757o1n7OvOQIBnbymH+DjLE/Dcg09oahUBtV/NS0D eGXlp39JJu6MxuAeooHDdsOPTaociNDMbJiXTC1RGqjhSXyaneZp3B01SQgMD/8N 8nOg4kHgV181Zg4imvWK4qnaoHZeTcTgkd8MNjXeAq/OSppGQw5W5vuZ1dOTSUPR 44A= -----END CERTIFICATE-----" certmonger-0.78.6/tests/035-json/good.150000664000175000017500000000003512645513264014431 00000000000000":\uD801\uDC1F:have a drink" certmonger-0.78.6/tests/035-json/good.140000664000175000017500000000004712645513264014433 00000000000000"\\abc\"\nde\b\r/\ff\tghi\u0001\u001F" certmonger-0.78.6/tests/035-json/good.130000664000175000017500000000012012645513264014422 00000000000000["v1","v2",["v3","v4",["v 5"," v 7 "]],-123456789,null,true,false,123456789,""] certmonger-0.78.6/tests/035-json/good.120000664000175000017500000000006112645513264014425 00000000000000{"k1":{"k2":"s1","k3":"s2","k4":"s3"},"k5":"s4"} certmonger-0.78.6/tests/035-json/good.110000664000175000017500000000004212645513264014423 00000000000000{"k1":["s1","s2","s3"],"k2":"s3"} certmonger-0.78.6/tests/035-json/good.100000664000175000017500000000002612645513264014424 00000000000000{"k1":"s1","k2":"s2"} certmonger-0.78.6/tests/035-json/good.10000664000175000017500000000060512645513264014347 00000000000000 { "Image": { "Width": 800, "Height": 600, "Title": "View from 15th Floor", "Thumbnail": { "Url": "http://www.example.com/image/481989943", "Height": 125, "Width": 100 }, "Animated" : false, "IDs": [116, 943, 234, 38793] } } certmonger-0.78.6/tests/035-json/run.sh0000775000175000017500000000056312645513264014503 00000000000000#!/bin/bash -e cd "$tmpdir" echo "[utf8]" "$toolsdir"/json-utf8 for good in "$srcdir"/035-json/good.* ; do if ! "$toolsdir"/json "$good" ; then exit 1 fi done for bad in "$srcdir"/035-json/bad.* ; do if "$toolsdir"/json "$bad" ; then echo unexpected success with `basename "$bad"` exit 1 else echo got expected error with `basename "$bad"` fi done echo OK certmonger-0.78.6/tests/035-json/expected.out0000664000175000017500000002110312645513264015663 00000000000000[utf8] [good.1] {"Image":{"Width":800,"Height":600,"Title":"View from 15th Floor","Thumbnail":{"Url":"http://www.example.com/image/481989943","Height":125,"Width":100},"Animated":false,"IDs":[116,943,234,38793]}} [good.10] {"k1":"s1","k2":"s2"} [good.11] {"k1":["s1","s2","s3"],"k2":"s3"} [good.12] {"k1":{"k2":"s1","k3":"s2","k4":"s3"},"k5":"s4"} [good.13] ["v1","v2",["v3","v4",["v 5"," v 7 "]],-123456789,null,true,false,123456789,""] [good.14] "\\abc\"\nde\b\r/\ff\tghi\u0001\u001F" [good.15] ":\uD801\uDC1F:have a drink" [good.16] "-----BEGIN CERTIFICATE-----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\n44A=\n-----END CERTIFICATE-----" [good.17] "-----BEGIN CERTIFICATE-----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\n44A=\n-----END CERTIFICATE-----\n" [good.18] {"glossary":{"title":"example glossary","GlossDiv":{"title":"S","GlossList":{"GlossEntry":{"ID":"SGML","SortAs":"SGML","GlossTerm":"Standard Generalized Markup Language","Acronym":"SGML","Abbrev":"ISO 8879:1986","GlossDef":{"para":"A meta-markup language, used to create markup languages such as DocBook.","GlossSeeAlso":["GML","XML"]},"GlossSee":"markup"}}}}} [good.19] {"menu":{"id":"file","value":"File","popup":{"menuitem":[{"value":"New","onclick":"CreateNewDoc()"},{"value":"Open","onclick":"OpenDoc()"},{"value":"Close","onclick":"CloseDoc()"}]}}} [good.2] [{"precision":"zip","Latitude":37.766800,"Longitude":-122.395900,"Address":"","City":"SAN FRANCISCO","State":"CA","Zip":"94107","Country":"US"},{"precision":"zip","Latitude":37.371991,"Longitude":-122.026020,"Address":"","City":"SUNNYVALE","State":"CA","Zip":"94085","Country":"US"}] [good.20] {"widget":{"debug":"on","window":{"title":"Sample Konfabulator Widget","name":"main_window","width":500,"height":500},"image":{"src":"Images/Sun.png","name":"sun1","hOffset":250,"vOffset":250,"alignment":"center"},"text":{"data":"Click Here","size":36,"style":"bold","name":"text1","hOffset":250,"vOffset":100,"alignment":"center","onMouseUp":"sun1.opacity = (sun1.opacity / 100) * 90;"}}} [good.21] {"web-app":{"servlet":[{"servlet-name":"cofaxCDS","servlet-class":"org.cofax.cds.CDSServlet","init-param":{"configGlossary:installationAt":"Philadelphia, PA","configGlossary:adminEmail":"ksm@pobox.com","configGlossary:poweredBy":"Cofax","configGlossary:poweredByIcon":"/images/cofax.gif","configGlossary:staticPath":"/content/static","templateProcessorClass":"org.cofax.WysiwygTemplate","templateLoaderClass":"org.cofax.FilesTemplateLoader","templatePath":"templates","templateOverridePath":"","defaultListTemplate":"listTemplate.htm","defaultFileTemplate":"articleTemplate.htm","useJSP":false,"jspListTemplate":"listTemplate.jsp","jspFileTemplate":"articleTemplate.jsp","cachePackageTagsTrack":200,"cachePackageTagsStore":200,"cachePackageTagsRefresh":60,"cacheTemplatesTrack":100,"cacheTemplatesStore":50,"cacheTemplatesRefresh":15,"cachePagesTrack":200,"cachePagesStore":100,"cachePagesRefresh":10,"cachePagesDirtyRead":10,"searchEngineListTemplate":"forSearchEnginesList.htm","searchEngineFileTemplate":"forSearchEngines.htm","searchEngineRobotsDb":"WEB-INF/robots.db","useDataStore":true,"dataStoreClass":"org.cofax.SqlDataStore","redirectionClass":"org.cofax.SqlRedirection","dataStoreName":"cofax","dataStoreDriver":"com.microsoft.jdbc.sqlserver.SQLServerDriver","dataStoreUrl":"jdbc:microsoft:sqlserver://LOCALHOST:1433;DatabaseName=goon","dataStoreUser":"sa","dataStorePassword":"dataStoreTestQuery","dataStoreTestQuery":"SET NOCOUNT ON;select test='test';","dataStoreLogFile":"/usr/local/tomcat/logs/datastore.log","dataStoreInitConns":10,"dataStoreMaxConns":100,"dataStoreConnUsageLimit":100,"dataStoreLogLevel":"debug","maxUrlLength":500}},{"servlet-name":"cofaxEmail","servlet-class":"org.cofax.cds.EmailServlet","init-param":{"mailHost":"mail1","mailHostOverride":"mail2"}},{"servlet-name":"cofaxAdmin","servlet-class":"org.cofax.cds.AdminServlet"},{"servlet-name":"fileServlet","servlet-class":"org.cofax.cds.FileServlet"},{"servlet-name":"cofaxTools","servlet-class":"org.cofax.cms.CofaxToolsServlet","init-param":{"templatePath":"toolstemplates/","log":1,"logLocation":"/usr/local/tomcat/logs/CofaxTools.log","logMaxSize":"","dataLog":1,"dataLogLocation":"/usr/local/tomcat/logs/dataLog.log","dataLogMaxSize":"","removePageCache":"/content/admin/remove?cache=pages&id=","removeTemplateCache":"/content/admin/remove?cache=templates&id=","fileTransferFolder":"/usr/local/tomcat/webapps/content/fileTransferFolder","lookInContext":1,"adminGroupID":4,"betaServer":true}}],"servlet-mapping":{"cofaxCDS":"/","cofaxEmail":"/cofaxutil/aemail/*","cofaxAdmin":"/admin/*","fileServlet":"/static/*","cofaxTools":"/tools/*"},"taglib":{"taglib-uri":"cofax.tld","taglib-location":"/WEB-INF/tlds/cofax.tld"}}} [good.22] {"menu":{"header":"SVG Viewer","items":[{"id":"Open"},{"id":"OpenNew","label":"Open New"},null,{"id":"ZoomIn","label":"Zoom In"},{"id":"ZoomOut","label":"Zoom Out"},{"id":"OriginalView","label":"Original View"},null,{"id":"Quality"},{"id":"Pause"},{"id":"Mute"},null,{"id":"Find","label":"Find..."},{"id":"FindAgain","label":"Find Again"},{"id":"Copy"},{"id":"CopyAgain","label":"Copy Again"},{"id":"CopySVG","label":"Copy SVG"},{"id":"ViewSVG","label":"View SVG"},{"id":"ViewSource","label":"View Source"},{"id":"SaveAs","label":"Save As"},null,{"id":"Help"},{"id":"About","label":"About Adobe CVG Viewer..."}]}} [good.2a] {"precision":"zip","Latitude":37.766800,"Longitude":-122.395900,"Address":"","City":"SAN FRANCISCO","State":"CA","Zip":"94107","Country":"US"} [good.2b] {"precision":"zip","Latitude":37.371991,"Longitude":-122.026020,"Address":"","City":"SUNNYVALE","State":"CA","Zip":"94085","Country":"US"} [good.2c] [{"precision":"zip","Latitude":37.766800,"Longitude":-122.395900,"Address":"","City":"SAN FRANCISCO","State":"CA","Zip":"94107","Country":"US"}] [good.3] "Hello world!" [good.4] 42 [good.5] true [good.6] [] [good.7] {} [good.8] [{}] [good.9] -1 got expected error with bad.1 got expected error with bad.15 got expected error with bad.1a got expected error with bad.1b got expected error with bad.1c got expected error with bad.1d got expected error with bad.1e got expected error with bad.2 got expected error with bad.3 got expected error with bad.4 got expected error with bad.5 got expected error with bad.6 got expected error with bad.8 got expected error with bad.9 OK certmonger-0.78.6/tests/034-perms-sql/0000775000175000017500000000000012645513301014355 500000000000000certmonger-0.78.6/tests/034-perms-sql/run.sh0000775000175000017500000000007012645513264015445 00000000000000#!/bin/bash -e exec env scheme=sql: ../034-perms/run.sh certmonger-0.78.6/tests/034-perms-sql/expected.out0000664000175000017500000000401712645513264016641 00000000000000[start] [keygen] $owner:$group|0620|ee.key [reset] $owner:$group|0755|ee.key [csrgen] $owner:$group|0620|ee.key [reset] $owner:$group|0755|ee.key [submit] $owner:$group|0755|ee.key [reset] $owner:$group|0755|ee.key [save] $owner:$group|0662|ee.crt $owner:$group|0620|ee.key [rekey:start] [rekey:keygen] $owner:$group|0620|ee.key [rekey:reset] $owner:$group|0755|ee.key [rekey:rekey] $owner:$group|0755|ee.key $owner:$group|0620|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:csrgen] $owner:$group|0755|ee.key $owner:$group|0620|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:submit] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:save] $owner:$group|0662|ee.crt $owner:$group|0620|ee.key [sql:start] [sql:keygen] $owner:$group|0600|cert9.db $owner:$group|0620|key4.db [sql:reset] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [sql:csrgen] $owner:$group|0755|cert9.db $owner:$group|0620|key4.db [sql:reset] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [sql:submit] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [sql:reset] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [sql:save] $owner:$group|0662|cert9.db $owner:$group|0620|key4.db [rekey:sql:start] [rekey:sql:keygen] $owner:$group|0600|cert9.db $owner:$group|0620|key4.db [rekey:sql:reset] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [rekey:sql:keygen] $owner:$group|0755|cert9.db $owner:$group|0620|key4.db [rekey:sql:reset] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [rekey:sql:csrgen] $owner:$group|0755|cert9.db $owner:$group|0620|key4.db [rekey:sql:reset] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [rekey:sql:submit] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [rekey:sql:reset] $owner:$group|0755|cert9.db $owner:$group|0755|key4.db [rekey:sql:save] $owner:$group|0662|cert9.db $owner:$group|0620|key4.db OK certmonger-0.78.6/tests/034-perms-dbm/0000775000175000017500000000000012645513301014320 500000000000000certmonger-0.78.6/tests/034-perms-dbm/run.sh0000775000175000017500000000007012645513264015410 00000000000000#!/bin/bash -e exec env scheme=dbm: ../034-perms/run.sh certmonger-0.78.6/tests/034-perms-dbm/expected.out0000664000175000017500000000401712645513264016604 00000000000000[start] [keygen] $owner:$group|0620|ee.key [reset] $owner:$group|0755|ee.key [csrgen] $owner:$group|0620|ee.key [reset] $owner:$group|0755|ee.key [submit] $owner:$group|0755|ee.key [reset] $owner:$group|0755|ee.key [save] $owner:$group|0662|ee.crt $owner:$group|0620|ee.key [rekey:start] [rekey:keygen] $owner:$group|0620|ee.key [rekey:reset] $owner:$group|0755|ee.key [rekey:rekey] $owner:$group|0755|ee.key $owner:$group|0620|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:csrgen] $owner:$group|0755|ee.key $owner:$group|0620|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:submit] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:save] $owner:$group|0662|ee.crt $owner:$group|0620|ee.key [dbm:start] [dbm:keygen] $owner:$group|0600|cert8.db $owner:$group|0620|key3.db [dbm:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [dbm:csrgen] $owner:$group|0755|cert8.db $owner:$group|0620|key3.db [dbm:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [dbm:submit] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [dbm:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [dbm:save] $owner:$group|0662|cert8.db $owner:$group|0620|key3.db [rekey:dbm:start] [rekey:dbm:keygen] $owner:$group|0600|cert8.db $owner:$group|0620|key3.db [rekey:dbm:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:dbm:keygen] $owner:$group|0755|cert8.db $owner:$group|0620|key3.db [rekey:dbm:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:dbm:csrgen] $owner:$group|0755|cert8.db $owner:$group|0620|key3.db [rekey:dbm:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:dbm:submit] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:dbm:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:dbm:save] $owner:$group|0662|cert8.db $owner:$group|0620|key3.db OK certmonger-0.78.6/tests/034-perms/0000775000175000017500000000000012645513301013560 500000000000000certmonger-0.78.6/tests/034-perms/run.sh0000775000175000017500000000637712645513264014670 00000000000000#!/bin/bash cd "$tmpdir" function list() { $toolsdir/ls *.* | sed -e "s~^$owner:$group|~\$owner:\$group|~g" } function resetperms() { chown $owner:$group *.* chmod 0755 *.* } cat > ca << EOF id=Local ca_type=EXTERNAL ca_external_helper=$builddir/../src/local-submit -d $tmpdir EOF owner=`id -un` group=`id -gn` cat > entry << EOF id=Test ca_name=Local key_storage_type=FILE key_storage_location=$tmpdir/ee.key key_owner=$owner:$group key_perms=0620 cert_storage_type=FILE cert_storage_location=$tmpdir/ee.crt cert_owner=$owner:$group cert_perms=0662 notification_method=STDOUT EOF echo '[start]' list echo '[keygen]' $toolsdir/keygen entry > /dev/stderr list echo '[reset]' resetperms list echo '[csrgen]' $toolsdir/csrgen entry > /dev/stderr list echo '[reset]' resetperms list echo '[submit]' $toolsdir/submit ca entry > /dev/stderr list echo '[reset]' resetperms list echo '[save]' $toolsdir/certsave entry list rm *.* echo '[rekey:start]' list echo '[rekey:keygen]' $toolsdir/keygen entry > /dev/stderr list echo '[rekey:reset]' resetperms list echo '[rekey:rekey]' $toolsdir/keygen entry > /dev/stderr marker=`grep ^key_next_marker= entry | cut -f2- -d=` list | sed "s~^$owner:$group|~\$owner:\$group|~g" | sed "s,$marker,MARKER,g" echo '[rekey:reset]' resetperms list | sed "s~^$owner:$group|~\$owner:\$group|~g" | sed "s,$marker,MARKER,g" echo '[rekey:csrgen]' $toolsdir/csrgen entry > /dev/stderr list | sed "s~^$owner:$group|~\$owner:\$group|~g" | sed "s,$marker,MARKER,g" echo '[rekey:reset]' resetperms list | sed "s~^$owner:$group|~\$owner:\$group|~g" | sed "s,$marker,MARKER,g" echo '[rekey:submit]' $toolsdir/submit ca entry > /dev/stderr list | sed "s~^$owner:$group|~\$owner:\$group|~g" | sed "s,$marker,MARKER,g" echo '[rekey:reset]' resetperms list | sed "s~^$owner:$group|~\$owner:\$group|~g" | sed "s,$marker,MARKER,g" echo '[rekey:save]' $toolsdir/certsave entry list | sed "s~^$owner:$group|~\$owner:\$group|~g" | sed "s,$marker,MARKER,g" rm *.* cat > entry <<- EOF id=Test ca_name=Local key_storage_type=NSSDB key_storage_location=$scheme$tmpdir key_nickname=EE key_owner=$owner:$group key_perms=0620 cert_storage_type=NSSDB cert_storage_location=$scheme$tmpdir cert_nickname=EE cert_owner=$owner:$group cert_perms=0662 notification_method=STDOUT EOF echo echo '['$scheme'start]' list echo '['$scheme'keygen]' $toolsdir/keygen entry > /dev/stderr list echo '['$scheme'reset]' resetperms list echo '['$scheme'csrgen]' $toolsdir/csrgen entry > /dev/stderr list echo '['$scheme'reset]' resetperms list echo '['$scheme'submit]' $toolsdir/submit ca entry > /dev/stderr list echo '['$scheme'reset]' resetperms list echo '['$scheme'save]' $toolsdir/certsave entry list rm *.* echo '[rekey:'$scheme'start]' list echo '[rekey:'$scheme'keygen]' $toolsdir/keygen entry > /dev/stderr list echo '[rekey:'$scheme'reset]' resetperms list echo '[rekey:'$scheme'keygen]' $toolsdir/keygen entry > /dev/stderr list echo '[rekey:'$scheme'reset]' resetperms list echo '[rekey:'$scheme'csrgen]' $toolsdir/csrgen entry > /dev/stderr list echo '[rekey:'$scheme'reset]' resetperms list echo '[rekey:'$scheme'submit]' $toolsdir/submit ca entry > /dev/stderr list echo '[rekey:'$scheme'reset]' resetperms list echo '[rekey:'$scheme'save]' $toolsdir/certsave entry list rm *.* echo OK certmonger-0.78.6/tests/034-perms/expected.out0000664000175000017500000000370712645513264016051 00000000000000[start] [keygen] $owner:$group|0620|ee.key [reset] $owner:$group|0755|ee.key [csrgen] $owner:$group|0620|ee.key [reset] $owner:$group|0755|ee.key [submit] $owner:$group|0755|ee.key [reset] $owner:$group|0755|ee.key [save] $owner:$group|0662|ee.crt $owner:$group|0620|ee.key [rekey:start] [rekey:keygen] $owner:$group|0620|ee.key [rekey:reset] $owner:$group|0755|ee.key [rekey:rekey] $owner:$group|0755|ee.key $owner:$group|0620|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:csrgen] $owner:$group|0755|ee.key $owner:$group|0620|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:submit] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:reset] $owner:$group|0755|ee.key $owner:$group|0755|ee.key.MARKER.key [rekey:save] $owner:$group|0662|ee.crt $owner:$group|0620|ee.key [start] [keygen] $owner:$group|0600|cert8.db $owner:$group|0620|key3.db [reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [csrgen] $owner:$group|0755|cert8.db $owner:$group|0620|key3.db [reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [submit] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [save] $owner:$group|0662|cert8.db $owner:$group|0620|key3.db [rekey:start] [rekey:keygen] $owner:$group|0600|cert8.db $owner:$group|0620|key3.db [rekey:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:keygen] $owner:$group|0755|cert8.db $owner:$group|0620|key3.db [rekey:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:csrgen] $owner:$group|0755|cert8.db $owner:$group|0620|key3.db [rekey:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:submit] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:reset] $owner:$group|0755|cert8.db $owner:$group|0755|key3.db [rekey:save] $owner:$group|0662|cert8.db $owner:$group|0620|key3.db OK certmonger-0.78.6/tests/033-scep/0000775000175000017500000000000012645513301013363 500000000000000certmonger-0.78.6/tests/033-scep/run.sh0000775000175000017500000001323012645513264014455 00000000000000#!/bin/bash cd "$tmpdir" SCEP_MSGTYPE_PKCSREQ="19" SCEP_MSGTYPE_CERTREP="3" SCEP_MSGTYPE_GETCERTINITIAL="20" SCEP_MSGTYPE_GETCERT="21" SCEP_MSGTYPE_GETCRL="22" CERTMONGER_CONFIG_DIR="$tmpdir" export CERTMONGER_CONFIG_DIR $toolsdir/cachain.sh 0 2> /dev/null cat > ca << EOF id=SCEP ca_type=EXTERNAL ca_capabilities=Renewal,SHA-512,SHA-256,SHA-1,DES3 EOF var="ca_encryption_cert=" cat ca0.crt | while read line ; do echo "$var""$line" >> ca var=" " done openssl genrsa -out ee.key.next.key 2> /dev/null cat > entry << EOF id=Test ca_name=SelfSign state=NEED_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/ee.key key_next_marker=next cert_storage_type=FILE cert_storage_location=$tmpdir/ee.crt notification_method=STDOUT EOF $toolsdir/certread entry > /dev/null $toolsdir/csrgen entry > /dev/null $toolsdir/scepgen ca entry > scepdata echo -----BEGIN CERTIFICATE----- > mini.crt minicert=`grep ^minicert: scepdata | cut -f2- -d:` while test -n "$minicert" ; do line=`echo "$minicert" | cut -c-60` minicert=`echo "$minicert" | cut -c61-` echo $line >> mini.crt done echo -----END CERTIFICATE----- >> mini.crt check_failed() { if ! grep -q "^verify failed$" results ; then echo expected signature verification to fail, but it did not: cat results exit 1 fi } check_verified() { if ! grep -q "^verify passed$" results ; then echo expected signature verification to succeed, but it did not: cat results exit 1 fi } set_digest() { cat > $CERTMONGER_CONFIG_DIR/certmonger.conf <<- EOF [defaults] digest = $1 notification_method = stdout [selfsign] validity_period = 1d EOF } check_digest() { digest=`grep ^digest: results | cut -f2 -d:` if test $digest != $1 ; then echo expected digest $1, got "$digest": cat results fi } check_msgtype() { msgtype=`grep ^msgtype: results | cut -f2 -d:` if test $msgtype -ne $1 ; then echo expected message type $1, got "$msgtype": cat results fi } check_txid() { original=`grep ^tx: scepdata | cut -f2 -d:` parsed=`grep ^tx: results | cut -f2 -d:` if test "$original" != "$parsed" ; then echo expected tx id "$original", got "$parsed": cat results fi } check_nonce() { original=`grep ^nonce: scepdata | cut -f2 -d:` parsed=`grep ^snonce: results | cut -f2 -d:` if test "$original" != "$parsed" ; then echo expected nonce "$original", got "$parsed": cat results fi } set_digest md5 $toolsdir/scepgen ca entry > scepdata echo "[req, no trust root]" if test x`grep ^req: scepdata | cut -f2- -d:` = x ; then echo missing req fi grep ^req: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify ee.crt 2>&1 > results 2>&1 check_failed echo OK echo "[gic, no trust root]" if test x`grep ^gic: scepdata | cut -f2- -d:` = x ; then echo missing gic fi grep ^gic: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify ee.crt 2>&1 > results 2>&1 check_failed echo OK echo "[req, self root]" if test x`grep ^req: scepdata | cut -f2- -d:` = x ; then echo missing req fi grep ^req: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r mini.crt ee.crt 2>&1 > results 2>&1 check_failed echo OK echo "[gic, self root]" if test x`grep ^gic: scepdata | cut -f2- -d:` = x ; then echo missing gic fi grep ^gic: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r mini.crt ee.crt 2>&1 > results 2>&1 check_failed echo OK echo "[req, old root]" set_digest md5 $toolsdir/scepgen ca entry > scepdata if test x`grep ^req: scepdata | cut -f2- -d:` = x ; then echo missing req fi grep ^req: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r ca0.crt ee.crt 2>&1 > results 2>&1 check_verified check_msgtype $SCEP_MSGTYPE_PKCSREQ check_txid check_nonce check_digest md5 echo OK echo "[gic, old trust root]" set_digest sha1 $toolsdir/scepgen ca entry > scepdata if test x`grep ^gic: scepdata | cut -f2- -d:` = x ; then echo missing gic fi grep ^gic: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r ca0.crt ee.crt 2>&1 > results 2>&1 check_verified check_msgtype $SCEP_MSGTYPE_GETCERTINITIAL check_txid check_nonce check_digest sha1 echo OK echo "[req next, no trust root]" if test x`grep ^req.next.: scepdata | cut -f2- -d:` = x ; then echo missing req.next fi grep ^req.next.: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify ee.crt > results 2>&1 check_failed echo OK echo "[gic next, no trust root]" if test x`grep ^gic.next.: scepdata | cut -f2- -d:` = x ; then echo missing gic.next fi grep ^gic.next.: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify ee.crt > results 2>&1 check_failed echo OK echo "[req next, self root]" set_digest sha256 $toolsdir/scepgen ca entry > scepdata if test x`grep ^req.next.: scepdata | cut -f2- -d:` = x ; then echo missing req.next fi grep ^req.next.: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r mini.crt ee.crt > results 2>&1 check_verified check_msgtype $SCEP_MSGTYPE_PKCSREQ check_txid check_nonce check_digest sha256 echo OK echo "[gic next, self root]" if test x`grep ^gic.next.: scepdata | cut -f2- -d:` = x ; then echo missing gic.next fi grep ^gic.next.: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r mini.crt ee.crt > results 2>&1 check_verified check_msgtype $SCEP_MSGTYPE_GETCERTINITIAL check_txid check_nonce echo OK echo "[req next, old root]" if test x`grep ^req.next.: scepdata | cut -f2- -d:` = x ; then echo missing req.next fi grep ^req.next.: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r ca0.crt ee.crt > results 2>&1 check_failed echo OK echo "[gic next, old trust root]" if test x`grep ^gic.next.: scepdata | cut -f2- -d:` = x ; then echo missing gic.next fi grep ^gic.next.: scepdata | cut -f2- -d: | base64 -i -d | $toolsdir/pk7verify -r ca0.crt ee.crt > results 2>&1 check_failed echo OK certmonger-0.78.6/tests/033-scep/expected.out0000664000175000017500000000044612645513264015651 00000000000000[req, no trust root] OK [gic, no trust root] OK [req, self root] OK [gic, self root] OK [req, old root] OK [gic, old trust root] OK [req next, no trust root] OK [gic next, no trust root] OK [req next, self root] OK [gic next, self root] OK [req next, old root] OK [gic next, old trust root] OK certmonger-0.78.6/tests/032-chain/0000775000175000017500000000000012645513301013512 500000000000000certmonger-0.78.6/tests/032-chain/run.sh0000775000175000017500000000245212645513264014610 00000000000000#!/bin/bash cd "$tmpdir" $toolsdir/cachain.sh 5 2> /dev/null for c0 in ca0 ca1 ca2 ca3 ca4 ca5 ee ; do for c1 in ca0 ca1 ca2 ca3 ca4 ca5 ee ; do if test $c1 = $c0 ; then continue fi for c2 in ca0 ca1 ca2 ca3 ca4 ca5 ee ; do if test $c2 = $c0 -o $c2 = $c1 ; then continue fi for c3 in ca0 ca1 ca2 ca3 ca4 ca5 ee ; do if test $c3 = $c0 -o $c3 = $c1 -o $c3 = $c2 ; then continue fi for c4 in ca0 ca1 ca2 ca3 ca4 ca5 ee ; do if test $c4 = $c0 -o $c4 = $c1 -o $c4 = $c2 -o $c4 = $c3 ; then continue fi for c5 in ca0 ca1 ca2 ca3 ca4 ca5 ee ; do if test $c5 = $c0 -o $c5 = $c1 -o $c5 = $c2 -o $c5 = $c3 -o $c5 = $c4 ; then continue fi for c6 in ca0 ca1 ca2 ca3 ca4 ca5 ee ; do if test $c6 = $c0 -o $c6 = $c1 -o $c6 = $c2 -o $c6 = $c3 -o $c6 = $c4 -o $c6 = $c5 ; then continue fi echo "["$c0.crt,$c1.crt,$c2.crt,$c3.crt,$c4.crt,$c5.crt,$c6.crt"]" > expected echo "TOP:" >> expected cat ca0.crt >> expected echo "LEAF:" >> expected cat ee.crt >> expected j=1 for cert in ca5 ca4 ca3 ca2 ca1 ; do echo $j":" >> expected cat $cert.crt >> expected j=$((j+1)) done $toolsdir/pk7parse $c0.crt $c1.crt $c2.crt $c3.crt $c4.crt $c5.crt $c6.crt > actual if ! cmp actual expected ; then echo Order is wrong with $c0.crt,$c1.crt,$c2.crt,$c3.crt,$c4.crt,$c5.crt,$c6.crt. exit 1 fi done done done done done done done echo OK exit 0 certmonger-0.78.6/tests/032-chain/expected.out0000664000175000017500000000000312645513264015765 00000000000000OK certmonger-0.78.6/tests/031-pkcs7/0000775000175000017500000000000012645513301013456 500000000000000certmonger-0.78.6/tests/031-pkcs7/run.sh0000775000175000017500000003452412645513264014561 00000000000000#!/bin/bash cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" base64 -i -d > dercert << EOF MIIFYzCCBEugAwIBAgITHQAAAANgXaDHI7LEzAAAAAAAAzANBgkqhkiG9w0BAQUF ADBqMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0 MRMwEQYKCZImiZPyLGQBGRYDYm9zMRQwEgYKCZImiZPyLGQBGRYEY2F0czEQMA4G A1UEAxMHY2F0cy1jYTAeFw0xNTAxMjAxNzAwNTBaFw0xNzAxMTkxNzAwNTBaMCUx CzAJBgNVBAYTAlVTMRYwFAYDVQQDEw1DQVRTLU1TQ0VQLVJBMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1HPRNKcrL1p7ukeePb6J6ERlIj7pkghJ6vF 8s4axv9nCWiYiyTKjQKOcUdd0JBnR+kiBQ0D3R8Hlt6Lpepw011Fq6e0pLV3/TkG hlghs4S3E3yWLfPmxStKUwcOSuBftsGz3oHFcCFciPKpPHIdzix4H0hRIyvuAbt6 nYHJ5/6j8Q/9QgwnDWtz9IwzdT/kLRHTdp00B4twuGnvUo0gZ1V4/FOtlK+JOHYK 3F/nF3Zd3G5huVXnaUv4IYCVfzGmvuY+TDBXySbPMlZ9ProOw/w1pmD5EvSr45w7 3Qs02VERrmlumsRfHVClgZDpu7e0AMKzTY/JV2F0kqfyfLPP6QIDAQABo4ICRTCC AkEwOwYJKwYBBAGCNxQCBC4eLABFAG4AcgBvAGwAbABtAGUAbgB0AEEAZwBlAG4A dABPAGYAZgBsAGkAbgBlMBUGA1UdJQQOMAwGCisGAQQBgjcUAgEwDgYDVR0PAQH/ BAQDAgeAMB0GA1UdDgQWBBQ4+YLunQJ6VvBEBZIbvDq8uSBXOTAfBgNVHSMEGDAW gBRgkc2jH5B+ictDORzWc8Jl3x0BKjCB0AYDVR0fBIHIMIHFMIHCoIG/oIG8hoG5 bGRhcDovLy9DTj1jYXRzLWNhLENOPWNhdHMsQ049Q0RQLENOPVB1YmxpYyUyMEtl eSUyMFNlcnZpY2VzLENOPVNlcnZpY2VzLENOPUNvbmZpZ3VyYXRpb24sREM9Y2F0 cyxEQz1ib3MsREM9cmVkaGF0LERDPWNvbT9jZXJ0aWZpY2F0ZVJldm9jYXRpb25M aXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwgccGCCsG AQUFBwEBBIG6MIG3MIG0BggrBgEFBQcwAoaBp2xkYXA6Ly8vQ049Y2F0cy1jYSxD Tj1BSUEsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049 Q29uZmlndXJhdGlvbixEQz1jYXRzLERDPWJvcyxEQz1yZWRoYXQsREM9Y29tP2NB Q2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9y aXR5MA0GCSqGSIb3DQEBBQUAA4IBAQDbwjN+OpqCmTA7Jvc+SVa22lMgOkocRqHg FTxgs1wHFFzP+fRxJRWqAMC2+jfa5K9N/O/ftZa4tPJwahhH85HLhxX/xQlgbjq+ BDaVp27+sxMXTs7CFiKCm7pcUN+kZrDk9KpQbUchsjf405f32wh7hGpxW8YQvPkY 6XwxPHRU5o5xWaqB3rE2VxFJf47F2O8iZZOrgtF0rlbDMXfIahKw2vweWa3IQAZE SAIRO1wEYrabyn5nJPuGi4WvEdqYEOH0ohYaBNX6Z6CG4n0/20k422HxFsNA8fJ5 hkwu1JZ5HT4ZsguDFO1Ch6b1LQk7lCw7TyOJTg+5NrdcEzZ3O/mY EOF base64 -i -d > derpkcs7 << EOF MIIOmgYJKoZIhvcNAQcCoIIOizCCDocCAQExADALBgkqhkiG9w0BBwGggg5vMIIFYzCCBEugAwIB AgITHQAAAANgXaDHI7LEzAAAAAAAAzANBgkqhkiG9w0BAQUFADBqMRMwEQYKCZImiZPyLGQBGRYD Y29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0MRMwEQYKCZImiZPyLGQBGRYDYm9zMRQwEgYKCZIm iZPyLGQBGRYEY2F0czEQMA4GA1UEAxMHY2F0cy1jYTAeFw0xNTAxMjAxNzAwNTBaFw0xNzAxMTkx NzAwNTBaMCUxCzAJBgNVBAYTAlVTMRYwFAYDVQQDEw1DQVRTLU1TQ0VQLVJBMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1HPRNKcrL1p7ukeePb6J6ERlIj7pkghJ6vF8s4axv9nCWiY iyTKjQKOcUdd0JBnR+kiBQ0D3R8Hlt6Lpepw011Fq6e0pLV3/TkGhlghs4S3E3yWLfPmxStKUwcO SuBftsGz3oHFcCFciPKpPHIdzix4H0hRIyvuAbt6nYHJ5/6j8Q/9QgwnDWtz9IwzdT/kLRHTdp00 B4twuGnvUo0gZ1V4/FOtlK+JOHYK3F/nF3Zd3G5huVXnaUv4IYCVfzGmvuY+TDBXySbPMlZ9ProO w/w1pmD5EvSr45w73Qs02VERrmlumsRfHVClgZDpu7e0AMKzTY/JV2F0kqfyfLPP6QIDAQABo4IC RTCCAkEwOwYJKwYBBAGCNxQCBC4eLABFAG4AcgBvAGwAbABtAGUAbgB0AEEAZwBlAG4AdABPAGYA ZgBsAGkAbgBlMBUGA1UdJQQOMAwGCisGAQQBgjcUAgEwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQW BBQ4+YLunQJ6VvBEBZIbvDq8uSBXOTAfBgNVHSMEGDAWgBRgkc2jH5B+ictDORzWc8Jl3x0BKjCB 0AYDVR0fBIHIMIHFMIHCoIG/oIG8hoG5bGRhcDovLy9DTj1jYXRzLWNhLENOPWNhdHMsQ049Q0RQ LENOPVB1YmxpYyUyMEtleSUyMFNlcnZpY2VzLENOPVNlcnZpY2VzLENOPUNvbmZpZ3VyYXRpb24s REM9Y2F0cyxEQz1ib3MsREM9cmVkaGF0LERDPWNvbT9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0 P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwgccGCCsGAQUFBwEBBIG6MIG3 MIG0BggrBgEFBQcwAoaBp2xkYXA6Ly8vQ049Y2F0cy1jYSxDTj1BSUEsQ049UHVibGljJTIwS2V5 JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixEQz1jYXRzLERDPWJvcyxE Qz1yZWRoYXQsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0 aW9uQXV0aG9yaXR5MA0GCSqGSIb3DQEBBQUAA4IBAQDbwjN+OpqCmTA7Jvc+SVa22lMgOkocRqHg FTxgs1wHFFzP+fRxJRWqAMC2+jfa5K9N/O/ftZa4tPJwahhH85HLhxX/xQlgbjq+BDaVp27+sxMX Ts7CFiKCm7pcUN+kZrDk9KpQbUchsjf405f32wh7hGpxW8YQvPkY6XwxPHRU5o5xWaqB3rE2VxFJ f47F2O8iZZOrgtF0rlbDMXfIahKw2vweWa3IQAZESAIRO1wEYrabyn5nJPuGi4WvEdqYEOH0ohYa BNX6Z6CG4n0/20k422HxFsNA8fJ5hkwu1JZ5HT4ZsguDFO1Ch6b1LQk7lCw7TyOJTg+5NrdcEzZ3 O/mYMIIFUTCCBDmgAwIBAgITHQAAAATxxD/uqD1cPwAAAAAABDANBgkqhkiG9w0BAQUFADBqMRMw EQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0MRMwEQYKCZImiZPyLGQB GRYDYm9zMRQwEgYKCZImiZPyLGQBGRYEY2F0czEQMA4GA1UEAxMHY2F0cy1jYTAeFw0xNTAxMjAx NzAwNTBaFw0xNzAxMTkxNzAwNTBaMCUxCzAJBgNVBAYTAlVTMRYwFAYDVQQDEw1DQVRTLU1TQ0VQ LVJBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskLdYKcg6nqfcR1Esaxtcuf7mEW4 V3/QfHuW84jPnrIuqN04/fIRe2N0EajBVj5YKbPAnsTPasCUYOTEQm6x/nf0nQlz1sSu7Q04wxTV HeIipNCmAa/NNzwKkXW25Lv6Y0N4h5QC0SaDc3Dre3GglmmLekxHRaelXsbr9zcAsdW1C/5pcZCE vwRohuaPC9utNBwxr0MPGJsuim+hTXfMab8T1D3XvWL/8uPTwZWATylAJC5CLeQRB77EOkrip9UR k3/8J62kjZ7WsFbcNOtC3SIHJUBozYcv2tzT7Rd++Wqevyf4ycN+7MiAp8mk7il14Q99dOxetclU YO6HZxdlnQIDAQABo4ICMzCCAi8wKQYJKwYBBAGCNxQCBBweGgBDAEUAUABFAG4AYwByAHkAcAB0 AGkAbwBuMBUGA1UdJQQOMAwGCisGAQQBgjcUAgEwDgYDVR0PAQH/BAQDAgUgMB0GA1UdDgQWBBSj cljfx7t241rUq23YBU0RANSpiDAfBgNVHSMEGDAWgBRgkc2jH5B+ictDORzWc8Jl3x0BKjCB0AYD VR0fBIHIMIHFMIHCoIG/oIG8hoG5bGRhcDovLy9DTj1jYXRzLWNhLENOPWNhdHMsQ049Q0RQLENO PVB1YmxpYyUyMEtleSUyMFNlcnZpY2VzLENOPVNlcnZpY2VzLENOPUNvbmZpZ3VyYXRpb24sREM9 Y2F0cyxEQz1ib3MsREM9cmVkaGF0LERDPWNvbT9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0P2Jh c2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwgccGCCsGAQUFBwEBBIG6MIG3MIG0 BggrBgEFBQcwAoaBp2xkYXA6Ly8vQ049Y2F0cy1jYSxDTj1BSUEsQ049UHVibGljJTIwS2V5JTIw U2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixEQz1jYXRzLERDPWJvcyxEQz1y ZWRoYXQsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9u QXV0aG9yaXR5MA0GCSqGSIb3DQEBBQUAA4IBAQBCOr7Zl+MQAvHR0RAXrqy0EP49HIo1IUgjY3Rx 5Dvje5zSfkvd/C8ftpLc5fJD2pBcnhy8rlG1upRwAxMKpofYu5Ul9MDnbpdZ33j9pdS2ZVT/Tckw WEaW9IQnrXgnIFCbZnLTIi38ISgHIj6lenvk49nDF2a4fAG+FSRGGwh/eK7TiqB6EWIO+rL2Qq+Y 4++V+w5nz6vMQh087/b/1AX2GUQrrmzRtk+QIQZAT6EWTm1ye4RxkDJuzcoOLq36M2ZukDd+hdhC S1iUjWTfubmbjYEsmn5NFQaLHd0/oP5YoXVJ+ET1A+5DQGuvHq46MMroxN5L7Jhiu/Q9x3E6UJZv MIIDrzCCApegAwIBAgIQcfwiT1pZpoNOkPWmM0Ix9jANBgkqhkiG9w0BAQUFADBqMRMwEQYKCZIm iZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0MRMwEQYKCZImiZPyLGQBGRYDYm9z MRQwEgYKCZImiZPyLGQBGRYEY2F0czEQMA4GA1UEAxMHY2F0cy1jYTAeFw0xNTAxMjAxNjQ5Mjla Fw0yMDAxMjAxNjU5MjlaMGoxEzARBgoJkiaJk/IsZAEZFgNjb20xFjAUBgoJkiaJk/IsZAEZFgZy ZWRoYXQxEzARBgoJkiaJk/IsZAEZFgNib3MxFDASBgoJkiaJk/IsZAEZFgRjYXRzMRAwDgYDVQQD EwdjYXRzLWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OyoxZGu3tQXQwR9fCqI Z8NSURIGXdG9r6jdp33iJxqYItKlMF4l2z1WPJsPSV1u4SvKh525Gypids6uZXPiYZau2Q3hi2HW hpRctSyZWP3DCKJh/cWfG9O/kVsJxg+nPDbldZOS4GhqsO+QcH16nPAdDJz5dFDMp3SChgJBR42y nSXVtibX0oOC9Z4Lyix6EuNWNOMtJh49DUCRkcRaEG9ffFWC2KBbVZZhJDc8fpihQP0pA8U2l14J qZBKAegdYqOX50DrDMdw/AzLzrSbvjfhLDXAKb07hfu9I5MFDSVEzwLPrROD9jhMKwcxq6w8fILx KGR0IADiNKgmEY/ePQIDAQABo1EwTzALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNV HQ4EFgQUYJHNox+QfonLQzkc1nPCZd8dASowEAYJKwYBBAGCNxUBBAMCAQAwDQYJKoZIhvcNAQEF BQADggEBACZQClL3/6qebCPcryb7AmmEioNzfPGRt/1bzEYWKgm1GG2gza7HCiucGJvaZ0VUnWW/ X/YtNJuqEDKyoyiCACwvsp/QGCjqtv/gedrO0sXCw23uTTWs8oWmS2tT4ilc9FX0Gcq41KS40MFb bSrqDuoCbAOB8IrC78j6qBUKFHgs4rBh67Fzn7DZOgnIbhEl/Fgh1gfpX+1ldUeh3azx1bCpKH0f 0Viqs8wWrGrCuB0lk54BgneRAOPeJWp2ZfDkDyjuYtqZB0wRE2o7wU4m+gRA7T9F3WyiueKWu4PX Pb51TbuJAVlN1zoXscuXSNzkYFDxd4r6PDuDYF4hmXjqO7ExAA== EOF cat > bundle << EOF [!p[?3;4l> -----BEGIN CERTIFICATE----- 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 -----END CERTIFICATE----- Blah blah blah. -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwlsb2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFowFDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC88Y0XCyeM/Q32FPZzASZCvnc7/8c1APYUpnI458WL2NEnQARuN+JRuDMCRxfhyplNxBwYIYGF1ufjjH7tk3Yap+g5b3cZ0054/45FOZvOJ9TdjWLWGMQPBrtDleqR9IsL5hZcriAPm3lh6F0uqtAnpNo5OV3OtxPStE5DzX02RQIDAQABMA0GCSqGSIb3DQEBCwUAA4GBAGWOrfPaXb3JH9EYl2H0mxw4camJSKfpDDfdEGzfbnmaQwQ1M/rtLGb6/sLjDqlRPATPtQOIaH1MPGNvE0nO/m4Hg7gE2QiSkoqEPrwAVFMvGtiyFnXa/LMa2KzsumCWvvu9E12n0jz7hSnEdgF5qYtIUtiKBX9jNzQZeC/b2L+v -----END CERTIFICATE----- Blah blah blah. EOF cat > recipient << EOF -----BEGIN CERTIFICATE----- MIIB0TCCATqgAwIBAgICEjUwDQYJKoZIhvcNAQELBQAwFDESMBAGA1UEAxMJbG9j YWxob3N0MB4XDTcwMDEwMTExMTExMVoXDTcxMDEwMTExMTExMVowFDESMBAGA1UE AxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC394oITlJc hLbXLUAYJ+IGpvr3YfyQlQb3u95p3s0gEemx/+Dy3ViJW7WhMuc/FHJSV5ghLflk TRLfUdS18LGBkfkREBJVWfELhgm5ZHqiGzCvTmg01tgvouKj+8kFNJIaWsEm8mBa SoJzk8+vOQsnXjrZAKAFY7WrVryilh4cQQIDAQABozIwMDAMBgNVHRMBAf8EAjAA MCAGA1UdDgEBAAQWBBQfjVS9H0rXGb4SFB9bkzTpHHUH2jANBgkqhkiG9w0BAQsF AAOBgQCt6xbyri3BobQUPQmN7ROc3mveMSfMyOwBSTDjl2XIWV98HjVLWRjScbg7 KW6z8W7iaasSDF7GWM2YqWaanWx5XwzayNUvIX3gHKqo+OwHo5QUfawtEV5Niop1 N4nZp1GMclRuk9UFXLV2NfaohRPYs7FVdBVtWNvg7hH8XedLyw== -----END CERTIFICATE----- EOF cat > key << EOF -----BEGIN PRIVATE KEY----- MIICdQIBADANBgkqhkiG9w0BAQEFAASCAl8wggJbAgEAAoGBALf3ighOUlyEttct QBgn4gam+vdh/JCVBve73mnezSAR6bH/4PLdWIlbtaEy5z8UclJXmCEt+WRNEt9R 1LXwsYGR+REQElVZ8QuGCblkeqIbMK9OaDTW2C+i4qP7yQU0khpawSbyYFpKgnOT z685CydeOtkAoAVjtatWvKKWHhxBAgMBAAECgYBowoXQBQnRtaGJFzOQjeWgdCYm CZ6RlsvI9yrIjx+wS4MQ4e1vX6yzS446pYoZ2cLgMRFok42ZGGrO0QKYOOBbOE1c fS7FGddn/8KENW8w2kxRI2pxFXQuHBWuWdkoArhZOPxL4O+xg9dAvrwxy2pOBvpr veZ/8siYc49ki69hgQJBAO5WSjDQ2M0aVfZOwCKm7+0tVeC6ZGS4MPH/h1oQNfSk oB1Pbc9i/gR7M5690i9eqGvr98kGGSvlvKC6LGqgT5UCQQDFmb6DbLa3HiVn7W7b u53rhZpnghn7OdFATxeyMDVnU6GFye5+8EhwVUDLVF7S7v8hOYOYY3HjkpzqhxkT 7B79AkBlTpZwk4VkASrC7Ixs7kqTpS6YvIHJ8iUT6ErPNI7Ks2M/sjB585kHrJqv gf4ilni+jumfMBFpAFkidKBGnmfVAkAqKom1/9/pqZwv1kHez+V+Gc9+IQwsSQU3 JOmYk6MBvp3sL9Ad9GZw2jBucz2c43U8AMrtHONzvZiQj22xi6R9AkAYfAWQHEkc 1BQ/aKNIfymCkV/1mNcOlm6OE6jy8gJitMzFd8OrpokwGIQpTjKCMQwDtWbRouYE GcR9Xs1JgYLI -----END PRIVATE KEY----- EOF cat > csr << EOF -----BEGIN NEW CERTIFICATE REQUEST----- MIIBwjCCASsCAQAwFDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEB AQUAA4GNADCBiQKBgQC394oITlJchLbXLUAYJ+IGpvr3YfyQlQb3u95p3s0gEemx /+Dy3ViJW7WhMuc/FHJSV5ghLflkTRLfUdS18LGBkfkREBJVWfELhgm5ZHqiGzCv Tmg01tgvouKj+8kFNJIaWsEm8mBaSoJzk8+vOQsnXjrZAKAFY7WrVryilh4cQQID AQABoG4wKwYJKoZIhvcNAQkUMR4eHAAyADAAMQA1ADAAMQAyADIAMgAzADIANQAx ADMwPwYJKoZIhvcNAQkOMTIwMDAMBgNVHRMBAf8EAjAAMCAGA1UdDgEBAAQWBBQf jVS9H0rXGb4SFB9bkzTpHHUH2jANBgkqhkiG9w0BAQsFAAOBgQAliHNkTQ35679h 9RWudkBBn5aRnp+AoRPVyPMoqr8vl4SyrMiqg+U71hbju5fEnrFi8kDHYgq0otbb rjLR8fyXjJzhoUgY1twomdFeLvfd1Dk2DClEKGqye8rTQaatL3tq29NjqASSge1z c9gcIfqK9dgYShx5Iy0Rshend17aBw== -----END NEW CERTIFICATE REQUEST----- EOF cat > other << EOF -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- EOF cat > other2 << EOF -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- EOF cat > other3 << EOF -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 EOF echo -n -----END CERTIFICATE----- >> other3 cat > plain << EOF This is some plaintext. EOF cat > entry.openssl << EOF id=Test key_storage_type=FILE key_storage_location=key EOF cat > entry.nss << EOF id=Test key_storage_type=NSSDB key_storage_location=$tmpdir cert_storage_type=NSSDB cert_storage_location=$tmpdir minicert=-----BEGIN CERTIFICATE----- MIIB0TCCATqgAwIBAgICEjUwDQYJKoZIhvcNAQELBQAwFDESMBAGA1UEAxMJbG9j YWxob3N0MB4XDTcwMDEwMTExMTExMVoXDTcxMDEwMTExMTExMVowFDESMBAGA1UE AxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC394oITlJc hLbXLUAYJ+IGpvr3YfyQlQb3u95p3s0gEemx/+Dy3ViJW7WhMuc/FHJSV5ghLflk TRLfUdS18LGBkfkREBJVWfELhgm5ZHqiGzCvTmg01tgvouKj+8kFNJIaWsEm8mBa SoJzk8+vOQsnXjrZAKAFY7WrVryilh4cQQIDAQABozIwMDAMBgNVHRMBAf8EAjAA MCAGA1UdDgEBAAQWBBQfjVS9H0rXGb4SFB9bkzTpHHUH2jANBgkqhkiG9w0BAQsF AAOBgQCt6xbyri3BobQUPQmN7ROc3mveMSfMyOwBSTDjl2XIWV98HjVLWRjScbg7 KW6z8W7iaasSDF7GWM2YqWaanWx5XwzayNUvIX3gHKqo+OwHo5QUfawtEV5Niop1 N4nZp1GMclRuk9UFXLV2NfaohRPYs7FVdBVtWNvg7hH8XedLyw== -----END CERTIFICATE----- EOF $toolsdir/pk7parse dercert $toolsdir/pk7parse derpkcs7 $toolsdir/pk7parse other $toolsdir/pk7parse other2 $toolsdir/pk7parse other3 $toolsdir/pk7parse bundle echo Decrypted CSR: $toolsdir/pk7env recipient csr | base64 -i -d | openssl smime -inform der -decrypt -inkey key recipient -binary | base64 echo Encoded issuer-and-subject: $toolsdir/pk7env recipient recipient recipient | head -n 1 echo Decrypted issuer-and-subject: $toolsdir/pk7env recipient recipient recipient | tail -n 1 | base64 -i -d | openssl smime -inform der -decrypt -inkey key recipient | base64 echo Encrypted plaintext, OpenSSL key: openssl smime -in plain -outform der -encrypt recipient | $toolsdir/pk7decrypt entry.openssl echo Encrypted plaintext, NSS key: openssl pkcs12 -export -name testy -inkey key -in recipient -out p12 -passout pass:foo pk12util -i p12 -d "$tmpdir" -W foo certutil -d "$tmpdir" -D -n testy openssl smime -in plain -outform der -encrypt recipient | $toolsdir/pk7decrypt entry.nss certmonger-0.78.6/tests/031-pkcs7/expected.out0000664000175000017500000002612512645513264015746 00000000000000[dercert] TOP: LEAF: -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgITHQAAAANgXaDHI7LEzAAAAAAAAzANBgkqhkiG9w0BAQUF ADBqMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0 MRMwEQYKCZImiZPyLGQBGRYDYm9zMRQwEgYKCZImiZPyLGQBGRYEY2F0czEQMA4G A1UEAxMHY2F0cy1jYTAeFw0xNTAxMjAxNzAwNTBaFw0xNzAxMTkxNzAwNTBaMCUx CzAJBgNVBAYTAlVTMRYwFAYDVQQDEw1DQVRTLU1TQ0VQLVJBMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1HPRNKcrL1p7ukeePb6J6ERlIj7pkghJ6vF 8s4axv9nCWiYiyTKjQKOcUdd0JBnR+kiBQ0D3R8Hlt6Lpepw011Fq6e0pLV3/TkG hlghs4S3E3yWLfPmxStKUwcOSuBftsGz3oHFcCFciPKpPHIdzix4H0hRIyvuAbt6 nYHJ5/6j8Q/9QgwnDWtz9IwzdT/kLRHTdp00B4twuGnvUo0gZ1V4/FOtlK+JOHYK 3F/nF3Zd3G5huVXnaUv4IYCVfzGmvuY+TDBXySbPMlZ9ProOw/w1pmD5EvSr45w7 3Qs02VERrmlumsRfHVClgZDpu7e0AMKzTY/JV2F0kqfyfLPP6QIDAQABo4ICRTCC AkEwOwYJKwYBBAGCNxQCBC4eLABFAG4AcgBvAGwAbABtAGUAbgB0AEEAZwBlAG4A dABPAGYAZgBsAGkAbgBlMBUGA1UdJQQOMAwGCisGAQQBgjcUAgEwDgYDVR0PAQH/ BAQDAgeAMB0GA1UdDgQWBBQ4+YLunQJ6VvBEBZIbvDq8uSBXOTAfBgNVHSMEGDAW gBRgkc2jH5B+ictDORzWc8Jl3x0BKjCB0AYDVR0fBIHIMIHFMIHCoIG/oIG8hoG5 bGRhcDovLy9DTj1jYXRzLWNhLENOPWNhdHMsQ049Q0RQLENOPVB1YmxpYyUyMEtl eSUyMFNlcnZpY2VzLENOPVNlcnZpY2VzLENOPUNvbmZpZ3VyYXRpb24sREM9Y2F0 cyxEQz1ib3MsREM9cmVkaGF0LERDPWNvbT9jZXJ0aWZpY2F0ZVJldm9jYXRpb25M aXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwgccGCCsG AQUFBwEBBIG6MIG3MIG0BggrBgEFBQcwAoaBp2xkYXA6Ly8vQ049Y2F0cy1jYSxD Tj1BSUEsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049 Q29uZmlndXJhdGlvbixEQz1jYXRzLERDPWJvcyxEQz1yZWRoYXQsREM9Y29tP2NB Q2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9y aXR5MA0GCSqGSIb3DQEBBQUAA4IBAQDbwjN+OpqCmTA7Jvc+SVa22lMgOkocRqHg FTxgs1wHFFzP+fRxJRWqAMC2+jfa5K9N/O/ftZa4tPJwahhH85HLhxX/xQlgbjq+ BDaVp27+sxMXTs7CFiKCm7pcUN+kZrDk9KpQbUchsjf405f32wh7hGpxW8YQvPkY 6XwxPHRU5o5xWaqB3rE2VxFJf47F2O8iZZOrgtF0rlbDMXfIahKw2vweWa3IQAZE SAIRO1wEYrabyn5nJPuGi4WvEdqYEOH0ohYaBNX6Z6CG4n0/20k422HxFsNA8fJ5 hkwu1JZ5HT4ZsguDFO1Ch6b1LQk7lCw7TyOJTg+5NrdcEzZ3O/mY -----END CERTIFICATE----- [derpkcs7] TOP: -----BEGIN CERTIFICATE----- MIIDrzCCApegAwIBAgIQcfwiT1pZpoNOkPWmM0Ix9jANBgkqhkiG9w0BAQUFADBq MRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0MRMw EQYKCZImiZPyLGQBGRYDYm9zMRQwEgYKCZImiZPyLGQBGRYEY2F0czEQMA4GA1UE AxMHY2F0cy1jYTAeFw0xNTAxMjAxNjQ5MjlaFw0yMDAxMjAxNjU5MjlaMGoxEzAR BgoJkiaJk/IsZAEZFgNjb20xFjAUBgoJkiaJk/IsZAEZFgZyZWRoYXQxEzARBgoJ kiaJk/IsZAEZFgNib3MxFDASBgoJkiaJk/IsZAEZFgRjYXRzMRAwDgYDVQQDEwdj YXRzLWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OyoxZGu3tQX QwR9fCqIZ8NSURIGXdG9r6jdp33iJxqYItKlMF4l2z1WPJsPSV1u4SvKh525Gypi ds6uZXPiYZau2Q3hi2HWhpRctSyZWP3DCKJh/cWfG9O/kVsJxg+nPDbldZOS4Ghq sO+QcH16nPAdDJz5dFDMp3SChgJBR42ynSXVtibX0oOC9Z4Lyix6EuNWNOMtJh49 DUCRkcRaEG9ffFWC2KBbVZZhJDc8fpihQP0pA8U2l14JqZBKAegdYqOX50DrDMdw /AzLzrSbvjfhLDXAKb07hfu9I5MFDSVEzwLPrROD9jhMKwcxq6w8fILxKGR0IADi NKgmEY/ePQIDAQABo1EwTzALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAd BgNVHQ4EFgQUYJHNox+QfonLQzkc1nPCZd8dASowEAYJKwYBBAGCNxUBBAMCAQAw DQYJKoZIhvcNAQEFBQADggEBACZQClL3/6qebCPcryb7AmmEioNzfPGRt/1bzEYW Kgm1GG2gza7HCiucGJvaZ0VUnWW/X/YtNJuqEDKyoyiCACwvsp/QGCjqtv/gedrO 0sXCw23uTTWs8oWmS2tT4ilc9FX0Gcq41KS40MFbbSrqDuoCbAOB8IrC78j6qBUK FHgs4rBh67Fzn7DZOgnIbhEl/Fgh1gfpX+1ldUeh3azx1bCpKH0f0Viqs8wWrGrC uB0lk54BgneRAOPeJWp2ZfDkDyjuYtqZB0wRE2o7wU4m+gRA7T9F3WyiueKWu4PX Pb51TbuJAVlN1zoXscuXSNzkYFDxd4r6PDuDYF4hmXjqO7E= -----END CERTIFICATE----- LEAF: -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgITHQAAAATxxD/uqD1cPwAAAAAABDANBgkqhkiG9w0BAQUF ADBqMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0 MRMwEQYKCZImiZPyLGQBGRYDYm9zMRQwEgYKCZImiZPyLGQBGRYEY2F0czEQMA4G A1UEAxMHY2F0cy1jYTAeFw0xNTAxMjAxNzAwNTBaFw0xNzAxMTkxNzAwNTBaMCUx CzAJBgNVBAYTAlVTMRYwFAYDVQQDEw1DQVRTLU1TQ0VQLVJBMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskLdYKcg6nqfcR1Esaxtcuf7mEW4V3/QfHuW 84jPnrIuqN04/fIRe2N0EajBVj5YKbPAnsTPasCUYOTEQm6x/nf0nQlz1sSu7Q04 wxTVHeIipNCmAa/NNzwKkXW25Lv6Y0N4h5QC0SaDc3Dre3GglmmLekxHRaelXsbr 9zcAsdW1C/5pcZCEvwRohuaPC9utNBwxr0MPGJsuim+hTXfMab8T1D3XvWL/8uPT wZWATylAJC5CLeQRB77EOkrip9URk3/8J62kjZ7WsFbcNOtC3SIHJUBozYcv2tzT 7Rd++Wqevyf4ycN+7MiAp8mk7il14Q99dOxetclUYO6HZxdlnQIDAQABo4ICMzCC Ai8wKQYJKwYBBAGCNxQCBBweGgBDAEUAUABFAG4AYwByAHkAcAB0AGkAbwBuMBUG A1UdJQQOMAwGCisGAQQBgjcUAgEwDgYDVR0PAQH/BAQDAgUgMB0GA1UdDgQWBBSj cljfx7t241rUq23YBU0RANSpiDAfBgNVHSMEGDAWgBRgkc2jH5B+ictDORzWc8Jl 3x0BKjCB0AYDVR0fBIHIMIHFMIHCoIG/oIG8hoG5bGRhcDovLy9DTj1jYXRzLWNh LENOPWNhdHMsQ049Q0RQLENOPVB1YmxpYyUyMEtleSUyMFNlcnZpY2VzLENOPVNl cnZpY2VzLENOPUNvbmZpZ3VyYXRpb24sREM9Y2F0cyxEQz1ib3MsREM9cmVkaGF0 LERDPWNvbT9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xh c3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwgccGCCsGAQUFBwEBBIG6MIG3MIG0Bggr BgEFBQcwAoaBp2xkYXA6Ly8vQ049Y2F0cy1jYSxDTj1BSUEsQ049UHVibGljJTIw S2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixEQz1j YXRzLERDPWJvcyxEQz1yZWRoYXQsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9v YmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9yaXR5MA0GCSqGSIb3DQEBBQUA A4IBAQBCOr7Zl+MQAvHR0RAXrqy0EP49HIo1IUgjY3Rx5Dvje5zSfkvd/C8ftpLc 5fJD2pBcnhy8rlG1upRwAxMKpofYu5Ul9MDnbpdZ33j9pdS2ZVT/TckwWEaW9IQn rXgnIFCbZnLTIi38ISgHIj6lenvk49nDF2a4fAG+FSRGGwh/eK7TiqB6EWIO+rL2 Qq+Y4++V+w5nz6vMQh087/b/1AX2GUQrrmzRtk+QIQZAT6EWTm1ye4RxkDJuzcoO Lq36M2ZukDd+hdhCS1iUjWTfubmbjYEsmn5NFQaLHd0/oP5YoXVJ+ET1A+5DQGuv Hq46MMroxN5L7Jhiu/Q9x3E6UJZv -----END CERTIFICATE----- 1: -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgITHQAAAANgXaDHI7LEzAAAAAAAAzANBgkqhkiG9w0BAQUF ADBqMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGcmVkaGF0 MRMwEQYKCZImiZPyLGQBGRYDYm9zMRQwEgYKCZImiZPyLGQBGRYEY2F0czEQMA4G A1UEAxMHY2F0cy1jYTAeFw0xNTAxMjAxNzAwNTBaFw0xNzAxMTkxNzAwNTBaMCUx CzAJBgNVBAYTAlVTMRYwFAYDVQQDEw1DQVRTLU1TQ0VQLVJBMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1HPRNKcrL1p7ukeePb6J6ERlIj7pkghJ6vF 8s4axv9nCWiYiyTKjQKOcUdd0JBnR+kiBQ0D3R8Hlt6Lpepw011Fq6e0pLV3/TkG hlghs4S3E3yWLfPmxStKUwcOSuBftsGz3oHFcCFciPKpPHIdzix4H0hRIyvuAbt6 nYHJ5/6j8Q/9QgwnDWtz9IwzdT/kLRHTdp00B4twuGnvUo0gZ1V4/FOtlK+JOHYK 3F/nF3Zd3G5huVXnaUv4IYCVfzGmvuY+TDBXySbPMlZ9ProOw/w1pmD5EvSr45w7 3Qs02VERrmlumsRfHVClgZDpu7e0AMKzTY/JV2F0kqfyfLPP6QIDAQABo4ICRTCC AkEwOwYJKwYBBAGCNxQCBC4eLABFAG4AcgBvAGwAbABtAGUAbgB0AEEAZwBlAG4A dABPAGYAZgBsAGkAbgBlMBUGA1UdJQQOMAwGCisGAQQBgjcUAgEwDgYDVR0PAQH/ BAQDAgeAMB0GA1UdDgQWBBQ4+YLunQJ6VvBEBZIbvDq8uSBXOTAfBgNVHSMEGDAW gBRgkc2jH5B+ictDORzWc8Jl3x0BKjCB0AYDVR0fBIHIMIHFMIHCoIG/oIG8hoG5 bGRhcDovLy9DTj1jYXRzLWNhLENOPWNhdHMsQ049Q0RQLENOPVB1YmxpYyUyMEtl eSUyMFNlcnZpY2VzLENOPVNlcnZpY2VzLENOPUNvbmZpZ3VyYXRpb24sREM9Y2F0 cyxEQz1ib3MsREM9cmVkaGF0LERDPWNvbT9jZXJ0aWZpY2F0ZVJldm9jYXRpb25M aXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwgccGCCsG AQUFBwEBBIG6MIG3MIG0BggrBgEFBQcwAoaBp2xkYXA6Ly8vQ049Y2F0cy1jYSxD Tj1BSUEsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049 Q29uZmlndXJhdGlvbixEQz1jYXRzLERDPWJvcyxEQz1yZWRoYXQsREM9Y29tP2NB Q2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9y aXR5MA0GCSqGSIb3DQEBBQUAA4IBAQDbwjN+OpqCmTA7Jvc+SVa22lMgOkocRqHg FTxgs1wHFFzP+fRxJRWqAMC2+jfa5K9N/O/ftZa4tPJwahhH85HLhxX/xQlgbjq+ BDaVp27+sxMXTs7CFiKCm7pcUN+kZrDk9KpQbUchsjf405f32wh7hGpxW8YQvPkY 6XwxPHRU5o5xWaqB3rE2VxFJf47F2O8iZZOrgtF0rlbDMXfIahKw2vweWa3IQAZE SAIRO1wEYrabyn5nJPuGi4WvEdqYEOH0ohYaBNX6Z6CG4n0/20k422HxFsNA8fJ5 hkwu1JZ5HT4ZsguDFO1Ch6b1LQk7lCw7TyOJTg+5NrdcEzZ3O/mY -----END CERTIFICATE----- [other] TOP: LEAF: -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwlsb2Nh bGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFowFDESMBAG A1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDT7+Ba zrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOHir1tUXIDZN2j+nF4 U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/fsoPhvKA6cBeWUWwpdtRn FjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwIDAQABMA0GCSqGSIb3DQEBCwUA A4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3QwJzjmXgwGUp5QryUIBZc9Kc5ceMUJ /Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5 aI7vbFEfB80Xd0O9O06ckxr7QBScWc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- [other2] TOP: LEAF: -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwlsb2Nh bGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFowFDESMBAG A1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDT7+Ba zrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOHir1tUXIDZN2j+nF4 U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/fsoPhvKA6cBeWUWwpdtRn FjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwIDAQABMA0GCSqGSIb3DQEBCwUA A4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3QwJzjmXgwGUp5QryUIBZc9Kc5ceMUJ /Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5 aI7vbFEfB80Xd0O9O06ckxr7QBScWc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- [other3] TOP: LEAF: -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwlsb2Nh bGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFowFDESMBAG A1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDT7+Ba zrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOHir1tUXIDZN2j+nF4 U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/fsoPhvKA6cBeWUWwpdtRn FjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwIDAQABMA0GCSqGSIb3DQEBCwUA A4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3QwJzjmXgwGUp5QryUIBZc9Kc5ceMUJ /Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5 aI7vbFEfB80Xd0O9O06ckxr7QBScWc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- [bundle] TOP: LEAF: 1: -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwlsb2Nh bGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFowFDESMBAG A1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDT7+Ba zrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOHir1tUXIDZN2j+nF4 U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/fsoPhvKA6cBeWUWwpdtRn FjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwIDAQABMA0GCSqGSIb3DQEBCwUA A4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3QwJzjmXgwGUp5QryUIBZc9Kc5ceMUJ /Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5 aI7vbFEfB80Xd0O9O06ckxr7QBScWc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- 2: -----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwlsb2Nh bGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFowFDESMBAG A1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC88Y0X CyeM/Q32FPZzASZCvnc7/8c1APYUpnI458WL2NEnQARuN+JRuDMCRxfhyplNxBwY IYGF1ufjjH7tk3Yap+g5b3cZ0054/45FOZvOJ9TdjWLWGMQPBrtDleqR9IsL5hZc riAPm3lh6F0uqtAnpNo5OV3OtxPStE5DzX02RQIDAQABMA0GCSqGSIb3DQEBCwUA A4GBAGWOrfPaXb3JH9EYl2H0mxw4camJSKfpDDfdEGzfbnmaQwQ1M/rtLGb6/sLj DqlRPATPtQOIaH1MPGNvE0nO/m4Hg7gE2QiSkoqEPrwAVFMvGtiyFnXa/LMa2Kzs umCWvvu9E12n0jz7hSnEdgF5qYtIUtiKBX9jNzQZeC/b2L+v -----END CERTIFICATE----- Decrypted CSR: MIIBwjCCASsCAQAwFDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQC394oITlJchLbXLUAYJ+IGpvr3YfyQlQb3u95p3s0gEemx/+Dy3ViJW7WhMuc/FHJSV5gh LflkTRLfUdS18LGBkfkREBJVWfELhgm5ZHqiGzCvTmg01tgvouKj+8kFNJIaWsEm8mBaSoJzk8+v OQsnXjrZAKAFY7WrVryilh4cQQIDAQABoG4wKwYJKoZIhvcNAQkUMR4eHAAyADAAMQA1ADAAMQAy ADIAMgAzADIANQAxADMwPwYJKoZIhvcNAQkOMTIwMDAMBgNVHRMBAf8EAjAAMCAGA1UdDgEBAAQW BBQfjVS9H0rXGb4SFB9bkzTpHHUH2jANBgkqhkiG9w0BAQsFAAOBgQAliHNkTQ35679h9RWudkBB n5aRnp+AoRPVyPMoqr8vl4SyrMiqg+U71hbju5fEnrFi8kDHYgq0otbbrjLR8fyXjJzhoUgY1two mdFeLvfd1Dk2DClEKGqye8rTQaatL3tq29NjqASSge1zc9gcIfqK9dgYShx5Iy0Rshend17aBw== Encoded issuer-and-subject: MCwwFDESMBAGA1UEAxMJbG9jYWxob3N0MBQxEjAQBgNVBAMTCWxvY2FsaG9zdA== Decrypted issuer-and-subject: MCwwFDESMBAGA1UEAxMJbG9jYWxob3N0MBQxEjAQBgNVBAMTCWxvY2FsaG9zdA== Encrypted plaintext, OpenSSL key: payload:VGhpcyBpcyBzb21lIHBsYWludGV4dC4NCg== Encrypted plaintext, NSS key: pk12util: PKCS12 IMPORT SUCCESSFUL payload:VGhpcyBpcyBzb21lIHBsYWludGV4dC4NCg== certmonger-0.78.6/tests/031-pkcs7/prequal.sh0000775000175000017500000000014112645513264015412 00000000000000#!/bin/bash test -x $toolsdir/pk7parse && test -x $toolsdir/pk7env && test -x $toolsdir/addcinfo certmonger-0.78.6/tests/030-rekey/0000775000175000017500000000000012645513301013545 500000000000000certmonger-0.78.6/tests/030-rekey/run.sh0000775000175000017500000002465212645513264014651 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" issuetime=`date +%s` function setupca() { cat > ca.self <<- EOF id=self_signer ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=1235 ca_internal_issue_time=$issuetime EOF } for preserve in 1 0 ; do for pin in "" password ; do echo "[ Begin pass (preserve=$preserve,pin=\"$pin\"). ]" size=2048 rm -f "$tmpdir"/*.db touch "$tmpdir"/keyi "$tmpdir"/certi rm -f "$tmpdir"/keyi* "$tmpdir"/certi* "$tmpdir"/pubkey* initnssdb "$tmpdir" $pin echo "$pin" > pinfile # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -g $size -n "i$size" \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -m 4660 -f pinfile # Export the certificate and key. pk12util -d "$tmpdir" -k pinfile -o $size.p12 -W "" -n "i$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -passin pass: -nocerts -passout pass:${pin:- -nodes} | awk '/^-----BEGIN/,/^-----END/{print}' > keyi$size openssl pkcs12 -in $size.p12 -passin pass: -nokeys -nodes | awk '/^-----BEGIN/,/^-----END/{print}' > certi$size # Grab a copy of the public key. openssl x509 -pubkey -noout -in "$tmpdir"/certi$size > "$tmpdir"/pubkey.old # Read info about that key using NSS cat > entry.nss.$size <<- EOF ca_name=self_signer key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=i$size key_preserve=$preserve cert_storage_type=NSSDB cert_storage_location=$tmpdir cert_nickname=i$size template_subject=CN=T$size EOF echo key_pin_file=`pwd`/pinfile >> entry.nss.$size $toolsdir/keyiread entry.nss.$size > /dev/null 2>&1 # Read info about that key using OpenSSL cat > entry.openssl.$size <<- EOF ca_name=self_signer key_storage_type=FILE key_storage_location=$tmpdir/keyi$size key_preserve=$preserve cert_storage_type=FILE cert_storage_location=$tmpdir/certi$size EOF echo key_pin_file=`pwd`/pinfile >> entry.openssl.$size $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 # Use that NSS key to generate a self-signed certificate. echo '(prep NSS)' cat > entry.nss.$size <<- EOF ca_name=self_signer key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=i$size key_preserve=$preserve cert_storage_type=NSSDB cert_storage_location=$tmpdir cert_nickname=i$size template_subject=CN=T$size EOF echo key_pin_file=`pwd`/pinfile >> entry.nss.$size $toolsdir/keyiread entry.nss.$size > /dev/null 2>&1 $toolsdir/csrgen entry.nss.$size > csr.nss.$size setupca grep ^key.\*count= entry.nss.$size | LANG=C sort echo '(submit NSS)' $toolsdir/submit ca.self entry.nss.$size > cert.nss.$size grep ^key.\*count= entry.nss.$size | LANG=C sort # Use that OpenSSL key to generate a self-signed certificate. echo '(prep OpenSSL)' cat > entry.openssl.$size <<- EOF ca_name=self_signer key_storage_type=FILE key_storage_location=$tmpdir/keyi$size key_preserve=$preserve cert_storage_type=FILE cert_storage_location=$tmpdir/certi$size template_subject=CN=T$size EOF echo key_pin_file=`pwd`/pinfile >> entry.openssl.$size $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size setupca grep ^key.\*count= entry.openssl.$size | LANG=C sort echo '(submit OpenSSL)' $toolsdir/submit ca.self entry.openssl.$size > cert.openssl.$size grep ^key.\*count= entry.openssl.$size | LANG=C sort # Now compare the self-signed certificates built from the keys. if ! cmp cert.nss.$size cert.openssl.$size ; then echo First round certificates differ: cat cert.nss.$size cert.openssl.$size exit 1 else echo First round certificates OK. fi # Now generate new keys, CSRs, and certificates (NSS). echo "NSS keys before re-keygen (preserve=$preserve,pin=\"$pin\"):" marker=`grep ^key_next_marker= entry.nss.$size | cut -f2- -d=` firstid=`run_certutil -K -d $tmpdir -f pinfile | grep -v 'Checking token' | sed -r 's,< *0>,<->,g' | awk '{print $3}' | env LANG=C sort` run_certutil -K -d $tmpdir -f pinfile | grep -v 'Checking token' | env LANG=C sort 1>&2 echo firstid="$firstid" 1>&2 run_certutil -K -d $tmpdir -f pinfile | grep -v 'Checking token' | sed -e s,"${marker:-////////}","(next)", -e "s,$firstid,originalhex,g" | sed -r -e 's,[0123456789abcdef]{8},hex,g' -e 's,< 0>,<->,g' -e 's,< 1>,<->,g' | env LANG=C sort grep ^key.\*count= entry.nss.$size | LANG=C sort $toolsdir/keygen entry.nss.$size echo "NSS keys after re-keygen (preserve=$preserve,pin=\"$pin\"):" marker=`grep ^key_next_marker= entry.nss.$size | cut -f2- -d=` run_certutil -K -d $tmpdir -f pinfile | grep -v 'Checking token' | sed -e s,"${marker:-////////}","(next)", -e "s,$firstid,originalhex,g" | sed -r -e 's,[0123456789abcdef]{8},hex,g' -e 's,< 0>,<->,g' -e 's,< 1>,<->,g' | env LANG=C sort $toolsdir/keyiread entry.nss.$size > /dev/null 2>&1 $toolsdir/csrgen entry.nss.$size > csr.nss.$size setupca grep ^key.\*count= entry.nss.$size | LANG=C sort echo '(submit NSS)' $toolsdir/submit ca.self entry.nss.$size > cert.nss.$size grep ^key.\*count= entry.nss.$size | LANG=C sort # Verify that we can still sign using the old key and cert using the right name (NSS). echo "NSS certs before saving (preserve=$preserve,pin=\"$pin\"):" run_certutil -L -d $tmpdir | grep -v SSL,S/MIME | grep -v '^$' | grep -v 'Trust' run_certutil -L -d $tmpdir -n i$size -a | openssl x509 -noout -serial echo "NSS keys before saving (preserve=$preserve,pin=\"$pin\"):" marker=`grep ^key_next_marker= entry.nss.$size | cut -f2- -d=` run_certutil -K -d $tmpdir -f pinfile | grep -v 'Checking token' | sed -e s,"${marker:-////////}","(next)", -e "s,$firstid,originalhex,g" | sed -r -e 's,[0123456789abcdef]{8},hex,g' -e 's,< 0>,<->,g' -e 's,< 1>,<->,g' | env LANG=C sort echo "This is the plaintext." > plain.txt echo "NSS Signing:" certutil -M -d $tmpdir -n i$size -t P,P,P cmsutil -S -d $tmpdir -f pinfile -N i$size -i plain.txt -o signed echo "NSS Verify:" cmsutil -D -d $tmpdir -f pinfile -i signed certutil -M -d $tmpdir -n i$size -t ,, # Go and save the new certs and keys (NSS). echo '(saving)' $toolsdir/certsave entry.nss.$size grep ^key.\*count= entry.nss.$size | LANG=C sort # Grab a copy of the public key (NSS). certutil -L -d $tmpdir -n i$size -a | openssl x509 -pubkey -noout > "$tmpdir"/pubkey.nss # Verify that we can sign using the new key and cert using the right name (NSS). echo "NSS certs after saving (preserve=$preserve,pin=\"$pin\"):" run_certutil -L -d $tmpdir | grep -v SSL,S/MIME | grep -v '^$' | grep -v 'Trust' run_certutil -L -d $tmpdir -n i$size -a | openssl x509 -noout -serial echo "NSS keys after saving (preserve=$preserve,pin=\"$pin\"):" marker=`grep ^key_next_marker= entry.nss.$size | cut -f2- -d=` run_certutil -K -d $tmpdir -f pinfile | grep -v 'Checking token' | sed -e s,"${marker:-////////}","(next)", -e "s,$firstid,originalhex,g" | sed -r -e 's,[0123456789abcdef]{8},hex,g' -e 's,< 0>,<->,g' -e 's,< 1>,<->,g' | env LANG=C sort echo "This is the plaintext." > plain.txt echo "NSS Signing:" certutil -M -d $tmpdir -n i$size -t P,P,P cmsutil -S -d $tmpdir -f pinfile -N i$size -i plain.txt -o signed echo "NSS Verify:" cmsutil -D -d $tmpdir -f pinfile -i signed certutil -M -d $tmpdir -n i$size -t ,, # Now generate new keys, CSRs, and certificates (OpenSSL). echo "PEM keys before re-keygen (preserve=$preserve,pin=\"$pin\"):" marker=`grep ^key_next_marker= entry.openssl.$size | cut -f2- -d=` find $tmpdir -name "keyi${size}*" -print | sed -e s,"${marker:-////////}","(next)", | env LANG=C sort grep ^key.\*count= entry.openssl.$size | LANG=C sort $toolsdir/keygen entry.openssl.$size echo "PEM keys after re-keygen (preserve=$preserve,pin=\"$pin\"):" marker=`grep ^key_next_marker= entry.openssl.$size | cut -f2- -d=` find $tmpdir -name "keyi${size}*" -print | sed -e s,"${marker:-////////}","(next)", | env LANG=C sort $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size setupca grep ^key.\*count= entry.openssl.$size | LANG=C sort echo '(submit OpenSSL)' $toolsdir/submit ca.self entry.openssl.$size > cert.openssl.$size grep ^key.\*count= entry.openssl.$size | LANG=C sort # Verify that we can still sign using the old key and cert (OpenSSL). echo "PEM certs before saving (preserve=$preserve,pin=\"$pin\"):" find $tmpdir -name "certi${size}*" -print | env LANG=C sort find $tmpdir -name "certi${size}*" -print | xargs -n 1 openssl x509 -noout -serial -in echo "PEM keys before saving (preserve=$preserve,pin=\"$pin\"):" marker=`grep ^key_next_marker= entry.openssl.$size | cut -f2- -d=` find $tmpdir -name "keyi${size}*" -print | sed -e s,"${marker:-////////}","(next)", | env LANG=C sort echo "This is the plaintext." > plain.txt echo "OpenSSL Signing:" openssl smime -sign -signer certi$size -binary -nodetach -inkey keyi$size -passin pass:$pin -in plain.txt -outform PEM -out signed echo "OpenSSL Verify:" openssl smime -verify -CAfile certi$size -inform PEM -in signed # Go and save the new certs and keys (OpenSSL). echo '(saving)' $toolsdir/certsave entry.openssl.$size grep ^key.\*count= entry.openssl.$size | LANG=C sort # Grab a copy of the public key (OpenSSL). openssl x509 -pubkey -noout -in "$tmpdir"/certi$size > "$tmpdir"/pubkey.openssl # Verify that we can sign using the new key and cert (OpenSSL). echo "PEM certs after saving (preserve=$preserve,pin=\"$pin\"):" find $tmpdir -name "certi${size}*" -print | env LANG=C sort find $tmpdir -name "certi${size}*" -print | xargs -n 1 openssl x509 -noout -serial -in echo "PEM keys after saving (preserve=$preserve,pin=\"$pin\"):" find $tmpdir -name "keyi${size}*" -print | env LANG=C sort echo "This is the plaintext." > plain.txt echo "OpenSSL Signing:" openssl smime -sign -signer certi$size -binary -nodetach -inkey keyi$size -passin pass:$pin -in plain.txt -outform PEM -out signed echo "OpenSSL Verify:" openssl smime -verify -CAfile certi$size -inform PEM -in signed # Double-check that the keys were changed. if ! test -s "$tmpdir"/pubkey.old ; then echo Error reading old pubkey. fi if ! test -s "$tmpdir"/pubkey.nss ; then echo Error reading NSS pubkey. fi if ! test -s "$tmpdir"/pubkey.openssl ; then echo Error reading OpenSSL pubkey. fi if cmp -s "$tmpdir"/pubkey.old "$tmpdir"/pubkey.nss ; then echo NSS key not changed. fi if cmp -s "$tmpdir"/pubkey.old "$tmpdir"/pubkey.openssl ; then echo OpenSSL key not changed. fi if cmp -s "$tmpdir"/pubkey.nss "$tmpdir"/pubkey.openssl ; then echo Rekey produced the same keys. fi echo "[ End pass (preserve=$preserve,pin=\"$pin\"). ]" done done cat cert.nss.$size 1>&2 echo Test complete. certmonger-0.78.6/tests/030-rekey/expected.out0000664000175000017500000002215312645513264016032 00000000000000[ Begin pass (preserve=1,pin=""). ] (prep NSS) key_issued_count=0 key_requested_count=0 (submit NSS) key_issued_count=0 key_requested_count=1 (prep OpenSSL) key_issued_count=0 key_requested_count=0 (submit OpenSSL) key_issued_count=0 key_requested_count=1 First round certificates OK. NSS keys before re-keygen (preserve=1,pin=""): <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_requested_count=1 OK. NSS keys after re-keygen (preserve=1,pin=""): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit NSS) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 NSS certs before saving (preserve=1,pin=""): i2048 u,u,u serial=1234 NSS keys before saving (preserve=1,pin=""): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 NSS Signing: NSS Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 NSS certs after saving (preserve=1,pin=""): i2048 u,u,u serial=1235 NSS keys after saving (preserve=1,pin=""): <-> rsa hexhexhexhexhex NSS Certificate DB:i2048 <-> rsa originalhex (orphan) NSS Signing: NSS Verify: This is the plaintext. PEM keys before re-keygen (preserve=1,pin=""): ${tmpdir}/keyi2048 key_issued_count=0 key_requested_count=1 OK. PEM keys after re-keygen (preserve=1,pin=""): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit OpenSSL) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 PEM certs before saving (preserve=1,pin=""): ${tmpdir}/certi2048 serial=1234 PEM keys before saving (preserve=1,pin=""): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key OpenSSL Signing: OpenSSL Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 PEM certs after saving (preserve=1,pin=""): ${tmpdir}/certi2048 serial=1235 PEM keys after saving (preserve=1,pin=""): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.1234.key OpenSSL Signing: OpenSSL Verify: This is the plaintext. [ End pass (preserve=1,pin=""). ] [ Begin pass (preserve=1,pin="password"). ] (prep NSS) key_issued_count=0 key_requested_count=0 (submit NSS) key_issued_count=0 key_requested_count=1 (prep OpenSSL) key_issued_count=0 key_requested_count=0 (submit OpenSSL) key_issued_count=0 key_requested_count=1 First round certificates OK. NSS keys before re-keygen (preserve=1,pin="password"): <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_requested_count=1 OK. NSS keys after re-keygen (preserve=1,pin="password"): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit NSS) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 NSS certs before saving (preserve=1,pin="password"): i2048 u,u,u serial=1234 NSS keys before saving (preserve=1,pin="password"): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 NSS Signing: NSS Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 NSS certs after saving (preserve=1,pin="password"): i2048 u,u,u serial=1235 NSS keys after saving (preserve=1,pin="password"): <-> rsa hexhexhexhexhex NSS Certificate DB:i2048 <-> rsa originalhex (orphan) NSS Signing: NSS Verify: This is the plaintext. PEM keys before re-keygen (preserve=1,pin="password"): ${tmpdir}/keyi2048 key_issued_count=0 key_requested_count=1 OK. PEM keys after re-keygen (preserve=1,pin="password"): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit OpenSSL) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 PEM certs before saving (preserve=1,pin="password"): ${tmpdir}/certi2048 serial=1234 PEM keys before saving (preserve=1,pin="password"): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key OpenSSL Signing: OpenSSL Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 PEM certs after saving (preserve=1,pin="password"): ${tmpdir}/certi2048 serial=1235 PEM keys after saving (preserve=1,pin="password"): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.1234.key OpenSSL Signing: OpenSSL Verify: This is the plaintext. [ End pass (preserve=1,pin="password"). ] [ Begin pass (preserve=0,pin=""). ] (prep NSS) key_issued_count=0 key_requested_count=0 (submit NSS) key_issued_count=0 key_requested_count=1 (prep OpenSSL) key_issued_count=0 key_requested_count=0 (submit OpenSSL) key_issued_count=0 key_requested_count=1 First round certificates OK. NSS keys before re-keygen (preserve=0,pin=""): <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_requested_count=1 OK. NSS keys after re-keygen (preserve=0,pin=""): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit NSS) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 NSS certs before saving (preserve=0,pin=""): i2048 u,u,u serial=1234 NSS keys before saving (preserve=0,pin=""): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 NSS Signing: NSS Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 NSS certs after saving (preserve=0,pin=""): i2048 u,u,u serial=1235 NSS keys after saving (preserve=0,pin=""): <-> rsa hexhexhexhexhex NSS Certificate DB:i2048 NSS Signing: NSS Verify: This is the plaintext. PEM keys before re-keygen (preserve=0,pin=""): ${tmpdir}/keyi2048 key_issued_count=0 key_requested_count=1 OK. PEM keys after re-keygen (preserve=0,pin=""): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit OpenSSL) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 PEM certs before saving (preserve=0,pin=""): ${tmpdir}/certi2048 serial=1234 PEM keys before saving (preserve=0,pin=""): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key OpenSSL Signing: OpenSSL Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 PEM certs after saving (preserve=0,pin=""): ${tmpdir}/certi2048 serial=1235 PEM keys after saving (preserve=0,pin=""): ${tmpdir}/keyi2048 OpenSSL Signing: OpenSSL Verify: This is the plaintext. [ End pass (preserve=0,pin=""). ] [ Begin pass (preserve=0,pin="password"). ] (prep NSS) key_issued_count=0 key_requested_count=0 (submit NSS) key_issued_count=0 key_requested_count=1 (prep OpenSSL) key_issued_count=0 key_requested_count=0 (submit OpenSSL) key_issued_count=0 key_requested_count=1 First round certificates OK. NSS keys before re-keygen (preserve=0,pin="password"): <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_requested_count=1 OK. NSS keys after re-keygen (preserve=0,pin="password"): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit NSS) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 NSS certs before saving (preserve=0,pin="password"): i2048 u,u,u serial=1234 NSS keys before saving (preserve=0,pin="password"): <-> rsa hexhexhexhexhex i2048 (candidate (next)) <-> rsa originalhex NSS Certificate DB:i2048 NSS Signing: NSS Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 NSS certs after saving (preserve=0,pin="password"): i2048 u,u,u serial=1235 NSS keys after saving (preserve=0,pin="password"): <-> rsa hexhexhexhexhex NSS Certificate DB:i2048 NSS Signing: NSS Verify: This is the plaintext. PEM keys before re-keygen (preserve=0,pin="password"): ${tmpdir}/keyi2048 key_issued_count=0 key_requested_count=1 OK. PEM keys after re-keygen (preserve=0,pin="password"): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key key_issued_count=0 key_next_requested_count=0 key_requested_count=1 (submit OpenSSL) key_issued_count=0 key_next_requested_count=1 key_requested_count=1 PEM certs before saving (preserve=0,pin="password"): ${tmpdir}/certi2048 serial=1234 PEM keys before saving (preserve=0,pin="password"): ${tmpdir}/keyi2048 ${tmpdir}/keyi2048.(next).key OpenSSL Signing: OpenSSL Verify: This is the plaintext. (saving) key_issued_count=1 key_requested_count=1 PEM certs after saving (preserve=0,pin="password"): ${tmpdir}/certi2048 serial=1235 PEM keys after saving (preserve=0,pin="password"): ${tmpdir}/keyi2048 OpenSSL Signing: OpenSSL Verify: This is the plaintext. [ End pass (preserve=0,pin="password"). ] Test complete. certmonger-0.78.6/tests/029-canonize/0000775000175000017500000000000012645513301014244 500000000000000certmonger-0.78.6/tests/029-canonize/run.sh0000775000175000017500000000147512645513264015346 00000000000000#!/bin/bash -e cd $tmpdir mkdir subdir ln -s subdir otherdir touch subdir/file canon() { for loc in "$@" ; do $toolsdir/canon "$loc" | sed -r "s|$tmpdir|"'${tmpdir}'"|g" if `$toolsdir/canon dbm:"$loc"` != dbm:`$toolsdir/canon "$loc"` ; then echo `$toolsdir/canon dbm:"$loc"` -ne dbm:`$toolsdir/canon "$loc"` exit 1 fi if `$toolsdir/canon sql:"$loc"` != sql:`$toolsdir/canon "$loc"` ; then echo `$toolsdir/canon sql:"$loc"` -ne sql:`$toolsdir/canon "$loc"` exit 1 fi done } for loc in `pwd` . subdir subdir/ subdir/.. subdir/../subdir otherdir otherdir/ otherdir// otherdir/.. otherdir//../subdir `pwd`/otherdir//../subdir subdir/../otherdir subdir/file subdir/../subdir/file otherdir/file otherdir/../subdir/file subdir/../otherdir/file not-there subdir/not-there otherdir/not-there ; do canon $loc done certmonger-0.78.6/tests/029-canonize/expected.out0000664000175000017500000000144312645513264016530 00000000000000"${tmpdir}": "${tmpdir}" ".": "${tmpdir}" "subdir": "${tmpdir}/subdir" "subdir/": "${tmpdir}/subdir" "subdir/..": "${tmpdir}" "subdir/../subdir": "${tmpdir}/subdir" "otherdir": "${tmpdir}/otherdir" "otherdir/": "${tmpdir}/otherdir" "otherdir//": "${tmpdir}/otherdir" "otherdir/..": "${tmpdir}" "otherdir//../subdir": "${tmpdir}/subdir" "${tmpdir}/otherdir//../subdir": "${tmpdir}/subdir" "subdir/../otherdir": "${tmpdir}/otherdir" "subdir/file": "${tmpdir}/subdir/file" "subdir/../subdir/file": "${tmpdir}/subdir/file" "otherdir/file": "${tmpdir}/otherdir/file" "otherdir/../subdir/file": "${tmpdir}/subdir/file" "subdir/../otherdir/file": "${tmpdir}/otherdir/file" "not-there": "${tmpdir}/not-there" "subdir/not-there": "${tmpdir}/subdir/not-there" "otherdir/not-there": "${tmpdir}/otherdir/not-there" certmonger-0.78.6/tests/028-dbus/0000775000175000017500000000000012645513301013372 500000000000000certmonger-0.78.6/tests/028-dbus/walk.py0000664000175000017500000001714612645513264014643 00000000000000#!/usr/bin/python import dbus import xml.etree.ElementTree import os import sys bus = dbus.SessionBus() # Check that reading a property directly produces the same value as reading it via GetAll(). def check_props(objpath, interface): o = bus.get_object('org.fedorahosted.certmonger', objpath) i = dbus.Interface(o, 'org.freedesktop.DBus.Properties') props = i.GetAll(interface) for prop in props.keys(): value = props[prop] if value != i.Get(interface, prop): print("%s: property %s.%s mismatch (%s, %s)" % (objpath, interface, prop, value, i.Get(interface, prop))) return False return True # Try to call the method. def examine_method(objpath, interface, method, idata): in_args = 0 out_args = 0 o = bus.get_object('org.fedorahosted.certmonger', objpath) i = dbus.Interface(o, interface) for child in idata.getchildren(): if child.tag == 'arg': if child.get('direction') != 'out': in_args = in_args + 1 else: out_args = out_args + 1 if in_args == 0: # Takes no inputs, so just call it. m = i.get_dbus_method(method) if out_args == 0: m() print("[ %s: %s.%s ]\n" % (objpath, interface, method)) elif out_args == 1: result = m() print("[ %s: %s.%s ]\n%s\n" % (objpath, interface, method, result)) else: result = m() print("[ %s: %s.%s ]\n%s\n" % (objpath, interface, method, result)) elif method == 'Get' or method == 'Set' or method == 'GetAll': # We check on properties elsewhere. return True # Per-method exercise. elif method == 'add_known_ca' or method == 'remove_known_ca': (result, path) = i.add_known_ca('Test CA', '/usr/bin/env', []) if not result: print("[ %s : %s.%s ]: add_known_ca error\n" % (objpath, interface, method)) return False result = i.remove_known_ca(path) if not result: print("[ %s : %s.%s ]: remove_known_ca error\n" % (objpath, interface, method)) return False print("[ %s : %s.%s ]\nOK\n" % (objpath, interface, method)) elif method == 'add_request' or method == 'remove_request': tmpdir = os.getenv('TMPDIR') if not tmpdir or tmpdir == '': tmpdir = '/tmp' properties = { 'nickname': 'foo', 'cert-storage': 'file', 'cert-file': tmpdir + "/028-certfile", 'key-storage': 'file', 'key-file': tmpdir + "/028-keyfile", 'template-email': ['root@localhost', 'toor@localhost'], } (result, path) = i.add_request(properties) if not result: print("[ %s : %s.%s ]: add_request error\n" % (objpath, interface, method)) return False result = i.remove_request(path) if not result: print("[ %s : %s.%s ]: remove_request error\n" % (objpath, interface, method)) return False print("[ %s : %s.%s ]\nOK\n" % (objpath, interface, method)) elif method == 'find_ca_by_nickname': capath = i.find_ca_by_nickname('local') o = bus.get_object('org.fedorahosted.certmonger', capath) i = dbus.Interface(o, 'org.freedesktop.DBus.Properties') if i.Get('org.fedorahosted.certmonger.ca', 'nickname') != 'local': print("[ %s : %s.%s ] error: %s\n" % (objpath, interface, method, i.Get('org.fedorahosted.certmonger.ca', 'nickname'))) return False print("[ %s : %s.%s ]\nOK\n" % (objpath, interface, method)) elif method == 'find_request_by_nickname': reqpath = i.find_request_by_nickname('Buddy') o = bus.get_object('org.fedorahosted.certmonger', reqpath) i = dbus.Interface(o, 'org.freedesktop.DBus.Properties') if i.Get('org.fedorahosted.certmonger.request', 'nickname') != 'Buddy': print("[ %s : %s.%s ] error: %s\n" % (objpath, interface, method, i.Get('org.fedorahosted.certmonger.request', 'nickname'))) return False print("[ %s : %s.%s ]\nOK\n" % (objpath, interface, method)) elif method == 'modify': mods = {} propname = "template-eku" propval = '1.2.3.4.5.6.7.8.9.10' mods[propname] = [propval,] status, path = i.modify(mods) if not status: print("[ %s : %s.%s ] error\n" % (objpath, interface, method)) return False print("[ %s : %s.%s ]\n%d on %s" % (objpath, interface, method, status, path)) props = dbus.Interface(o, 'org.freedesktop.DBus.Properties') prop = props.Get(interface, 'template-eku') print("After setting %s to %s, we got %s\n" % (propname, propval, prop)) else: # We're in FIXME territory. print('FIXME: need support for "%s"' % method) return False return True def iget(child, proxy, interface, prop): value = proxy.Get(interface, prop) if not value: if child.get('type') == 'b': value = False elif child.get('type') == 'n' or child.get('type') == 'x': value = 0 elif child.get('type') == 's': value = '' elif child.get('type') == 'as': value = [''] else: print("%s.%s: %s" % (interface, prop, child.get('type'))) return False return value def examine_interface(objpath, interface, idata): o = bus.get_object('org.fedorahosted.certmonger', objpath) i = dbus.Interface(o, 'org.freedesktop.DBus.Properties') for child in idata.getchildren(): if child.tag == 'property': prop = child.get('name') if child.get('access') == 'read': # Check that we can read it. value = i.Get(interface, prop) elif child.get('access') == 'readwrite': if prop == 'external-helper' or prop == 'scep-ca-identifier': cai = dbus.Interface(o, 'org.fedorahosted.certmonger.ca') if cai.get_type() != 'EXTERNAL': print("%s: warning: property %s.%s not settable on this object" % (objpath, interface, prop)) continue # Check that we can read it, tweak it, and then reset it. value = iget(child, i, interface, prop) i.Set(interface, prop, value) newvalue = None if child.get('type') == 'b': newvalue = not value elif child.get('type') == 'n' or child.get('type') == 'x': newvalue = value + 1 elif child.get('type') == 's': newvalue = 'x' + value elif child.get('type') == 'as': newvalue = ['x'] + value else: print("%s.%s: %s" % (interface, prop, child.get('type'))) return False if newvalue: if newvalue == value: print("%s: error determining new value: (%s, %s): %s" % (objpath, interface, prop, value)) return False i.Set(interface, prop, newvalue) if newvalue != iget(child, i, interface, prop): print("%s: property %s.%s not set: (%s, %s)" % (objpath, interface, prop, value, newvalue)) return False i.Set(interface, prop, value) if value != iget(child, i, interface, prop): print("%s: property %s.%s not reset: (%s, %s)" % (objpath, interface, prop, newvalue, value)) return False elif child.tag == 'method': method = child.get('name') if not examine_method(objpath, interface, method, child): return False elif child.tag == 'signal': continue else: print "FIXME: handle child tag %s" % child.tag return False return True def examine_object(objpath): o = bus.get_object('org.fedorahosted.certmonger', objpath) i = dbus.Interface(o, 'org.freedesktop.DBus.Introspectable') idata = i.Introspect() x = xml.etree.ElementTree.XML(idata) # Check if the object supports properties interfaces. props = False for child in x.getchildren(): if child.tag == 'interface': if child.get('name') == 'org.freedesktop.DBus.Properties': props = True # Look at the interfaces and child nodes. for child in x.getchildren(): if child.tag == 'interface': if props and not check_props(objpath, child.get('name')): return False if not examine_interface(objpath, child.get('name'), child): return False elif child.tag == 'node': if objpath == '/': childpath = '/' + child.get('name') else: childpath = objpath + '/' + child.get('name') examine_object(childpath) else: print "FIXME: handle child tag %s" % child.tag return False return True if not examine_object('/'): sys.exit(1) sys.exit(0) certmonger-0.78.6/tests/028-dbus/simpleprop.py0000664000175000017500000000323512645513264016071 00000000000000#!/usr/bin/python import dbus # Get a handle for the main certmonger interface. bus = dbus.SessionBus() o = bus.get_object('org.fedorahosted.certmonger', '/org/fedorahosted/certmonger') cm = dbus.Interface(o, 'org.fedorahosted.certmonger') try: (status, path) = cm.add_known_ca('certmonger-test', ':', []) print(path) except: pass path = cm.find_ca_by_nickname('certmonger-test') print(path) # Get a handle for the CA interface. o = bus.get_object('org.fedorahosted.certmonger', path) ca = dbus.Interface(o, 'org.freedesktop.DBus.Properties') # Toggle the helper a couple of times. ca_ext_h = o.Get('org.fedorahosted.certmonger.ca', 'external-helper') print ca_ext_h, "->", if ca_ext_h.split()[0] == ca_ext_h: ca_ext_h += ' -k admin@localhost' else: ca_ext_h = ca_ext_h.split()[0] ca.Set('org.fedorahosted.certmonger.ca', 'external-helper', ca_ext_h) ca_ext_h = o.Get('org.fedorahosted.certmonger.ca', 'external-helper') print ca_ext_h, "->", if ca_ext_h.split()[0] == ca_ext_h: ca_ext_h += ' -k admin@localhost' else: ca_ext_h = ca_ext_h.split()[0] ca.Set('org.fedorahosted.certmonger.ca', 'external-helper', ca_ext_h) ca_ext_h = o.Get('org.fedorahosted.certmonger.ca', 'external-helper') print ca_ext_h # Toggle the "is-default" value a couple of times. isdef = ca.Get('org.fedorahosted.certmonger.ca', 'is-default') print isdef, "->", ca.Set('org.fedorahosted.certmonger.ca', 'is-default', not isdef) isdef = ca.Get('org.fedorahosted.certmonger.ca', 'is-default') print isdef, "->", ca.Set('org.fedorahosted.certmonger.ca', 'is-default', not isdef) isdef = ca.Get('org.fedorahosted.certmonger.ca', 'is-default') print isdef cm.remove_known_ca(path) certmonger-0.78.6/tests/028-dbus/runsub.sh0000775000175000017500000000075012645513264015201 00000000000000#!/bin/bash exec > "$TMPDIR"/runsub.out 2> "$TMPDIR"/runsub.err for i in `seq 60` ; do if test -s "$TMPDIR"/test.crt ; then break fi sleep 1 done cd "$TMPDIR" source prequal.sh echo "[[ getcert ]]" for i in `seq 60` ; do if "$TMPDIR"/getcert status -s -i Buddy ; then break fi sleep 1 done "$TMPDIR"/getcert status -s -v -i Buddy "$TMPDIR"/getcert list -s "$TMPDIR"/getcert list-cas -s echo "" echo "[[ API ]]" for i in ./*.py ; do echo "[" `basename "$i"` "]" python $i done certmonger-0.78.6/tests/028-dbus/run.sh0000775000175000017500000000313212645513264014464 00000000000000#!/bin/bash -e . prequal.sh mkdir -p $tmpdir/requests $tmpdir/cas "$tmpdir/local" $tmpdir/config export CERTMONGER_TMPDIR="$tmpdir" export CERTMONGER_REQUESTS_DIR="$tmpdir/requests" export CERTMONGER_CAS_DIR="$tmpdir/cas" export CERTMONGER_CONFIG_DIR="$tmpdir/config" export CERTMONGER_LOCAL_CA_DIR="$tmpdir/local" libexecdir=`$toolsdir/libexecdir` cp ../certmonger.conf "$tmpdir"/config/ cp prequal.sh runsub.sh *.py "$tmpdir"/ ln -s `pwd`/../../src/getcert "$tmpdir"/ ln -s `pwd`/../../src/local-submit "$tmpdir"/ for entry in entry bogus-entry ; do sed "s|@tmpdir@|$tmpdir|g" $entry > "$tmpdir"/requests/$entry done cat > "$tmpdir"/cas/local << EOF id=local ca_is_default=0 ca_type=EXTERNAL ca_external_helper=$tmpdir/local-submit EOF $DBUSDAEMON --session --print-address=3 --print-pid=4 --fork 3> $tmpdir/address 4> $tmpdir/pid if test -s $tmpdir/pid ; then env DBUS_SESSION_BUS_ADDRESS=`cat $tmpdir/address` \ $toolsdir/../../src/certmonger-session -n -c $tmpdir/runsub.sh fi kill `cat $tmpdir/pid` cat $tmpdir/runsub.err > /dev/stderr now=`date +%s` for i in `seq 240` ; do recently=$(($now-$i)) tomorrow=$(($now-$i+24*60*60)) sed -i -e s/^$recently'$/recently/g' -e s/"("$recently"L)"/'(recently)'/g \ -e s/^$tomorrow'$/tomorrow/g' -e s/"("$tomorrow"L)"/'(tomorrow)'/g $tmpdir/runsub.out done cat $tmpdir/runsub.out | \ sed -r -e 's,CN=........-........-........-........,CN=$UUID,g' \ -e '/^-----BEGIN/,/^-----END/d' \ -e "s|$libexecdir|\$libexecdir|g" \ -e "s|$tmpdir|\$tmpdir|g" \ -e "s|expires:.*|expires: sometime|g" \ -e "s|u'(00)?[0-9a-fA-F]{32}|u'"'$UUID|g' certmonger-0.78.6/tests/028-dbus/prequal.sh0000775000175000017500000000115212645513264015331 00000000000000#!/bin/bash DBUSSEND=`which dbus-send 2> /dev/null` if test -z "$DBUSSEND" ; then echo dbus-send not found exit 1 fi DBUSDAEMON=`which dbus-daemon 2> /dev/null` if test -z "$DBUSDAEMON" ; then echo dbus-daemon not found exit 1 fi if ! python -c 'import os' 2> /dev/null ; then echo python not found exit 1 fi if ! python -c 'import dbus' 2> /dev/null ; then echo python-dbus not found exit 1 fi if ! python -c 'import xml' 2> /dev/null ; then echo python-xml not found exit 1 fi if ! python -c 'import xml.etree.ElementTree' 2> /dev/null ; then echo python-xml does not include etree.ElementTree exit 1 fi certmonger-0.78.6/tests/028-dbus/bogus-entry0000664000175000017500000000004012645513264015515 00000000000000Hah, this is just invalid data. certmonger-0.78.6/tests/028-dbus/entry0000664000175000017500000000115612645513264014411 00000000000000id=Buddy key_type=RSA key_gen_type=RSA key_size=512 key_gen_size=512 key_storage_type=FILE key_storage_location=@tmpdir@/test.key cert_storage_type=FILE cert_storage_location=@tmpdir@/test.crt template_subject=CN=localhost template_hostname=localhost template_principal=host/localhost@LOCALHOST template_eku=id-kp-serverAuth template_ku=1001 template_is_ca=0 template_ca_path_length=0 template_no_ocsp_check=0 template_ns_comment=Comments For Everyone template_profile=SomeProfileName pre_certsave_command=echo Pre pre_certsave_uid=0 post_certsave_command=echo Post post_certsave_uid=0 ca_name=local autorenew=1 monitor=1 certmonger-0.78.6/tests/028-dbus/expected.out0000664000175000017500000012477312645513264015672 00000000000000Certificate in file "${tmpdir}/test.crt" issued by CA and saved. [[ getcert ]] State MONITORING, stuck: no. Number of certificates and requests being tracked: 1. Request ID 'Buddy': status: MONITORING stuck: no key pair storage: type=FILE,location='$tmpdir/test.key' certificate: type=FILE,location='$tmpdir/test.crt' CA: local issuer: CN=$UUID,CN=Local Signing Authority subject: CN=localhost expires: sometime dns: localhost principal name: host/localhost@LOCALHOST key usage: digitalSignature,dataEncipherment eku: id-kp-serverAuth certificate template/profile: SomeProfileName pre-save command: echo Pre post-save command: echo Post track: yes auto-renew: yes CA 'local': is-default: no ca-type: EXTERNAL helper-location: $tmpdir/local-submit CA 'SelfSign': is-default: no ca-type: INTERNAL:SELF next-serial-number: 01 CA 'IPA': is-default: no ca-type: EXTERNAL helper-location: $libexecdir/ipa-submit CA 'certmaster': is-default: no ca-type: EXTERNAL helper-location: $libexecdir/certmaster-submit CA 'dogtag-ipa-renew-agent': is-default: no ca-type: EXTERNAL helper-location: $libexecdir/dogtag-ipa-renew-agent-submit [[ API ]] [ simpleprop.py ] /org/fedorahosted/certmonger/cas/CA6 /org/fedorahosted/certmonger/cas/CA6 : -> : -k admin@localhost -> : 0 -> 1 -> 0 [ walk.py ] [ /: org.freedesktop.DBus.Introspectable.Introspect ] [ /org: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger : org.fedorahosted.certmonger.add_known_ca ] OK [ /org/fedorahosted/certmonger : org.fedorahosted.certmonger.add_request ] OK [ /org/fedorahosted/certmonger : org.fedorahosted.certmonger.find_ca_by_nickname ] OK [ /org/fedorahosted/certmonger : org.fedorahosted.certmonger.find_request_by_nickname ] OK [ /org/fedorahosted/certmonger: org.fedorahosted.certmonger.get_known_cas ] dbus.Array([dbus.ObjectPath('/org/fedorahosted/certmonger/cas/CA1'), dbus.ObjectPath('/org/fedorahosted/certmonger/cas/CA2'), dbus.ObjectPath('/org/fedorahosted/certmonger/cas/CA3'), dbus.ObjectPath('/org/fedorahosted/certmonger/cas/CA4'), dbus.ObjectPath('/org/fedorahosted/certmonger/cas/CA5')], signature=dbus.Signature('o')) [ /org/fedorahosted/certmonger: org.fedorahosted.certmonger.get_requests ] dbus.Array([dbus.ObjectPath('/org/fedorahosted/certmonger/requests/Request2')], signature=dbus.Signature('o')) [ /org/fedorahosted/certmonger: org.fedorahosted.certmonger.get_supported_key_types ] dbus.Array([dbus.String(u'RSA'), dbus.String(u'DSA'), dbus.String(u'EC')], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger: org.fedorahosted.certmonger.get_supported_key_storage ] dbus.Array([dbus.String(u'NSSDB'), dbus.String(u'FILE')], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger: org.fedorahosted.certmonger.get_supported_cert_storage ] dbus.Array([dbus.String(u'NSSDB'), dbus.String(u'FILE')], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger : org.fedorahosted.certmonger.remove_known_ca ] OK [ /org/fedorahosted/certmonger : org.fedorahosted.certmonger.remove_request ] OK [ /org/fedorahosted/certmonger/requests: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/requests/Request2: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_nickname ] Buddy [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_autorenew ] 1 [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_cert_data ] [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_cert_info ] (dbus.String(u'CN=$UUID,CN=Local Signing Authority'), dbus.String(u'$UUID'), dbus.String(u'CN=localhost'), dbus.Int64(tomorrow), dbus.Array([], signature=dbus.Signature('s')), dbus.Array([dbus.String(u'localhost')], signature=dbus.Signature('s')), dbus.Array([dbus.String(u'host/localhost@LOCALHOST')], signature=dbus.Signature('s')), dbus.Int64(9L), dbus.Array([dbus.String(u'1.3.6.1.5.5.7.3.1')], signature=dbus.Signature('s'))) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_cert_last_checked ] recently [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_cert_storage_info ] (dbus.String(u'FILE'), dbus.String(u'$tmpdir/test.crt')) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_csr_data ] [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_csr_info ] (dbus.String(u'CN=localhost'), dbus.Array([], signature=dbus.Signature('s')), dbus.Array([dbus.String(u'localhost')], signature=dbus.Signature('s')), dbus.Array([dbus.String(u'host/localhost@LOCALHOST')], signature=dbus.Signature('s')), dbus.Int64(9L), dbus.Array([dbus.String(u'id-kp-serverAuth')], signature=dbus.Signature('s'))) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_key_pin ] [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_key_pin_file ] [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_key_storage_info ] (dbus.String(u'FILE'), dbus.String(u'$tmpdir/test.key')) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_key_type_and_size ] (dbus.String(u'RSA'), dbus.Int64(512L)) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_monitoring ] 1 [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_notification_info ] (dbus.String(u'stdout'), dbus.String(u'daemon.notice')) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_status ] (dbus.String(u'MONITORING'), dbus.Boolean(False)) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_ca ] /org/fedorahosted/certmonger/cas/CA1 [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_submitted_cookie ] None [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_ca_error ] None [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.get_submitted_date ] recently [ /org/fedorahosted/certmonger/requests/Request2 : org.fedorahosted.certmonger.request.modify ] 1 on /org/fedorahosted/certmonger/requests/Request2 After setting template-eku to 1.2.3.4.5.6.7.8.9.10, we got dbus.Array([dbus.String(u'1.2.3.4.5.6.7.8.9.10')], signature=dbus.Signature('s'), variant_level=1) [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.rekey ] 1 [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.resubmit ] 1 [ /org/fedorahosted/certmonger/requests/Request2: org.fedorahosted.certmonger.request.refresh ] 0 [ /org/fedorahosted/certmonger/cas: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/cas/CA1: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/cas/CA1: org.fedorahosted.certmonger.ca.get_nickname ] local [ /org/fedorahosted/certmonger/cas/CA1: org.fedorahosted.certmonger.ca.get_is_default ] 0 [ /org/fedorahosted/certmonger/cas/CA1: org.fedorahosted.certmonger.ca.get_type ] EXTERNAL [ /org/fedorahosted/certmonger/cas/CA1: org.fedorahosted.certmonger.ca.get_serial ] None [ /org/fedorahosted/certmonger/cas/CA1: org.fedorahosted.certmonger.ca.get_location ] $tmpdir/local-submit [ /org/fedorahosted/certmonger/cas/CA1: org.fedorahosted.certmonger.ca.get_issuer_names ] dbus.Array([], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger/cas/CA1: org.fedorahosted.certmonger.ca.refresh ] 1 [ /org/fedorahosted/certmonger/cas/CA2: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/cas/CA2: org.fedorahosted.certmonger.ca.get_nickname ] SelfSign [ /org/fedorahosted/certmonger/cas/CA2: org.fedorahosted.certmonger.ca.get_is_default ] 0 [ /org/fedorahosted/certmonger/cas/CA2: org.fedorahosted.certmonger.ca.get_type ] INTERNAL:SELF [ /org/fedorahosted/certmonger/cas/CA2: org.fedorahosted.certmonger.ca.get_serial ] 01 [ /org/fedorahosted/certmonger/cas/CA2: org.fedorahosted.certmonger.ca.get_location ] /org/fedorahosted/certmonger/cas/CA2: warning: property org.fedorahosted.certmonger.ca.external-helper not settable on this object [ /org/fedorahosted/certmonger/cas/CA2: org.fedorahosted.certmonger.ca.get_issuer_names ] dbus.Array([], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger/cas/CA2: org.fedorahosted.certmonger.ca.refresh ] 1 /org/fedorahosted/certmonger/cas/CA2: warning: property org.fedorahosted.certmonger.ca.scep-ca-identifier not settable on this object [ /org/fedorahosted/certmonger/cas/CA3: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/cas/CA3: org.fedorahosted.certmonger.ca.get_nickname ] IPA [ /org/fedorahosted/certmonger/cas/CA3: org.fedorahosted.certmonger.ca.get_is_default ] 0 [ /org/fedorahosted/certmonger/cas/CA3: org.fedorahosted.certmonger.ca.get_type ] EXTERNAL [ /org/fedorahosted/certmonger/cas/CA3: org.fedorahosted.certmonger.ca.get_serial ] None [ /org/fedorahosted/certmonger/cas/CA3: org.fedorahosted.certmonger.ca.get_location ] $libexecdir/ipa-submit [ /org/fedorahosted/certmonger/cas/CA3: org.fedorahosted.certmonger.ca.get_issuer_names ] dbus.Array([], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger/cas/CA3: org.fedorahosted.certmonger.ca.refresh ] 1 [ /org/fedorahosted/certmonger/cas/CA4: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/cas/CA4: org.fedorahosted.certmonger.ca.get_nickname ] certmaster [ /org/fedorahosted/certmonger/cas/CA4: org.fedorahosted.certmonger.ca.get_is_default ] 0 [ /org/fedorahosted/certmonger/cas/CA4: org.fedorahosted.certmonger.ca.get_type ] EXTERNAL [ /org/fedorahosted/certmonger/cas/CA4: org.fedorahosted.certmonger.ca.get_serial ] None [ /org/fedorahosted/certmonger/cas/CA4: org.fedorahosted.certmonger.ca.get_location ] $libexecdir/certmaster-submit [ /org/fedorahosted/certmonger/cas/CA4: org.fedorahosted.certmonger.ca.get_issuer_names ] dbus.Array([], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger/cas/CA4: org.fedorahosted.certmonger.ca.refresh ] 1 [ /org/fedorahosted/certmonger/cas/CA5: org.freedesktop.DBus.Introspectable.Introspect ] [ /org/fedorahosted/certmonger/cas/CA5: org.fedorahosted.certmonger.ca.get_nickname ] dogtag-ipa-renew-agent [ /org/fedorahosted/certmonger/cas/CA5: org.fedorahosted.certmonger.ca.get_is_default ] 0 [ /org/fedorahosted/certmonger/cas/CA5: org.fedorahosted.certmonger.ca.get_type ] EXTERNAL [ /org/fedorahosted/certmonger/cas/CA5: org.fedorahosted.certmonger.ca.get_serial ] None [ /org/fedorahosted/certmonger/cas/CA5: org.fedorahosted.certmonger.ca.get_location ] $libexecdir/dogtag-ipa-renew-agent-submit [ /org/fedorahosted/certmonger/cas/CA5: org.fedorahosted.certmonger.ca.get_issuer_names ] dbus.Array([], signature=dbus.Signature('s')) [ /org/fedorahosted/certmonger/cas/CA5: org.fedorahosted.certmonger.ca.refresh ] 1 certmonger-0.78.6/tests/027-hooks/0000775000175000017500000000000012645513301013557 500000000000000certmonger-0.78.6/tests/027-hooks/run.sh0000775000175000017500000007264012645513264014663 00000000000000#!/bin/bash -e cd $tmpdir cat > $tmpdir/note <<- EOF echo "\$@" >> $tmpdir/log EOF chmod +x $tmpdir/note cat > $tmpdir/entrycb1 <<- EOF id=EntryCB1 ca_name=CAB1 other_root_cert_files=$tmpdir/bundle1 pre_certsave_command=$tmpdir/note Running pre-save for EntryCAB1 pre_certsave_uid=$UID post_certsave_command=$tmpdir/note Running post-save for EntryCAB1 post_certsave_uid=$UID EOF cat > $tmpdir/entrycb2 <<- EOF id=EntryCB2 ca_name=CAB2 pre_certsave_command=$tmpdir/note Running pre-save for EntryCAB2 pre_certsave_uid=$UID post_certsave_command=$tmpdir/note Running post-save for EntryCAB2 post_certsave_uid=$UID EOF cat > $tmpdir/entrycb3 <<- EOF id=EntryCB3 ca_name=CAB3 pre_certsave_command=$tmpdir/note Running pre-save for EntryCAB3 pre_certsave_uid=$UID post_certsave_command=$tmpdir/note Running post-save for EntryCAB3 post_certsave_uid=$UID EOF cat > $tmpdir/entrycd1 <<- EOF id=EntryCD1 ca_name=CAD1 root_cert_dbs=$tmpdir/db1 pre_certsave_command=$tmpdir/note Running pre-save for EntryCAD1 pre_certsave_uid=$UID post_certsave_command=$tmpdir/note Running post-save for EntryCAD1 post_certsave_uid=$UID EOF cat > $tmpdir/entrycd2 <<- EOF id=EntryCD2 ca_name=CAD2 pre_certsave_command=$tmpdir/note Running pre-save for EntryCAD2 pre_certsave_uid=$UID post_certsave_command=$tmpdir/note Running post-save for EntryCAD2 post_certsave_uid=$UID EOF cat > $tmpdir/entrycd3 <<- EOF id=EntryCD3 ca_name=CAD3 pre_certsave_command=$tmpdir/note Running pre-save for EntryCAD3 pre_certsave_uid=$UID post_certsave_command=$tmpdir/note Running post-save for EntryCAD3 post_certsave_uid=$UID EOF cat > $tmpdir/entrycda <<- EOF id=EntryCDA ca_name=CADA pre_certsave_command=$tmpdir/note Running pre-save for EntryCADA pre_certsave_uid=$UID post_certsave_command=$tmpdir/note Running post-save for EntryCADA post_certsave_uid=$UID EOF cat > $tmpdir/cab1 <<- EOF id=CAB1 ca_type=EXTERNAL ca_root_cert_files=$tmpdir/bundle1,$tmpdir/bundle-all ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs= ca_other_root_cert_dbs= ca_other_cert_dbs= ca_root_certs=Root Certificate B1 -----BEGIN CERTIFICATE----- MIIDzzCCAregAwIBAgIDAWweMA0GCSqGSIb3DQEBBQUAMIGNMQswCQYDVQQGEwJB VDFIMEYGA1UECgw/QS1UcnVzdCBHZXMuIGYuIFNpY2hlcmhlaXRzc3lzdGVtZSBp bSBlbGVrdHIuIERhdGVudmVya2VociBHbWJIMRkwFwYDVQQLDBBBLVRydXN0LW5R dWFsLTAzMRkwFwYDVQQDDBBBLVRydXN0LW5RdWFsLTAzMB4XDTA1MDgxNzIyMDAw MFoXDTE1MDgxNzIyMDAwMFowgY0xCzAJBgNVBAYTAkFUMUgwRgYDVQQKDD9BLVRy dXN0IEdlcy4gZi4gU2ljaGVyaGVpdHNzeXN0ZW1lIGltIGVsZWt0ci4gRGF0ZW52 ZXJrZWhyIEdtYkgxGTAXBgNVBAsMEEEtVHJ1c3QtblF1YWwtMDMxGTAXBgNVBAMM EEEtVHJ1c3QtblF1YWwtMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtPWFuA/OQO8BBC4SAzewqo51ru27CQoT3URThoKgtUaNR8t4j8DRE/5TrzAUj lUC5B3ilJfYKvUWG6Nm9wASOhURh73+nyfrBJcyFLGM/BWBzSQXgYHiVEEvc+RFZ znF/QJuKqiTfC0Li21a8StKlDJu3Qz7dg9MmEALP6iPESU7l0+m0iKsMrmKS1GWH 2WrX9IWf5DMiJaXlyDO6w8dB3F/GaswADm0yqLaHNgBid5seHzTLkDx4iHQF63n1 k3Flyp3HaxgtPVxO59X4PzF9j4fsCiIvI+n+u33J4PTs63zEsMMtYrWacdaxaujs 2e3Vcuy+VwHOBVWf3tFgiBCzAgMBAAGjNjA0MA8GA1UdEwEB/wQFMAMBAf8wEQYD VR0OBAoECERqlWdVeRFPMA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQUFAAOC AQEAVdRU0VlIXLOThaq/Yy/kgM40ozRiPvbY7meIMQQDbwvUB/tOdQ/TLtPAF8fG KOwGDREkDg6lXb+MshOWcdzUzg4NCmgybLlBMRmrsQd7TZjTXLDR8KdCoLXEjq/+ 8T/0709GAHbrAvv5ndJAlseIOrifEXnzgGWovR/TeIGgUUw3tKZdJXDRZslo+S4R FGjxVJgIrCaSD96JntT6s3kr0qN51OyLrIdTaEJMUVF0HhsnLuP1Hyl0Te2v9+GS mYHovjrHF1D2t8b8m7CKa9aIA5GPBnc6hQLdmNVDeD/GMBWsm2vLV7eJUYs66MmE DNuxUCAKGkq6ahq97BvIxYSazQ== -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate B1 IN CERTIFICATE----- MIIEFTCCAv2gAwIBAgIBATANBgkqhkiG9w0BAQUFADBkMQswCQYDVQQGEwJTRTEU MBIGA1UEChMLQWRkVHJ1c3QgQUIxHTAbBgNVBAsTFEFkZFRydXN0IFRUUCBOZXR3 b3JrMSAwHgYDVQQDExdBZGRUcnVzdCBQdWJsaWMgQ0EgUm9vdDAeFw0wMDA1MzAx MDQxNTBaFw0yMDA1MzAxMDQxNTBaMGQxCzAJBgNVBAYTAlNFMRQwEgYDVQQKEwtB ZGRUcnVzdCBBQjEdMBsGA1UECxMUQWRkVHJ1c3QgVFRQIE5ldHdvcmsxIDAeBgNV BAMTF0FkZFRydXN0IFB1YmxpYyBDQSBSb290MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA6Rowj4OIFMEg2Dybjxt+A3S72mnTRqX4jsIMEZBRpS9mVEBV 6tsfSlbunyNu9DnLoblv8n75XYcmYZ4c+OLspoH4IcUkzBEMP9smcnrHAZcHF/nX GCwwfQ56HmIexkvA/X1id9NEHif2P0tEs7c42TkfYNVRknMDtABp4/MUTu7R3AnP dzRGULD4EfL+OHn3Bzn+UZKXC1sIXzSGAa2Il+tmzV7R/9x98oTaunet3IAIx6eH 1lWfl2royBFkuucZKT8Rs3iQhCBSWxHveNCD9tVIkNAwHM+A+WD+eeSI8t0A65RF 62WUaUC6wNW0uLp9BBGo6zEFlpROWCGOn9Bg/QIDAQABo4HRMIHOMB0GA1UdDgQW BBSBPjfYkrAfd59ctKtzquf2NGAv+jALBgNVHQ8EBAMCAQYwDwYDVR0TAQH/BAUw AwEB/zCBjgYDVR0jBIGGMIGDgBSBPjfYkrAfd59ctKtzquf2NGAv+qFopGYwZDEL MAkGA1UEBhMCU0UxFDASBgNVBAoTC0FkZFRydXN0IEFCMR0wGwYDVQQLExRBZGRU cnVzdCBUVFAgTmV0d29yazEgMB4GA1UEAxMXQWRkVHJ1c3QgUHVibGljIENBIFJv b3SCAQEwDQYJKoZIhvcNAQEFBQADggEBAAP3FUr4JNojVhaTdt02KLmuG7jD8WS6 IBh4lSknVwW8fCr0uVFV2ocC3g8WFzH4qnkuCRO7r7IgGRLlk/lL+YPoRNWyQSW/ iHVv/xD8SlTQX/D67zZzfRs2RcYhbbQVuE7PnFylPVoAjgbjPGsye/Kf8Lb93/Ao GEjwxrzQvzSAlsJKsW2Ox5BF3i9nrEUEo3rcVZLJR2bYGozH7ZxOmuASu7VqTITh 4SINhwBk/ox9Yjllpu9CtoAlEmEBqCQTcAARJl/6NVDFSMwGR+gn2HCNX2TmoUQm XiLsks3/QppEIW1cxeMiHV9HEufOX1362KqxMy3ZdvJOOjMMK7MtkAY= -----END CERTIFICATE----- ca_other_certs=Other Certificate B1 -----BEGIN CERTIFICATE----- MIIEHjCCAwagAwIBAgIBATANBgkqhkiG9w0BAQUFADBnMQswCQYDVQQGEwJTRTEU MBIGA1UEChMLQWRkVHJ1c3QgQUIxHTAbBgNVBAsTFEFkZFRydXN0IFRUUCBOZXR3 b3JrMSMwIQYDVQQDExpBZGRUcnVzdCBRdWFsaWZpZWQgQ0EgUm9vdDAeFw0wMDA1 MzAxMDQ0NTBaFw0yMDA1MzAxMDQ0NTBaMGcxCzAJBgNVBAYTAlNFMRQwEgYDVQQK EwtBZGRUcnVzdCBBQjEdMBsGA1UECxMUQWRkVHJ1c3QgVFRQIE5ldHdvcmsxIzAh BgNVBAMTGkFkZFRydXN0IFF1YWxpZmllZCBDQSBSb290MIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA5B6a/twJWoekn0e+EV+vhDTbYjx5eLfpMLXsDBwq xBb/4Oxx64r1EW7tTw2R0hIYLUkVAcKkIhPHEWT/IhKauY5cLwjPcWqzZwFZ8V1G 87B4pfYOQnrjfxvM0PC3KP0q6p6zsLkEqv32x7SxuCqg+1jxGaBvcCV+PmlKfw8i 2O+tCBGaKZnhqkRFmhJePp1tUvznoD1oL/BLcHwTOK28FSXx1s6rosAx1i+f4P8U WfyEk9mHfExUE+uf0S0R+Bg6Ot4l2ffTQO2kBhLEO+GRwVY18BTcZTYJbqukB8c1 0cIDMzZbdSZtQvESa0NvS3GU+jQd7RNuyoB/mC9suWXY6QIDAQABo4HUMIHRMB0G A1UdDgQWBBQ5lYtii1zJ1IC6WA+XPxUIQ8yYpzALBgNVHQ8EBAMCAQYwDwYDVR0T AQH/BAUwAwEB/zCBkQYDVR0jBIGJMIGGgBQ5lYtii1zJ1IC6WA+XPxUIQ8yYp6Fr pGkwZzELMAkGA1UEBhMCU0UxFDASBgNVBAoTC0FkZFRydXN0IEFCMR0wGwYDVQQL ExRBZGRUcnVzdCBUVFAgTmV0d29yazEjMCEGA1UEAxMaQWRkVHJ1c3QgUXVhbGlm aWVkIENBIFJvb3SCAQEwDQYJKoZIhvcNAQEFBQADggEBABmrder4i2VhlRO6aQTv hsoToMeqT2QbPxj2qC0sVY8FtzDqQmodwCVRLae/DLPt7wh/bDxGGuoYQ992zPlm hpwsaPXpF/gxsxjE1kh9I0xowX67ARRvxdlu3rsEQmr49lx95dr6h+sNNVJn0J6X dgWTP5XHAeZpVTh/EGGZyeNfpso+gmNIquIISD6q8rKFYqa0p9m9N5xotS1WfbC3 P6CxB9bpT9zeRXEwMn8bLgn5v1Kh7sKAPgZcLlVAwRv1cEWw3F369nJad9Jjzc9Y iQBCYz95OdBEsIJuQRno3eDBiFrRHnGTHyQwdOUeqN48Jzd/g66ed8/wMLH/S5no xqE= -----END CERTIFICATE----- ca_pre_save_command=$tmpdir/note Running pre-save for CAB1 ca_pre_save_uid=$UID ca_post_save_command=$tmpdir/note Running post-save for CAB1 ca_post_save_uid=$UID EOF cat > $tmpdir/cab2 <<- EOF id=CAB2 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files=$tmpdir/bundle2,$tmpdir/bundle-all ca_other_cert_files= ca_root_cert_dbs= ca_other_root_cert_dbs= ca_other_cert_dbs= ca_root_certs=Root Certificate B2 -----BEGIN CERTIFICATE----- MIIDTDCCAjSgAwIBAgIId3cGJyapsXwwDQYJKoZIhvcNAQELBQAwRDELMAkGA1UE BhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVz dCBDb21tZXJjaWFsMB4XDTEwMDEyOTE0MDYwNloXDTMwMTIzMTE0MDYwNlowRDEL MAkGA1UEBhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZp cm1UcnVzdCBDb21tZXJjaWFsMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9htPZwcroRX1BiLLHwGy43NFBkRJLLtJJRTWzsO3qyxPxkEylFf6EqdbDuKP Hx6GGaeqtS25Xw2Kwq+FNXkyLbscYjfysVtKPcrNcV/pQr6U6Mje+SJIZMblq8Yr ba0F8PrVC8+a5fBQpIs7R6UjW3p6+DM/uO+Zl+MgwdYoic+U+7lF7eNAFxHUdPAL MeIrJmqbTFeurCA+ukV6BfO9m2kVrn1OIGPENXY6BwLJN/3HR+7o8XYdcxXyl6S1 yHp52UKqK39c/s4mT6NmgTWvRLpUHhwwMmWd5jyTXlBOeuM61G7MGvv50jeuJCqr VwMiKA1JdX+3KNp1v47j3A55MQIDAQABo0IwQDAdBgNVHQ4EFgQUnZPGU4teyq8/ nx4P5ZmVvCT2lI8wDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwDQYJ KoZIhvcNAQELBQADggEBAFis9AQOzcAN/wr91LoWXym9e2iZWEnStB03TX8nfUYG XUPGhi4+c7ImfU+TqbbEKpqrIZcUsd6M06uJFdhrJNTxFq7YpFzUf1GO7RgBsZNj vbz4YYCanrHOQnDiqX0GJX0nof5v7LMeJNrjS1UaADs1tDvZ110w/YETifLCBivt Z8SOyUOyXGsViQK8YvxO8rUzqrJv0wqiUOP2O+guRMLbZjipM1ZI8W0bM40NjD9g N53Tym1+NH4Nn3J2ixufcv1SNUFFApYvHLKac0khsUlHRUe072o0EclNmsxZt9YC nlpOZbWUrhvfKbAW8b8Angc6F2S1BLUjIZkKlTuXfO8= -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate B2 -----BEGIN CERTIFICATE----- MIIDTDCCAjSgAwIBAgIIfE8EORzUmS0wDQYJKoZIhvcNAQEFBQAwRDELMAkGA1UE BhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVz dCBOZXR3b3JraW5nMB4XDTEwMDEyOTE0MDgyNFoXDTMwMTIzMTE0MDgyNFowRDEL MAkGA1UEBhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZp cm1UcnVzdCBOZXR3b3JraW5nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtITMMxcua5Rsa2FSoOujz3mUTOWUgJnLVWREZY9nZOIG41w3SfYvm4SEHi3y YJ0wTsyEheIszx6e/jarM3c1RNg1lho9Nuh6DtjVR6FqaYvZ/Ls6rnla1fTWcbua kCNrmreIdIcMHl+5ni36q1Mr3Lt2PpNMCAiMHqIjHNRqrSK6mQEubWXLviRmVSRL QESxG9fhwoXA3hA/Pe24/PHxI1Pcv2WXb9n5QHGNfb2V1M6+oF4nI979ptAmDgAp 6zxG8D1gvz9Q0twmQVGeFDdCBKNwV6gbh+0t+nvujArjqWaJGctB+d1ENmHP4ndG yH329JKBNv3bNPFyfvMMFr20FQIDAQABo0IwQDAdBgNVHQ4EFgQUBx/S55zawm6i QLSwelAQUHTEyL0wDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwDQYJ KoZIhvcNAQEFBQADggEBAIlXshZ6qML91tmbmzTCnLQyFE2npN/svqe++EPbkTfO tDIuUFUaNU52Q3Eg75N3ThVwLofDwR1t3Mu1J9QsVtFSUzpE0nPIxBsFZVpikpzu QY0x2+c06lkh1QF612S4ZDnNye2v7UsDSKegmQGA3GWjNq5lWUhPgkvIZfFXHeVZ Lgo/bNjR9eUJtGxUAArgFU2HdW23WJZa3W3SAKD0m0i+wzekujbgfIeFlxoVot4u olu9rxj5kFDNcFn4J2dHy8egBzp90SxdbBk6ZrV9/ZFvgrG+CJPbFEfxojfHRZ48 x3evZKiT3/Zpg4Jg8klCNO1aAFSFHBY2kgxc+qatv9s= -----END CERTIFICATE----- ca_other_certs=Other Certificate B2 -----BEGIN CERTIFICATE----- MIIB/jCCAYWgAwIBAgIIdJclisc/elQwCgYIKoZIzj0EAwMwRTELMAkGA1UEBhMC VVMxFDASBgNVBAoMC0FmZmlybVRydXN0MSAwHgYDVQQDDBdBZmZpcm1UcnVzdCBQ cmVtaXVtIEVDQzAeFw0xMDAxMjkxNDIwMjRaFw00MDEyMzExNDIwMjRaMEUxCzAJ BgNVBAYTAlVTMRQwEgYDVQQKDAtBZmZpcm1UcnVzdDEgMB4GA1UEAwwXQWZmaXJt VHJ1c3QgUHJlbWl1bSBFQ0MwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQNMF4bFZ0D 0KF5Nbc6PJJ6yhUczWLznCZcBz3lVPqj1swS6vQUX+iOGasvLkjmrBhDeKzQN8O9 ss0s5kfiGuZjuD0uL3jET9v0D6RoTFVya5UdThhClXjMNzyR4ptlKymjQjBAMB0G A1UdDgQWBBSaryl6wBE1NSZRMADDav5A1a7WPDAPBgNVHRMBAf8EBTADAQH/MA4G A1UdDwEB/wQEAwIBBjAKBggqhkjOPQQDAwNnADBkAjAXCfOHiFBar8jAQr9HX/Vs aobgxCd05DhT1wV/GzTjxi+zygk8N53X57hG8f2h4nECMEJZh0PUUd+60wkyWs6I flc9nF9Ca/UHLbXwgpP5WW+uZPpY5Yse42O+tYHNbwKMeQ== -----END CERTIFICATE----- ca_pre_save_command=$tmpdir/note Running pre-save for CAB2 ca_pre_save_uid=$UID ca_post_save_command=$tmpdir/note Running post-save for CAB2 ca_post_save_uid=$UID EOF cat > $tmpdir/cab3 <<- EOF id=CAB3 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files=$tmpdir/bundle3,$tmpdir/bundle-all ca_root_cert_dbs= ca_other_root_cert_dbs= ca_other_cert_dbs= ca_root_certs=Root Certificate B3 -----BEGIN CERTIFICATE----- MIIDpDCCAoygAwIBAgIBATANBgkqhkiG9w0BAQUFADBjMQswCQYDVQQGEwJVUzEc MBoGA1UEChMTQW1lcmljYSBPbmxpbmUgSW5jLjE2MDQGA1UEAxMtQW1lcmljYSBP bmxpbmUgUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAxMB4XDTAyMDUyODA2 MDAwMFoXDTM3MTExOTIwNDMwMFowYzELMAkGA1UEBhMCVVMxHDAaBgNVBAoTE0Ft ZXJpY2EgT25saW5lIEluYy4xNjA0BgNVBAMTLUFtZXJpY2EgT25saW5lIFJvb3Qg Q2VydGlmaWNhdGlvbiBBdXRob3JpdHkgMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKgv6KRpBgNHw+kqmP8ZonCaxlCyfqXfaE0bfA+2l2h9LaaLl+lk hsmj76CGv2BlnEtUiMJIxUo5vxTjWVXlGbR0yLQFOVwWpeKVBeASrlmLojNoWBym 1BW32J/X3HGrfpq/m44zDyL9Hy7nBzbvYjnF3cu6JRQj3gzGPTzOggjmZj7aUTsW OqMFf6Dch9Wc/HKpoH145LcxVR5lu9RhsCFg7RAycsWSJR74kEoYeEfffjA3PlAb 2xzTa5qGUwew76wGePiEmf4hjUyAtgyC9mZweRrTT6PP8c9GsEsPPt2IYriMqQko O3rHl+Ee5fSfwMCuJKDIodkP1nsmgmkyPacCAwEAAaNjMGEwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUAK3Zo/Z59m50qX8zPYEX10zPM94wHwYDVR0jBBgwFoAU AK3Zo/Z59m50qX8zPYEX10zPM94wDgYDVR0PAQH/BAQDAgGGMA0GCSqGSIb3DQEB BQUAA4IBAQB8itEfGDeC4Liwo+1WlchiYZwFos3CYiZhzRAW18y0ZTTQEYqtqKkF Zu90821fnZmv9ov761KyBZiibyrFVL0lvV+uyIbqRizBs73B6UlwGBaXCBOMIOAb LjpHyx7kADCVW/RFo8AasAFOq73AI25jP4BKxQft3OJvx8Fi8eNy1gTIdGcL+oir oQHIb/AUr9KZzVGTfu0uOMe9zkZQPXLjeSWdm4grECDdpbgyn43gKd8hdIaC2y+C MMbHNYaz+ZZfRtsMRf3zUMNvxsNIrUam4SdHCh0Om7bCd39j8uB9Gr784N/Xx6ds sPmuujz9dLQR6FgNgLzTqIA6me11zEZ7 -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate B3 -----BEGIN CERTIFICATE----- MIIDoDCCAoigAwIBAgIBMTANBgkqhkiG9w0BAQUFADBDMQswCQYDVQQGEwJKUDEc MBoGA1UEChMTSmFwYW5lc2UgR292ZXJubWVudDEWMBQGA1UECxMNQXBwbGljYXRp b25DQTAeFw0wNzEyMTIxNTAwMDBaFw0xNzEyMTIxNTAwMDBaMEMxCzAJBgNVBAYT AkpQMRwwGgYDVQQKExNKYXBhbmVzZSBHb3Zlcm5tZW50MRYwFAYDVQQLEw1BcHBs aWNhdGlvbkNBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp23gdE6H j6UG3mii24aZS2QNcfAKBZuOquHMLtJqO8F6tJdhjYq+xpqcBrSGUeQ3DnR4fl+K f5Sk10cI/VBaVuRorChzoHvpfxiSQE8tnfWuREhzNgaeZCw7NCPbXCbkcXmP1G55 IrmTwcrNwVbtiGrXoDkhBFcsovW8R0FPXjQilbUfKW1eSvNNcr5BViCH/OlQR9cw FO5cjFW6WY2H/CPek9AEjP3vbb3QesmlOmpyM8ZKDQUXKi17safY1vC+9D/qDiht QWEjdnjDuGWk81quzMKq2edY3rZ+nYVunyoKb58DKTCXKB28t89UKU5RMfkntigm /qJj5kEW8DOYRwIDAQABo4GeMIGbMB0GA1UdDgQWBBRUWssmP3HMlEYNllPqa0jQ k/5CdTAOBgNVHQ8BAf8EBAMCAQYwWQYDVR0RBFIwUKROMEwxCzAJBgNVBAYTAkpQ MRgwFgYDVQQKDA/ml6XmnKzlm73mlL/lupwxIzAhBgNVBAsMGuOCouODl+ODquOC seODvOOCt+ODp+ODs0NBMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEFBQAD ggEBADlqRHZ3ODrso2dGD/mLBqj7apAxzn7s2tGJfHrrLgy9mTLnsCTWw//1sogJ hyzjVOGjprIIC8CFqMjSnHH2HZ9g/DgzE+Ge3Atf2hZQKXsvcJEPmbo0NI2VdMV+ eKlmXb3KIXdCEKxmJj3ekav9FfBv7WxfEPjzFvYDio+nEhEMy/0/ecGc/WLuo89U DNErXxc+4z6/wCs+CZv+iKZ+tJIX/COUgb1up8WMwusRRdv4QcmWdupwX3kSa+Sj B1oF7ydJzyGfikwJcGapJsErEU4z0g781mzSDjJkaP+tBXhfAx2o45CsJOAPQKdL rosot4LKGAfmt1t06SAZf7IbiVQ= -----END CERTIFICATE----- ca_other_certs=Other Certificate B3 -----BEGIN CERTIFICATE----- MIIDdzCCAl+gAwIBAgIIXDPLYixfszIwDQYJKoZIhvcNAQELBQAwPDEeMBwGA1UE AwwVQXRvcyBUcnVzdGVkUm9vdCAyMDExMQ0wCwYDVQQKDARBdG9zMQswCQYDVQQG EwJERTAeFw0xMTA3MDcxNDU4MzBaFw0zMDEyMzEyMzU5NTlaMDwxHjAcBgNVBAMM FUF0b3MgVHJ1c3RlZFJvb3QgMjAxMTENMAsGA1UECgwEQXRvczELMAkGA1UEBhMC REUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVhTuXbyo7LjvPpvMp Nb7PGKw+qtn4TaA+Gke5vJrf8v7MPkfoepbCJI419KkM/IL9bcFyYie96mvr54rM VD6QUM+A1JX76LWC1BTFtqlVJVfbsVD2sGBkWXppzwO3bw2+yj5vdHLqqjAqc2K+ SZFhyBH+DgMq92og3AIVDV4VavzjgsG1xZ1kCWyjWZgHJ8cblithdHFsQ/H3NYkQ 4J7sVaE3IqKHBAUsR320HLliKWYoyrfhk/WklAOZuXCFteZI6o1Q/NnezG8HDt0L cp2AMBYHlT8oDv3FdU9T1nSatCQujgKRz3bFmx5VdJx4IbHwLfELn8LVlhgf8FQi eowHAgMBAAGjfTB7MB0GA1UdDgQWBBSnpQaxLKYJYO7Rl+lwrrw7GWzbITAPBgNV HRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFKelBrEspglg7tGX6XCuvDsZbNshMBgG A1UdIAQRMA8wDQYLKwYBBAGwLQMEAQEwDgYDVR0PAQH/BAQDAgGGMA0GCSqGSIb3 DQEBCwUAA4IBAQAmdzTblEiGKkGdLD4GkGDEjKwLVLgfuXvTBznk+j57sj1O7Z8j vZfza1zv7v1Apt+hk6EKhqzvINB5Ab149xnYJDE0BAGmuhWawyfc2E8PzBhj/5kP DpFrdRbhIfzYJsdHt6bPWHJxfrrhTZVHO8mvbaG0weyJ9rQPOLXiZNwlz6bb65pc maHFCN795trV1lpFDMS3wrUU77QR/w4VtfX128a961qn8FYiqTxlVMYVqL2Gns2D lmh6cYGJ4Qvh6hEbaAjMaZ7snkGeRDImeuKHCnE96+RapNLbxc3G3mB/ufNPRJLv KrcYPqcZ2Qt9sTdBQrC6YB3y/gkRsPCHe6ed -----END CERTIFICATE----- ca_pre_save_command=$tmpdir/note Running pre-save for CAB3 ca_pre_save_uid=$UID ca_post_save_command=$tmpdir/note Running post-save for CAB3 ca_post_save_uid=$UID EOF cat > $tmpdir/cad1 <<- EOF id=CAD1 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=$tmpdir/db1,$tmpdir/dba ca_other_root_cert_dbs=$tmpdir/dba ca_other_cert_dbs=$tmpdir/dba ca_root_certs=Root Certificate D1 -----BEGIN CERTIFICATE----- MIIDdzCCAl+gAwIBAgIEAgAAuTANBgkqhkiG9w0BAQUFADBaMQswCQYDVQQGEwJJ RTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYD VQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTAwMDUxMjE4NDYwMFoX DTI1MDUxMjIzNTkwMFowWjELMAkGA1UEBhMCSUUxEjAQBgNVBAoTCUJhbHRpbW9y ZTETMBEGA1UECxMKQ3liZXJUcnVzdDEiMCAGA1UEAxMZQmFsdGltb3JlIEN5YmVy VHJ1c3QgUm9vdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKMEuyKr mD1X6CZymrV51Cni4eiVgLGw41uOKymaZN+hXe2wCQVt2yguzmKiYv60iNoS6zjr IZ3AQSsBUnuId9Mcj8e6uYi1agnnc+gRQKfRzMpijS3ljwumUNKoUMMo6vWrJYeK mpYcqWe4PwzV9/lSEy/CG9VwcPCPwBLKBsua4dnKM3p31vjsufFoREJIE9LAwqSu XmD+tqYF/LTdB1kC1FkYmGP1pWPgkAx9XbIGevOF6uvUA65ehD5f/xXtabz5OTZy dc93Uk3zyZAsuT3lySNTPx8kmCFcB5kpvcY67Oduhjprl3RjM71oGDHweI12v/ye jl0qhqdNkNwnGjkCAwEAAaNFMEMwHQYDVR0OBBYEFOWdWTCCR1jMrPoIVDaGezq1 BE3wMBIGA1UdEwEB/wQIMAYBAf8CAQMwDgYDVR0PAQH/BAQDAgEGMA0GCSqGSIb3 DQEBBQUAA4IBAQCFDF2O5G9RaEIFoN27TyclhAO992T9Ldcw46QQF+vaKSm2eT92 9hkTI7gQCvlYpNRhcL0EYWoSihfVCr3FvDB81ukMJY2GQE/szKN+OMY3EU/t3Wgx jkzSswF07r51XgdIGn9w/xZchMB5hbgF/X++ZRGjD8ACtPhSNzkE1akxehi/oCr0 Epn3o0WC4zxe9Z2etciefC7IpJ5OCBRLbf1wbWsaY71k5h+3zvDyny67G7fyUIhz ksLi4xaNmjICq44Y3ekQEe5+NauQrz4wlHrQMz2nZQ/1/I6eYs9HRCwBXbsdtTLS R9I4LtD+gdwyah617jzV/OeBHRnDJELqYzmp -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate D1 -----BEGIN CERTIFICATE----- MIIDUzCCAjugAwIBAgIBATANBgkqhkiG9w0BAQUFADBLMQswCQYDVQQGEwJOTzEd MBsGA1UECgwUQnV5cGFzcyBBUy05ODMxNjMzMjcxHTAbBgNVBAMMFEJ1eXBhc3Mg Q2xhc3MgMiBDQSAxMB4XDTA2MTAxMzEwMjUwOVoXDTE2MTAxMzEwMjUwOVowSzEL MAkGA1UEBhMCTk8xHTAbBgNVBAoMFEJ1eXBhc3MgQVMtOTgzMTYzMzI3MR0wGwYD VQQDDBRCdXlwYXNzIENsYXNzIDIgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAIs8B0XY9t/mx8q6jUPFR42wWsE425KEHK8T1A9vNkYgxC7McXA0 ojTTNy7Y3Tp3L8DrKehc0rWpkTSHIln+zNvnma+WwajHQN2lFYxuyHyXA8vmIPLX l18xoS830r7uvqmtqEyeIWZDO6i88wmjONVZJMHCR3axiFyCO7srpgTXjAePzdVB HfCuuCkslFJgNJQ72uA40Z0zPhX0kzLFANq1KWYOOngPIVJfAuWSeyXTkh4vFZ2B 5J2O6O+JzhRMVB0cgRJNcKi+EAUXfh/RuFdV7c27UsKwHnjCTTZoy1YmwVLBvXb3 WNVyfh9EdrsAiR0WnVE1703CVu9r4Iw7DekCAwEAAaNCMEAwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUP42aWYv8e3uco684sDntkHGA1sgwDgYDVR0PAQH/BAQD AgEGMA0GCSqGSIb3DQEBBQUAA4IBAQAVGn4TirnoB6NLJzKyQJHyIdFkhb5jatLP gcIV1Xp+DCmsNx4cfHZSldq1fyOhKXdlyTKdqC5Wq2B2zha0jX94wNWZUYN/Xtm+ DKhQ7SLHrQVMdvvt7h5HZPb3J31cKA9FxVxiXqaakZG3Uxcu3K1gnZZkOb1naLKu BctN518fV4bVIJwo+28TOPX2EZL2fZleHwzoq0QkKXJAPTZSr4xYkHPB7GEseaHs h7U/2k3ZIQAw3pDaDtMaSKk+hQsUi4y8QZ5q9w5wwDX3OaJdZtB7WZ+oRxKaJyOk LY4ng5IgodcVf/EuGO70SH8vf/GhGLWhC5SgYiAynB321O+/TIho -----END CERTIFICATE----- ca_other_certs=Other Certificate D1 -----BEGIN CERTIFICATE----- MIIDUzCCAjugAwIBAgIBAjANBgkqhkiG9w0BAQUFADBLMQswCQYDVQQGEwJOTzEd MBsGA1UECgwUQnV5cGFzcyBBUy05ODMxNjMzMjcxHTAbBgNVBAMMFEJ1eXBhc3Mg Q2xhc3MgMyBDQSAxMB4XDTA1MDUwOTE0MTMwM1oXDTE1MDUwOTE0MTMwM1owSzEL MAkGA1UEBhMCTk8xHTAbBgNVBAoMFEJ1eXBhc3MgQVMtOTgzMTYzMzI3MR0wGwYD VQQDDBRCdXlwYXNzIENsYXNzIDMgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKSO13TZKWTeXx+HgJHqTjnmGcZEC4DVC69TB4sSveZn8AKxifZg isRbsELRwCGoy+Gb72RRtqfPFfV0gGgEkKBYouZ0plNTVUhjP5JW3SROjvi6K//z NIqeKNc0n6wv1g/xpC+9UrJJhW05NfBEMJNGJPO251P7vGGvqaMU+8IXF4Rs4HyI +MkcVyzwPX6UvCWThOiaAJpFBUJXgPROztmuOfbIUxAMZTpHe2DC1vqRycZxbL2R hzyRhkmr8w+gbCZ2Xhysm3HljbybIR6c1jh+JIAVMYKWsUnTYjdbiAwKYjT+p0h+ mbEwi5A3lRyoH6UsjfRVyNvdWQrCrXig9IsCAwEAAaNCMEAwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUOBTmyPCppAP0Tj4io1vy1uCtQHQwDgYDVR0PAQH/BAQD AgEGMA0GCSqGSIb3DQEBBQUAA4IBAQABZ6OMySU9E2NdFm/soT4JXJEVKirZgCFP Bdy7pYmrEzMqnji3jG8CcmPHc3ceCQa6Oyh7pEfJYWsICCD8igWKH7y6xsL+z27s EzNxZy5p+qksP2bAEllNC1QCkoS72xLvg3BweMhT+t/Gxv/ciC8HwEmdMldg0/L2 mSlf56oBzKwzqBwKu5HEA6BvtjT5htOzdlSY9EqBs1OdTUDs5XcTRa9bqh/YL0yC e/4qxFi7T/ye/QNlGioOw6UgFpRreaaiErS7GqQjel/wroQk5PMr+4okoyeYZdow dXb8GZHo2+ubPzK/QJcHJrrM85SFSnonk8+QQtS4Wxam58tAA915 -----END CERTIFICATE----- ca_pre_save_command=$tmpdir/note Running pre-save for CAD1 ca_pre_save_uid=$UID ca_post_save_command=$tmpdir/note Running post-save for CAD1 ca_post_save_uid=$UID EOF cat > $tmpdir/cad2 <<- EOF id=CAD2 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=$tmpdir/dba ca_other_root_cert_dbs=$tmpdir/db2,$tmpdir/dba ca_other_cert_dbs=$tmpdir/dba ca_root_certs=Root Certificate D2 -----BEGIN CERTIFICATE----- MIIEDzCCAvegAwIBAgIBATANBgkqhkiG9w0BAQUFADBKMQswCQYDVQQGEwJTSzET MBEGA1UEBxMKQnJhdGlzbGF2YTETMBEGA1UEChMKRGlzaWcgYS5zLjERMA8GA1UE AxMIQ0EgRGlzaWcwHhcNMDYwMzIyMDEzOTM0WhcNMTYwMzIyMDEzOTM0WjBKMQsw CQYDVQQGEwJTSzETMBEGA1UEBxMKQnJhdGlzbGF2YTETMBEGA1UEChMKRGlzaWcg YS5zLjERMA8GA1UEAxMIQ0EgRGlzaWcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCS9jHBfYj9mQGp2HvycXXxMcbzdWb6UShGhJd4NLxs/LxFWYgmGErE Nx+hSkS943EE9UQX4j/8SFhvXJ56CbpRNyIjZkMhsDxkovhqFQ4/61HhVKndBpnX mjxUizkDPw/Fzsbrg3ICqB9x8y34dQjbYkzo+s7552oftms1grrijxaSfQUMbEYD XcDtab86wYqg6I7ZuUUohwjstMoVvoLdtUSLLa2GDGhibYVW8qwUYzrG0ZmsNHhW S8+2rT+MitcE5eN4TPWGqvWP+j1scaMtymfraHtuM6kMgiioTGohQBUgDCZbg8Kp FhXAJIJdKxatymP2dACw30PEEGBWZ2NFAgMBAAGjgf8wgfwwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUjbJJaJ1yCCW5wCf1UJNWSEZx+Y8wDgYDVR0PAQH/BAQD AgEGMDYGA1UdEQQvMC2BE2Nhb3BlcmF0b3JAZGlzaWcuc2uGFmh0dHA6Ly93d3cu ZGlzaWcuc2svY2EwZgYDVR0fBF8wXTAtoCugKYYnaHR0cDovL3d3dy5kaXNpZy5z ay9jYS9jcmwvY2FfZGlzaWcuY3JsMCygKqAohiZodHRwOi8vY2EuZGlzaWcuc2sv Y2EvY3JsL2NhX2Rpc2lnLmNybDAaBgNVHSAEEzARMA8GDSuBHpGT5goAAAABAQEw DQYJKoZIhvcNAQEFBQADggEBAF00dGFMrzvY/59tWDYcPQuBDRIrRhCA/ec8J9B6 yKm2fnQwM6M6int0wHl5QpNt/7EpFIKrIYwvF/k/Ji/1WcbvgAa3mkkp7M5+cTxq EEHA9tOasnxakZzArFvITV734VP/Q3f8nktnbNfzg9Gg4H8l37iYC5oyOGwwoPP/ CBUz91BKez6jPiCp3C9WgArtQVCwyfTssuMmRAAOb54GvCKWU3BlxFAKRmukLyeB EicTXxChds6KezfqwzlhA5WYOudsiCUI/HloDYd9Yvi0X/vF2Ey9WLw/Q1vUHgFN PGO+I++MzVpQuGhU+QqZMxEA4Z7CRneC9VkGjCFMhwnN5ag= -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate D2 -----BEGIN CERTIFICATE----- MIIDVTCCAj2gAwIBAgIESTMAATANBgkqhkiG9w0BAQUFADAyMQswCQYDVQQGEwJD TjEOMAwGA1UEChMFQ05OSUMxEzARBgNVBAMTCkNOTklDIFJPT1QwHhcNMDcwNDE2 MDcwOTE0WhcNMjcwNDE2MDcwOTE0WjAyMQswCQYDVQQGEwJDTjEOMAwGA1UEChMF Q05OSUMxEzARBgNVBAMTCkNOTklDIFJPT1QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTNfc/c3et6FtzF8LRb+1VvG7q6KR5smzDo+/hn7E7SIX1mlwh IhAsxYLO2uOabjfhhyzcuQxauohV3/2q2x8x6gHx3zkBwRP9SFIhxFXf2tizVHa6 dLG3fdfA6PZZxU3Iva0fFNrfWEQlMhkqx35+jq44sDB7R3IJMfAw28Mbdim7aXZO V/kbZKKTVrdvmW7bCgScEeOAH8tjlBAKqeFkgjH5jCftppkA9nCTGPihNIaj3XrC GHn2emU1z5DrvTOTn1OrczvmmzQgLx3vqR1jGqCA2wMv+SYahtKNu6m+UjqHZ0gN v7Sg2Ca+I19zN38m5pIEo3/PIKe38zrKy5nLAgMBAAGjczBxMBEGCWCGSAGG+EIB AQQEAwIABzAfBgNVHSMEGDAWgBRl8jGtKvf33VKWCscCwQ7vptU7ETAPBgNVHRMB Af8EBTADAQH/MAsGA1UdDwQEAwIB/jAdBgNVHQ4EFgQUZfIxrSr3991SlgrHAsEO 76bVOxEwDQYJKoZIhvcNAQEFBQADggEBAEs17szkrr/Dbq2flTtLP1se31cpolnK OOK5Gv+e5m4y3R6u6jW39ZORTtpC4cMXYFDy0VwmuYK36m3knITnA3kXr5g9lNvH ugDnuL8BV8F3RTIMO/G0HAiw/VGgod2aHRM2mm23xzy54cXZF/qD1T0VoDy7Hgvi yJA/qIYM/PmLXoXLT1tLYhFHxUV8BS9BsZ4QaRuZluBVeftOhpm4lNqGOGqTo+fL buXf6iFViZx9fX+Y9QCJ7uOEwFyWtcVG6kbghVW2G8kS1sHNzYDzAgE8yGnLRUhj 2JTQ7IUOO04RZfSCjKY9ri4ilAnIXOo8gV0WKgOXFlUJ24pBgp5mmxE= -----END CERTIFICATE----- ca_other_certs=Other Certificate D2 -----BEGIN CERTIFICATE----- MIIEHTCCAwWgAwIBAgIQToEtioJl4AsC7j41AkblPTANBgkqhkiG9w0BAQUFADCB gTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxJzAlBgNV BAMTHkNPTU9ETyBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0wNjEyMDEwMDAw MDBaFw0yOTEyMzEyMzU5NTlaMIGBMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3Jl YXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxmb3JkMRowGAYDVQQKExFDT01P RE8gQ0EgTGltaXRlZDEnMCUGA1UEAxMeQ09NT0RPIENlcnRpZmljYXRpb24gQXV0 aG9yaXR5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ECLi3LjkRv3 UcEbVASY06m/weaKXTuH+7uIzg3jLz8GlvCiKVCZrts7oVewdFFxze1CkU1B/qnI 2GqGd0S7WWaXUF601CxwRM/aN5VCaTwwxHGzUvAhTaHYujl8HJ6jJJ3ygxaYqhZ8 Q5sVW7euNJH+1GImGEaaP+vB+fGQV+useg2L23IwambV4EajcNxo2f8ESIl33rXp +2dtQem8Ob0y2WIC8bGoPW43nOIv4tOiJovGuFVDiOEjPqXSJDlqR6sA1KGzqSX+ DT+nHbrTUcELpNqsOO9VUCQFZUaTNE8tja3G1CEZ0o7KBWFxB3NH5YoZEr0ETc5O nKVIrLsm9wIDAQABo4GOMIGLMB0GA1UdDgQWBBQLWOWLxkwVN6RAqTCpIb5HNlpW /zAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBJBgNVHR8EQjBAMD6g PKA6hjhodHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9DT01PRE9DZXJ0aWZpY2F0aW9u QXV0aG9yaXR5LmNybDANBgkqhkiG9w0BAQUFAAOCAQEAPpiem/Yb6dc5t3iuHXIY SdOH5EOC6z/JqvWote9VfCFSZfnVDeFs9D6Mk3ORLgLETgdxb8CPOGEIqB6BCsAv IC9Bi5HcSEW88cbeunZrM8gALTFGTO3nnc+IlP8zwFboJIYmuNg4ON8qa90SzMc/ RxdMosIGlgnW2/4/PEZB31jiVg88O8EckzXZOFKs7sjsLjBOlDW0JB9LeGna8gI4 zJVSk/BwJVmcIGfE7vmLV2H0knZ9P4SNVbfo5azV8fUZVqZa+5Acr5Pr5RzUZ5dd BA6+C4OmF4O5MBKgxTMVBbkN+8cFduPYSo38NBejxiEovjBFMR7HeL5YYTisO+IB ZQ== -----END CERTIFICATE----- ca_pre_save_command=$tmpdir/note Running pre-save for CAD2 ca_pre_save_uid=$UID ca_post_save_command=$tmpdir/note Running post-save for CAD2 ca_post_save_uid=$UID EOF cat > $tmpdir/cad3 <<- EOF id=CAD3 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=,$tmpdir/dba ca_other_root_cert_dbs=,$tmpdir/dba, ca_other_cert_dbs=$tmpdir/db3,$tmpdir/dba ca_root_certs=Root Certificate D3 -----BEGIN CERTIFICATE----- MIICiTCCAg+gAwIBAgIQH0evqmIAcFBUTAGem2OZKjAKBggqhkjOPQQDAzCBhTEL MAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UE BxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxKzApBgNVBAMT IkNPTU9ETyBFQ0MgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMDgwMzA2MDAw MDAwWhcNMzgwMTE4MjM1OTU5WjCBhTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdy ZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09N T0RPIENBIExpbWl0ZWQxKzApBgNVBAMTIkNPTU9ETyBFQ0MgQ2VydGlmaWNhdGlv biBBdXRob3JpdHkwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQDR3svdcmCFYX7deSR FtSrYpn1PlILBs5BAH+X4QokPB0BBO490o0JlwzgdeT6+3eKKvUDYEs2ixYjFq0J cfRK9ChQtP6IHG4/bC8vCVlbpVsLM5niwz2J+Wos77LTBumjQjBAMB0GA1UdDgQW BBR1cacZSBm8nZ3qQUfflMRId5nTeTAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/ BAUwAwEB/zAKBggqhkjOPQQDAwNoADBlAjEA7wNbeqy3eApyt4jf/7VGFAkK+qDm fQjGGoe9GKhzvSbKYAydzpmfz1wPMOG+FDHqAjAU9JM8SaczepBGR7NjfRObTrdv GDeAU/7dIOA1mjbRxwG55tzd8/8dLDoWV9mSOdY= -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate D3 -----BEGIN CERTIFICATE----- MIIDqDCCApCgAwIBAgIJAP7c4wEPyUj/MA0GCSqGSIb3DQEBBQUAMDQxCzAJBgNV BAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hMB4X DTA3MDYyOTE1MTMwNVoXDTI3MDYyOTE1MTMwNVowNDELMAkGA1UEBhMCRlIxEjAQ BgNVBAoMCURoaW15b3RpczERMA8GA1UEAwwIQ2VydGlnbmEwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDIaPHJ1tazNHUmgh7stL7qXOEm7RFHYeGifBZ4 QCHkYJ5ayGPhxLGWkv8YbWkj4Sti993iNi+RB7lIzw7sebYs5zRLcAglozyHGxny gQcPOJAZ0xH+hrTy0V4eHpbNgGzOOzGTtvKg0KmVEn2lmsxryIRWijOp5yIVUxbw zBfsV1/pogqYCd7jX5xv3EjjhQsVWqa6n6xI4wmy9/Qy3l40vhx4XUJbzg4ij02Q 130yGLMLLGq/jj8UEYkgDncUtT2UCIf3JR7VsmAA7G8qKCVuKj4YYxclPz5EIBb2 JsglrgVKtOdjLPOMFlN+XPsRGgjBRmKfIrjxwo1p3Po6WAbfAgMBAAGjgbwwgbkw DwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUGu3+QTmQtCRZvgHyUtVF9lo53BEw ZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYT AkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzj AQ/JSP8wDgYDVR0PAQH/BAQDAgEGMBEGCWCGSAGG+EIBAQQEAwIABzANBgkqhkiG 9w0BAQUFAAOCAQEAhQMeknH2Qq/ho2Ge6/PAD/Kl1NqV5ta+aDY9fm4fTIrv0Q8h bV6lUmPOEvjvKtpv6zf+EwLHyzs+ImvaYS5/1HI93TDhHkxAGYwP15zRgzB7mFnc fca5DClMoTOi62c6ZYTTluLtdkVwj7Ur3vkj1kluPBS1xp81HlDQwY9qcEQCYsuu HWhBp6pX6FOqB9IG9tUUBguRA3UsbHK1YZWaDYu5Def131TN3ubY1gkIl2PlwS6w t0QmwCbAr1UwnjvVNioZBPRcHv/PLLf/0P2HQBHVESO7SMAhqaQoLf0V+LBOK/Qw WyH8EZE0vkHve52Xdf+XlcCWWC/qu0bXu+TZLg== -----END CERTIFICATE----- ca_other_certs=Other Certificate D3 -----BEGIN CERTIFICATE----- MIIDkjCCAnqgAwIBAgIRAIW9S/PY2uNp9pTXX8OlRCMwDQYJKoZIhvcNAQEFBQAw PTELMAkGA1UEBhMCRlIxETAPBgNVBAoTCENlcnRwbHVzMRswGQYDVQQDExJDbGFz cyAyIFByaW1hcnkgQ0EwHhcNOTkwNzA3MTcwNTAwWhcNMTkwNzA2MjM1OTU5WjA9 MQswCQYDVQQGEwJGUjERMA8GA1UEChMIQ2VydHBsdXMxGzAZBgNVBAMTEkNsYXNz IDIgUHJpbWFyeSBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANxQ ltAS+DXSCHh6tlJw/W/uz7kRy1134ezpfgSN1sxvc0NXYKwzCkTsA18cgCSR5aiR VhKC9+Ar9NuuYS6JEI1rbLqzAr3VNsVINyPi8Fo3UjMXEuLRYE2+L0ER4/YXJQyL kcAbmXuZVg2v7tK8R1fjeUl7NIknJITesezpWE7+Tt9avkGtrAjFGA7v0lPubNCd EgETjdyAYveVqUSISnFOYFWe2yMZeVYHDD9jC1yw4r5+FfyUM1hBOHTE4Y+L3yas H7WLO7dDWWuwJKZtkIvEcupdM5i3y95ee++U8Rs+yskhwcWYAqqi9lt3m/V+llU0 HGdpwPFC40es/CgcZlUCAwEAAaOBjDCBiTAPBgNVHRMECDAGAQH/AgEKMAsGA1Ud DwQEAwIBBjAdBgNVHQ4EFgQU43Mt38sOKAze3bOkynm4jrvoMIkwEQYJYIZIAYb4 QgEBBAQDAgEGMDcGA1UdHwQwMC4wLKAqoCiGJmh0dHA6Ly93d3cuY2VydHBsdXMu Y29tL0NSTC9jbGFzczIuY3JsMA0GCSqGSIb3DQEBBQUAA4IBAQCnVM+IRBnL39R/ AN9WM2K191EBkOvDP9GIROkkXe/nFL0gt5o8AP5tn9uQ3Nf0YtaLcF3n5QRIqWh8 yfFC82x/xXp8HVGIutIKPidd3i1RTtMTZGnkLuPT55sJmabglZvOGtd/vjzOUrMR FcEPF80Du5wlFbqidon8BvEY0JNLDnyCt6X09l/+7UCmnYR0ObncHoUW2ikbhiMA ybuJfm6AiB4vFLQDJKgybwOaRywwvlbGp0ICcBvqQNi6BQNwB6SW//1IMwrh3KWB kJtN3X3n57LNXMhqlfil9o3EXXgIvnsG1knPGTZQIy4I5p4FTUcY1Rbpsda2ENW7 l7+ijrRU -----END CERTIFICATE----- ca_pre_save_command=$tmpdir/note Running pre-save for CAD3 ca_pre_save_uid=$UID ca_post_save_command=$tmpdir/note Running post-save for CAD3 ca_post_save_uid=$UID EOF cat > $tmpdir/cada <<- EOF id=CADA ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files=$tmpdir/bundle-all ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=$tmpdir/dba ca_other_root_cert_dbs=,$tmpdir/dba ca_other_cert_dbs=,$tmpdir/dba ca_root_certs=Root Certificate DA -----BEGIN CERTIFICATE----- MIICiDCCAg2gAwIBAgIQNfwmXNmET8k9Jj1Xm67XVjAKBggqhkjOPQQDAzCBhDEL MAkGA1UEBhMCVVMxFTATBgNVBAoTDHRoYXd0ZSwgSW5jLjE4MDYGA1UECxMvKGMp IDIwMDcgdGhhd3RlLCBJbmMuIC0gRm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxJDAi BgNVBAMTG3RoYXd0ZSBQcmltYXJ5IFJvb3QgQ0EgLSBHMjAeFw0wNzExMDUwMDAw MDBaFw0zODAxMTgyMzU5NTlaMIGEMQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhh d3RlLCBJbmMuMTgwNgYDVQQLEy8oYykgMjAwNyB0aGF3dGUsIEluYy4gLSBGb3Ig YXV0aG9yaXplZCB1c2Ugb25seTEkMCIGA1UEAxMbdGhhd3RlIFByaW1hcnkgUm9v dCBDQSAtIEcyMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEotWcgnuVnfFSeIf+iha/ BebfowJPDQfGAFG6DAJSLSKkQjnE/o/qycG+1E3/n3qe4rF8mq2nhglzh9HnmuN6 papu+7qzcMBniKI11KOasf2twu8x+qi58/sIxpHR+ymVo0IwQDAPBgNVHRMBAf8E BTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUmtgAMADna3+FGO6Lts6K DPgR4bswCgYIKoZIzj0EAwMDaQAwZgIxAN344FdHW6fmCsO99YCKlzUNG4k8VIZ3 KMqh9HneteY4sPBlcIx/AlTCv//YoT7ZzwIxAMSNlPzcU9LcnXgWHxUzI1NS41ox XZ3Krr0TKUQNJ1uo52icEvdYPy5yAlejj6EULg== -----END CERTIFICATE----- ca_pre_save_command=$tmpdir/note Running pre-save for CADA ca_pre_save_uid=$UID ca_post_save_command=$tmpdir/note Running post-save for CADA ca_post_save_uid=$UID EOF run="$toolsdir/hooks -e entrycb1 -e entrycb2 -e entrycb3 -e entrycd1 -e entrycd2 -e entrycd3 -c cab1 -c cab2 -c cab3 -c cad1 -c cad2 -c cad3 -c cada" for target in EntryCB1 EntryCB2 EntryCD1 EntryCD2 CAB1 CAB2 CAD1 CAD2 CADA ; do : > $tmpdir/log echo '['$target' -B]' $run -B $target cat $tmpdir/log : > $tmpdir/log echo '['$target' -C]' $run -C $target cat $tmpdir/log done echo OK. certmonger-0.78.6/tests/027-hooks/expected.out0000664000175000017500000000475612645513264016055 00000000000000[EntryCB1 -B] Starting pre-save for entry EntryCB1. Running pre-save for CAB1 Running pre-save for EntryCAB1 [EntryCB1 -C] Starting post-save for entry EntryCB1. Running post-save for CAB1 Running post-save for EntryCAB1 [EntryCB2 -B] Starting pre-save for entry EntryCB2. Running pre-save for EntryCAB2 [EntryCB2 -C] Starting post-save for entry EntryCB2. Running post-save for EntryCAB2 [EntryCD1 -B] Starting pre-save for entry EntryCD1. Running pre-save for CAD1 Running pre-save for EntryCAD1 [EntryCD1 -C] Starting post-save for entry EntryCD1. Running post-save for CAD1 Running post-save for EntryCAD1 [EntryCD2 -B] Starting pre-save for entry EntryCD2. Running pre-save for EntryCAD2 [EntryCD2 -C] Starting post-save for entry EntryCD2. Running post-save for EntryCAD2 [CAB1 -B] Starting pre-save for CA CAB1. Running pre-save for CAB1 Running pre-save for CAB2 Running pre-save for CAB3 Running pre-save for CADA Running pre-save for EntryCAB1 [CAB1 -C] Starting post-save for CA CAB1. Running post-save for CAB1 Running post-save for CAB2 Running post-save for CAB3 Running post-save for CADA Running post-save for EntryCAB1 [CAB2 -B] Starting pre-save for CA CAB2. Running pre-save for CAB1 Running pre-save for CAB2 Running pre-save for CAB3 Running pre-save for CADA [CAB2 -C] Starting post-save for CA CAB2. Running post-save for CAB1 Running post-save for CAB2 Running post-save for CAB3 Running post-save for CADA [CAD1 -B] Starting pre-save for CA CAD1. Running pre-save for CAD1 Running pre-save for CAD2 Running pre-save for CAD3 Running pre-save for CADA Running pre-save for EntryCAD1 [CAD1 -C] Starting post-save for CA CAD1. Running post-save for CAD1 Running post-save for CAD2 Running post-save for CAD3 Running post-save for CADA Running post-save for EntryCAD1 [CAD2 -B] Starting pre-save for CA CAD2. Running pre-save for CAD1 Running pre-save for CAD2 Running pre-save for CAD3 Running pre-save for CADA [CAD2 -C] Starting post-save for CA CAD2. Running post-save for CAD1 Running post-save for CAD2 Running post-save for CAD3 Running post-save for CADA [CADA -B] Starting pre-save for CA CADA. Running pre-save for CAB1 Running pre-save for CAB2 Running pre-save for CAB3 Running pre-save for CAD1 Running pre-save for CAD2 Running pre-save for CAD3 Running pre-save for CADA [CADA -C] Starting post-save for CA CADA. Running post-save for CAB1 Running post-save for CAB2 Running post-save for CAB3 Running post-save for CAD1 Running post-save for CAD2 Running post-save for CAD3 Running post-save for CADA OK. certmonger-0.78.6/tests/026-local/0000775000175000017500000000000012645513301013525 500000000000000certmonger-0.78.6/tests/026-local/run.sh0000775000175000017500000000310412645513264014616 00000000000000#!/bin/bash -e cd $tmpdir cat > request <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key cert_storage_type=FILE cert_storage_location=$tmpdir/cert template_subject=CN=Babs Jensen's Signer template_email=root@localhost,root@localhost.localdomain template_ku=1000011 template_is_ca=1 template_certfname=Babs Jensen's Signer template_ocsp=http://ocsp-1.example.com:12345,http://ocsp-2.example.com:12345 template_nscomment=certmonger generated this request template_no_ocsp_check=1 EOF filter() { sed -re 's,CN=[[:xdigit:]]{8}-[[:xdigit:]]{8}-[[:xdigit:]]{8}-[[:xdigit:]]{8},CN=$UUID,g' |\ sed -re 's,[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2}:[[:xdigit:]]{2},(160 bits),g' |\ sed s,'^ Signature Algorithm, Signature Algorithm,g' } dumpreq() { openssl req -in "$@" -text -noout -reqopt no_serial,no_pubkey,no_sigdump,no_validity | filter } dumpcert() { openssl x509 -in "$@" -text -noout -certopt no_serial,no_pubkey,no_sigdump,no_validity | filter } echo "[key]" $toolsdir/keygen request echo "[csr]" $toolsdir/csrgen request > csr dumpreq csr echo "[issue]" $builddir/../src/local-submit -d $tmpdir csr > cert echo "[issuer]" openssl pkcs12 -in creds -passin pass: -nodes | openssl x509 > ca-cert dumpcert ca-cert echo "[subject]" dumpcert cert echo "[verify]" openssl verify -CAfile $tmpdir/ca-cert cert echo OK. certmonger-0.78.6/tests/026-local/expected.out0000664000175000017500000000436612645513264016020 00000000000000[key] OK. [csr] Certificate Request: Data: Version: 0 (0x0) Subject: CN=Babs Jensen's Signer Attributes: friendlyName :unable to print attribute Requested Extensions: X509v3 Key Usage: Digital Signature, Certificate Sign, CRL Sign X509v3 Subject Alternative Name: email:root@localhost, email:root@localhost.localdomain X509v3 Basic Constraints: critical CA:TRUE X509v3 Authority Key Identifier: keyid:(160 bits) X509v3 Subject Key Identifier: (160 bits) Authority Information Access: OCSP - URI:http://ocsp-1.example.com:12345 OCSP - URI:http://ocsp-2.example.com:12345 OCSP No Check: [issue] [issuer] Certificate: Data: Version: 3 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=Local Signing Authority, CN=$UUID Subject: CN=Local Signing Authority, CN=$UUID X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: (160 bits) X509v3 Authority Key Identifier: keyid:(160 bits) X509v3 Key Usage: critical Digital Signature, Certificate Sign, CRL Sign [subject] Certificate: Data: Version: 3 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=Local Signing Authority, CN=$UUID Subject: CN=Babs Jensen's Signer X509v3 extensions: X509v3 Key Usage: Digital Signature, Certificate Sign, CRL Sign X509v3 Subject Alternative Name: email:root@localhost, email:root@localhost.localdomain X509v3 Basic Constraints: critical CA:TRUE X509v3 Authority Key Identifier: keyid:(160 bits) X509v3 Subject Key Identifier: (160 bits) Authority Information Access: OCSP - URI:http://ocsp-1.example.com:12345 OCSP - URI:http://ocsp-2.example.com:12345 OCSP No Check: [verify] cert: OK OK. certmonger-0.78.6/tests/025-casave/0000775000175000017500000000000012645513301013674 500000000000000certmonger-0.78.6/tests/025-casave/run.sh0000775000175000017500000012225712645513264015000 00000000000000#!/bin/bash -e cd $tmpdir cat > $tmpdir/entrycb1 <<- EOF id=EntryCB1 ca_name=CAB1 cert_roots=Per-certificate Signing Authority CB1 -----BEGIN CERTIFICATE----- MIIDjjCCAnagAwIBAgIRAO1VmyXYM0f7pbXVdEGtRPMwDQYJKoZIhvcNAQELBQAw UDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRob3JpdHkxLDAqBgNVBAMMI2Vk NTU5YjI1LWQ4MzM0N2ZiLWE1YjVkNTc0LTQxYWQ0NGYzMB4XDTE1MDQyODE3MDk0 OFoXDTE2MDQyODE3MDk0OFowUDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRo b3JpdHkxLDAqBgNVBAMMI2VkNTU5YjI1LWQ4MzM0N2ZiLWE1YjVkNTc0LTQxYWQ0 NGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5c/LhlyBs0UUiDSy nrC+Q0WJkWZeQ/kqwniru+GlXgb3g+7VvyAfdZ45NiBdo/6xXyCLphK0g8oZLyi8 OwQQoUyVMn9gsGXbjlwSzjXKx3wdUM+lFpenx8iQS9aCfVQJ4tzFgM1pQBQ2AiHs jvU18xSFSZApjT5UIK35kyH22D8LhCGGYLaU3xFEfHvd0AOuXwm5Nsiu/HTsSV4N peUdFEmFzQwUEUdV2jKOPcXnOArV82vfpdp1nSCX3kruEb9G93VsmQ+9ebKXQRQE Ltd65e/EYtXvihuTtElLYuyYZlYJdbTZeLXB4YLvElgNkS9JK7RKHlCm0KYQmcmd GZSh8QIDAQABo2MwYTAPBgNVHRMBAf8EBTADAQEBMB0GA1UdDgQWBBRLxeFy3+RS FloygyjlXa6YEv8ltzAfBgNVHSMEGDAWgBRLxeFy3+RSFloygyjlXa6YEv8ltzAO BgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQELBQADggEBAH9A9ePIqZGF4VEo5D4j MuOJ1J4uTRxHoEGXCDRcuCn3RvT0civWEPpRNo1YVgAWFODpt/HSi3lCVtTb7FwJ hfHkxCpAuHmv3sfT8jcCwTTAXL1BLpCO6d0zz0RrFMNK+vGyZu/7LXhaYVu590Q5 1DMybHmln7i+Tw/eYb4Avk1FWGOEpNdf3ZjUazcDlkO4EwA6BnZUC8gFvz0OI73D AJsGq/UsJvMH30ga1rZ/9LiHEMSEys5amk98yMRvi/R1qI02kjANdZ0ID/7cJSw2 rVCCs61jgYppWv3JHVKYmm6+cVPAUcuRdsUzDpAQDdvGAaZJENE6suulRVEaBEdS 8gM= -----END CERTIFICATE----- EOF cat > $tmpdir/entrycb2 <<- EOF id=EntryCB2 ca_name=CAB2 EOF cat > $tmpdir/entrycb3 <<- EOF id=EntryCB3 ca_name=CAB3 cert_chain=Per-certificate Signing Authority CB3 -----BEGIN CERTIFICATE----- MIIDjTCCAnWgAwIBAgIQOGalAgIuTw2xnRdbwbq4kTANBgkqhkiG9w0BAQsFADBQ MSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhvcml0eTEsMCoGA1UEAwwjMzg2 NmE1MDItMDIyZTRmMGQtYjE5ZDE3NWItYzFiYWI4OTEwHhcNMTUwNDI4MTcxMjQw WhcNMTYwNDI4MTcxMjQwWjBQMSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhv cml0eTEsMCoGA1UEAwwjMzg2NmE1MDItMDIyZTRmMGQtYjE5ZDE3NWItYzFiYWI4 OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvWaesX7JlJsCn0emr ydLU7IwxQr9j+vbAEQW9haDQaUkQQLd5ScGZLJ6ZXFsoll0JOx22CUttmgqBInb/ NceFnTVo8xcm3asF9iqLBTLN8Vhu8U3FF4fQFzM3QoqCL/z6JtN8axAhO6J1TRS4 pKE1xQ3AYGL+l+1q29x3BE9ni61uqiF2b7Uw8VGxSg1LJxA8tubG+Umtep5fyptS wS0Py8NTRsxBMDq67nKx7uwBDTWBCoIPWYu4VnzAQjsFdFX/F9wg4gJzq3CKqBXI ycfmP+bH9GFbwZcSQxE9OEkMhwLpDo+SArb68uZfrW/k01RvDHVYXzHo6Ig4/eDl ydJtAgMBAAGjYzBhMA8GA1UdEwEB/wQFMAMBAQEwHQYDVR0OBBYEFJZM1+zJme6Z P6/kbs9Q/8Vqr6LgMB8GA1UdIwQYMBaAFJZM1+zJme6ZP6/kbs9Q/8Vqr6LgMA4G A1UdDwEB/wQEAwIBhjANBgkqhkiG9w0BAQsFAAOCAQEAjGVYzofkU9+PtOd43ny1 2dj4y8iDh7qMmZAaaAaFsiyxG50cfMYfaVRfdsgfghXrydRwKb2BNss/0V2beb3F v4AMTHZEwoCud7aS3YAC1z3FjH/UTsNwhwb9B8KDxYEAbKBN/1Bq/5sW4iY5GoJe AICdVUqLfJ3s16uUoDcS9Imq8RBi55JbgTxAgQqO1NFNezZzKY8+x5mNXLKqcy30 BbBJ2PyF8MTvOLCEszU3lDAznjrNZRafU2KdDvwX/aTocUk6/b/5hVkNlxZb+vCJ fXgKIxmK2m3LEV868g+uJok3/FesYOpAAIcuJs76Io1zqqcRTLbsT5zWlRsXZSTD Ig== -----END CERTIFICATE----- EOF cat > $tmpdir/entrycd1 <<- EOF id=EntryCD1 ca_name=CAD1 cert_roots=Per-certificate Signing Authority CD1 -----BEGIN CERTIFICATE----- MIIDjTCCAnWgAwIBAgIQefKZEYyjRsOZR2XeYUv1EzANBgkqhkiG9w0BAQsFADBQ MSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhvcml0eTEsMCoGA1UEAwwjNzlm Mjk5MTEtOGNhMzQ2YzMtOTk0NzY1ZGUtNjE0YmY1MTMwHhcNMTUwNDI4MTcxMjU1 WhcNMTYwNDI4MTcxMjU1WjBQMSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhv cml0eTEsMCoGA1UEAwwjNzlmMjk5MTEtOGNhMzQ2YzMtOTk0NzY1ZGUtNjE0YmY1 MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC60etRVQebs98gHe9/ rm29aVml0CxovpSQ5Ipi9ySy8qkEJHY2nMGjVuud/axJfuCFSS4ffqv9oG70K3a7 18CAzTHiSTQhUsmK7Gy5p4xiV7317RSKSC1qvNrj7XZe7/eOBFIamd2r6F+hZ/2w DfxxpHJgGHd84wFqLCp+lkNhEZzekGem0p8s89ZfwuX5cWPsVsWPsao22d3CFk3/ G+OZ1EGlBdJ6q4MdWVLHs0I4wGtX6KFXvSCyB0bM1BBHggO0NclLqHlB9WYAvhMX okA/ik414nXbXYGcESo9iUtrmJqn5VEwHnj9ZAaErj8XawRSV2eTXKmKMPLr5X+r VW8BAgMBAAGjYzBhMA8GA1UdEwEB/wQFMAMBAQEwHQYDVR0OBBYEFAEnAni9wefR dNdmJ22delvO3vVuMB8GA1UdIwQYMBaAFAEnAni9wefRdNdmJ22delvO3vVuMA4G A1UdDwEB/wQEAwIBhjANBgkqhkiG9w0BAQsFAAOCAQEAZIrRUVp/Gr+v/pnAb0s7 jcH4re7SzQjE009kxRmKQEKPFjzuVftJEaDEaEmI100v0cejZCQh1b0DEnhUWtrn by/NLWfQakgqodzE7/tywFak0oqq2nVSw80K3XkD0CHL/gb3HEKt5V04jla2jV4p l66esGiZUyVRdBXycEhysDW15fnPRQcKmZwuJjRoqvYOi/YbhhhsxUSIG9is2vWE BsUkbMWp2eE4q1+01rI0V/gl/QkqxICszDwhrtEIAuVOewyOiqjBPGZVtyH9XCDJ 44onL7lItQAyHz8/Qh1rsJQP/pdEdCn3dBLQ8jhG0XhgrIssXUY1ee75qydKp9wl hw== -----END CERTIFICATE----- EOF cat > $tmpdir/entrycd2 <<- EOF id=EntryCD2 ca_name=CAD2 EOF cat > $tmpdir/entrycd3 <<- EOF id=EntryCD3 ca_name=CAD3 cert_chain=Per-certificate Signing Authority CD3 -----BEGIN CERTIFICATE----- MIIDjjCCAnagAwIBAgIRAMFmZfTvCkoKo36mAOtfXicwDQYJKoZIhvcNAQELBQAw UDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRob3JpdHkxLDAqBgNVBAMMI2Mx NjY2NWY0LWVmMGE0YTBhLWEzN2VhNjAwLWViNWY1ZTI3MB4XDTE1MDQyODE3MTMx N1oXDTE2MDQyODE3MTMxN1owUDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRo b3JpdHkxLDAqBgNVBAMMI2MxNjY2NWY0LWVmMGE0YTBhLWEzN2VhNjAwLWViNWY1 ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNJx6MUl8FCawLDu OphSzG/G6slTti8IDvt2+2Fe1Tpn1fYRblKBTa2FiVBkh+htWiT/n6BsH2wlAZet mbX+7ZaVXe5Nto4jwBQ1fukcIAJguM9vOTeeJ8dv2MKKdtx/oJDs9q6my5CCRgqY 2SU+TOlcp071WMGJsVaf/yZ4XEmpq0hMMtLuGs6gGBDl/+2MoJFADyq9gOMIsbDm ovAIubargRUC+PCsDIGUukQQ0W7r9eWnnQU9gAm2R0dWlNGkb3LD22ll3qQJtnxL WjAdWX9l6/GrGBQsM5rT514f9wKbEjAGViFC4303yR1+9i7zRQVGLG5LDRCPC3Lv EqVMMwIDAQABo2MwYTAPBgNVHRMBAf8EBTADAQEBMB0GA1UdDgQWBBTo8m0mIapN 76ti/j/eNKCob4W30DAfBgNVHSMEGDAWgBTo8m0mIapN76ti/j/eNKCob4W30DAO BgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQELBQADggEBABpsw1f6Rcwe6fSq3LQ9 au/kF8NuZVuZpGz7zMPACkhMRtz57H9IPHA/xo1y80BZ+GR6eM7z580y/TMLyqwX BuRV3Ecdr4Q4Y4SgMg4qwO0Lyv8xHeKUy6/aIp8wAgwMB3OWhXp1z2nIc+PfKCOY wgoDWGH6Xykl563eB7FHHasi+QgNo3WUttnWxCarNHWC9uI9ViaegJyd8olcYfZ9 Za5zEjLP6kKvvL9K+oJqD3OPwuIvyG2iaMjpeA86Eq1Xq3UYu+idIRpVyd0/wDWy xQSVPzyJ8CXadgOXq8JMpzee5K7FJfdy7ZJ81exKSdageSCDJFnZBf0AMagoEe7T oB0= -----END CERTIFICATE----- EOF cat > $tmpdir/entryb1 <<- EOF id=EntryB1 root_cert_files=$tmpdir/bundle1,$tmpdir/bundle-all other_root_cert_files= other_cert_files= root_cert_dbs= other_root_cert_dbs= other_cert_dbs= cert_roots=Per-certificate Signing Authority B1 -----BEGIN CERTIFICATE----- MIIDjTCCAnWgAwIBAgIQcy6K0zk7T+KHmpn1Kn5fIzANBgkqhkiG9w0BAQsFADBQ MSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhvcml0eTEsMCoGA1UEAwwjNzMy ZThhZDMtMzkzYjRmZTItODc5YTk5ZjUtMmE3ZTVmMjMwHhcNMTUwNDI4MTcyODIx WhcNMTYwNDI4MTcyODIxWjBQMSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhv cml0eTEsMCoGA1UEAwwjNzMyZThhZDMtMzkzYjRmZTItODc5YTk5ZjUtMmE3ZTVm MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTA0bSIotriPnrNGKx MTjYTyOfo+hVhU1pbBFy4Jw65J4CaRs+VDD261naIYocuBRDuex6qzbEH6zjZaIr SRgCy1GvNFc0qbwmbk/bwn+CzuluAGp6T8hwKkFvgouzlVvv4Wm9djYUwNIHiKZS WSL5u0huOP0L494ZjSDQZjzE16+S3K8VSM87gPoVs3pyFoJLoXrk0bDKJgFQTUal RZBrL81Hy1iYH/1TRDer+HJ2Tp6yBVXrTvfr0nI5F3gjqtg0ptTEL0glveA8/N4P WdcHytzjyi48oV8u7UjY8JJn69xl4YHAj7GPACcmumzsk20ShukF+75V9kiZXKda BJHdAgMBAAGjYzBhMA8GA1UdEwEB/wQFMAMBAQEwHQYDVR0OBBYEFMp0soG+y9sG P3OWYDkFX7Mi6OraMB8GA1UdIwQYMBaAFMp0soG+y9sGP3OWYDkFX7Mi6OraMA4G A1UdDwEB/wQEAwIBhjANBgkqhkiG9w0BAQsFAAOCAQEAEVG8I00ag4U0AtugUJvC pyqcCRXu/hFW5N/bhsrSjDbmJ/PkgkuLlyhomQNHqKQ7MFgiXLJUSw80b4tgzX9m WPrk7G4sowTRAsuDGggfEYn/mM9avl+67xmINhu9UzIVpHk4RIupB0fpFkWnKq79 c1OiqadkPckGzrS1c/OJeUGtbqFSjcJg9567usoNCeoP6ynKmzBScPFYfuviDlHe HverVItW9tiiDJekXdtqyYw6CjY6BED1b7Yiq+rNiyT+htSUwup4Kpk0z9uD9LdJ gDacgbTcTGY9u2hxRcmro12Y9N0nFUu2DWRzd/0F9pwkVACGkwrdedihPyOTB9+q aQ== -----END CERTIFICATE----- EOF cat > $tmpdir/entryb2 <<- EOF id=EntryB2 root_cert_files= other_root_cert_files=$tmpdir/bundle2,$tmpdir/bundle-all other_cert_files= root_cert_dbs= other_root_cert_dbs= other_cert_dbs= EOF cat > $tmpdir/entryb3 <<- EOF id=EntryB3 root_cert_files= other_root_cert_files= other_cert_files=$tmpdir/bundle3,$tmpdir/bundle-all root_cert_dbs= other_root_cert_dbs= other_cert_dbs= cert_chain=Per-certificate Signing Authority B3 -----BEGIN CERTIFICATE----- MIIDjTCCAnWgAwIBAgIQCUTKr/c7QTynRTku+4+EoTANBgkqhkiG9w0BAQsFADBQ MSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhvcml0eTEsMCoGA1UEAwwjMDk0 NGNhYWYtZjczYjQxM2MtYTc0NTM5MmUtZmI4Zjg0YTEwHhcNMTUwNDI4MTcyODA0 WhcNMTYwNDI4MTcyODA0WjBQMSAwHgYDVQQDDBdMb2NhbCBTaWduaW5nIEF1dGhv cml0eTEsMCoGA1UEAwwjMDk0NGNhYWYtZjczYjQxM2MtYTc0NTM5MmUtZmI4Zjg0 YTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC84quLtADkpI6SiB5P 84GInvqiS/Z+bgU6PmTRYAaz+qaT3XMvpRU5/m6A/7YPQhtb40leP/rYy2waKJIJ qsyf94RZzT+q3LJsaEOkTszzIKvhreyWGX9hoKHyujw/g4wNnEDUCEuM441/oWV8 FEacLJmM83vtzJFSvisyC84wyfMKls4esX0LviCv2xKk2PTZe1FMDv1laINaPiQ/ KrDeQ4p8dpgjKFvdH64GdFRuYMGk3lmh+7p2NgIH0tJAa+bmkK6MgA3tn3Q0WHFe IvDNFKD15vHlAjGxyA8Tsb6lBqxx3/IBI5HaXaOC2G2Ykpk6YviZvk4SklgI0SEH APsRAgMBAAGjYzBhMA8GA1UdEwEB/wQFMAMBAQEwHQYDVR0OBBYEFFmBY6w+pKKj qX/XwhSMPFfA8ShFMB8GA1UdIwQYMBaAFFmBY6w+pKKjqX/XwhSMPFfA8ShFMA4G A1UdDwEB/wQEAwIBhjANBgkqhkiG9w0BAQsFAAOCAQEADC9L0KDCDkTtOX7NusI7 ReR5RA/Jv2KR/ccSEr+OJi2wSh4X05zCwK/+VyQ4t6UuiRY5oCXTQvVz1yfyEtXR LRC8gyNiKARdceN3d0C1PD9+hupzrosV5ZxahKiq34Exxseo48EQwuymAYGvEtLY F8uLe16qsw/JXSA7J02fYH5zgftqXoI0xBaO9ilu2sNhosGHYsQTCJNaoUA9CSWk g9nIZJ0B0WwefxnSK1rRObDRzlRf/HdjERVGpnDDk84vrQ9RxvyYVa0dLmnaaV+P /rxVSC6pHhCcPOOmgP8UHiN+lv5yx7kbmcbSiNV6oCzsKVr4BLdv75q4nfAzkGdt dg== -----END CERTIFICATE----- EOF cat > $tmpdir/entryd1 <<- EOF id=EntryD1 root_cert_files= other_root_cert_files= other_cert_files= root_cert_dbs=$tmpdir/db1,$tmpdir/dba other_root_cert_dbs= other_cert_dbs= cert_roots=Per-certificate Signing Authority D1 -----BEGIN CERTIFICATE----- MIIDjjCCAnagAwIBAgIRAIJ7pK4n4k0wlywp5+Qf0+UwDQYJKoZIhvcNAQELBQAw UDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRob3JpdHkxLDAqBgNVBAMMIzgy N2JhNGFlLTI3ZTI0ZDMwLTk3MmMyOWU3LWU0MWZkM2U1MB4XDTE1MDQyODE3NTA0 MloXDTE2MDQyODE3NTA0MlowUDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRo b3JpdHkxLDAqBgNVBAMMIzgyN2JhNGFlLTI3ZTI0ZDMwLTk3MmMyOWU3LWU0MWZk M2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsk9/knrBbt7TXSy Z0syp71ttOzLAc/r58aFPfeKcigc7aNxrZLC8CBq/6eHfvvxGtJtprvMTj1YchU6 u/swCXeuGnvom43ctIOciZ9ZDbUtV6faPm4Wx6GafA3fZTlpnph+a/6Xu6sHjxru MbZ063zwBYVtgDREMcqgjBNGkqtHxcnn1x9uJ9jAzf/w96Pd3TUZXfaK/LWniQZV 5t6weHTycKQdHdzMCSIK9tvrBX2zJoLyhdw9Ho3RND9N0o0nElsWPaVAENqY28lg DGQYDT9T0gqLFSFrK7jwvC2/XL27u26HraqNGbm923PSc+6qI67/jd/wVP1+ZiOC S+gjMQIDAQABo2MwYTAPBgNVHRMBAf8EBTADAQEBMB0GA1UdDgQWBBQzDtXEERJI RUXIib9KvQB4KHw8WTAfBgNVHSMEGDAWgBQzDtXEERJIRUXIib9KvQB4KHw8WTAO BgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQELBQADggEBAJl8jG5musQ0Jby+LVLw OsdbgZicblDFnId4tYNANbZmy1q9Ou0fkV8TAQMbKWizSKkwhn2QFUsr5cyLpcMV zbVwyedE95QWL63NfWOfAWUs9yZcIjxC9xFsQ0dVisFM52X5fVmzxyM9qaZ2kIUD I/k3dt6GX/btw5LWiKarzOUvHnIcgUd8Ve06RTsfNzLKpSjSVHxv2Fx2q1i7E2Wh jiGcdiYdICM2ZL9AiiXF8l0juXU2LchwCkrmpNQKptKLzTXuOava3weWscubGU6r T0Q44wD5uQgN3DzJR3Ds4mD5astMjkOzqCCmOIsbuvXjoFKX6y3kq6pd08D+Gr/s kfY= -----END CERTIFICATE----- EOF cat > $tmpdir/entryd2 <<- EOF id=EntryD2 root_cert_files= other_root_cert_files= other_cert_files= root_cert_dbs= other_root_cert_dbs=$tmpdir/db2,$tmpdir/dba other_cert_dbs= EOF cat > $tmpdir/entryd3 <<- EOF id=EntryD3 root_cert_files= other_root_cert_files= other_cert_files= root_cert_dbs= other_root_cert_dbs= other_cert_dbs=$tmpdir/db3,$tmpdir/dba cert_chain=Per-certificate Signing Authority D3 -----BEGIN CERTIFICATE----- MIIDjjCCAnagAwIBAgIRALuVK2FuXklPuMP4qtRyQjUwDQYJKoZIhvcNAQELBQAw UDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRob3JpdHkxLDAqBgNVBAMMI2Ji OTUyYjYxLTZlNWU0OTRmLWI4YzNmOGFhLWQ0NzI0MjM1MB4XDTE1MDQyODE3NTEx OFoXDTE2MDQyODE3NTExOFowUDEgMB4GA1UEAwwXTG9jYWwgU2lnbmluZyBBdXRo b3JpdHkxLDAqBgNVBAMMI2JiOTUyYjYxLTZlNWU0OTRmLWI4YzNmOGFhLWQ0NzI0 MjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhejaX5gRYuQLRFm 8Tq97akBa/asJPlxUrh1Vh+lKeXH+yqlPnkWoHaURn0UKj8Q26yTh3ENrqESoUrW JM8iR1tN4e7t1M3GGvscQOoVq7zdQ1CrGbwvd+Pdz0QTHzIEwzts2hfh6T65a0HG phGpS6EAxS5G8Sz8ppbqxgfynqLAYes2tBHvio0KFYpejbVzbxibE2NtMDULyF2p Nn18Vv8aoD1I9TbSmAKsp5ToUwc4P2xKCaZ0nzlVGZaH2UXdblKc1Y8wNRs+fQ0G PBzjDSLYCkU52jDSFf6+lNBybHJkDDntOlRje0B0Yb+AfDO7Yl/G4h5Yth9F17mB 68R/0wIDAQABo2MwYTAPBgNVHRMBAf8EBTADAQEBMB0GA1UdDgQWBBQ7Udp0Ln9Z Tac97VONJO6RYcZ4jTAfBgNVHSMEGDAWgBQ7Udp0Ln9ZTac97VONJO6RYcZ4jTAO BgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQELBQADggEBAMHg38+LFUh86abJXZ5P rZE4i7Jn6mT+fIboQgZsrxn0vLXOGFBNSNhmNBp3scDY/+CzO+lE27jfGphFtJ2z R/vocPjS34BbNWkEBkCPv4lUYNL2yyPWM1SeOi7f/znyi7CbaAfvMz82mS8KAXep Ysd+GvmZCMcClOXjyoSYV+3757o1n7OvOQIBnbymH+DjLE/Dcg09oahUBtV/NS0D eGXlp39JJu6MxuAeooHDdsOPTaociNDMbJiXTC1RGqjhSXyaneZp3B01SQgMD/8N 8nOg4kHgV181Zg4imvWK4qnaoHZeTcTgkd8MNjXeAq/OSppGQw5W5vuZ1dOTSUPR 44A= -----END CERTIFICATE----- EOF cat > $tmpdir/entrycab1 <<- EOF id=EntryCAB1 ca_name=CAB1 root_cert_files=$tmpdir/bundle1,$tmpdir/bundle-all other_root_cert_files= other_cert_files= root_cert_dbs= other_root_cert_dbs= other_cert_dbs= EOF cat > $tmpdir/entrycab2 <<- EOF id=EntryCAB2 ca_name=CAB2 root_cert_files= other_root_cert_files=$tmpdir/bundle2,$tmpdir/bundle-all other_cert_files= root_cert_dbs= other_root_cert_dbs= other_cert_dbs= EOF cat > $tmpdir/entrycab3 <<- EOF id=EntryCAB3 ca_name=CAB3 root_cert_files= other_root_cert_files= other_cert_files=$tmpdir/bundle3,$tmpdir/bundle-all root_cert_dbs= other_root_cert_dbs= other_cert_dbs= EOF cat > $tmpdir/entrycad1 <<- EOF id=EntryCAD1 ca_name=CAD1 root_cert_files= other_root_cert_files= other_cert_files= root_cert_dbs=$tmpdir/db1,$tmpdir/dba other_root_cert_dbs= other_cert_dbs= EOF cat > $tmpdir/entrycad2 <<- EOF id=EntryCAD2 ca_name=CAD2 root_cert_files= other_root_cert_files= other_cert_files= root_cert_dbs= other_root_cert_dbs=$tmpdir/db2,$tmpdir/dba other_cert_dbs= EOF cat > $tmpdir/entrycad3 <<- EOF id=EntryCAD3 ca_name=CAD3 root_cert_files= other_root_cert_files= other_cert_files= root_cert_dbs= other_root_cert_dbs= other_cert_dbs=$tmpdir/db3,$tmpdir/dba EOF cat > $tmpdir/cab1 <<- EOF id=CAB1 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files=$tmpdir/bundle1,$tmpdir/bundle-all ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs= ca_other_root_cert_dbs= ca_other_cert_dbs= ca_root_certs=Root Certificate B1 -----BEGIN CERTIFICATE----- MIIDzzCCAregAwIBAgIDAWweMA0GCSqGSIb3DQEBBQUAMIGNMQswCQYDVQQGEwJB VDFIMEYGA1UECgw/QS1UcnVzdCBHZXMuIGYuIFNpY2hlcmhlaXRzc3lzdGVtZSBp bSBlbGVrdHIuIERhdGVudmVya2VociBHbWJIMRkwFwYDVQQLDBBBLVRydXN0LW5R dWFsLTAzMRkwFwYDVQQDDBBBLVRydXN0LW5RdWFsLTAzMB4XDTA1MDgxNzIyMDAw MFoXDTE1MDgxNzIyMDAwMFowgY0xCzAJBgNVBAYTAkFUMUgwRgYDVQQKDD9BLVRy dXN0IEdlcy4gZi4gU2ljaGVyaGVpdHNzeXN0ZW1lIGltIGVsZWt0ci4gRGF0ZW52 ZXJrZWhyIEdtYkgxGTAXBgNVBAsMEEEtVHJ1c3QtblF1YWwtMDMxGTAXBgNVBAMM EEEtVHJ1c3QtblF1YWwtMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtPWFuA/OQO8BBC4SAzewqo51ru27CQoT3URThoKgtUaNR8t4j8DRE/5TrzAUj lUC5B3ilJfYKvUWG6Nm9wASOhURh73+nyfrBJcyFLGM/BWBzSQXgYHiVEEvc+RFZ znF/QJuKqiTfC0Li21a8StKlDJu3Qz7dg9MmEALP6iPESU7l0+m0iKsMrmKS1GWH 2WrX9IWf5DMiJaXlyDO6w8dB3F/GaswADm0yqLaHNgBid5seHzTLkDx4iHQF63n1 k3Flyp3HaxgtPVxO59X4PzF9j4fsCiIvI+n+u33J4PTs63zEsMMtYrWacdaxaujs 2e3Vcuy+VwHOBVWf3tFgiBCzAgMBAAGjNjA0MA8GA1UdEwEB/wQFMAMBAf8wEQYD VR0OBAoECERqlWdVeRFPMA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQUFAAOC AQEAVdRU0VlIXLOThaq/Yy/kgM40ozRiPvbY7meIMQQDbwvUB/tOdQ/TLtPAF8fG KOwGDREkDg6lXb+MshOWcdzUzg4NCmgybLlBMRmrsQd7TZjTXLDR8KdCoLXEjq/+ 8T/0709GAHbrAvv5ndJAlseIOrifEXnzgGWovR/TeIGgUUw3tKZdJXDRZslo+S4R FGjxVJgIrCaSD96JntT6s3kr0qN51OyLrIdTaEJMUVF0HhsnLuP1Hyl0Te2v9+GS mYHovjrHF1D2t8b8m7CKa9aIA5GPBnc6hQLdmNVDeD/GMBWsm2vLV7eJUYs66MmE DNuxUCAKGkq6ahq97BvIxYSazQ== -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate B1 -----BEGIN CERTIFICATE----- MIIEFTCCAv2gAwIBAgIBATANBgkqhkiG9w0BAQUFADBkMQswCQYDVQQGEwJTRTEU MBIGA1UEChMLQWRkVHJ1c3QgQUIxHTAbBgNVBAsTFEFkZFRydXN0IFRUUCBOZXR3 b3JrMSAwHgYDVQQDExdBZGRUcnVzdCBQdWJsaWMgQ0EgUm9vdDAeFw0wMDA1MzAx MDQxNTBaFw0yMDA1MzAxMDQxNTBaMGQxCzAJBgNVBAYTAlNFMRQwEgYDVQQKEwtB ZGRUcnVzdCBBQjEdMBsGA1UECxMUQWRkVHJ1c3QgVFRQIE5ldHdvcmsxIDAeBgNV BAMTF0FkZFRydXN0IFB1YmxpYyBDQSBSb290MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA6Rowj4OIFMEg2Dybjxt+A3S72mnTRqX4jsIMEZBRpS9mVEBV 6tsfSlbunyNu9DnLoblv8n75XYcmYZ4c+OLspoH4IcUkzBEMP9smcnrHAZcHF/nX GCwwfQ56HmIexkvA/X1id9NEHif2P0tEs7c42TkfYNVRknMDtABp4/MUTu7R3AnP dzRGULD4EfL+OHn3Bzn+UZKXC1sIXzSGAa2Il+tmzV7R/9x98oTaunet3IAIx6eH 1lWfl2royBFkuucZKT8Rs3iQhCBSWxHveNCD9tVIkNAwHM+A+WD+eeSI8t0A65RF 62WUaUC6wNW0uLp9BBGo6zEFlpROWCGOn9Bg/QIDAQABo4HRMIHOMB0GA1UdDgQW BBSBPjfYkrAfd59ctKtzquf2NGAv+jALBgNVHQ8EBAMCAQYwDwYDVR0TAQH/BAUw AwEB/zCBjgYDVR0jBIGGMIGDgBSBPjfYkrAfd59ctKtzquf2NGAv+qFopGYwZDEL MAkGA1UEBhMCU0UxFDASBgNVBAoTC0FkZFRydXN0IEFCMR0wGwYDVQQLExRBZGRU cnVzdCBUVFAgTmV0d29yazEgMB4GA1UEAxMXQWRkVHJ1c3QgUHVibGljIENBIFJv b3SCAQEwDQYJKoZIhvcNAQEFBQADggEBAAP3FUr4JNojVhaTdt02KLmuG7jD8WS6 IBh4lSknVwW8fCr0uVFV2ocC3g8WFzH4qnkuCRO7r7IgGRLlk/lL+YPoRNWyQSW/ iHVv/xD8SlTQX/D67zZzfRs2RcYhbbQVuE7PnFylPVoAjgbjPGsye/Kf8Lb93/Ao GEjwxrzQvzSAlsJKsW2Ox5BF3i9nrEUEo3rcVZLJR2bYGozH7ZxOmuASu7VqTITh 4SINhwBk/ox9Yjllpu9CtoAlEmEBqCQTcAARJl/6NVDFSMwGR+gn2HCNX2TmoUQm XiLsks3/QppEIW1cxeMiHV9HEufOX1362KqxMy3ZdvJOOjMMK7MtkAY= -----END CERTIFICATE----- ca_other_certs=Other Certificate B1 -----BEGIN CERTIFICATE----- MIIEHjCCAwagAwIBAgIBATANBgkqhkiG9w0BAQUFADBnMQswCQYDVQQGEwJTRTEU MBIGA1UEChMLQWRkVHJ1c3QgQUIxHTAbBgNVBAsTFEFkZFRydXN0IFRUUCBOZXR3 b3JrMSMwIQYDVQQDExpBZGRUcnVzdCBRdWFsaWZpZWQgQ0EgUm9vdDAeFw0wMDA1 MzAxMDQ0NTBaFw0yMDA1MzAxMDQ0NTBaMGcxCzAJBgNVBAYTAlNFMRQwEgYDVQQK EwtBZGRUcnVzdCBBQjEdMBsGA1UECxMUQWRkVHJ1c3QgVFRQIE5ldHdvcmsxIzAh BgNVBAMTGkFkZFRydXN0IFF1YWxpZmllZCBDQSBSb290MIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA5B6a/twJWoekn0e+EV+vhDTbYjx5eLfpMLXsDBwq xBb/4Oxx64r1EW7tTw2R0hIYLUkVAcKkIhPHEWT/IhKauY5cLwjPcWqzZwFZ8V1G 87B4pfYOQnrjfxvM0PC3KP0q6p6zsLkEqv32x7SxuCqg+1jxGaBvcCV+PmlKfw8i 2O+tCBGaKZnhqkRFmhJePp1tUvznoD1oL/BLcHwTOK28FSXx1s6rosAx1i+f4P8U WfyEk9mHfExUE+uf0S0R+Bg6Ot4l2ffTQO2kBhLEO+GRwVY18BTcZTYJbqukB8c1 0cIDMzZbdSZtQvESa0NvS3GU+jQd7RNuyoB/mC9suWXY6QIDAQABo4HUMIHRMB0G A1UdDgQWBBQ5lYtii1zJ1IC6WA+XPxUIQ8yYpzALBgNVHQ8EBAMCAQYwDwYDVR0T AQH/BAUwAwEB/zCBkQYDVR0jBIGJMIGGgBQ5lYtii1zJ1IC6WA+XPxUIQ8yYp6Fr pGkwZzELMAkGA1UEBhMCU0UxFDASBgNVBAoTC0FkZFRydXN0IEFCMR0wGwYDVQQL ExRBZGRUcnVzdCBUVFAgTmV0d29yazEjMCEGA1UEAxMaQWRkVHJ1c3QgUXVhbGlm aWVkIENBIFJvb3SCAQEwDQYJKoZIhvcNAQEFBQADggEBABmrder4i2VhlRO6aQTv hsoToMeqT2QbPxj2qC0sVY8FtzDqQmodwCVRLae/DLPt7wh/bDxGGuoYQ992zPlm hpwsaPXpF/gxsxjE1kh9I0xowX67ARRvxdlu3rsEQmr49lx95dr6h+sNNVJn0J6X dgWTP5XHAeZpVTh/EGGZyeNfpso+gmNIquIISD6q8rKFYqa0p9m9N5xotS1WfbC3 P6CxB9bpT9zeRXEwMn8bLgn5v1Kh7sKAPgZcLlVAwRv1cEWw3F369nJad9Jjzc9Y iQBCYz95OdBEsIJuQRno3eDBiFrRHnGTHyQwdOUeqN48Jzd/g66ed8/wMLH/S5no xqE= -----END CERTIFICATE----- EOF cat > $tmpdir/cab2 <<- EOF id=CAB2 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files=$tmpdir/bundle2,$tmpdir/bundle-all ca_other_cert_files= ca_root_cert_dbs= ca_other_root_cert_dbs= ca_other_cert_dbs= ca_root_certs=Root Certificate B2 -----BEGIN CERTIFICATE----- MIIDTDCCAjSgAwIBAgIId3cGJyapsXwwDQYJKoZIhvcNAQELBQAwRDELMAkGA1UE BhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVz dCBDb21tZXJjaWFsMB4XDTEwMDEyOTE0MDYwNloXDTMwMTIzMTE0MDYwNlowRDEL MAkGA1UEBhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZp cm1UcnVzdCBDb21tZXJjaWFsMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9htPZwcroRX1BiLLHwGy43NFBkRJLLtJJRTWzsO3qyxPxkEylFf6EqdbDuKP Hx6GGaeqtS25Xw2Kwq+FNXkyLbscYjfysVtKPcrNcV/pQr6U6Mje+SJIZMblq8Yr ba0F8PrVC8+a5fBQpIs7R6UjW3p6+DM/uO+Zl+MgwdYoic+U+7lF7eNAFxHUdPAL MeIrJmqbTFeurCA+ukV6BfO9m2kVrn1OIGPENXY6BwLJN/3HR+7o8XYdcxXyl6S1 yHp52UKqK39c/s4mT6NmgTWvRLpUHhwwMmWd5jyTXlBOeuM61G7MGvv50jeuJCqr VwMiKA1JdX+3KNp1v47j3A55MQIDAQABo0IwQDAdBgNVHQ4EFgQUnZPGU4teyq8/ nx4P5ZmVvCT2lI8wDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwDQYJ KoZIhvcNAQELBQADggEBAFis9AQOzcAN/wr91LoWXym9e2iZWEnStB03TX8nfUYG XUPGhi4+c7ImfU+TqbbEKpqrIZcUsd6M06uJFdhrJNTxFq7YpFzUf1GO7RgBsZNj vbz4YYCanrHOQnDiqX0GJX0nof5v7LMeJNrjS1UaADs1tDvZ110w/YETifLCBivt Z8SOyUOyXGsViQK8YvxO8rUzqrJv0wqiUOP2O+guRMLbZjipM1ZI8W0bM40NjD9g N53Tym1+NH4Nn3J2ixufcv1SNUFFApYvHLKac0khsUlHRUe072o0EclNmsxZt9YC nlpOZbWUrhvfKbAW8b8Angc6F2S1BLUjIZkKlTuXfO8= -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate B2 -----BEGIN CERTIFICATE----- MIIDTDCCAjSgAwIBAgIIfE8EORzUmS0wDQYJKoZIhvcNAQEFBQAwRDELMAkGA1UE BhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVz dCBOZXR3b3JraW5nMB4XDTEwMDEyOTE0MDgyNFoXDTMwMTIzMTE0MDgyNFowRDEL MAkGA1UEBhMCVVMxFDASBgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZp cm1UcnVzdCBOZXR3b3JraW5nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtITMMxcua5Rsa2FSoOujz3mUTOWUgJnLVWREZY9nZOIG41w3SfYvm4SEHi3y YJ0wTsyEheIszx6e/jarM3c1RNg1lho9Nuh6DtjVR6FqaYvZ/Ls6rnla1fTWcbua kCNrmreIdIcMHl+5ni36q1Mr3Lt2PpNMCAiMHqIjHNRqrSK6mQEubWXLviRmVSRL QESxG9fhwoXA3hA/Pe24/PHxI1Pcv2WXb9n5QHGNfb2V1M6+oF4nI979ptAmDgAp 6zxG8D1gvz9Q0twmQVGeFDdCBKNwV6gbh+0t+nvujArjqWaJGctB+d1ENmHP4ndG yH329JKBNv3bNPFyfvMMFr20FQIDAQABo0IwQDAdBgNVHQ4EFgQUBx/S55zawm6i QLSwelAQUHTEyL0wDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwDQYJ KoZIhvcNAQEFBQADggEBAIlXshZ6qML91tmbmzTCnLQyFE2npN/svqe++EPbkTfO tDIuUFUaNU52Q3Eg75N3ThVwLofDwR1t3Mu1J9QsVtFSUzpE0nPIxBsFZVpikpzu QY0x2+c06lkh1QF612S4ZDnNye2v7UsDSKegmQGA3GWjNq5lWUhPgkvIZfFXHeVZ Lgo/bNjR9eUJtGxUAArgFU2HdW23WJZa3W3SAKD0m0i+wzekujbgfIeFlxoVot4u olu9rxj5kFDNcFn4J2dHy8egBzp90SxdbBk6ZrV9/ZFvgrG+CJPbFEfxojfHRZ48 x3evZKiT3/Zpg4Jg8klCNO1aAFSFHBY2kgxc+qatv9s= -----END CERTIFICATE----- ca_other_certs=Other Certificate B2 -----BEGIN CERTIFICATE----- MIIB/jCCAYWgAwIBAgIIdJclisc/elQwCgYIKoZIzj0EAwMwRTELMAkGA1UEBhMC VVMxFDASBgNVBAoMC0FmZmlybVRydXN0MSAwHgYDVQQDDBdBZmZpcm1UcnVzdCBQ cmVtaXVtIEVDQzAeFw0xMDAxMjkxNDIwMjRaFw00MDEyMzExNDIwMjRaMEUxCzAJ BgNVBAYTAlVTMRQwEgYDVQQKDAtBZmZpcm1UcnVzdDEgMB4GA1UEAwwXQWZmaXJt VHJ1c3QgUHJlbWl1bSBFQ0MwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQNMF4bFZ0D 0KF5Nbc6PJJ6yhUczWLznCZcBz3lVPqj1swS6vQUX+iOGasvLkjmrBhDeKzQN8O9 ss0s5kfiGuZjuD0uL3jET9v0D6RoTFVya5UdThhClXjMNzyR4ptlKymjQjBAMB0G A1UdDgQWBBSaryl6wBE1NSZRMADDav5A1a7WPDAPBgNVHRMBAf8EBTADAQH/MA4G A1UdDwEB/wQEAwIBBjAKBggqhkjOPQQDAwNnADBkAjAXCfOHiFBar8jAQr9HX/Vs aobgxCd05DhT1wV/GzTjxi+zygk8N53X57hG8f2h4nECMEJZh0PUUd+60wkyWs6I flc9nF9Ca/UHLbXwgpP5WW+uZPpY5Yse42O+tYHNbwKMeQ== -----END CERTIFICATE----- EOF cat > $tmpdir/cab3 <<- EOF id=CAB3 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files=$tmpdir/bundle3,$tmpdir/bundle-all ca_root_cert_dbs= ca_other_root_cert_dbs= ca_other_cert_dbs= ca_root_certs=Root Certificate B3 -----BEGIN CERTIFICATE----- MIIDpDCCAoygAwIBAgIBATANBgkqhkiG9w0BAQUFADBjMQswCQYDVQQGEwJVUzEc MBoGA1UEChMTQW1lcmljYSBPbmxpbmUgSW5jLjE2MDQGA1UEAxMtQW1lcmljYSBP bmxpbmUgUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAxMB4XDTAyMDUyODA2 MDAwMFoXDTM3MTExOTIwNDMwMFowYzELMAkGA1UEBhMCVVMxHDAaBgNVBAoTE0Ft ZXJpY2EgT25saW5lIEluYy4xNjA0BgNVBAMTLUFtZXJpY2EgT25saW5lIFJvb3Qg Q2VydGlmaWNhdGlvbiBBdXRob3JpdHkgMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKgv6KRpBgNHw+kqmP8ZonCaxlCyfqXfaE0bfA+2l2h9LaaLl+lk hsmj76CGv2BlnEtUiMJIxUo5vxTjWVXlGbR0yLQFOVwWpeKVBeASrlmLojNoWBym 1BW32J/X3HGrfpq/m44zDyL9Hy7nBzbvYjnF3cu6JRQj3gzGPTzOggjmZj7aUTsW OqMFf6Dch9Wc/HKpoH145LcxVR5lu9RhsCFg7RAycsWSJR74kEoYeEfffjA3PlAb 2xzTa5qGUwew76wGePiEmf4hjUyAtgyC9mZweRrTT6PP8c9GsEsPPt2IYriMqQko O3rHl+Ee5fSfwMCuJKDIodkP1nsmgmkyPacCAwEAAaNjMGEwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUAK3Zo/Z59m50qX8zPYEX10zPM94wHwYDVR0jBBgwFoAU AK3Zo/Z59m50qX8zPYEX10zPM94wDgYDVR0PAQH/BAQDAgGGMA0GCSqGSIb3DQEB BQUAA4IBAQB8itEfGDeC4Liwo+1WlchiYZwFos3CYiZhzRAW18y0ZTTQEYqtqKkF Zu90821fnZmv9ov761KyBZiibyrFVL0lvV+uyIbqRizBs73B6UlwGBaXCBOMIOAb LjpHyx7kADCVW/RFo8AasAFOq73AI25jP4BKxQft3OJvx8Fi8eNy1gTIdGcL+oir oQHIb/AUr9KZzVGTfu0uOMe9zkZQPXLjeSWdm4grECDdpbgyn43gKd8hdIaC2y+C MMbHNYaz+ZZfRtsMRf3zUMNvxsNIrUam4SdHCh0Om7bCd39j8uB9Gr784N/Xx6ds sPmuujz9dLQR6FgNgLzTqIA6me11zEZ7 -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate B3 -----BEGIN CERTIFICATE----- MIIDoDCCAoigAwIBAgIBMTANBgkqhkiG9w0BAQUFADBDMQswCQYDVQQGEwJKUDEc MBoGA1UEChMTSmFwYW5lc2UgR292ZXJubWVudDEWMBQGA1UECxMNQXBwbGljYXRp b25DQTAeFw0wNzEyMTIxNTAwMDBaFw0xNzEyMTIxNTAwMDBaMEMxCzAJBgNVBAYT AkpQMRwwGgYDVQQKExNKYXBhbmVzZSBHb3Zlcm5tZW50MRYwFAYDVQQLEw1BcHBs aWNhdGlvbkNBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp23gdE6H j6UG3mii24aZS2QNcfAKBZuOquHMLtJqO8F6tJdhjYq+xpqcBrSGUeQ3DnR4fl+K f5Sk10cI/VBaVuRorChzoHvpfxiSQE8tnfWuREhzNgaeZCw7NCPbXCbkcXmP1G55 IrmTwcrNwVbtiGrXoDkhBFcsovW8R0FPXjQilbUfKW1eSvNNcr5BViCH/OlQR9cw FO5cjFW6WY2H/CPek9AEjP3vbb3QesmlOmpyM8ZKDQUXKi17safY1vC+9D/qDiht QWEjdnjDuGWk81quzMKq2edY3rZ+nYVunyoKb58DKTCXKB28t89UKU5RMfkntigm /qJj5kEW8DOYRwIDAQABo4GeMIGbMB0GA1UdDgQWBBRUWssmP3HMlEYNllPqa0jQ k/5CdTAOBgNVHQ8BAf8EBAMCAQYwWQYDVR0RBFIwUKROMEwxCzAJBgNVBAYTAkpQ MRgwFgYDVQQKDA/ml6XmnKzlm73mlL/lupwxIzAhBgNVBAsMGuOCouODl+ODquOC seODvOOCt+ODp+ODs0NBMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEFBQAD ggEBADlqRHZ3ODrso2dGD/mLBqj7apAxzn7s2tGJfHrrLgy9mTLnsCTWw//1sogJ hyzjVOGjprIIC8CFqMjSnHH2HZ9g/DgzE+Ge3Atf2hZQKXsvcJEPmbo0NI2VdMV+ eKlmXb3KIXdCEKxmJj3ekav9FfBv7WxfEPjzFvYDio+nEhEMy/0/ecGc/WLuo89U DNErXxc+4z6/wCs+CZv+iKZ+tJIX/COUgb1up8WMwusRRdv4QcmWdupwX3kSa+Sj B1oF7ydJzyGfikwJcGapJsErEU4z0g781mzSDjJkaP+tBXhfAx2o45CsJOAPQKdL rosot4LKGAfmt1t06SAZf7IbiVQ= -----END CERTIFICATE----- ca_other_certs=Other Certificate B3 -----BEGIN CERTIFICATE----- MIIDdzCCAl+gAwIBAgIIXDPLYixfszIwDQYJKoZIhvcNAQELBQAwPDEeMBwGA1UE AwwVQXRvcyBUcnVzdGVkUm9vdCAyMDExMQ0wCwYDVQQKDARBdG9zMQswCQYDVQQG EwJERTAeFw0xMTA3MDcxNDU4MzBaFw0zMDEyMzEyMzU5NTlaMDwxHjAcBgNVBAMM FUF0b3MgVHJ1c3RlZFJvb3QgMjAxMTENMAsGA1UECgwEQXRvczELMAkGA1UEBhMC REUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVhTuXbyo7LjvPpvMp Nb7PGKw+qtn4TaA+Gke5vJrf8v7MPkfoepbCJI419KkM/IL9bcFyYie96mvr54rM VD6QUM+A1JX76LWC1BTFtqlVJVfbsVD2sGBkWXppzwO3bw2+yj5vdHLqqjAqc2K+ SZFhyBH+DgMq92og3AIVDV4VavzjgsG1xZ1kCWyjWZgHJ8cblithdHFsQ/H3NYkQ 4J7sVaE3IqKHBAUsR320HLliKWYoyrfhk/WklAOZuXCFteZI6o1Q/NnezG8HDt0L cp2AMBYHlT8oDv3FdU9T1nSatCQujgKRz3bFmx5VdJx4IbHwLfELn8LVlhgf8FQi eowHAgMBAAGjfTB7MB0GA1UdDgQWBBSnpQaxLKYJYO7Rl+lwrrw7GWzbITAPBgNV HRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFKelBrEspglg7tGX6XCuvDsZbNshMBgG A1UdIAQRMA8wDQYLKwYBBAGwLQMEAQEwDgYDVR0PAQH/BAQDAgGGMA0GCSqGSIb3 DQEBCwUAA4IBAQAmdzTblEiGKkGdLD4GkGDEjKwLVLgfuXvTBznk+j57sj1O7Z8j vZfza1zv7v1Apt+hk6EKhqzvINB5Ab149xnYJDE0BAGmuhWawyfc2E8PzBhj/5kP DpFrdRbhIfzYJsdHt6bPWHJxfrrhTZVHO8mvbaG0weyJ9rQPOLXiZNwlz6bb65pc maHFCN795trV1lpFDMS3wrUU77QR/w4VtfX128a961qn8FYiqTxlVMYVqL2Gns2D lmh6cYGJ4Qvh6hEbaAjMaZ7snkGeRDImeuKHCnE96+RapNLbxc3G3mB/ufNPRJLv KrcYPqcZ2Qt9sTdBQrC6YB3y/gkRsPCHe6ed -----END CERTIFICATE----- EOF cat > $tmpdir/cad1 <<- EOF id=CAD1 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=$tmpdir/db1,$tmpdir/dba ca_other_root_cert_dbs=$tmpdir/dba ca_other_cert_dbs=$tmpdir/dba ca_root_certs=Root Certificate D1 -----BEGIN CERTIFICATE----- MIIDdzCCAl+gAwIBAgIEAgAAuTANBgkqhkiG9w0BAQUFADBaMQswCQYDVQQGEwJJ RTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYD VQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTAwMDUxMjE4NDYwMFoX DTI1MDUxMjIzNTkwMFowWjELMAkGA1UEBhMCSUUxEjAQBgNVBAoTCUJhbHRpbW9y ZTETMBEGA1UECxMKQ3liZXJUcnVzdDEiMCAGA1UEAxMZQmFsdGltb3JlIEN5YmVy VHJ1c3QgUm9vdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKMEuyKr mD1X6CZymrV51Cni4eiVgLGw41uOKymaZN+hXe2wCQVt2yguzmKiYv60iNoS6zjr IZ3AQSsBUnuId9Mcj8e6uYi1agnnc+gRQKfRzMpijS3ljwumUNKoUMMo6vWrJYeK mpYcqWe4PwzV9/lSEy/CG9VwcPCPwBLKBsua4dnKM3p31vjsufFoREJIE9LAwqSu XmD+tqYF/LTdB1kC1FkYmGP1pWPgkAx9XbIGevOF6uvUA65ehD5f/xXtabz5OTZy dc93Uk3zyZAsuT3lySNTPx8kmCFcB5kpvcY67Oduhjprl3RjM71oGDHweI12v/ye jl0qhqdNkNwnGjkCAwEAAaNFMEMwHQYDVR0OBBYEFOWdWTCCR1jMrPoIVDaGezq1 BE3wMBIGA1UdEwEB/wQIMAYBAf8CAQMwDgYDVR0PAQH/BAQDAgEGMA0GCSqGSIb3 DQEBBQUAA4IBAQCFDF2O5G9RaEIFoN27TyclhAO992T9Ldcw46QQF+vaKSm2eT92 9hkTI7gQCvlYpNRhcL0EYWoSihfVCr3FvDB81ukMJY2GQE/szKN+OMY3EU/t3Wgx jkzSswF07r51XgdIGn9w/xZchMB5hbgF/X++ZRGjD8ACtPhSNzkE1akxehi/oCr0 Epn3o0WC4zxe9Z2etciefC7IpJ5OCBRLbf1wbWsaY71k5h+3zvDyny67G7fyUIhz ksLi4xaNmjICq44Y3ekQEe5+NauQrz4wlHrQMz2nZQ/1/I6eYs9HRCwBXbsdtTLS R9I4LtD+gdwyah617jzV/OeBHRnDJELqYzmp -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate D1 -----BEGIN CERTIFICATE----- MIIDUzCCAjugAwIBAgIBATANBgkqhkiG9w0BAQUFADBLMQswCQYDVQQGEwJOTzEd MBsGA1UECgwUQnV5cGFzcyBBUy05ODMxNjMzMjcxHTAbBgNVBAMMFEJ1eXBhc3Mg Q2xhc3MgMiBDQSAxMB4XDTA2MTAxMzEwMjUwOVoXDTE2MTAxMzEwMjUwOVowSzEL MAkGA1UEBhMCTk8xHTAbBgNVBAoMFEJ1eXBhc3MgQVMtOTgzMTYzMzI3MR0wGwYD VQQDDBRCdXlwYXNzIENsYXNzIDIgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAIs8B0XY9t/mx8q6jUPFR42wWsE425KEHK8T1A9vNkYgxC7McXA0 ojTTNy7Y3Tp3L8DrKehc0rWpkTSHIln+zNvnma+WwajHQN2lFYxuyHyXA8vmIPLX l18xoS830r7uvqmtqEyeIWZDO6i88wmjONVZJMHCR3axiFyCO7srpgTXjAePzdVB HfCuuCkslFJgNJQ72uA40Z0zPhX0kzLFANq1KWYOOngPIVJfAuWSeyXTkh4vFZ2B 5J2O6O+JzhRMVB0cgRJNcKi+EAUXfh/RuFdV7c27UsKwHnjCTTZoy1YmwVLBvXb3 WNVyfh9EdrsAiR0WnVE1703CVu9r4Iw7DekCAwEAAaNCMEAwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUP42aWYv8e3uco684sDntkHGA1sgwDgYDVR0PAQH/BAQD AgEGMA0GCSqGSIb3DQEBBQUAA4IBAQAVGn4TirnoB6NLJzKyQJHyIdFkhb5jatLP gcIV1Xp+DCmsNx4cfHZSldq1fyOhKXdlyTKdqC5Wq2B2zha0jX94wNWZUYN/Xtm+ DKhQ7SLHrQVMdvvt7h5HZPb3J31cKA9FxVxiXqaakZG3Uxcu3K1gnZZkOb1naLKu BctN518fV4bVIJwo+28TOPX2EZL2fZleHwzoq0QkKXJAPTZSr4xYkHPB7GEseaHs h7U/2k3ZIQAw3pDaDtMaSKk+hQsUi4y8QZ5q9w5wwDX3OaJdZtB7WZ+oRxKaJyOk LY4ng5IgodcVf/EuGO70SH8vf/GhGLWhC5SgYiAynB321O+/TIho -----END CERTIFICATE----- ca_other_certs=Other Certificate D1 -----BEGIN CERTIFICATE----- MIIDUzCCAjugAwIBAgIBAjANBgkqhkiG9w0BAQUFADBLMQswCQYDVQQGEwJOTzEd MBsGA1UECgwUQnV5cGFzcyBBUy05ODMxNjMzMjcxHTAbBgNVBAMMFEJ1eXBhc3Mg Q2xhc3MgMyBDQSAxMB4XDTA1MDUwOTE0MTMwM1oXDTE1MDUwOTE0MTMwM1owSzEL MAkGA1UEBhMCTk8xHTAbBgNVBAoMFEJ1eXBhc3MgQVMtOTgzMTYzMzI3MR0wGwYD VQQDDBRCdXlwYXNzIENsYXNzIDMgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKSO13TZKWTeXx+HgJHqTjnmGcZEC4DVC69TB4sSveZn8AKxifZg isRbsELRwCGoy+Gb72RRtqfPFfV0gGgEkKBYouZ0plNTVUhjP5JW3SROjvi6K//z NIqeKNc0n6wv1g/xpC+9UrJJhW05NfBEMJNGJPO251P7vGGvqaMU+8IXF4Rs4HyI +MkcVyzwPX6UvCWThOiaAJpFBUJXgPROztmuOfbIUxAMZTpHe2DC1vqRycZxbL2R hzyRhkmr8w+gbCZ2Xhysm3HljbybIR6c1jh+JIAVMYKWsUnTYjdbiAwKYjT+p0h+ mbEwi5A3lRyoH6UsjfRVyNvdWQrCrXig9IsCAwEAAaNCMEAwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUOBTmyPCppAP0Tj4io1vy1uCtQHQwDgYDVR0PAQH/BAQD AgEGMA0GCSqGSIb3DQEBBQUAA4IBAQABZ6OMySU9E2NdFm/soT4JXJEVKirZgCFP Bdy7pYmrEzMqnji3jG8CcmPHc3ceCQa6Oyh7pEfJYWsICCD8igWKH7y6xsL+z27s EzNxZy5p+qksP2bAEllNC1QCkoS72xLvg3BweMhT+t/Gxv/ciC8HwEmdMldg0/L2 mSlf56oBzKwzqBwKu5HEA6BvtjT5htOzdlSY9EqBs1OdTUDs5XcTRa9bqh/YL0yC e/4qxFi7T/ye/QNlGioOw6UgFpRreaaiErS7GqQjel/wroQk5PMr+4okoyeYZdow dXb8GZHo2+ubPzK/QJcHJrrM85SFSnonk8+QQtS4Wxam58tAA915 -----END CERTIFICATE----- EOF cat > $tmpdir/cad2 <<- EOF id=CAD2 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=$tmpdir/dba ca_other_root_cert_dbs=$tmpdir/db2,$tmpdir/dba ca_other_cert_dbs=$tmpdir/dba ca_root_certs=Root Certificate D2 -----BEGIN CERTIFICATE----- MIIEDzCCAvegAwIBAgIBATANBgkqhkiG9w0BAQUFADBKMQswCQYDVQQGEwJTSzET MBEGA1UEBxMKQnJhdGlzbGF2YTETMBEGA1UEChMKRGlzaWcgYS5zLjERMA8GA1UE AxMIQ0EgRGlzaWcwHhcNMDYwMzIyMDEzOTM0WhcNMTYwMzIyMDEzOTM0WjBKMQsw CQYDVQQGEwJTSzETMBEGA1UEBxMKQnJhdGlzbGF2YTETMBEGA1UEChMKRGlzaWcg YS5zLjERMA8GA1UEAxMIQ0EgRGlzaWcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCS9jHBfYj9mQGp2HvycXXxMcbzdWb6UShGhJd4NLxs/LxFWYgmGErE Nx+hSkS943EE9UQX4j/8SFhvXJ56CbpRNyIjZkMhsDxkovhqFQ4/61HhVKndBpnX mjxUizkDPw/Fzsbrg3ICqB9x8y34dQjbYkzo+s7552oftms1grrijxaSfQUMbEYD XcDtab86wYqg6I7ZuUUohwjstMoVvoLdtUSLLa2GDGhibYVW8qwUYzrG0ZmsNHhW S8+2rT+MitcE5eN4TPWGqvWP+j1scaMtymfraHtuM6kMgiioTGohQBUgDCZbg8Kp FhXAJIJdKxatymP2dACw30PEEGBWZ2NFAgMBAAGjgf8wgfwwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUjbJJaJ1yCCW5wCf1UJNWSEZx+Y8wDgYDVR0PAQH/BAQD AgEGMDYGA1UdEQQvMC2BE2Nhb3BlcmF0b3JAZGlzaWcuc2uGFmh0dHA6Ly93d3cu ZGlzaWcuc2svY2EwZgYDVR0fBF8wXTAtoCugKYYnaHR0cDovL3d3dy5kaXNpZy5z ay9jYS9jcmwvY2FfZGlzaWcuY3JsMCygKqAohiZodHRwOi8vY2EuZGlzaWcuc2sv Y2EvY3JsL2NhX2Rpc2lnLmNybDAaBgNVHSAEEzARMA8GDSuBHpGT5goAAAABAQEw DQYJKoZIhvcNAQEFBQADggEBAF00dGFMrzvY/59tWDYcPQuBDRIrRhCA/ec8J9B6 yKm2fnQwM6M6int0wHl5QpNt/7EpFIKrIYwvF/k/Ji/1WcbvgAa3mkkp7M5+cTxq EEHA9tOasnxakZzArFvITV734VP/Q3f8nktnbNfzg9Gg4H8l37iYC5oyOGwwoPP/ CBUz91BKez6jPiCp3C9WgArtQVCwyfTssuMmRAAOb54GvCKWU3BlxFAKRmukLyeB EicTXxChds6KezfqwzlhA5WYOudsiCUI/HloDYd9Yvi0X/vF2Ey9WLw/Q1vUHgFN PGO+I++MzVpQuGhU+QqZMxEA4Z7CRneC9VkGjCFMhwnN5ag= -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate D2 -----BEGIN CERTIFICATE----- MIIDVTCCAj2gAwIBAgIESTMAATANBgkqhkiG9w0BAQUFADAyMQswCQYDVQQGEwJD TjEOMAwGA1UEChMFQ05OSUMxEzARBgNVBAMTCkNOTklDIFJPT1QwHhcNMDcwNDE2 MDcwOTE0WhcNMjcwNDE2MDcwOTE0WjAyMQswCQYDVQQGEwJDTjEOMAwGA1UEChMF Q05OSUMxEzARBgNVBAMTCkNOTklDIFJPT1QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTNfc/c3et6FtzF8LRb+1VvG7q6KR5smzDo+/hn7E7SIX1mlwh IhAsxYLO2uOabjfhhyzcuQxauohV3/2q2x8x6gHx3zkBwRP9SFIhxFXf2tizVHa6 dLG3fdfA6PZZxU3Iva0fFNrfWEQlMhkqx35+jq44sDB7R3IJMfAw28Mbdim7aXZO V/kbZKKTVrdvmW7bCgScEeOAH8tjlBAKqeFkgjH5jCftppkA9nCTGPihNIaj3XrC GHn2emU1z5DrvTOTn1OrczvmmzQgLx3vqR1jGqCA2wMv+SYahtKNu6m+UjqHZ0gN v7Sg2Ca+I19zN38m5pIEo3/PIKe38zrKy5nLAgMBAAGjczBxMBEGCWCGSAGG+EIB AQQEAwIABzAfBgNVHSMEGDAWgBRl8jGtKvf33VKWCscCwQ7vptU7ETAPBgNVHRMB Af8EBTADAQH/MAsGA1UdDwQEAwIB/jAdBgNVHQ4EFgQUZfIxrSr3991SlgrHAsEO 76bVOxEwDQYJKoZIhvcNAQEFBQADggEBAEs17szkrr/Dbq2flTtLP1se31cpolnK OOK5Gv+e5m4y3R6u6jW39ZORTtpC4cMXYFDy0VwmuYK36m3knITnA3kXr5g9lNvH ugDnuL8BV8F3RTIMO/G0HAiw/VGgod2aHRM2mm23xzy54cXZF/qD1T0VoDy7Hgvi yJA/qIYM/PmLXoXLT1tLYhFHxUV8BS9BsZ4QaRuZluBVeftOhpm4lNqGOGqTo+fL buXf6iFViZx9fX+Y9QCJ7uOEwFyWtcVG6kbghVW2G8kS1sHNzYDzAgE8yGnLRUhj 2JTQ7IUOO04RZfSCjKY9ri4ilAnIXOo8gV0WKgOXFlUJ24pBgp5mmxE= -----END CERTIFICATE----- ca_other_certs=Other Certificate D2 -----BEGIN CERTIFICATE----- MIIEHTCCAwWgAwIBAgIQToEtioJl4AsC7j41AkblPTANBgkqhkiG9w0BAQUFADCB gTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxJzAlBgNV BAMTHkNPTU9ETyBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0wNjEyMDEwMDAw MDBaFw0yOTEyMzEyMzU5NTlaMIGBMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3Jl YXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxmb3JkMRowGAYDVQQKExFDT01P RE8gQ0EgTGltaXRlZDEnMCUGA1UEAxMeQ09NT0RPIENlcnRpZmljYXRpb24gQXV0 aG9yaXR5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ECLi3LjkRv3 UcEbVASY06m/weaKXTuH+7uIzg3jLz8GlvCiKVCZrts7oVewdFFxze1CkU1B/qnI 2GqGd0S7WWaXUF601CxwRM/aN5VCaTwwxHGzUvAhTaHYujl8HJ6jJJ3ygxaYqhZ8 Q5sVW7euNJH+1GImGEaaP+vB+fGQV+useg2L23IwambV4EajcNxo2f8ESIl33rXp +2dtQem8Ob0y2WIC8bGoPW43nOIv4tOiJovGuFVDiOEjPqXSJDlqR6sA1KGzqSX+ DT+nHbrTUcELpNqsOO9VUCQFZUaTNE8tja3G1CEZ0o7KBWFxB3NH5YoZEr0ETc5O nKVIrLsm9wIDAQABo4GOMIGLMB0GA1UdDgQWBBQLWOWLxkwVN6RAqTCpIb5HNlpW /zAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBJBgNVHR8EQjBAMD6g PKA6hjhodHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9DT01PRE9DZXJ0aWZpY2F0aW9u QXV0aG9yaXR5LmNybDANBgkqhkiG9w0BAQUFAAOCAQEAPpiem/Yb6dc5t3iuHXIY SdOH5EOC6z/JqvWote9VfCFSZfnVDeFs9D6Mk3ORLgLETgdxb8CPOGEIqB6BCsAv IC9Bi5HcSEW88cbeunZrM8gALTFGTO3nnc+IlP8zwFboJIYmuNg4ON8qa90SzMc/ RxdMosIGlgnW2/4/PEZB31jiVg88O8EckzXZOFKs7sjsLjBOlDW0JB9LeGna8gI4 zJVSk/BwJVmcIGfE7vmLV2H0knZ9P4SNVbfo5azV8fUZVqZa+5Acr5Pr5RzUZ5dd BA6+C4OmF4O5MBKgxTMVBbkN+8cFduPYSo38NBejxiEovjBFMR7HeL5YYTisO+IB ZQ== -----END CERTIFICATE----- EOF cat > $tmpdir/cad3 <<- EOF id=CAD3 ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files= ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=,$tmpdir/dba ca_other_root_cert_dbs=,$tmpdir/dba, ca_other_cert_dbs=$tmpdir/db3,$tmpdir/dba ca_root_certs=Root Certificate D3 -----BEGIN CERTIFICATE----- MIICiTCCAg+gAwIBAgIQH0evqmIAcFBUTAGem2OZKjAKBggqhkjOPQQDAzCBhTEL MAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UE BxMHU2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxKzApBgNVBAMT IkNPTU9ETyBFQ0MgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMDgwMzA2MDAw MDAwWhcNMzgwMTE4MjM1OTU5WjCBhTELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdy ZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ09N T0RPIENBIExpbWl0ZWQxKzApBgNVBAMTIkNPTU9ETyBFQ0MgQ2VydGlmaWNhdGlv biBBdXRob3JpdHkwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQDR3svdcmCFYX7deSR FtSrYpn1PlILBs5BAH+X4QokPB0BBO490o0JlwzgdeT6+3eKKvUDYEs2ixYjFq0J cfRK9ChQtP6IHG4/bC8vCVlbpVsLM5niwz2J+Wos77LTBumjQjBAMB0GA1UdDgQW BBR1cacZSBm8nZ3qQUfflMRId5nTeTAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/ BAUwAwEB/zAKBggqhkjOPQQDAwNoADBlAjEA7wNbeqy3eApyt4jf/7VGFAkK+qDm fQjGGoe9GKhzvSbKYAydzpmfz1wPMOG+FDHqAjAU9JM8SaczepBGR7NjfRObTrdv GDeAU/7dIOA1mjbRxwG55tzd8/8dLDoWV9mSOdY= -----END CERTIFICATE----- ca_other_root_certs=Other Root Certificate D3 -----BEGIN CERTIFICATE----- MIIDqDCCApCgAwIBAgIJAP7c4wEPyUj/MA0GCSqGSIb3DQEBBQUAMDQxCzAJBgNV BAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hMB4X DTA3MDYyOTE1MTMwNVoXDTI3MDYyOTE1MTMwNVowNDELMAkGA1UEBhMCRlIxEjAQ BgNVBAoMCURoaW15b3RpczERMA8GA1UEAwwIQ2VydGlnbmEwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDIaPHJ1tazNHUmgh7stL7qXOEm7RFHYeGifBZ4 QCHkYJ5ayGPhxLGWkv8YbWkj4Sti993iNi+RB7lIzw7sebYs5zRLcAglozyHGxny gQcPOJAZ0xH+hrTy0V4eHpbNgGzOOzGTtvKg0KmVEn2lmsxryIRWijOp5yIVUxbw zBfsV1/pogqYCd7jX5xv3EjjhQsVWqa6n6xI4wmy9/Qy3l40vhx4XUJbzg4ij02Q 130yGLMLLGq/jj8UEYkgDncUtT2UCIf3JR7VsmAA7G8qKCVuKj4YYxclPz5EIBb2 JsglrgVKtOdjLPOMFlN+XPsRGgjBRmKfIrjxwo1p3Po6WAbfAgMBAAGjgbwwgbkw DwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUGu3+QTmQtCRZvgHyUtVF9lo53BEw ZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYT AkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzj AQ/JSP8wDgYDVR0PAQH/BAQDAgEGMBEGCWCGSAGG+EIBAQQEAwIABzANBgkqhkiG 9w0BAQUFAAOCAQEAhQMeknH2Qq/ho2Ge6/PAD/Kl1NqV5ta+aDY9fm4fTIrv0Q8h bV6lUmPOEvjvKtpv6zf+EwLHyzs+ImvaYS5/1HI93TDhHkxAGYwP15zRgzB7mFnc fca5DClMoTOi62c6ZYTTluLtdkVwj7Ur3vkj1kluPBS1xp81HlDQwY9qcEQCYsuu HWhBp6pX6FOqB9IG9tUUBguRA3UsbHK1YZWaDYu5Def131TN3ubY1gkIl2PlwS6w t0QmwCbAr1UwnjvVNioZBPRcHv/PLLf/0P2HQBHVESO7SMAhqaQoLf0V+LBOK/Qw WyH8EZE0vkHve52Xdf+XlcCWWC/qu0bXu+TZLg== -----END CERTIFICATE----- ca_other_certs=Other Certificate D3 -----BEGIN CERTIFICATE----- MIIDkjCCAnqgAwIBAgIRAIW9S/PY2uNp9pTXX8OlRCMwDQYJKoZIhvcNAQEFBQAw PTELMAkGA1UEBhMCRlIxETAPBgNVBAoTCENlcnRwbHVzMRswGQYDVQQDExJDbGFz cyAyIFByaW1hcnkgQ0EwHhcNOTkwNzA3MTcwNTAwWhcNMTkwNzA2MjM1OTU5WjA9 MQswCQYDVQQGEwJGUjERMA8GA1UEChMIQ2VydHBsdXMxGzAZBgNVBAMTEkNsYXNz IDIgUHJpbWFyeSBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANxQ ltAS+DXSCHh6tlJw/W/uz7kRy1134ezpfgSN1sxvc0NXYKwzCkTsA18cgCSR5aiR VhKC9+Ar9NuuYS6JEI1rbLqzAr3VNsVINyPi8Fo3UjMXEuLRYE2+L0ER4/YXJQyL kcAbmXuZVg2v7tK8R1fjeUl7NIknJITesezpWE7+Tt9avkGtrAjFGA7v0lPubNCd EgETjdyAYveVqUSISnFOYFWe2yMZeVYHDD9jC1yw4r5+FfyUM1hBOHTE4Y+L3yas H7WLO7dDWWuwJKZtkIvEcupdM5i3y95ee++U8Rs+yskhwcWYAqqi9lt3m/V+llU0 HGdpwPFC40es/CgcZlUCAwEAAaOBjDCBiTAPBgNVHRMECDAGAQH/AgEKMAsGA1Ud DwQEAwIBBjAdBgNVHQ4EFgQU43Mt38sOKAze3bOkynm4jrvoMIkwEQYJYIZIAYb4 QgEBBAQDAgEGMDcGA1UdHwQwMC4wLKAqoCiGJmh0dHA6Ly93d3cuY2VydHBsdXMu Y29tL0NSTC9jbGFzczIuY3JsMA0GCSqGSIb3DQEBBQUAA4IBAQCnVM+IRBnL39R/ AN9WM2K191EBkOvDP9GIROkkXe/nFL0gt5o8AP5tn9uQ3Nf0YtaLcF3n5QRIqWh8 yfFC82x/xXp8HVGIutIKPidd3i1RTtMTZGnkLuPT55sJmabglZvOGtd/vjzOUrMR FcEPF80Du5wlFbqidon8BvEY0JNLDnyCt6X09l/+7UCmnYR0ObncHoUW2ikbhiMA ybuJfm6AiB4vFLQDJKgybwOaRywwvlbGp0ICcBvqQNi6BQNwB6SW//1IMwrh3KWB kJtN3X3n57LNXMhqlfil9o3EXXgIvnsG1knPGTZQIy4I5p4FTUcY1Rbpsda2ENW7 l7+ijrRU -----END CERTIFICATE----- EOF cat > $tmpdir/cada <<- EOF id=CADA ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh ca_root_cert_files=$tmpdir/bundle-all ca_other_root_cert_files= ca_other_cert_files= ca_root_cert_dbs=$tmpdir/dba ca_other_root_cert_dbs=,$tmpdir/dba ca_other_cert_dbs=,$tmpdir/dba ca_root_certs=Root Certificate DA -----BEGIN CERTIFICATE----- MIICiDCCAg2gAwIBAgIQNfwmXNmET8k9Jj1Xm67XVjAKBggqhkjOPQQDAzCBhDEL MAkGA1UEBhMCVVMxFTATBgNVBAoTDHRoYXd0ZSwgSW5jLjE4MDYGA1UECxMvKGMp IDIwMDcgdGhhd3RlLCBJbmMuIC0gRm9yIGF1dGhvcml6ZWQgdXNlIG9ubHkxJDAi BgNVBAMTG3RoYXd0ZSBQcmltYXJ5IFJvb3QgQ0EgLSBHMjAeFw0wNzExMDUwMDAw MDBaFw0zODAxMTgyMzU5NTlaMIGEMQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhh d3RlLCBJbmMuMTgwNgYDVQQLEy8oYykgMjAwNyB0aGF3dGUsIEluYy4gLSBGb3Ig YXV0aG9yaXplZCB1c2Ugb25seTEkMCIGA1UEAxMbdGhhd3RlIFByaW1hcnkgUm9v dCBDQSAtIEcyMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEotWcgnuVnfFSeIf+iha/ BebfowJPDQfGAFG6DAJSLSKkQjnE/o/qycG+1E3/n3qe4rF8mq2nhglzh9HnmuN6 papu+7qzcMBniKI11KOasf2twu8x+qi58/sIxpHR+ymVo0IwQDAPBgNVHRMBAf8E BTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUmtgAMADna3+FGO6Lts6K DPgR4bswCgYIKoZIzj0EAwMDaQAwZgIxAN344FdHW6fmCsO99YCKlzUNG4k8VIZ3 KMqh9HneteY4sPBlcIx/AlTCv//YoT7ZzwIxAMSNlPzcU9LcnXgWHxUzI1NS41ox XZ3Krr0TKUQNJ1uo52icEvdYPy5yAlejj6EULg== -----END CERTIFICATE----- EOF entries=" -e entryb1 -e entryb2 -e entryb3 -e entryd1 -e entryd2 -e entryd3" centries=" -e entrycb1 -e entrycb2 -e entrycb3 -e entrycd1 -e entrycd2 -e entrycd3" caentries=" -e entrycab1 -e entrycab2 -e entrycab3 -e entrycad1 -e entrycad2 -e entrycad3" cas=" -c cab1 -c cab2 -c cab3 -c cad1 -c cad2 -c cad3 -c cada" for which in CAB1 CAB2 CAB3 CAD1 CAD2 CAD3 EntryB1 EntryB2 EntryB3 EntryD1 EntryD2 EntryD3 EntryCB1 EntryCB2 EntryCB3 EntryCD1 EntryCD2 EntryCD3 EntryCAB1 EntryCAB2 EntryCAB3 EntryCAD1 EntryCAD2 EntryCAD3 ; do echo "[($which)]" rm -f $tmpdir/bundle1 $tmpdir/bundle2 $tmpdir/bundle3 $tmpdir/bundle-all rm -fr $tmpdir/db1 $tmpdir/db2 $tmpdir/db3 $tmpdir/dba mkdir $tmpdir/db1 $tmpdir/db2 $tmpdir/db3 $tmpdir/dba $toolsdir/casave $entries $centries $caentries $cas $which for bundle in 1 2 3 -all ; do echo "[bundle$bundle]" touch "bundle$bundle" cat "bundle$bundle" > "oldbundle$bundle" if test `grep 'BEGIN CERTIFICATE-----' "bundle$bundle" | wc -l` \ -ne `grep 'END CERTIFICATE-----' "bundle$bundle" | wc -l` ; then echo Storage error: possibly-truncated certs in "bundle$bundle". cat "bundle$bundle" exit 1 fi grep 'BEGIN CERTIFICATE-----' "bundle$bundle" | wc -l done for db in 1 2 3 a ; do echo "[db$db]" certutil -L -d "db$db" 2> /dev/null | \ grep , | grep -v JAR/XPI | sed -r 's, +, ,g' | \ env LANG=C sort | tee "olddblist$db" done $toolsdir/casave $entries $centries $caentries $cas $which for bundle in 1 2 3 -all ; do diff -u "bundle$bundle" "oldbundle$bundle" done for db in 1 2 3 a ; do certutil -L -d "db$db" 2> /dev/null | \ grep , | grep -v JAR/XPI | sed -r 's, +, ,g' | \ env LANG=C sort > "dblist$db" diff -u "olddblist$db" "dblist$db" done echo done echo OK. certmonger-0.78.6/tests/025-casave/expected.out0000664000175000017500000000663012645513264016163 00000000000000[(CAB1)] [bundle1] 2 [bundle2] 0 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(CAB2)] [bundle1] 0 [bundle2] 1 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(CAB3)] [bundle1] 0 [bundle2] 0 [bundle3] 2 [bundle-all] 6 [db1] [db2] [db3] [dba] [(CAD1)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] Root Certificate D1 CT,C,C [db2] [db3] [dba] Other Certificate D1 ,, Other Root Certificate D1 CT,C,C Root Certificate D1 CT,C,C [(CAD2)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] Other Root Certificate D2 CT,C,C [db3] [dba] Other Certificate D2 ,, Other Root Certificate D2 CT,C,C Root Certificate D2 CT,C,C [(CAD3)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] [db3] Other Certificate D3 ,, [dba] Other Certificate D3 ,, Other Root Certificate D3 CT,C,C Root Certificate D3 CT,C,C [(EntryB1)] [bundle1] 2 [bundle2] 0 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryB2)] [bundle1] 0 [bundle2] 1 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryB3)] [bundle1] 0 [bundle2] 0 [bundle3] 2 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryD1)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] Per-certificate Signing Authority D1 CT,C,C [db2] [db3] [dba] Per-certificate Signing Authority D1 CT,C,C [(EntryD2)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] [db3] [dba] [(EntryD3)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] [db3] Per-certificate Signing Authority D3 ,, [dba] Per-certificate Signing Authority D3 ,, [(EntryCB1)] [bundle1] 2 [bundle2] 0 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryCB2)] [bundle1] 0 [bundle2] 1 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryCB3)] [bundle1] 0 [bundle2] 0 [bundle3] 2 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryCD1)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] Per-certificate Signing Authority CD1 CT,C,C Root Certificate D1 CT,C,C [db2] [db3] [dba] Other Certificate D1 ,, Other Root Certificate D1 CT,C,C Per-certificate Signing Authority CD1 CT,C,C Root Certificate D1 CT,C,C [(EntryCD2)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] Other Root Certificate D2 CT,C,C [db3] [dba] Other Certificate D2 ,, Other Root Certificate D2 CT,C,C Root Certificate D2 CT,C,C [(EntryCD3)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] [db3] Other Certificate D3 ,, Per-certificate Signing Authority CD3 ,, [dba] Other Certificate D3 ,, Other Root Certificate D3 CT,C,C Per-certificate Signing Authority CD3 ,, Root Certificate D3 CT,C,C [(EntryCAB1)] [bundle1] 2 [bundle2] 0 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryCAB2)] [bundle1] 0 [bundle2] 1 [bundle3] 0 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryCAB3)] [bundle1] 0 [bundle2] 0 [bundle3] 2 [bundle-all] 6 [db1] [db2] [db3] [dba] [(EntryCAD1)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] Root Certificate D1 CT,C,C [db2] [db3] [dba] Other Certificate D1 ,, Other Root Certificate D1 CT,C,C Root Certificate D1 CT,C,C [(EntryCAD2)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] Other Root Certificate D2 CT,C,C [db3] [dba] Other Certificate D2 ,, Other Root Certificate D2 CT,C,C Root Certificate D2 CT,C,C [(EntryCAD3)] [bundle1] 0 [bundle2] 0 [bundle3] 0 [bundle-all] 0 [db1] [db2] [db3] Other Certificate D3 ,, [dba] Other Certificate D3 ,, Other Root Certificate D3 CT,C,C Root Certificate D3 CT,C,C OK. certmonger-0.78.6/tests/024-citerate/0000775000175000017500000000000012645513301014231 500000000000000certmonger-0.78.6/tests/024-citerate/run.sh0000775000175000017500000000566212645513264015335 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions cat > ca-data << EOF #!/bin/sh cert="-----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgIOAQAAAAABPWT1Paf0wU4wDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTMwMzEzMTc0ODQ3WhcNMTQwMzEzMTc0 ODQ3WjBuMQswCQYDVQQGEwJVUzEXMBUGA1UECBMOTk9SVEggQ0FST0xJTkExEDAO BgNVBAcTB1JhbGVpZ2gxEDAOBgNVBAoTB1JlZCBIYXQxCzAJBgNVBAsTAklUMRUw EwYDVQQDFAwqLnJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC8NmWLQuAdaMTQ2Ae8AVPUKDEdCNtGBE4It5hb4xL9cHSzQeBaMDm9UR5X w5DLR93TQFL+Rc9mLbrBhIz9eacrs5qpUp4i5XhgnvEN7vBsUyFjZqQ+W5Zqs5Cv yMVv+rkRRa22hYPqFNM0R0lBPLltZO6+58VA53ttr87JOdPZsdomJtzruXz9ceLg ZnDULmIfZFhw7bz0Y9qAURSsULpIjLwWsGjOlNpPSTisCNwNWrmT4KerD8RnCXy+ keWZPSw9RgMBbyYD6am0nj2/JPmkv390F6HYi6f/0OyefKqZEaPgwDmhEiW6K2Ps qodUKMcfBFJNgPs6ZuqOLnGILVyrAgMBAAGjgdEwgc4wHwYDVR0jBBgwFoAUBJhg 34AblkldZVYtpSwJJArs3LkwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5v bW5pcm9vdC5jb20vUHVibGljU3VyZVNlcnZlclNWLmNybDAdBgNVHQ4EFgQUC5p5 rlungiFqeTNw0HOISTrudr8wCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG+EIBAQQEAwIGwDAN BgkqhkiG9w0BAQUFAAOCAQEAJC1PfXXjM3Y2ifPlzauQgLHiizx3XeIB86AXJHL2 N77UMfkSYmUJraWZX3Ye7icDbRwNHLIDJMfpjgcwnC+ZB+byyvmtjGjcTuqVZpXS 2JU8kgGxNlEjCd4NsumpzollG1W1iDorBCt9bHp8b4isLD+jSnqbWKnvuEUle0ad Pi7xjf9BidMvYUEBpJsd9rA1LQtp/ZfxxA6RtgCeXjQPexjsvf6SLKyrmacHZcMJ b6JbhXMTzB7QZjR3IooqzXS8T/2zBxDUSH4fJ4o0KSkY8cjNCCxdnkXL96PC9KQ5 kV1Ad3iHw/TnJjzrJJs3o92pRR/JtF0Jw6dszNP1Sn68uA== -----END CERTIFICATE-----" case "\$CERTMONGER_OPERATION" in IDENTIFY) echo Test ;; FETCH-ROOTS) echo Root echo "\$cert" ;; GET-SUPPORTED-TEMPLATES) echo None ;; GET-DEFAULT-TEMPLATE) echo None ;; GET-NEW-REQUEST-REQUIREMENTS) echo None ;; GET-RENEW-REQUEST-REQUIREMENTS) echo None ;; FETCH-SCEP-CA-CERTS) echo "\$cert" ;; FETCH-SCEP-CA-CAPS) echo None ;; esac exit 0 EOF chmod +x $tmpdir/ca-data for phase in identify certs profiles default_profile enrollment_reqs renewal_reqs capabilities encryption_certs ; do # These cover parts of the process, forcing it to stop if any phase needs # to be tried again, so that we don't hit infinite loops. for state in IDLE NEED_TO_REFRESH,REFRESHING UNREACHABLE NEED_TO_SAVE_DATA,PRE_SAVE_DATA,START_SAVING_DATA,SAVING_DATA,NEED_POST_SAVE_DATA,POST_SAVE_DATA,SAVED_DATA NEED_TO_ANALYZE,ANALYZING DISABLED NEED_TO_REFRESH,REFRESHING,NEED_TO_SAVE_DATA,PRE_SAVE_DATA,START_SAVING_DATA,SAVING_DATA,NEED_POST_SAVE_DATA,POST_SAVE_DATA,SAVED_DATA ; do init=`echo $state | cut -f1 -d,` cat > ca << EOF id=Test CA ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-data EOF cat > entry << EOF id=Test ca_name=Test CA state=NEED_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile notification_method=STDOUT EOF echo '['"$phase":"$init"']' $toolsdir/citerate ca entry $phase $init $state cat ca echo done done echo Test complete. certmonger-0.78.6/tests/024-citerate/expected.out0000664000175000017500000003601112645513264016514 00000000000000[identify:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [identify:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_aka=Test ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [identify:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [identify:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [identify:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- IDLE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [identify:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [identify:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_aka=Test ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [certs:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [certs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_SAVE_DATA -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_root_certs=Root -----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgIOAQAAAAABPWT1Paf0wU4wDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTMwMzEzMTc0ODQ3WhcNMTQwMzEzMTc0 ODQ3WjBuMQswCQYDVQQGEwJVUzEXMBUGA1UECBMOTk9SVEggQ0FST0xJTkExEDAO BgNVBAcTB1JhbGVpZ2gxEDAOBgNVBAoTB1JlZCBIYXQxCzAJBgNVBAsTAklUMRUw EwYDVQQDFAwqLnJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC8NmWLQuAdaMTQ2Ae8AVPUKDEdCNtGBE4It5hb4xL9cHSzQeBaMDm9UR5X w5DLR93TQFL+Rc9mLbrBhIz9eacrs5qpUp4i5XhgnvEN7vBsUyFjZqQ+W5Zqs5Cv yMVv+rkRRa22hYPqFNM0R0lBPLltZO6+58VA53ttr87JOdPZsdomJtzruXz9ceLg ZnDULmIfZFhw7bz0Y9qAURSsULpIjLwWsGjOlNpPSTisCNwNWrmT4KerD8RnCXy+ keWZPSw9RgMBbyYD6am0nj2/JPmkv390F6HYi6f/0OyefKqZEaPgwDmhEiW6K2Ps qodUKMcfBFJNgPs6ZuqOLnGILVyrAgMBAAGjgdEwgc4wHwYDVR0jBBgwFoAUBJhg 34AblkldZVYtpSwJJArs3LkwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5v bW5pcm9vdC5jb20vUHVibGljU3VyZVNlcnZlclNWLmNybDAdBgNVHQ4EFgQUC5p5 rlungiFqeTNw0HOISTrudr8wCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG+EIBAQQEAwIGwDAN BgkqhkiG9w0BAQUFAAOCAQEAJC1PfXXjM3Y2ifPlzauQgLHiizx3XeIB86AXJHL2 N77UMfkSYmUJraWZX3Ye7icDbRwNHLIDJMfpjgcwnC+ZB+byyvmtjGjcTuqVZpXS 2JU8kgGxNlEjCd4NsumpzollG1W1iDorBCt9bHp8b4isLD+jSnqbWKnvuEUle0ad Pi7xjf9BidMvYUEBpJsd9rA1LQtp/ZfxxA6RtgCeXjQPexjsvf6SLKyrmacHZcMJ b6JbhXMTzB7QZjR3IooqzXS8T/2zBxDUSH4fJ4o0KSkY8cjNCCxdnkXL96PC9KQ5 kV1Ad3iHw/TnJjzrJJs3o92pRR/JtF0Jw6dszNP1Sn68uA== -----END CERTIFICATE----- [certs:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [certs:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [certs:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- ANALYZING IDLE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [certs:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [certs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_SAVE_DATA START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_root_certs=Root -----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgIOAQAAAAABPWT1Paf0wU4wDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTMwMzEzMTc0ODQ3WhcNMTQwMzEzMTc0 ODQ3WjBuMQswCQYDVQQGEwJVUzEXMBUGA1UECBMOTk9SVEggQ0FST0xJTkExEDAO BgNVBAcTB1JhbGVpZ2gxEDAOBgNVBAoTB1JlZCBIYXQxCzAJBgNVBAsTAklUMRUw EwYDVQQDFAwqLnJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC8NmWLQuAdaMTQ2Ae8AVPUKDEdCNtGBE4It5hb4xL9cHSzQeBaMDm9UR5X w5DLR93TQFL+Rc9mLbrBhIz9eacrs5qpUp4i5XhgnvEN7vBsUyFjZqQ+W5Zqs5Cv yMVv+rkRRa22hYPqFNM0R0lBPLltZO6+58VA53ttr87JOdPZsdomJtzruXz9ceLg ZnDULmIfZFhw7bz0Y9qAURSsULpIjLwWsGjOlNpPSTisCNwNWrmT4KerD8RnCXy+ keWZPSw9RgMBbyYD6am0nj2/JPmkv390F6HYi6f/0OyefKqZEaPgwDmhEiW6K2Ps qodUKMcfBFJNgPs6ZuqOLnGILVyrAgMBAAGjgdEwgc4wHwYDVR0jBBgwFoAUBJhg 34AblkldZVYtpSwJJArs3LkwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5v bW5pcm9vdC5jb20vUHVibGljU3VyZVNlcnZlclNWLmNybDAdBgNVHQ4EFgQUC5p5 rlungiFqeTNw0HOISTrudr8wCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG+EIBAQQEAwIGwDAN BgkqhkiG9w0BAQUFAAOCAQEAJC1PfXXjM3Y2ifPlzauQgLHiizx3XeIB86AXJHL2 N77UMfkSYmUJraWZX3Ye7icDbRwNHLIDJMfpjgcwnC+ZB+byyvmtjGjcTuqVZpXS 2JU8kgGxNlEjCd4NsumpzollG1W1iDorBCt9bHp8b4isLD+jSnqbWKnvuEUle0ad Pi7xjf9BidMvYUEBpJsd9rA1LQtp/ZfxxA6RtgCeXjQPexjsvf6SLKyrmacHZcMJ b6JbhXMTzB7QZjR3IooqzXS8T/2zBxDUSH4fJ4o0KSkY8cjNCCxdnkXL96PC9KQ5 kV1Ad3iHw/TnJjzrJJs3o92pRR/JtF0Jw6dszNP1Sn68uA== -----END CERTIFICATE----- [profiles:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [profiles:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_profiles=None [profiles:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [profiles:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [profiles:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- IDLE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [profiles:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [profiles:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_profiles=None [default_profile:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [default_profile:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_default_profile=None [default_profile:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [default_profile:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [default_profile:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- IDLE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [default_profile:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [default_profile:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_default_profile=None [enrollment_reqs:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [enrollment_reqs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [enrollment_reqs:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [enrollment_reqs:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [enrollment_reqs:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- IDLE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [enrollment_reqs:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [enrollment_reqs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [renewal_reqs:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [renewal_reqs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [renewal_reqs:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [renewal_reqs:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [renewal_reqs:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- IDLE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [renewal_reqs:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [renewal_reqs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [capabilities:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [capabilities:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_capabilities=None [capabilities:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [capabilities:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [capabilities:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- IDLE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [capabilities:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [capabilities:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_capabilities=None [encryption_certs:IDLE] IDLE -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [encryption_certs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_encryption_cert=-----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgIOAQAAAAABPWT1Paf0wU4wDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTMwMzEzMTc0ODQ3WhcNMTQwMzEzMTc0 ODQ3WjBuMQswCQYDVQQGEwJVUzEXMBUGA1UECBMOTk9SVEggQ0FST0xJTkExEDAO BgNVBAcTB1JhbGVpZ2gxEDAOBgNVBAoTB1JlZCBIYXQxCzAJBgNVBAsTAklUMRUw EwYDVQQDFAwqLnJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC8NmWLQuAdaMTQ2Ae8AVPUKDEdCNtGBE4It5hb4xL9cHSzQeBaMDm9UR5X w5DLR93TQFL+Rc9mLbrBhIz9eacrs5qpUp4i5XhgnvEN7vBsUyFjZqQ+W5Zqs5Cv yMVv+rkRRa22hYPqFNM0R0lBPLltZO6+58VA53ttr87JOdPZsdomJtzruXz9ceLg ZnDULmIfZFhw7bz0Y9qAURSsULpIjLwWsGjOlNpPSTisCNwNWrmT4KerD8RnCXy+ keWZPSw9RgMBbyYD6am0nj2/JPmkv390F6HYi6f/0OyefKqZEaPgwDmhEiW6K2Ps qodUKMcfBFJNgPs6ZuqOLnGILVyrAgMBAAGjgdEwgc4wHwYDVR0jBBgwFoAUBJhg 34AblkldZVYtpSwJJArs3LkwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5v bW5pcm9vdC5jb20vUHVibGljU3VyZVNlcnZlclNWLmNybDAdBgNVHQ4EFgQUC5p5 rlungiFqeTNw0HOISTrudr8wCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG+EIBAQQEAwIGwDAN BgkqhkiG9w0BAQUFAAOCAQEAJC1PfXXjM3Y2ifPlzauQgLHiizx3XeIB86AXJHL2 N77UMfkSYmUJraWZX3Ye7icDbRwNHLIDJMfpjgcwnC+ZB+byyvmtjGjcTuqVZpXS 2JU8kgGxNlEjCd4NsumpzollG1W1iDorBCt9bHp8b4isLD+jSnqbWKnvuEUle0ad Pi7xjf9BidMvYUEBpJsd9rA1LQtp/ZfxxA6RtgCeXjQPexjsvf6SLKyrmacHZcMJ b6JbhXMTzB7QZjR3IooqzXS8T/2zBxDUSH4fJ4o0KSkY8cjNCCxdnkXL96PC9KQ5 kV1Ad3iHw/TnJjzrJJs3o92pRR/JtF0Jw6dszNP1Sn68uA== -----END CERTIFICATE----- [encryption_certs:UNREACHABLE] UNREACHABLE -START- NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [encryption_certs:NEED_TO_SAVE_DATA] NEED_TO_SAVE_DATA -START- START_SAVING_DATA SAVING_DATA NEED_POST_SAVE_DATA SAVED_DATA NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [encryption_certs:NEED_TO_ANALYZE] NEED_TO_ANALYZE -START- ANALYZING delay=15768000 NEED_TO_REFRESH -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [encryption_certs:DISABLED] DISABLED -START- -STUCK- (4:0) id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data [encryption_certs:NEED_TO_REFRESH] NEED_TO_REFRESH -START- REFRESHING NEED_TO_ANALYZE -STOP- id=Test CA ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/ca-data ca_encryption_cert=-----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgIOAQAAAAABPWT1Paf0wU4wDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTMwMzEzMTc0ODQ3WhcNMTQwMzEzMTc0 ODQ3WjBuMQswCQYDVQQGEwJVUzEXMBUGA1UECBMOTk9SVEggQ0FST0xJTkExEDAO BgNVBAcTB1JhbGVpZ2gxEDAOBgNVBAoTB1JlZCBIYXQxCzAJBgNVBAsTAklUMRUw EwYDVQQDFAwqLnJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC8NmWLQuAdaMTQ2Ae8AVPUKDEdCNtGBE4It5hb4xL9cHSzQeBaMDm9UR5X w5DLR93TQFL+Rc9mLbrBhIz9eacrs5qpUp4i5XhgnvEN7vBsUyFjZqQ+W5Zqs5Cv yMVv+rkRRa22hYPqFNM0R0lBPLltZO6+58VA53ttr87JOdPZsdomJtzruXz9ceLg ZnDULmIfZFhw7bz0Y9qAURSsULpIjLwWsGjOlNpPSTisCNwNWrmT4KerD8RnCXy+ keWZPSw9RgMBbyYD6am0nj2/JPmkv390F6HYi6f/0OyefKqZEaPgwDmhEiW6K2Ps qodUKMcfBFJNgPs6ZuqOLnGILVyrAgMBAAGjgdEwgc4wHwYDVR0jBBgwFoAUBJhg 34AblkldZVYtpSwJJArs3LkwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5v bW5pcm9vdC5jb20vUHVibGljU3VyZVNlcnZlclNWLmNybDAdBgNVHQ4EFgQUC5p5 rlungiFqeTNw0HOISTrudr8wCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG+EIBAQQEAwIGwDAN BgkqhkiG9w0BAQUFAAOCAQEAJC1PfXXjM3Y2ifPlzauQgLHiizx3XeIB86AXJHL2 N77UMfkSYmUJraWZX3Ye7icDbRwNHLIDJMfpjgcwnC+ZB+byyvmtjGjcTuqVZpXS 2JU8kgGxNlEjCd4NsumpzollG1W1iDorBCt9bHp8b4isLD+jSnqbWKnvuEUle0ad Pi7xjf9BidMvYUEBpJsd9rA1LQtp/ZfxxA6RtgCeXjQPexjsvf6SLKyrmacHZcMJ b6JbhXMTzB7QZjR3IooqzXS8T/2zBxDUSH4fJ4o0KSkY8cjNCCxdnkXL96PC9KQ5 kV1Ad3iHw/TnJjzrJJs3o92pRR/JtF0Jw6dszNP1Sn68uA== -----END CERTIFICATE----- Test complete. certmonger-0.78.6/tests/023-cadata/0000775000175000017500000000000012645513301013645 500000000000000certmonger-0.78.6/tests/023-cadata/run.sh0000775000175000017500000000456112645513264014746 00000000000000#!/bin/bash -e cd $tmpdir cat > $tmpdir/ca <<- EOF id=Lostie ca_type=EXTERNAL ca_external_helper=$tmpdir/no-such-helper.sh EOF echo '['missing']' $toolsdir/cadata -c $tmpdir/ca || echo Error $? cat > $tmpdir/helper.sh << EOF #!/bin/bash case "\$CERTMONGER_OPERATION" in IDENTIFY) echo Best. CA. Ever. exit 0 ;; GET-DEFAULT-TEMPLATE) echo DefaultTemplate exit 0 ;; GET-SUPPORTED-TEMPLATES) echo DefaultTemplate,OtherTemplate echo ThirdTemplate exit 0 ;; GET-RENEW-REQUEST-REQUIREMENTS) echo CERTMONGER_REQ_PRINCIPAL exit 0 ;; GET-NEW-REQUEST-REQUIREMENTS) echo CERTMONGER_CA_PROFILE echo CERTMONGER_REQ_PRINCIPAL,CERTMONGER_SPKI exit 0 ;; FETCH-ROOTS) echo Root 1 echo -----BEGIN CERTIFICATE----- echo This is a certificate. Not a real one. echo -----END CERTIFICATE----- echo Root 2 echo -----BEGIN CERTIFICATE----- echo This is a second certificate. Not a real one. echo -----END CERTIFICATE----- echo echo Other Root 1 echo -----BEGIN CERTIFICATE----- echo This is a third certificate. Not a real one. echo -----END CERTIFICATE----- echo Other Root 2 echo -----BEGIN CERTIFICATE----- echo This is a fourth certificate. Not a real one. echo -----END CERTIFICATE----- echo echo Other Random Certificate 1 echo -----BEGIN CERTIFICATE----- echo This is a fifth certificate. Not a real one. echo -----END CERTIFICATE----- echo Other Random Certificate 2 echo -----BEGIN CERTIFICATE----- echo This is a sixth certificate. Not a real one. echo -----END CERTIFICATE----- exit 0 ;; FETCH-SCEP-CA-CERTS) echo -----BEGIN CERTIFICATE----- echo This is a certificate. Not a real one. echo -----END CERTIFICATE----- echo -----BEGIN CERTIFICATE----- echo This is a second certificate. Not a real one. echo -----END CERTIFICATE----- exit 0 ;; FETCH-SCEP-CA-CAPS) echo GetNextCACert echo POSTPKIOperation echo Renewal echo SHA-512 echo SHA-256 echo SHA-1 echo DES3 exit 0 ;; esac exit 6 EOF chmod +x $tmpdir/helper.sh for flag in i r e d p c s C; do cat > $tmpdir/ca <<- EOF id=CADataRetrievalTest ca_type=EXTERNAL ca_external_helper=$tmpdir/helper.sh EOF echo '['"$flag"']' $toolsdir/cadata -$flag $tmpdir/ca cat $tmpdir/ca done echo '['all']' cat > $tmpdir/ca <<- EOF id=CADataRetrievalTest ca_type=EXTERNAL ca_external_helper=$tmpdir/helper.sh EOF for flag in i r e d p c s C ; do $toolsdir/cadata -$flag $tmpdir/ca done cat $tmpdir/ca echo OK. certmonger-0.78.6/tests/023-cadata/expected.out0000664000175000017500000000673612645513264016143 00000000000000[missing] Failed to start. Error 255 [i] id=CADataRetrievalTest ca_aka=Best. CA. Ever. ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh [r] id=CADataRetrievalTest ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_required_renewal_attributes=template-principal [e] id=CADataRetrievalTest ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_required_enroll_attributes=template-profile,template-principal [d] id=CADataRetrievalTest ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_default_profile=DefaultTemplate [p] id=CADataRetrievalTest ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_profiles=DefaultTemplate,OtherTemplate,ThirdTemplate [c] id=CADataRetrievalTest ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_root_certs=Root 1 -----BEGIN CERTIFICATE----- This is a certificate. Not a real one. -----END CERTIFICATE----- Root 2 -----BEGIN CERTIFICATE----- This is a second certificate. Not a real one. -----END CERTIFICATE----- ca_other_root_certs=Other Root 1 -----BEGIN CERTIFICATE----- This is a third certificate. Not a real one. -----END CERTIFICATE----- Other Root 2 -----BEGIN CERTIFICATE----- This is a fourth certificate. Not a real one. -----END CERTIFICATE----- ca_other_certs=Other Random Certificate 1 -----BEGIN CERTIFICATE----- This is a fifth certificate. Not a real one. -----END CERTIFICATE----- Other Random Certificate 2 -----BEGIN CERTIFICATE----- This is a sixth certificate. Not a real one. -----END CERTIFICATE----- [s] id=CADataRetrievalTest ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_encryption_cert=-----BEGIN CERTIFICATE----- This is a certificate. Not a real one. -----END CERTIFICATE----- ca_encryption_issuer_cert=-----BEGIN CERTIFICATE----- This is a second certificate. Not a real one. -----END CERTIFICATE----- [C] id=CADataRetrievalTest ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_capabilities=GetNextCACert,POSTPKIOperation,Renewal,SHA-512,SHA-256,SHA-1,DES3 [all] id=CADataRetrievalTest ca_aka=Best. CA. Ever. ca_is_default=0 ca_type=EXTERNAL ca_external_helper=${tmpdir}/helper.sh ca_root_certs=Root 1 -----BEGIN CERTIFICATE----- This is a certificate. Not a real one. -----END CERTIFICATE----- Root 2 -----BEGIN CERTIFICATE----- This is a second certificate. Not a real one. -----END CERTIFICATE----- ca_other_root_certs=Other Root 1 -----BEGIN CERTIFICATE----- This is a third certificate. Not a real one. -----END CERTIFICATE----- Other Root 2 -----BEGIN CERTIFICATE----- This is a fourth certificate. Not a real one. -----END CERTIFICATE----- ca_other_certs=Other Random Certificate 1 -----BEGIN CERTIFICATE----- This is a fifth certificate. Not a real one. -----END CERTIFICATE----- Other Random Certificate 2 -----BEGIN CERTIFICATE----- This is a sixth certificate. Not a real one. -----END CERTIFICATE----- ca_required_enroll_attributes=template-profile,template-principal ca_required_renewal_attributes=template-principal ca_profiles=DefaultTemplate,OtherTemplate,ThirdTemplate ca_default_profile=DefaultTemplate ca_capabilities=GetNextCACert,POSTPKIOperation,Renewal,SHA-512,SHA-256,SHA-1,DES3 ca_encryption_cert=-----BEGIN CERTIFICATE----- This is a certificate. Not a real one. -----END CERTIFICATE----- ca_encryption_issuer_cert=-----BEGIN CERTIFICATE----- This is a second certificate. Not a real one. -----END CERTIFICATE----- OK. certmonger-0.78.6/tests/022-base64/0000775000175000017500000000000012645513301013513 500000000000000certmonger-0.78.6/tests/022-base64/run.sh0000775000175000017500000000174712645513264014617 00000000000000#!/bin/bash -e cd "$tmpdir" middle=40 top=200 for length in `seq $top` ; do dd if=/dev/urandom bs=1 count=$length of=raw.$length base64 < raw.$length > encoded1.$length base64 -d -i < encoded1.$length > decoded1.$length $toolsdir/base64 -e < raw.$length > encoded2.$length $toolsdir/base64 -d < encoded2.$length > decoded2.$length $toolsdir/base64 -d < encoded1.$length > decoded3.$length if test $length -le $middle ; then if ! cmp -s $tmpdir/encoded1.$length $tmpdir/encoded2.$length ; then echo Encodings differ: od -Ad -t x1c $tmpdir/raw.$length diff -u $tmpdir/encoded1.$length $tmpdir/encoded2.$length exit 1 fi fi if ! cmp -s $tmpdir/decoded1.$length $tmpdir/decoded2.$length ; then echo Decodings differ: diff -u $tmpdir/decoded1.$length $tmpdir/decoded2.$length exit 1 fi if ! cmp -s $tmpdir/decoded1.$length $tmpdir/decoded3.$length ; then echo Decodings differ: diff -u $tmpdir/decoded1.$length $tmpdir/decoded3.$length exit 1 fi done echo OK. certmonger-0.78.6/tests/022-base64/expected.out0000664000175000017500000000000412645513264015767 00000000000000OK. certmonger-0.78.6/tests/021-resume/0000775000175000017500000000000012645513301013726 500000000000000certmonger-0.78.6/tests/021-resume/run.sh0000775000175000017500000001244112645513264015023 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions SAVED_CONFIG_DIR="$CERTMONGER_CONFIG_DIR" CERTMONGER_CONFIG_DIR=`pwd` cat > $tmpdir/notify.sh << EOF #!/bin/sh echo \$CERTMONGER_NOTIFICATION | sed s@"$tmpdir"@'\$tmpdir'@g EOF chmod u+x $tmpdir/notify.sh cat > certmonger.conf << EOF [defaults] notify_ttls = 30s enroll_ttls = 30s notification_method=command notification_destination=$tmpdir/notify.sh [selfsign] validity_period = 10y EOF cat > ca << EOF id=SelfSign ca_type=INTERNAL:SELF EOF # Run NEWLY_ADDED first, to get a certificate and key in place. We need to # check resumption from ALL known last-state values. for state in \ NEWLY_ADDED \ \ CA_REJECTED \ CA_UNCONFIGURED \ CA_UNREACHABLE \ CA_WORKING \ GENERATING_CSR \ GENERATING_KEY_PAIR \ GENERATING_SCEP_DATA \ HAVE_CSR \ HAVE_KEYINFO \ HAVE_KEY_PAIR \ HAVE_SCEP_DATA \ MONITORING \ NEED_CA \ NEED_CA_CERT_SAVE_PERMS \ NEED_CERTSAVE_PERMS \ NEED_CSR \ NEED_CSR_GEN_PIN \ NEED_CSR_GEN_TOKEN \ NEED_GUIDANCE \ NEED_KEY_GEN_PERMS \ NEED_KEY_GEN_PIN \ NEED_KEY_GEN_TOKEN \ NEED_KEYINFO \ NEED_KEYINFO_READ_PIN \ NEED_KEYINFO_READ_TOKEN \ NEED_KEY_PAIR \ NEED_ONLY_CA_CERT_SAVE_PERMS \ NEED_SCEP_DATA \ NEED_SCEP_ENCRYPTION_CERT \ NEED_SCEP_GEN_PIN \ NEED_SCEP_GEN_TOKEN \ NEED_SCEP_RSA_CLIENT_KEY \ NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED \ NEED_TO_NOTIFY_ISSUED_SAVED \ NEED_TO_NOTIFY_ISSUED_SAVE_FAILED \ NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED \ NEED_TO_NOTIFY_REJECTION \ NEED_TO_NOTIFY_VALIDITY \ NEED_TO_READ_CERT \ NEED_TO_SAVE_CA_CERTS \ NEED_TO_SAVE_CERT \ NEED_TO_SAVE_ONLY_CA_CERTS \ NEED_TO_SUBMIT \ NEWLY_ADDED \ NEWLY_ADDED_DECIDING \ NEWLY_ADDED_NEED_KEYINFO_READ_PIN \ NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN \ NEWLY_ADDED_READING_CERT \ NEWLY_ADDED_READING_KEYINFO \ NEWLY_ADDED_START_READING_CERT \ NEWLY_ADDED_START_READING_KEYINFO \ NOTIFYING_ISSUED_CA_SAVE_FAILED \ NOTIFYING_ISSUED_SAVED \ NOTIFYING_ISSUED_SAVE_FAILED \ NOTIFYING_ONLY_CA_SAVE_FAILED \ NOTIFYING_REJECTION \ NOTIFYING_VALIDITY \ POST_SAVED_CERT \ PRE_SAVE_CERT \ READING_CERT \ READING_KEYINFO \ SAVED_CERT \ SAVING_CA_CERTS \ SAVING_CERT \ SAVING_ONLY_CA_CERTS \ START_SAVING_CA_CERTS \ START_SAVING_CERT \ START_SAVING_ONLY_CA_CERTS \ SUBMITTING \ ; do cat > entry << EOF id=Test ca_name=SelfSign state=$state key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile post_certsave_command=sleep 0 post_certsave_uid=$UID pre_certsave_command=sleep 0 pre_certsave_uid=$UID csr=-----BEGIN CERTIFICATE REQUEST----- MIIChzCCAW8CAQAwQjELMAkGA1UEBhMCWFgxFTATBgNVBAcMDERlZmF1bHQgQ2l0 eTEcMBoGA1UECgwTRGVmYXVsdCBDb21wYW55IEx0ZDCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAOh7lm16/Pu9naEhm1bn5qI7w+sBtZp8oY8EC4NHZheL H4vpsC72WZK+kJPM5wnIU8P2q8i5PQHcAOcxPyrz4DQOTXUNMAoA8cR44tZ53NlQ oFFx9boRYNYL7N7TZCO8ID+aQwLxgml9NTocdsKrdttXMeAXUB7qm+07IuwgjA+Z eOkJoetenmO4YPLgrw2lmaTh8zCayR+xhsBYpoMstFHR1SUKYRIkpIU2A1LQXivO +/UYy5Qj/4An6sO2owPfhjwYRPO14ORUozgsnfh5cz3be8zDPXVn/eOkrkvV8ySV ySHFkfR/jJIR4GrOKi23L7a6qHgoGsq/bwAxIDI5CZECAwEAAaAAMA0GCSqGSIb3 DQEBBQUAA4IBAQAL2wJHstZFF4p8L19Zxo3KUHdmqIQSyo1C4ZoI0WICIS2+htgQ 8b5DCwwD/Sv/rx/NZtrIVfQIlGxENo7lS/OyvtZSd19wmbrWA0ZTtlcf8K2PMaWN lqhXNtqPI5lEMlcYfbV9wycAfVasJdKGLYkemX2Hl+aeWZ4+3bx3LM+67PE4er5O 06Ag3gFY29pybQCdFQ4eE5inQ6UH6vZavUDNypaakRfLZBxNBvArHSfSlQjyWT/T lQl3PmmpFKLkwakTI1czUsezQCAkAU22VGWmy1iq4EpDXN9nzrtF0Ol9sZcUMIWd K+MWdtm/7jrBfPolQwYYTwXpDXIfFyKOuomW -----END CERTIFICATE REQUEST----- EOF cat > $tmpdir/keyfile << EOF -----BEGIN PRIVATE KEY----- MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQDoe5Ztevz7vZ2h IZtW5+aiO8PrAbWafKGPBAuDR2YXix+L6bAu9lmSvpCTzOcJyFPD9qvIuT0B3ADn MT8q8+A0Dk11DTAKAPHEeOLWedzZUKBRcfW6EWDWC+ze02QjvCA/mkMC8YJpfTU6 HHbCq3bbVzHgF1Ae6pvtOyLsIIwPmXjpCaHrXp5juGDy4K8NpZmk4fMwmskfsYbA WKaDLLRR0dUlCmESJKSFNgNS0F4rzvv1GMuUI/+AJ+rDtqMD34Y8GETzteDkVKM4 LJ34eXM923vMwz11Z/3jpK5L1fMklckhxZH0f4ySEeBqziotty+2uqh4KBrKv28A MSAyOQmRAgMBAAECggEAPZQWuTL9dXS5Huf27GMKfOhVsZbHUn82j9ojbodn7E6G cZnZd+b6vNrLEssQW0/7mAlrYQRnu2lZt+McdzUXqtIrBBkVI2EyqLbYZrTqoYkw ncIQs1NNEgUgnbjianC3HgGvREVSJLzsb1MAxfmCxwBmjpO+PiIoYQLr8h2A29Rq oHC6eTnQFveqcPT68t7Zx/i8ckQ8VAzx3RNC7/6I/o+0wqw+4/HPREl1dopr/e9c Z+kir+wTMs35B6hx0eBmq2A7D2FTnryaPmOcrPMhQM1LM1gEw9Dt88h6dPTDZuVC /YRNJFa7c264vvIix5xBC3Hwb17zVtRk9DHfK2fvXQKBgQD6nL8YGas4JC6GqwlG 3z5UL4CYI8XA85QbxxdAZfFVRK4f9VMTci1oy6OFlP2iTccm2mWwVqo2QhbtUW7i 9HUuDyDM6OLfXi+UFASiHNh3X0w+op8s1VdW4dnDHU+dbldcjiccsFof4Qw2zXZc fbnA2zSqgPqNCOITrjsT5rh7hwKBgQDtexCNiUHiUj3lxj/3pWcwHyUIXIghV4b3 WpJY3gSC20hwU0HU+UA60umMeWHZdcasZcGBe6O2DtAte+7NOZMvySwrb3CkDdjU hT2LJmpuJd6u31L5jEsVv9nHz6MDYdl3FH39RZ9u0AxPnb4vFT69VTRSoDEvlWuC kawkui4IJwKBgHIM3YZZQCt3g9jzg3BGbnYffBVAymFKOI//pdw/yHl2nQucOKdz 4ah8bDmBmX/Ah65t27NJbYLtxsNPuPf+KknAxruaDI18rohkJ8ui9vw0WV1z4p6j pHC8rb5222GY8pcDdlc/BnTVlRpnnMLw0JUs7SXfNqbycPhl5SrkZ/aHAoGAFMGM 0NIOUBmgD1UkgiCSxEH0mqZ7v25G/ZeM8vd0rXs8+ZRNTK/8TSfiAcUaKEeC9c5u +0IzLNZem5sZZBaEJskOcz1qOux65xg+KMtSwg3NSLt8JRN9/IioIC6lsMX8m8vO tzQ+mxDUAqFm3fadZS7tQ8t8gQwuOVtCEHO1UkECgYEAo9/E3SYRxEZVh6uVqlH1 LE6J0LZP6srcjAhBO1trEvb4+d5y4CE8G7Hd3HwdbfOt5xQtul+NCdIw3gozCjYh p5GMs+J0kQYUN5eg5FJob/NO5KkhwCKL1qi81MNrpNy6c12yqXJmEtpI2Ztdh20B R+ZCDmP9ibR2p8qmiVGnTDg= -----END PRIVATE KEY----- EOF echo "["$state"]" $toolsdir/iterate ca entry "" MONITORING echo "" done CERTMONGER_CONFIG_DIR="$SAVED_CONFIG_DIR" echo Test complete. certmonger-0.78.6/tests/021-resume/expected.out0000664000175000017500000004331012645513264016211 00000000000000[NEWLY_ADDED] NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [CA_REJECTED] CA_REJECTED -START- CA_REJECTED -STUCK- (4:0) [CA_UNCONFIGURED] CA_UNCONFIGURED -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [CA_UNREACHABLE] CA_UNREACHABLE -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [CA_WORKING] CA_WORKING -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [GENERATING_CSR] GENERATING_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [GENERATING_KEY_PAIR] GENERATING_KEY_PAIR -(RESET)- NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [GENERATING_SCEP_DATA] GENERATING_SCEP_DATA -(RESET)- NEED_SCEP_DATA -START- GENERATING_SCEP_DATA NEED_SCEP_ENCRYPTION_CERT -STUCK- (4:0) [HAVE_CSR] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [HAVE_KEYINFO] HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [HAVE_KEY_PAIR] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [HAVE_SCEP_DATA] HAVE_SCEP_DATA -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [MONITORING] MONITORING -START- delay=86400 MONITORING -STOP- [NEED_CA] NEED_CA -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_CA_CERT_SAVE_PERMS] NEED_CA_CERT_SAVE_PERMS -(RESET)- NEED_TO_SAVE_CA_CERTS -START- START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_CERTSAVE_PERMS] NEED_CERTSAVE_PERMS -(RESET)- NEED_TO_SAVE_CERT -START- PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_CSR] NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_CSR_GEN_PIN] NEED_CSR_GEN_PIN -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_CSR_GEN_TOKEN] NEED_CSR_GEN_TOKEN -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_GUIDANCE] NEED_GUIDANCE -START- NEED_GUIDANCE -STUCK- (4:0) [NEED_KEY_GEN_PERMS] NEED_KEY_GEN_PERMS -(RESET)- NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_KEY_GEN_PIN] NEED_KEY_GEN_PIN -(RESET)- NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_KEY_GEN_TOKEN] NEED_KEY_GEN_TOKEN -(RESET)- NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_KEYINFO] NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_KEYINFO_READ_PIN] NEED_KEYINFO_READ_PIN -(RESET)- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_KEYINFO_READ_TOKEN] NEED_KEYINFO_READ_TOKEN -(RESET)- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_KEY_PAIR] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_ONLY_CA_CERT_SAVE_PERMS] NEED_ONLY_CA_CERT_SAVE_PERMS -(RESET)- NEED_TO_SAVE_ONLY_CA_CERTS -START- START_SAVING_ONLY_CA_CERTS SAVING_ONLY_CA_CERTS MONITORING -STOP- [NEED_SCEP_DATA] NEED_SCEP_DATA -START- GENERATING_SCEP_DATA NEED_SCEP_ENCRYPTION_CERT -STUCK- (4:0) [NEED_SCEP_ENCRYPTION_CERT] NEED_SCEP_ENCRYPTION_CERT -(RESET)- NEED_SCEP_DATA -START- GENERATING_SCEP_DATA NEED_SCEP_ENCRYPTION_CERT -STUCK- (4:0) [NEED_SCEP_GEN_PIN] NEED_SCEP_GEN_PIN -(RESET)- NEED_SCEP_DATA -START- GENERATING_SCEP_DATA NEED_SCEP_ENCRYPTION_CERT -STUCK- (4:0) [NEED_SCEP_GEN_TOKEN] NEED_SCEP_GEN_TOKEN -(RESET)- NEED_SCEP_DATA -START- GENERATING_SCEP_DATA NEED_SCEP_ENCRYPTION_CERT -STUCK- (4:0) [NEED_SCEP_RSA_CLIENT_KEY] NEED_SCEP_RSA_CLIENT_KEY -(RESET)- NEED_SCEP_DATA -START- GENERATING_SCEP_DATA NEED_SCEP_ENCRYPTION_CERT -STUCK- (4:0) [NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED] NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED -START- NOTIFYING_ISSUED_CA_SAVE_FAILED NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_TO_NOTIFY_ISSUED_SAVED] NEED_TO_NOTIFY_ISSUED_SAVED -START- NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_TO_NOTIFY_ISSUED_SAVE_FAILED] NEED_TO_NOTIFY_ISSUED_SAVE_FAILED -START- NOTIFYING_ISSUED_SAVE_FAILED START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED] NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED -START- NOTIFYING_ONLY_CA_SAVE_FAILED MONITORING -STOP- [NEED_TO_NOTIFY_REJECTION] NEED_TO_NOTIFY_REJECTION -START- NOTIFYING_REJECTION CA_REJECTED -STUCK- (4:0) [NEED_TO_NOTIFY_VALIDITY] NEED_TO_NOTIFY_VALIDITY -(RESET)- MONITORING -START- delay=86400 MONITORING -STOP- [NEED_TO_READ_CERT] NEED_TO_READ_CERT -START- READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_TO_SAVE_CA_CERTS] NEED_TO_SAVE_CA_CERTS -START- START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_TO_SAVE_CERT] NEED_TO_SAVE_CERT -START- PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEED_TO_SAVE_ONLY_CA_CERTS] NEED_TO_SAVE_ONLY_CA_CERTS -START- START_SAVING_ONLY_CA_CERTS SAVING_ONLY_CA_CERTS MONITORING -STOP- [NEED_TO_SUBMIT] NEED_TO_SUBMIT -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NEWLY_ADDED] NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NEWLY_ADDED_DECIDING] NEWLY_ADDED_DECIDING -(RESET)- NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NEWLY_ADDED_NEED_KEYINFO_READ_PIN] NEWLY_ADDED_NEED_KEYINFO_READ_PIN -(RESET)- NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN] NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN -(RESET)- NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NEWLY_ADDED_READING_CERT] NEWLY_ADDED_READING_CERT -(RESET)- NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NEWLY_ADDED_READING_KEYINFO] NEWLY_ADDED_READING_KEYINFO -(RESET)- NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NEWLY_ADDED_START_READING_CERT] NEWLY_ADDED_START_READING_CERT -(RESET)- NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NEWLY_ADDED_START_READING_KEYINFO] NEWLY_ADDED_START_READING_KEYINFO -(RESET)- NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [NOTIFYING_ISSUED_CA_SAVE_FAILED] NOTIFYING_ISSUED_CA_SAVE_FAILED -(RESET)- NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED -START- NOTIFYING_ISSUED_CA_SAVE_FAILED NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NOTIFYING_ISSUED_SAVED] NOTIFYING_ISSUED_SAVED -(RESET)- NEED_TO_NOTIFY_ISSUED_SAVED -START- NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NOTIFYING_ISSUED_SAVE_FAILED] NOTIFYING_ISSUED_SAVE_FAILED -(RESET)- NEED_TO_NOTIFY_ISSUED_SAVE_FAILED -START- NOTIFYING_ISSUED_SAVE_FAILED START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [NOTIFYING_ONLY_CA_SAVE_FAILED] NOTIFYING_ONLY_CA_SAVE_FAILED -(RESET)- NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED -START- NOTIFYING_ONLY_CA_SAVE_FAILED MONITORING -STOP- [NOTIFYING_REJECTION] NOTIFYING_REJECTION -(RESET)- NEED_TO_NOTIFY_REJECTION -START- NOTIFYING_REJECTION CA_REJECTED -STUCK- (4:0) [NOTIFYING_VALIDITY] NOTIFYING_VALIDITY -(RESET)- NEED_TO_NOTIFY_VALIDITY -START- NOTIFYING_VALIDITY delay=86400 MONITORING -STOP- [POST_SAVED_CERT] POST_SAVED_CERT -(RESET)- NEED_TO_NOTIFY_ISSUED_SAVED -START- NOTIFYING_ISSUED_SAVED MONITORING -STOP- [PRE_SAVE_CERT] PRE_SAVE_CERT -(RESET)- NEED_TO_SAVE_CERT -START- PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [READING_CERT] READING_CERT -(RESET)- NEED_TO_READ_CERT -START- READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [READING_KEYINFO] READING_KEYINFO -(RESET)- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [SAVED_CERT] SAVED_CERT -START- NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [SAVING_CA_CERTS] SAVING_CA_CERTS -(RESET)- NEED_TO_SAVE_CA_CERTS -START- START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [SAVING_CERT] SAVING_CERT -(RESET)- NEED_TO_SAVE_CERT -START- PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [SAVING_ONLY_CA_CERTS] SAVING_ONLY_CA_CERTS -(RESET)- NEED_TO_SAVE_ONLY_CA_CERTS -START- START_SAVING_ONLY_CA_CERTS SAVING_ONLY_CA_CERTS MONITORING -STOP- [START_SAVING_CA_CERTS] START_SAVING_CA_CERTS -(RESET)- NEED_TO_SAVE_CA_CERTS -START- START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [START_SAVING_CERT] START_SAVING_CERT -(RESET)- NEED_TO_SAVE_CERT -START- PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [START_SAVING_ONLY_CA_CERTS] START_SAVING_ONLY_CA_CERTS -(RESET)- NEED_TO_SAVE_ONLY_CA_CERTS -START- START_SAVING_ONLY_CA_CERTS SAVING_ONLY_CA_CERTS MONITORING -STOP- [SUBMITTING] SUBMITTING -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- Test complete. certmonger-0.78.6/tests/020-xparse/0000775000175000017500000000000012645513301013727 500000000000000certmonger-0.78.6/tests/020-xparse/ipa-req.xml0000664000175000017500000000261512645513264015743 00000000000000\r\n \r\n cert_request\r\n \r\n \r\n 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\r\n \r\n \r\n principal\r\n imap/rapier.bos.redhat.com@BOS.REDHAT.COM\r\n add\r\n 1\r\n \r\n \r\n \r\n certmonger-0.78.6/tests/020-xparse/ipa-rep-new.xml0000664000175000017500000000506712645513264016535 00000000000000\n \n \n \n \n \n result\n \n \n certificate\n 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\n \n \n issuer\n CN=Certificate Authority,O=BOS.REDHAT.COM\n \n \n valid_not_before\n Thu Jun 28 20:34:12 2012 UTC\n \n \n valid_not_after\n Sun Jun 29 20:34:12 2014 UTC\n \n \n request_id\n 30\n \n \n serial_number\n 19\n \n \n md5_fingerprint\n 95:2a:e3:78:75:40:aa:0a:8f:21:1b:76:0e:91:a3:f4\n \n \n serial_number_hex\n 0x13\n \n \n sha1_fingerprint\n f0:1e:8e:df:8e:39:dd:67:77:98:53:98:95:8f:4b:27:2d:01:4d:11\n \n \n subject\n CN=rapier.bos.redhat.com,O=BOS.REDHAT.COM\n \n \n \n \n \n \n \n certmonger-0.78.6/tests/020-xparse/ipa-fault.xml0000664000175000017500000000057112645513264016266 00000000000000\n \n \n \n \n faultCode\n 4005\n \n \n faultString\n The realm for the principal does not match the realm for this IPA server\n \n \n \n \n certmonger-0.78.6/tests/020-xparse/certmaster-req.xml0000664000175000017500000000227012645513264017340 00000000000000\r\n \r\n wait_for_cert\r\n \r\n -----BEGIN CERTIFICATE REQUEST-----\n MIICmTCCAYECAQAwVDELMAkGA1UEBhMCWFgxFTATBgNVBAcMDERlZmF1bHQgQ2l0\n eTEcMBoGA1UECgwTRGVmYXVsdCBDb21wYW55IEx0ZDEQMA4GA1UEAwwHcGlsbGJv\n eDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANYPXyUy/pnengaPFx4L\n kI7BgFVM8e6mMfRXkmoduOTDJrHli7TwlK3azrsp5Ydxo7M/NP9Uf/tT3rtDBex+\n 2Tw1YkANR8owsFcxhYxmUac7cQNQWZoeTlF6F/Im/5CXo0s/PQo2DrHTRzBSWzTR\n 7fnoQ1aXSXXlSL30Bz3trFl9kp9Dvw6FyQTot3qc9gWPzb+THw5tlG+7bbd6gZn8\n AwWhBc11kragvjcLaOC94YeW//rcgJq/c1180z4TQCqx+nCZWr8tsfPyliU2Wcns\n eJ58O3Sq3SdI2j5Ol1427bf6UpTMgbieAQD1EcvcRzZ+n/fGFSKqoa/Z8mpOnIac\n YhsCAwEAAaAAMA0GCSqGSIb3DQEBBQUAA4IBAQBbhv9TESHRQNF/JIMTzjvtaQb5\n yh/Vy0+uLY2OcvD05+vAYYfbHYXQbqC30MbsHTRMJtR5TyF9Ow+1CTHpEgUmuSQN\n iiGMGH1D1tYmCxZU3vdtpxtyg7DhB7dYmbco0VCkcG3od36NyWobwTUOycW6/ffY\n JoLvI/pWB4+G8Fi9CiSXPv8nVO4Gy/7GSglo95wt2YD05QdzgbFTphvw74FvY3YC\n //TmUBtMV9QNGIJOEWeGFo6rSp009VCqJvqjn8484Tp0is1KOKSD6rN/qDFhZjqR\n T2Hb1euQWUtde1987Yx9c2gK8LgQAdp68yzt+hTc45/IAtTlJbFiGj25O2+B\n -----END CERTIFICATE REQUEST-----\n \r\n \r\n \r\n certmonger-0.78.6/tests/020-xparse/certmaster-rep2.xml0000664000175000017500000000564412645513264017431 00000000000000\n \n \n \n \n 1\n -----BEGIN CERTIFICATE-----\n MIIDdzCCAl+gAwIBAgIBAjANBgkqhkiG9w0BAQUFADCBmjELMAkGA1UEBhMCVU4x\n CzAJBgNVBAgTAkZDMRgwFgYDVQQHEw9DZXJ0bWFzdGVyLXRvd24xEzARBgNVBAoT\n CmNlcnRtYXN0ZXIxEjAQBgNVBAsTCXNsYXZlLWtleTEXMBUGA1UEAxMOcGlsbGJv\n eC1DQS1LRVkxIjAgBgkqhkiG9w0BCQEWE3Jvb3RAcGlsbGJveC1DQS1LRVkwHhcN\n MTIwNjI4MjEzNjAxWhcNMjIwNjI2MjEzNjAxWjBUMQswCQYDVQQGEwJYWDEVMBMG\n A1UEBwwMRGVmYXVsdCBDaXR5MRwwGgYDVQQKDBNEZWZhdWx0IENvbXBhbnkgTHRk\n MRAwDgYDVQQDDAdwaWxsYm94MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC\n AQEA1g9fJTL+md6eBo8XHguQjsGAVUzx7qYx9FeSah245MMmseWLtPCUrdrOuynl\n h3Gjsz80/1R/+1Peu0MF7H7ZPDViQA1HyjCwVzGFjGZRpztxA1BZmh5OUXoX8ib/\n kJejSz89CjYOsdNHMFJbNNHt+ehDVpdJdeVIvfQHPe2sWX2Sn0O/DoXJBOi3epz2\n BY/Nv5MfDm2Ub7ttt3qBmfwDBaEFzXWStqC+Nwto4L3hh5b/+tyAmr9zXXzTPhNA\n KrH6cJlavy2x8/KWJTZZyex4nnw7dKrdJ0jaPk6XXjbtt/pSlMyBuJ4BAPURy9xH\n Nn6f98YVIqqhr9nyak6chpxiGwIDAQABow0wCzAJBgNVHRMEAjAAMA0GCSqGSIb3\n DQEBBQUAA4IBAQAQUbrGIbJPngNSLtHjPrXPEwe02fmEppsn68YD3/aCzkPVUfXK\n cAYtfYBaKjLCyAqKZ+vbSzr7YVP78KsAic4nN3/oPYBIAKFi082gAdrlx7FdmoyV\n gBvY0Kd/mJSwgDLK+PZp/wIKge5La58Mycd08W4MUov2pqQ/fE9ttuGgABFyP689\n 0nLHAMHxjSheELOAlW0gN4wQ9wRQUj08Sv2G+BtCv2AW6F3Z5G2T3SToj2315n4J\n aVDvqM54bCRWtcPY09Eq1R0lj+N/2kXJQSrOHqs6rB1WN1RNGm05ALbWiK4blEAy\n uE0VFNHxlvhSOYhDcru8w3jpiEjdkMSNbPP3\n -----END CERTIFICATE-----\n \n -----BEGIN CERTIFICATE-----\n MIIDxDCCAqygAwIBAgIBADANBgkqhkiG9w0BAQUFADCBmjELMAkGA1UEBhMCVU4x\n CzAJBgNVBAgTAkZDMRgwFgYDVQQHEw9DZXJ0bWFzdGVyLXRvd24xEzARBgNVBAoT\n CmNlcnRtYXN0ZXIxEjAQBgNVBAsTCXNsYXZlLWtleTEXMBUGA1UEAxMOcGlsbGJv\n eC1DQS1LRVkxIjAgBgkqhkiG9w0BCQEWE3Jvb3RAcGlsbGJveC1DQS1LRVkwHhcN\n MTEwNDExMTcyODM2WhcNMjEwNDA4MTcyODM2WjCBmjELMAkGA1UEBhMCVU4xCzAJ\n BgNVBAgTAkZDMRgwFgYDVQQHEw9DZXJ0bWFzdGVyLXRvd24xEzARBgNVBAoTCmNl\n cnRtYXN0ZXIxEjAQBgNVBAsTCXNsYXZlLWtleTEXMBUGA1UEAxMOcGlsbGJveC1D\n QS1LRVkxIjAgBgkqhkiG9w0BCQEWE3Jvb3RAcGlsbGJveC1DQS1LRVkwggEiMA0G\n CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwfo2nlmBk5FLuMjxQxP5HS4/GFa2Q\n oXCvRjjGlTQktAxJieqHQAEwbJJVSxPhTFLgUkM8vgSTM2ASe/FJkmtHxXg3n+iI\n 55P0DB4f2EuvlkqCCKiBNbv1a9H/7+MbB63oXYv7lVOra44HvQn8d328u4KLVVx5\n WUjW/7oCkEqJeF7W7vpYho2M+jQa2bp9e7qObjleyaQxZaw17Ol+bcZNMkEaI506\n mMgUAEGWzIJq0NUJXi+MyD4piWBVuxW8qydSp4eRvnYL9xzYYRtu/yejkm0wCOur\n SJXH1v6/eX7HGcZH16ShZf69ha/g0cKT53W4cF73SiSKNpiRZo/hpt7pAgMBAAGj\n EzARMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEFBQADggEBAIa4H0qB0Xxr\n samX/S5yovawF+pJYpFl2Jidtbycsn+Ujj66HgS1X2sZqDTe9nZeseg0nHuaDuKc\n kawkV9Jhyr6iRclxNQY/kKhNr870HXXp1www0N8fKuRQj4DCHXxU7qoHaulPAoPY\n rpzQyGjlFe4g9afMvrN1gJsypYjRM9p6R88sZkgM+J3JMONkE7TQEoLtbxUirNOl\n SnUcmqauS3+HZpHFnWmvgrcAw9KoDgqyjlYInx/QvrgyN9Jqe/RuSQoME70IZbm3\n nTB6fRrM8l4FA9rV66zwslxVY53K4xr+ECoelOkP0GI2xhWB8yyg5fZqihiKCYAI\n OpXl+itr2hs=\n -----END CERTIFICATE-----\n \n \n \n \n \n certmonger-0.78.6/tests/020-xparse/certmaster-rep1.xml0000664000175000017500000000041012645513264017412 00000000000000\n \n \n \n \n 0\n \n \n \n \n \n \n certmonger-0.78.6/tests/020-xparse/certmaster-fault.xml0000664000175000017500000000056212645513264017666 00000000000000\n \n \n \n \n faultCode\n 1\n \n \n faultString\n <type 'exceptions.AttributeError'>:'NoneType' object has no attribute 'replace'\n \n \n \n \n certmonger-0.78.6/tests/019-dparse/0000775000175000017500000000000012645513301013713 500000000000000certmonger-0.78.6/tests/019-dparse/bad.profileSubmit.serial.out-of-range0000664000175000017500000000017312645513264022720 00000000000000 Server Internal Error 1 certmonger-0.78.6/tests/019-dparse/bad.profileSubmit.serial.invalid0000664000175000017500000000040012645513264022034 00000000000000

The Certificate System has encountered an unrecoverable error.

Error Message:
java.lang.NumberFormatException: For input string: "B"

Please contact your local administrator for assistance. certmonger-0.78.6/tests/019-dparse/bad.profileSubmit.serial.empty0000664000175000017500000000040112645513264021545 00000000000000

The Certificate System has encountered an unrecoverable error.

Error Message:
java.lang.NumberFormatException: Zero length BigInteger

Please contact your local administrator for assistance. certmonger-0.78.6/tests/019-dparse/bad.profileSubmit.csr.subject-mismatch0000664000175000017500000000034312645513264023166 000000000000003Request Rejected - Subject Name Not Matched O=Default Company Ltd,L=Default City,C=XX 13 certmonger-0.78.6/tests/019-dparse/bad.profileSubmit.csr.empty0000664000175000017500000000020212645513264021054 000000000000001Invalid Request certmonger-0.78.6/tests/019-dparse/bad.profileReview.wrong-nssdb0000664000175000017500000000006112645513264021374 00000000000000Error 58. Problem with the local SSL certificate certmonger-0.78.6/tests/019-dparse/bad.profileReview.unauthorized-cert0000664000175000017500000000017212645513264022610 00000000000000 Authentication Error 1 certmonger-0.78.6/tests/019-dparse/bad.profileReview.no-such-request0000664000175000017500000000017112645513264022175 00000000000000 Request 0 Not Found 1 certmonger-0.78.6/tests/019-dparse/bad.profileProcess.not-pending0000664000175000017500000000023612645513264021534 00000000000000 Request Not In Pending State 17 1 certmonger-0.78.6/tests/019-dparse/bad.profileProcess.no-property0000664000175000017500000000046412645513264021613 00000000000000 Property Error - Invalid Property notBefore renewal caServerCert 17 1 pending approve certmonger-0.78.6/tests/019-dparse/bad.profileProcess.no-ca-cert0000664000175000017500000000011612645513264021237 00000000000000Error 60. Peer certificate cannot be authenticated with given CA certificates certmonger-0.78.6/tests/019-dparse/bad.profileProcess.no-agent-cert0000664000175000017500000000006112645513264021751 00000000000000Error 58. Problem with the local SSL certificate certmonger-0.78.6/tests/019-dparse/bad.profileProcess.bad-property0000664000175000017500000000046412645513264021725 00000000000000 Property Error - Invalid Property notBefore renewal caServerCert 17 1 pending approve certmonger-0.78.6/tests/019-dparse/bad.displayCertFromRequest.rejected0000664000175000017500000000037112645513264022560 00000000000000

Certificate ManagerRequest ID 17 was not completed.7 certmonger-0.78.6/tests/019-dparse/bad.displayCertFromRequest.no-such-request0000664000175000017500000000041212645513264024031 00000000000000
Certificate ManagerRequest ID 19 was not found in the request queue.7 certmonger-0.78.6/tests/019-dparse/bad.displayCertFromRequest.incomplete0000664000175000017500000000037112645513264023132 00000000000000
Certificate ManagerRequest ID 14 was not completed.7 certmonger-0.78.6/tests/019-dparse/bad.checkRequest.nosuch0000664000175000017500000000041212645513264020234 00000000000000
Certificate ManagerRequest ID 29 was not found in the request queue.7 certmonger-0.78.6/tests/019-dparse/good.profileSubmit.serial.in-range0000664000175000017500000000025612645513264022321 000000000000002Request Deferred - defer request 12 certmonger-0.78.6/tests/019-dparse/good.profileSubmit.issued0000664000175000017500000000306512645513264020640 00000000000000072CN=pillbox.bos.redhat.com,OU=Engineering,O=Red Hat,L=Somerville,ST=Massachusetts,C=US2aMIIDyDCCArCgAwIBAgIBKjANBgkqhkiG9w0BAQsFADA5MRcwFQYDVQQKEw5CT1MuUkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTE1MDQxMzIwMDMxMVoXDTE1MTAxMDIwMDMxMVowgYMxCzAJBgNVBAYTAlVTMRYwFAYDVQQIDA1NYXNzYWNodXNldHRzMRMwEQYDVQQHDApTb21lcnZpbGxlMRAwDgYDVQQKDAdSZWQgSGF0MRQwEgYDVQQLDAtFbmdpbmVlcmluZzEfMB0GA1UEAwwWcGlsbGJveC5ib3MucmVkaGF0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMM9VrTiHmA1bFavmJMj1rY7UjhDPeGTILN5NpyiVb1ZVUwUG4SKNi0L8SSssIBZS14KhSHMlTopKV6uDVtWg5fV/Rq6LwtBrGDoO3lVSW9D7zbgqXkWkviJuuQHS+h8Dz8x9IbV2fXM9FjyXuKB62K47PDu5q+zGtMFMdoy+kOWItrAvRuowjMKfoNaLLJ04Fb9P3NmVW9fvjZ/46pUOCpAik+nRJr/D2PA1d3s8CI34sbJZb04GNSzA+BHLJBE7PC1LDppo//g1IgDWNcp6IHSd6zwasTGzlhyMLVSfKze5qXJKS6JzX0DbbSJaZC/UN0wfzcmXya8Pd6nmvoOT0sCAwEAAaOBjzCBjDAfBgNVHSMEGDAWgBTaNCP4eABBwBT/3pQoWQ+cxEo9vTBEBggrBgEFBQcBAQQ4MDYwNAYIKwYBBQUHMAGGKGh0dHA6Ly9tYWNoZXRlLmJvcy5yZWRoYXQuY29tOjgwL2NhL29jc3AwDgYDVR0PAQH/BAQDAgTwMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBCwUAA4IBAQBdriiDzQIkPqzRY1nUR9jI5oTygHKqNYIj8+1oKHweyKi98L47lv2hZgtREfgUCl7PS7VLLEDAqboUEK4lJH2lstxmz2fHuQ2AOeGv6zr16u4X+woP6ZZLP6Lj/MDaueUAbOEf/qLsaw15i53YzWXOsie3rYvy/sg0Teu4VqO3E10erL8NBJkQeKKonG70f5HuVgcR5sWwIsxJi8YQuRkhW9meftppJIz05VHesguFvdpr2xWSB5vTH4prbfketIZl6g/cRfOVKrVpzilh6++ZIbeFYqd3z4vIMLedjk2hSUwK5A3bPgFlqzYii8j4scn+0mZMAsSesPzyAiutWBAX certmonger-0.78.6/tests/019-dparse/good.profileReview0000664000175000017500000002740612645513264017350 00000000000000 renewal This constraint accepts the subject name that matches .*CN=.* 1 name Subject Name string CN=IPA RA,O=BOS.REDHAT.COM This default populates a User-Supplied Certificate Subject Name to the request. This constraint rejects the validity that is not between 720 days. 2 notBefore Not Before string 2012-06-25 18:21:04 notAfter Not After string 2014-06-15 18:21:04 This default populates a Certificate Validity to the request. The default values are Range=720 in days This constraint accepts the key only if Key Type=RSA, Key Parameters =1024,2048,3072,4096 3 TYPE readonly Key Type string RSA - 1.2.840.113549.1.1.1 LEN readonly Key Length string 2048 KEY readonly Key string 30:82:01:0A:02:82:01:01:00:DA:3F:78:E3:82:53:1B:\n6F:C1:36:45:70:14:79:78:F7:23:DA:02:BF:46:D3:ED:\n89:A0:A0:8B:6F:50:F7:26:3D:C6:68:E7:BD:61:B9:CE:\nFA:B7:AC:A0:B9:8C:78:68:58:A1:2E:76:87:5A:38:7D:\n23:28:7F:60:F4:0C:C4:06:77:B9:D3:F9:9F:16:00:66:\nAB:99:24:61:90:8E:6E:76:43:1E:D6:E2:70:32:91:B2:\n61:70:54:80:2F:32:71:CE:83:64:DB:C9:49:01:18:1B:\nA5:FC:EF:CC:A9:70:C7:BB:4B:3A:9F:DE:0C:E1:E0:C2:\n59:72:F5:82:73:A9:82:5D:60:65:E0:1A:31:20:3F:22:\nBC:BC:6C:80:71:41:3F:1C:FB:82:24:EE:F1:19:F1:41:\nD0:CD:4B:16:15:F3:C7:61:E8:E8:E7:F3:1D:7A:FB:7F:\nF7:5C:55:02:B6:4F:5F:61:6E:9F:2F:53:D2:DA:80:C4:\n8B:31:1F:9C:57:3E:70:1C:72:70:25:B2:54:CD:55:D3:\n76:EA:8E:4A:FD:C8:07:7F:F5:EC:7F:A0:CC:F3:44:8D:\nAE:69:A6:36:7A:54:7F:36:BD:FA:2F:27:BA:22:55:28:\n4B:89:90:ED:04:36:E5:73:AC:21:1C:E2:AD:B4:18:3C:\n19:6C:84:CE:06:CA:E6:DA:23:02:03:01:00:01\n This default populates a User-Supplied Certificate Key to the request. No Constraint 4 critical readonly Criticality string false keyid readonly Key ID string F9:42:E8:24:38:8E:21:2E:7C:90:C6:64:52:83:20:7A:\n25:70:89:98\n This default populates an Authority Key Identifier Extension (2.5.29.35) to the request. No Constraint 5 authInfoAccessCritical Criticality boolean false authInfoAccessGeneralNames General Names string_list Record #0 Method:1.3.6.1.5.5.7.48.1 Location Type:URIName Location:http://rapier.bos.redhat.com:80/ca/ocsp Enable:true This default populates a Authority Info Access Extension (1.3.6.1.5.5.7.1.1) to the request. The default values are Criticality=false, Record #0{Method:1.3.6.1.5.5.7.48.1,Location Type:URIName,Location:,Enable:true} This constraint accepts the Key Usage extension, if present, only when Criticality=true, Digital Signature=true, Non-Repudiation=true, Key Encipherment=true, Data Encipherment=true, Key Agreement=false, Key Certificate Sign=false, Key CRL Sign=false, Encipher Only=false, Decipher Only=false 6 keyUsageCritical Criticality boolean true keyUsageDigitalSignature Digital Signature boolean true keyUsageNonRepudiation Non-Repudiation boolean true keyUsageKeyEncipherment Key Encipherment boolean true keyUsageDataEncipherment Data Encipherment boolean true keyUsageKeyAgreement Key Agreement boolean false keyUsageKeyCertSign Key CertSign boolean false keyUsageCrlSign CRL Sign boolean false keyUsageEncipherOnly Encipher Only boolean false keyUsageDecipherOnly Decipher Only boolean false This default populates a Key Usage Extension (2.5.29.15) to the request. The default values are Criticality=true, Digital Signature=true, Non-Repudiation=true, Key Encipherment=true, Data Encipherment=true, Key Agreement=false, Key Certificate Sign=false, Key CRL Sign=false, Encipher Only=false, Decipher Only=false No Constraint 7 exKeyUsageCritical Criticality boolean false exKeyUsageOIDs Comma-Separated list of Object Identifiers string_list 1.3.6.1.5.5.7.3.1,1.3.6.1.5.5.7.3.2 This default populates an Extended Key Usage Extension () to the request. The default values are Criticality=false, OIDs=1.3.6.1.5.5.7.3.1,1.3.6.1.5.5.7.3.2 This constraint accepts only the Signing Algorithms of SHA1withRSA,SHA256withRSA,SHA512withRSA,MD5withRSA,MD2withRSA,SHA1withDSA,SHA1withEC,SHA256withEC,SHA384withEC,SHA512withEC 8 signingAlg SHA1withRSA,SHA256withRSA,SHA512withRSA,MD5withRSA,MD2withRSA Signing Algorithm choice SHA256withRSA This default populates the Certificate Signing Algorithm. The default values are Algorithm=SHA256withRSA This certificate profile is for enrolling server certificates. cert_request_type Certificate Request Type pkcs10 cert_request_type cert_request Certificate Request MIICbzCCAVcCAQAwKjEXMBUGA1UEChMOQk9TLlJFREhBVC5DT00xDzANBgNVBAMT BklQQSBSQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANo/eOOCUxtv wTZFcBR5ePcj2gK/RtPtiaCgi29Q9yY9xmjnvWG5zvq3rKC5jHhoWKEudodaOH0j KH9g9AzEBne50/mfFgBmq5kkYZCObnZDHtbicDKRsmFwVIAvMnHOg2TbyUkBGBul /O/MqXDHu0s6n94M4eDCWXL1gnOpgl1gZeAaMSA/Iry8bIBxQT8c+4Ik7vEZ8UHQ zUsWFfPHYejo5/Mdevt/91xVArZPX2Funy9T0tqAxIsxH5xXPnAccnAlslTNVdN2 6o5K/cgHf/Xsf6DM80SNrmmmNnpUfza9+i8nuiJVKEuJkO0ENuVzrCEc4q20GDwZ bITOBsrm2iMCAwEAAaAAMA0GCSqGSIb3DQEBBQUAA4IBAQBsMBkha+NI3Xc921az GKdxj1RvQzq7sm0HoPmswGBUJYmxBsM60/37XbbtBvp/KF0XUwZPOm4k3I4ZgdgK odB57ccUBUMI9RRvrZgoZOvOMBsfKcS23CNPrMiIUeHr4dPQPDW6nDuZiw3LxbRs laeEO60hge9VPUga/KoQ7q+VvRXceABEz7afEGhutvttsUnrBxX4FjYWAvb35WhJ 5pxJkHgSkv1nHTWcBUY4Q/Mpa+55LqluQAHmmw17Ve3OpX5esorEV8wrlk/kHgxQ 8AQaOJbTMI2htR98NcZ/NJjf61QeZe/XZ35ejtBytrbcyJFjlgA4Cz16MlltAtHB pZmJ cert_request requestor_name Requestor Name IPA Installer string requestor_email Requestor Email string requestor_phone Requestor Phone string 0 Mon Jun 25 18:21:04 EDT 2012 10.11.8.156 Manual Server Certificate Enrollment admin caServerCert 10.11.8.156 true 17 pending Mon Jun 25 18:21:04 EDT 2012 pretty_cert pretty_print Certificate Pretty Print b64_cert pretty_print Certificate Base-64 Encoded serverCertSet certmonger-0.78.6/tests/019-dparse/good.profileList0000664000175000017500000004370512645513264017022 00000000000000 This certificate profile is for enrolling user certificates. true Manual User Dual-Use Certificate Enrollment admin caUserCert true This certificate profile is for enrolling user certificates with S/MIME capabilities extension - OID: 1.2.840.113549.1.9.15 true Manual User Dual-Use S/MIME capabilities Certificate Enrollment admin caUserSMIMEcapCert true This certificate profile is for enrolling dual user certificates. It works only with Netscape 7.0 or later. true Manual User Signing & Encryption Certificates Enrollment admin caDualCert true This profile is for enrolling audit log signing certificates true Manual Log Signing Certificate Enrollment admin caSignedLogCert true This certificate profile is for enrolling TPS server certificates. true Manual TPS Server Certificate Enrollment admin caTPSCert true This certificate profile is for enrolling router certificates. true RA Agent-Authenticated Router Certificate Enrollment admin caRARouterCert false This certificate profile is for enrolling router certificates. true One Time Pin Router Certificate Enrollment admin caRouterCert false This certificate profile is for enrolling server certificates. true Manual Server Certificate Enrollment admin caServerCert true This certificate profile is for enrolling other certificates. true Other Certificate Enrollment admin caOtherCert true This certificate profile is for enrolling Certificate Authority certificates. true Manual Certificate Manager Signing Certificate Enrollment admin caCACert true This certificate profile is for enrolling Security Domain Certificate Authority certificates. true Manual Security Domain Certificate Authority Signing Certificate Enrollment admin caInstallCACert true This certificate profile is for enrolling Registration Manager certificates. true Manual Registration Manager Signing Certificate Enrollment admin caRACert true This certificate profile is for enrolling OCSP Manager certificates. true Manual OCSP Manager Signing Certificate Enrollment admin caOCSPCert true This certificate profile is for enrolling Data Recovery Manager transport certificates. true Manual Data Recovery Manager Transport Certificate Enrollment admin caTransportCert true This certificate profile is for enrolling user certificates with directory-based authentication. true Directory-Authenticated User Dual-Use Certificate Enrollment admin caDirUserCert true This certificate profile is for enrolling server certificates with agent authentication. true Agent-Authenticated Server Certificate Enrollment admin caAgentServerCert true This certificate profile is for getting file signing certificate with agent authentication. true Agent-Authenticated File Signing admin caAgentFileSigning true This certificate profile is for enrolling user certificates by using the CMC certificate request with CMC Signature authentication. true Signed CMC-Authenticated User Certificate Enrollment admin caCMCUserCert true This certificate profile is for enrolling user certificates by using the CMC certificate request with CMC Signature authentication. true Signed CMC-Authenticated User Certificate Enrollment admin caFullCMCUserCert false This certificate profile is for enrolling user certificates by using the CMC certificate request with CMC Signature authentication. true Simple CMC Enrollment Request for User Certificate admin caSimpleCMCUserCert false This profile is for enrolling token device keys true Token Device Key Enrollment admin caTokenDeviceKeyEnrollment false This profile is for enrolling Token Encryption key true Token User Encryption Certificate Enrollment admin caTokenUserEncryptionKeyEnrollment false This profile is for enrolling Token Signing key true Token User Signing Certificate Enrollment admin caTokenUserSigningKeyEnrollment false This profile is for enrolling token device keys true Temporary Device Certificate Enrollment admin caTempTokenDeviceKeyEnrollment false This profile is for enrolling Token Encryption key true Temporary Token User Encryption Certificate Enrollment admin caTempTokenUserEncryptionKeyEnrollment false This profile is for enrolling Token Signing key true Temporary Token User Signing Certificate Enrollment admin caTempTokenUserSigningKeyEnrollment false This certificate profile is for enrolling Security Domain administrator's certificates with LDAP authentication against the internal LDAP database. true Security Domain Administrator Certificate Enrollment admin caAdminCert false This certificate profile is for enrolling Security Domain server certificates. true Security Domain Server Certificate Enrollment admin caInternalAuthServerCert false This certificate profile is for enrolling Security Domain Data Recovery Manager transport certificates. true Security Domain Data Recovery Manager Transport Certificate Enrollment admin caInternalAuthTransportCert false This certificate profile is for enrolling Security Domain DRM storage certificates true Security Domain DRM storage Certificate Enrollment admin caInternalAuthDRMstorageCert false This certificate profile is for enrolling Security Domain subsystem certificates. true Security Domain Subsysem Certificate Enrollment admin caInternalAuthSubsystemCert false This certificate profile is for enrolling Security Domain OCSP Manager certificates. true Security Domain OCSP Manager Signing Certificate Enrollment admin caInternalAuthOCSPCert false This certificate profile is for enrolling audit signing certificates. true Audit Signing Certificate Enrollment admin caInternalAuthAuditSigningCert false This profile is for enrolling Domain Controller Certificate true Domain Controller admin DomainController true This certificate profile is for enrolling user certificates with RA agent authentication. true RA Agent-Authenticated User Certificate Enrollment admin caDualRAuserCert true This certificate profile is for enrolling RA agent user certificates with RA agent authentication. true RA Agent-Authenticated Agent User Certificate Enrollment admin caRAagentCert true This certificate profile is for enrolling server certificates with RA agent authentication. true RA Agent-Authenticated Server Certificate Enrollment admin caRAserverCert true This certificate profile is for enrolling device certificates to contain UUID in the Subject Alternative Name extension false Manual device Dual-Use Certificate Enrollment to contain UUID in SAN caUUIDdeviceCert true This certificate profile is for renewing SSL client certificates. true Renewal: Self-renew user SSL client certificates admin caSSLClientSelfRenewal true This certificate profile is for renewing a certificate by serial number by using directory based authentication. true Renewal: Directory-Authenticated User Certificate Self-Renew profile admin caDirUserRenewal true This certificate profile is for renewing certificates to be approved manually by agents. true Renewal: Renew certificate to be manually approved by agents admin caManualRenewal true This profile is for enrolling MS Login Certificate true Token User MS Login Certificate Enrollment admin caTokenMSLoginEnrollment false This certificate profile is for renewing a token certificate true smart card token signing cert renewal profile admin caTokenUserSigningKeyRenewal false This certificate profile is for renewing a token encryption certificate true smart card token signing cert renewal profile admin caTokenUserEncryptionKeyRenewal false This is an IPA profile for enrolling Jar Signing certificates. true Manual Jar Signing Certificate Enrollment admin caJarSigningCert false This certificate profile is for enrolling server certificates with IPA-RA agent authentication. true IPA-RA Agent-Authenticated Server Certificate Enrollment admin caIPAserviceCert false 0 certmonger-0.78.6/tests/019-dparse/good.displayCertFromRequest0000664000175000017500000002147412645513264021205 00000000000000
true11
http9180rapier.bos.redhat.comrapier.bos.redhat.com11Certificate Manager9180MD2: 2B:E7:39:53:38:28:68:11:65:8A:E3:7B:36:4E:A9:44 MD5: 68:3F:AF:2C:38:37:E8:3E:5A:B5:4E:AE:40:54:2F:12 SHA1: D2:E1:1C:C4:CD:53:03:2C:62:CC:4F:68:60:52:A3:DC: 2F:2B:64:89 SHA256: B8:DA:7A:D4:79:75:63:2B:59:D4:C5:B9:61:3C:59:60: E6:A3:7C:38:EE:55:48:45:CB:B8:91:D0:CB:C7:E6:5F SHA512: 8F:E1:12:D0:A5:D7:C0:B0:77:D6:56:22:B7:4C:96:D3: 8F:F0:8E:0B:25:8D:48:E5:8F:15:44:44:B0:51:B4:96: AE:DC:01:B1:EF:34:E5:48:20:CB:31:6B:00:20:3B:F4: 30:1D:86:74:B1:CA:4F:4F:DD:6C:20:2B:75:DB:89:51MIIG3gYJKoZIhvcNAQcCoIIGzzCCBssCAQExADAPBgkqhkiG9w0BBwGgAgQAoIIG rzCCAxAwggH4oAMCAQICAQswDQYJKoZIhvcNAQELBQAwOTEXMBUGA1UEChMOQk9T LlJFREhBVC5DT00xHjAcBgNVBAMTFUNlcnRpZmljYXRlIEF1dGhvcml0eTAeFw0x MjA2MjUyMTA3MTJaFw0xNjA2MjUyMTA3MTJaMDcxFzAVBgNVBAoTDkJPUy5SRURI QVQuQ09NMRwwGgYDVQQDExNPYmplY3QgU2lnbmluZyBDZXJ0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmaKlG/IR0uhPzJq5YpkJYSx5T3cZSWZ93Xt CvLx1grsgajPbZiErKEmBznQpv3Or61cMEjJJ+RzI41rCRijXWaLgZpQNVrojA41 ha+1nsRlHd+JVJZYhulUHSHZEDJ/a4xvlvMExDjwsZVAVMFAcyMmd1w3tHgiDezQ S8Ie3n2WY0YJZ/Jh+2hBmlLoNrTqo9p4rnV2WSyzLYVP3++KXQUw/hF4gJBIzfI9 dm2tmb+Zg8g6mp+VgzH/WvRGw8DJxSlO/0hAwr62to60DTyrv3UbAbxnc6oBCQ7j Wlq5/5Es9sKK21tnO1fYy4LGEo0y3mCALpQonyMwRvW4rAE/AwIDAQABoyUwIzAO BgNVHQ8BAf8EBAMCAoQwEQYJYIZIAYb4QgEBBAQDAgQQMA0GCSqGSIb3DQEBCwUA A4IBAQCcxEcVFXZGuVBffCrPS4+GOvcqIiBUWLMC7AmGaD/K8GZVuGqa7RP3Gs95 25hSkhtaEvOA2f3d8J70gYXW3wS4efWB/XiZ0WT0vEPoyEZIPVUp5XkEyYPpCJ4F GXlgUlFEnwCOga4HWhQeLrO4tMliU6K0Yf03uvTN1CjVX8fCybD7f5xtp0Fv19Mn SSwk+5uTed+aQ3+LRC3F0UAFL/8U6exeTvOKafAXs9eIlU7Sms6rHquSuxCgrEV3 1uM49RXsEmGhGkx8ga3MMAKxMgW3ZAuXHcHyVFbzRVl632IgsusgZkwkG67nJqgt DBcX0eKh88KQ/UO6708xT9vyfwq/MIIDlzCCAn+gAwIBAgIBATANBgkqhkiG9w0B AQsFADA5MRcwFQYDVQQKEw5CT1MuUkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlm aWNhdGUgQXV0aG9yaXR5MB4XDTEyMDYyNTIxMDQxNFoXDTIwMDYyNTIxMDQxNFow OTEXMBUGA1UEChMOQk9TLlJFREhBVC5DT00xHjAcBgNVBAMTFUNlcnRpZmljYXRl IEF1dGhvcml0eTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQDgery 1wgDVSs2yLo1vM0QCPOFi12T5ree2J/ian0dfHbSS9T2GC2TQwjgJLFUnQGkKZ9P TnASJSbPrILl19W/k+QwW3fPqvt+ryvXtK2Ezd3nFVUt6oKxj2bqxC0vS04k0Bab qBfAiRILI4VKUgPWu3YI3k8Nret4+dUmA8EkfBe/FiCdAXdlxWRfkXiiKX6JRfVx 0xweVfw0IDJopNFqAeznvre6fHpzROqw3JKXgagBGYLRgLlontbHnY8teJjlrbBe HQDKn3iOpjkWwHihYkODVSNr3lK8NnfeRjX2+qMOKzX6nkEpz1wigS+/BTtkrRDa AB+oRKKR5D9Zy2sCAwEAAaOBqTCBpjAfBgNVHSMEGDAWgBT5QugkOI4hLnyQxmRS gyB6JXCJmDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBxjAdBgNVHQ4E FgQU+ULoJDiOIS58kMZkUoMgeiVwiZgwQwYIKwYBBQUHAQEENzA1MDMGCCsGAQUF BzABhidodHRwOi8vcmFwaWVyLmJvcy5yZWRoYXQuY29tOjgwL2NhL29jc3AwDQYJ KoZIhvcNAQELBQADggEBAC/7xtbqCLTNX/ctz3NW+TDRQcSBftVWMDK8G+4TAjKa vsZdVnEKJAxo9UAcQL7A8/NFhxDwFGc3gF4agkGuZAMyZzUwynpY26yLyM4mBviv KhJBvbNOykB5BdAags04/Zlb1Bgg9PZqc5ErjcICKTmBAmVxQ0Nzlv49Ts9kNTa+ RZfNvne05dxNdJdPOWX7SHlh0GA/E6d/9+mlNn8x0uHMhbGlLC4EifeiijOyOLwH 6gwPXRPij+95RLxpRA6lXKVEUc5Iu2iZOn25b3xrYL7hFilzLA05vM/Z67UkJbBn a01OM5RZIURKD5IGIuD6BTD/u0qzNq4EEF2HedELdVUxAA==bCertificate: Data: Version: v3 Serial Number: 0xB Signature Algorithm: SHA256withRSA - 1.2.840.113549.1.1.11 Issuer: CN=Certificate Authority,O=BOS.REDHAT.COM Validity: Not Before: Monday, June 25, 2012 5:07:12 PM EDT America/New_York Not After: Saturday, June 25, 2016 5:07:12 PM EDT America/New_York Subject: CN=Object Signing Cert,O=BOS.REDHAT.COM Subject Public Key Info: Algorithm: RSA - 1.2.840.113549.1.1.1 Public Key: Exponent: 65537 Public Key Modulus: (2048 bits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xtensions: Identifier: Key Usage: - 2.5.29.15 Critical: yes Key Usage: Digital Signature Key CertSign Identifier: Netscape Certificate Type - 2.16.840.1.113730.1.1 Critical: no Certificate Usage: Object Signing Signature: Algorithm: SHA256withRSA - 1.2.840.113549.1.1.11 Signature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ingerPrint MD2: 2B:E7:39:53:38:28:68:11:65:8A:E3:7B:36:4E:A9:44 MD5: 68:3F:AF:2C:38:37:E8:3E:5A:B5:4E:AE:40:54:2F:12 SHA1: D2:E1:1C:C4:CD:53:03:2C:62:CC:4F:68:60:52:A3:DC: 2F:2B:64:89 SHA256: B8:DA:7A:D4:79:75:63:2B:59:D4:C5:B9:61:3C:59:60: E6:A3:7C:38:EE:55:48:45:CB:B8:91:D0:CB:C7:E6:5F SHA512: 8F:E1:12:D0:A5:D7:C0:B0:77:D6:56:22:B7:4C:96:D3: 8F:F0:8E:0B:25:8D:48:E5:8F:15:44:44:B0:51:B4:96: AE:DC:01:B1:EF:34:E5:48:20:CB:31:6B:00:20:3B:F4: 30:1D:86:74:B1:CA:4F:4F:DD:6C:20:2B:75:DB:89:51-----BEGIN CERTIFICATE----- MIIDEDCCAfigAwIBAgIBCzANBgkqhkiG9w0BAQsFADA5MRcwFQYDVQQKEw5CT1Mu UkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTEy MDYyNTIxMDcxMloXDTE2MDYyNTIxMDcxMlowNzEXMBUGA1UEChMOQk9TLlJFREhB VC5DT00xHDAaBgNVBAMTE09iamVjdCBTaWduaW5nIENlcnQwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCmZoqUb8hHS6E/MmrlimQlhLHlPdxlJZn3de0K 8vHWCuyBqM9tmISsoSYHOdCm/c6vrVwwSMkn5HMjjWsJGKNdZouBmlA1WuiMDjWF r7WexGUd34lUlliG6VQdIdkQMn9rjG+W8wTEOPCxlUBUwUBzIyZ3XDe0eCIN7NBL wh7efZZjRgln8mH7aEGaUug2tOqj2niudXZZLLMthU/f74pdBTD+EXiAkEjN8j12 ba2Zv5mDyDqan5WDMf9a9EbDwMnFKU7/SEDCvra2jrQNPKu/dRsBvGdzqgEJDuNa Wrn/kSz2worbW2c7V9jLgsYSjTLeYIAulCifIzBG9bisAT8DAgMBAAGjJTAjMA4G A1UdDwEB/wQEAwIChDARBglghkgBhvhCAQEEBAMCBBAwDQYJKoZIhvcNAQELBQAD ggEBAJzERxUVdka5UF98Ks9Lj4Y69yoiIFRYswLsCYZoP8rwZlW4aprtE/caz3nb mFKSG1oS84DZ/d3wnvSBhdbfBLh59YH9eJnRZPS8Q+jIRkg9VSnleQTJg+kIngUZ eWBSUUSfAI6BrgdaFB4us7i0yWJTorRh/Te69M3UKNVfx8LJsPt/nG2nQW/X0ydJ LCT7m5N535pDf4tELcXRQAUv/xTp7F5O84pp8Bez14iVTtKazqseq5K7EKCsRXfW 4zj1FewSYaEaTHyBrcwwArEyBbdkC5cdwfJUVvNFWXrfYiCy6yBmTCQbrucmqC0M FxfR4qHzwpD9Q7rvTzFP2/J/Cr8= -----END CERTIFICATE----- certmonger-0.78.6/tests/019-dparse/good.checkRequest.pending0000664000175000017500000000036112645513264020566 00000000000000
pending134073817122ca1340738171
 certmonger-0.78.6/tests/019-dparse/good.checkRequest.complete0000664000175000017500000000546312645513264020762 00000000000000
completeMIIG3gYJKoZIhvcNAQcCoIIGzzCCBssCAQExADAPBgkqhkiG9w0BBwGgAgQAoIIG rzCCAxAwggH4oAMCAQICAQwwDQYJKoZIhvcNAQELBQAwOTEXMBUGA1UEChMOQk9T LlJFREhBVC5DT00xHjAcBgNVBAMTFUNlcnRpZmljYXRlIEF1dGhvcml0eTAeFw0x MjA2MjYxOTE3NTdaFw0xNjA2MjYxOTE3NTdaMDcxFzAVBgNVBAoTDkJPUy5SRURI QVQuQ09NMRwwGgYDVQQDExNPYmplY3QgU2lnbmluZyBDZXJ0MIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmaKlG/IR0uhPzJq5YpkJYSx5T3cZSWZ93Xt CvLx1grsgajPbZiErKEmBznQpv3Or61cMEjJJ+RzI41rCRijXWaLgZpQNVrojA41 ha+1nsRlHd+JVJZYhulUHSHZEDJ/a4xvlvMExDjwsZVAVMFAcyMmd1w3tHgiDezQ S8Ie3n2WY0YJZ/Jh+2hBmlLoNrTqo9p4rnV2WSyzLYVP3++KXQUw/hF4gJBIzfI9 dm2tmb+Zg8g6mp+VgzH/WvRGw8DJxSlO/0hAwr62to60DTyrv3UbAbxnc6oBCQ7j Wlq5/5Es9sKK21tnO1fYy4LGEo0y3mCALpQonyMwRvW4rAE/AwIDAQABoyUwIzAO BgNVHQ8BAf8EBAMCAoQwEQYJYIZIAYb4QgEBBAQDAgQQMA0GCSqGSIb3DQEBCwUA A4IBAQBW9rkKwDOoIxtzQ+x4HYJsmwf1nTRcm8oAtLCINkFQvMvpMOvEgQ0w5RQb 8/hb7nBmQMxkht8imYh0nw3ztpDmYLmeSYjWY0moD8AU8QdH5VJTHCLrVTwToJVp +Ol8CrjhCk9vIEHWR56w50ZHIsl3uA4NJZu5cdrZvbo3K/Ng2uucwyruInjN13WC UERcopy1I6HxeOWItsKA7VahGNC4xAEWw0/0YCybg5Tt6LaZMG4JpQOpYID2KT9h W8JKQg9YZJt11IK5j9EMy//Va3CPdYCXLntUYBCF2g2Zx/zgwdyCxz4g5dtiyavH XNm4C7eQeMg+ZXm5D39cktk1mIFHMIIDlzCCAn+gAwIBAgIBATANBgkqhkiG9w0B AQsFADA5MRcwFQYDVQQKEw5CT1MuUkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlm aWNhdGUgQXV0aG9yaXR5MB4XDTEyMDYyNTIxMDQxNFoXDTIwMDYyNTIxMDQxNFow OTEXMBUGA1UEChMOQk9TLlJFREhBVC5DT00xHjAcBgNVBAMTFUNlcnRpZmljYXRl IEF1dGhvcml0eTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQDgery 1wgDVSs2yLo1vM0QCPOFi12T5ree2J/ian0dfHbSS9T2GC2TQwjgJLFUnQGkKZ9P TnASJSbPrILl19W/k+QwW3fPqvt+ryvXtK2Ezd3nFVUt6oKxj2bqxC0vS04k0Bab qBfAiRILI4VKUgPWu3YI3k8Nret4+dUmA8EkfBe/FiCdAXdlxWRfkXiiKX6JRfVx 0xweVfw0IDJopNFqAeznvre6fHpzROqw3JKXgagBGYLRgLlontbHnY8teJjlrbBe HQDKn3iOpjkWwHihYkODVSNr3lK8NnfeRjX2+qMOKzX6nkEpz1wigS+/BTtkrRDa AB+oRKKR5D9Zy2sCAwEAAaOBqTCBpjAfBgNVHSMEGDAWgBT5QugkOI4hLnyQxmRS gyB6JXCJmDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBxjAdBgNVHQ4E FgQU+ULoJDiOIS58kMZkUoMgeiVwiZgwQwYIKwYBBQUHAQEENzA1MDMGCCsGAQUF BzABhidodHRwOi8vcmFwaWVyLmJvcy5yZWRoYXQuY29tOjgwL2NhL29jc3AwDQYJ KoZIhvcNAQELBQADggEBAC/7xtbqCLTNX/ctz3NW+TDRQcSBftVWMDK8G+4TAjKa vsZdVnEKJAxo9UAcQL7A8/NFhxDwFGc3gF4agkGuZAMyZzUwynpY26yLyM4mBviv KhJBvbNOykB5BdAags04/Zlb1Bgg9PZqc5ErjcICKTmBAmVxQ0Nzlv49Ts9kNTa+ RZfNvne05dxNdJdPOWX7SHlh0GA/E6d/9+mlNn8x0uHMhbGlLC4EifeiijOyOLwH 6gwPXRPij+95RLxpRA6lXKVEUc5Iu2iZOn25b3xrYL7hFilzLA05vM/Z67UkJbBn a01OM5RZIURKD5IGIuD6BTD/u0qzNq4EEF2HedELdVUxAA==134073842023ca1340738217
c certmonger-0.78.6/tests/019-dparse/run.sh0000775000175000017500000000214012645513264015003 00000000000000#!/bin/bash -e count=0 for role in agent end-user ; do for good in good.profileSubmit* ; do $toolsdir/dparse submit $role $good count=`expr $count + 1` done for good in good.profileReview* ; do $toolsdir/dparse review $role $good count=`expr $count + 1` done for good in good.checkRequest* ; do $toolsdir/dparse check $role $good count=`expr $count + 1` done for good in good.displayCertFromRequest* ; do $toolsdir/dparse fetch $role $good count=`expr $count + 1` done for good in good.profileList* ; do $toolsdir/dparse profiles $role $good count=`expr $count + 1` done for bad in bad.profileSubmit* ; do $toolsdir/dparse submit $role $bad count=`expr $count + 1` done for bad in bad.profileReview* ; do $toolsdir/dparse review $role $bad count=`expr $count + 1` done for bad in bad.profileProcess* ; do $toolsdir/dparse approve $role $bad count=`expr $count + 1` done for bad in bad.checkRequest* ; do $toolsdir/dparse check $role $bad count=`expr $count + 1` done for bad in bad.displayCertFromRequest* ; do $toolsdir/dparse fetch $role $bad count=`expr $count + 1` done done echo $count samples. certmonger-0.78.6/tests/019-dparse/expected.out0000664000175000017500000003107412645513264016202 00000000000000[submit-as-agent(good.profileSubmit.issued) = ISSUED] status="0",cert="-----BEGIN CERTIFICATE-----" -----BEGIN CERTIFICATE----- MIIDyDCCArCgAwIBAgIBKjANBgkqhkiG9w0BAQsFADA5MRcwFQYDVQQKEw5CT1Mu UkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTE1 MDQxMzIwMDMxMVoXDTE1MTAxMDIwMDMxMVowgYMxCzAJBgNVBAYTAlVTMRYwFAYD VQQIDA1NYXNzYWNodXNldHRzMRMwEQYDVQQHDApTb21lcnZpbGxlMRAwDgYDVQQK DAdSZWQgSGF0MRQwEgYDVQQLDAtFbmdpbmVlcmluZzEfMB0GA1UEAwwWcGlsbGJv eC5ib3MucmVkaGF0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMM9VrTiHmA1bFavmJMj1rY7UjhDPeGTILN5NpyiVb1ZVUwUG4SKNi0L8SSssIBZ S14KhSHMlTopKV6uDVtWg5fV/Rq6LwtBrGDoO3lVSW9D7zbgqXkWkviJuuQHS+h8 Dz8x9IbV2fXM9FjyXuKB62K47PDu5q+zGtMFMdoy+kOWItrAvRuowjMKfoNaLLJ0 4Fb9P3NmVW9fvjZ/46pUOCpAik+nRJr/D2PA1d3s8CI34sbJZb04GNSzA+BHLJBE 7PC1LDppo//g1IgDWNcp6IHSd6zwasTGzlhyMLVSfKze5qXJKS6JzX0DbbSJaZC/ UN0wfzcmXya8Pd6nmvoOT0sCAwEAAaOBjzCBjDAfBgNVHSMEGDAWgBTaNCP4eABB wBT/3pQoWQ+cxEo9vTBEBggrBgEFBQcBAQQ4MDYwNAYIKwYBBQUHMAGGKGh0dHA6 Ly9tYWNoZXRlLmJvcy5yZWRoYXQuY29tOjgwL2NhL29jc3AwDgYDVR0PAQH/BAQD AgTwMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBCwUAA4IBAQBdriiD zQIkPqzRY1nUR9jI5oTygHKqNYIj8+1oKHweyKi98L47lv2hZgtREfgUCl7PS7VL LEDAqboUEK4lJH2lstxmz2fHuQ2AOeGv6zr16u4X+woP6ZZLP6Lj/MDaueUAbOEf /qLsaw15i53YzWXOsie3rYvy/sg0Teu4VqO3E10erL8NBJkQeKKonG70f5HuVgcR 5sWwIsxJi8YQuRkhW9meftppJIz05VHesguFvdpr2xWSB5vTH4prbfketIZl6g/c RfOVKrVpzilh6++ZIbeFYqd3z4vIMLedjk2hSUwK5A3bPgFlqzYii8j4scn+0mZM AsSesPzyAiutWBAX -----END CERTIFICATE----- [submit-as-agent(good.profileSubmit.serial.in-range) = WAIT_WITH_DELAY] error="Request Deferred - defer request",status="2",requestId="12" 0 state=approve&requestId=12 [review-as-agent(good.profileReview) = WAIT_WITH_DELAY] error_code="0",status="pending",requestId="17" 0 state=approve&requestId=17 [check-as-agent(good.checkRequest.complete) = WAIT_WITH_DELAY] status="complete",requestId="23" 0 state=retrieve&requestId=23 [check-as-agent(good.checkRequest.pending) = WAIT_WITH_DELAY] status="pending",requestId="22" 0 state=approve&requestId=22 [fetch-as-agent(good.displayCertFromRequest) = ISSUED] requestId="11",cert="-----BEGIN CERTIFICATE-----" -----BEGIN CERTIFICATE----- MIIDEDCCAfigAwIBAgIBCzANBgkqhkiG9w0BAQsFADA5MRcwFQYDVQQKEw5CT1Mu UkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTEy MDYyNTIxMDcxMloXDTE2MDYyNTIxMDcxMlowNzEXMBUGA1UEChMOQk9TLlJFREhB VC5DT00xHDAaBgNVBAMTE09iamVjdCBTaWduaW5nIENlcnQwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCmZoqUb8hHS6E/MmrlimQlhLHlPdxlJZn3de0K 8vHWCuyBqM9tmISsoSYHOdCm/c6vrVwwSMkn5HMjjWsJGKNdZouBmlA1WuiMDjWF r7WexGUd34lUlliG6VQdIdkQMn9rjG+W8wTEOPCxlUBUwUBzIyZ3XDe0eCIN7NBL wh7efZZjRgln8mH7aEGaUug2tOqj2niudXZZLLMthU/f74pdBTD+EXiAkEjN8j12 ba2Zv5mDyDqan5WDMf9a9EbDwMnFKU7/SEDCvra2jrQNPKu/dRsBvGdzqgEJDuNa Wrn/kSz2worbW2c7V9jLgsYSjTLeYIAulCifIzBG9bisAT8DAgMBAAGjJTAjMA4G A1UdDwEB/wQEAwIChDARBglghkgBhvhCAQEEBAMCBBAwDQYJKoZIhvcNAQELBQAD ggEBAJzERxUVdka5UF98Ks9Lj4Y69yoiIFRYswLsCYZoP8rwZlW4aprtE/caz3nb mFKSG1oS84DZ/d3wnvSBhdbfBLh59YH9eJnRZPS8Q+jIRkg9VSnleQTJg+kIngUZ eWBSUUSfAI6BrgdaFB4us7i0yWJTorRh/Te69M3UKNVfx8LJsPt/nG2nQW/X0ydJ LCT7m5N535pDf4tELcXRQAUv/xTp7F5O84pp8Bez14iVTtKazqseq5K7EKCsRXfW 4zj1FewSYaEaTHyBrcwwArEyBbdkC5cdwfJUVvNFWXrfYiCy6yBmTCQbrucmqC0M FxfR4qHzwpD9Q7rvTzFP2/J/Cr8= -----END CERTIFICATE----- [profiles-as-agent(good.profileList) = ISSUED] error_code="0",error_reason="" caUserCert caUserSMIMEcapCert caDualCert caSignedLogCert caTPSCert caServerCert caOtherCert caCACert caInstallCACert caRACert caOCSPCert caTransportCert caDirUserCert caAgentServerCert caAgentFileSigning caCMCUserCert DomainController caDualRAuserCert caRAagentCert caRAserverCert caSSLClientSelfRenewal caDirUserRenewal caManualRenewal [submit-as-agent(bad.profileSubmit.csr.empty) = REJECTED] error="Invalid Request",status="1" Server at "SUBMIT" replied: Invalid Request [submit-as-agent(bad.profileSubmit.csr.subject-mismatch) = REJECTED] error="Request Rejected - Subject Name Not Matched O=Default Company Ltd,L=Default City,C=XX",status="3",requestId="13" Server at "SUBMIT" replied: Request Rejected - Subject Name Not Matched O=Default Company Ltd,L=Default City,C=XX [submit-as-agent(bad.profileSubmit.serial.empty) = REJECTED] [submit-as-agent(bad.profileSubmit.serial.invalid) = REJECTED] [submit-as-agent(bad.profileSubmit.serial.out-of-range) = REJECTED] error_code="1",error_reason="Server Internal Error" Server at "SUBMIT" replied: 1: Server Internal Error [review-as-agent(bad.profileReview.no-such-request) = REJECTED] error_code="1",error_reason="Request 0 Not Found" Server at "REVIEW" replied: 1: Request 0 Not Found [review-as-agent(bad.profileReview.unauthorized-cert) = REJECTED] error_code="1",error_reason="Authentication Error" Server at "REVIEW" replied: 1: Authentication Error [review-as-agent(bad.profileReview.wrong-nssdb) = REJECTED] [approve-as-agent(bad.profileProcess.bad-property) = REJECTED] error_code="1",error_reason="Property Error - Invalid Property notBefore",status="pending",requestId="17" Server at "APPROVE" replied: 1: Property Error - Invalid Property notBefore [approve-as-agent(bad.profileProcess.no-agent-cert) = REJECTED] [approve-as-agent(bad.profileProcess.no-ca-cert) = REJECTED] [approve-as-agent(bad.profileProcess.no-property) = REJECTED] error_code="1",error_reason="Property Error - Invalid Property notBefore",status="pending",requestId="17" Server at "APPROVE" replied: 1: Property Error - Invalid Property notBefore [approve-as-agent(bad.profileProcess.not-pending) = REJECTED] error_code="1",error_reason="Request Not In Pending State",requestId="17" Server at "APPROVE" replied: 1: Request Not In Pending State [check-as-agent(bad.checkRequest.nosuch) = REJECTED] error="Request ID 29 was not found in the request queue." Server at "CHECK" replied: Request ID 29 was not found in the request queue. [fetch-as-agent(bad.displayCertFromRequest.incomplete) = REJECTED] error="Request ID 14 was not completed.",status="7" Server at "FETCH" replied: Request ID 14 was not completed. [fetch-as-agent(bad.displayCertFromRequest.no-such-request) = REJECTED] error="Request ID 19 was not found in the request queue.",status="7" Server at "FETCH" replied: Request ID 19 was not found in the request queue. [fetch-as-agent(bad.displayCertFromRequest.rejected) = REJECTED] error="Request ID 17 was not completed.",status="7" Server at "FETCH" replied: Request ID 17 was not completed. [submit-as-end-entity(good.profileSubmit.issued) = ISSUED] status="0",cert="-----BEGIN CERTIFICATE-----" -----BEGIN CERTIFICATE----- MIIDyDCCArCgAwIBAgIBKjANBgkqhkiG9w0BAQsFADA5MRcwFQYDVQQKEw5CT1Mu UkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTE1 MDQxMzIwMDMxMVoXDTE1MTAxMDIwMDMxMVowgYMxCzAJBgNVBAYTAlVTMRYwFAYD VQQIDA1NYXNzYWNodXNldHRzMRMwEQYDVQQHDApTb21lcnZpbGxlMRAwDgYDVQQK DAdSZWQgSGF0MRQwEgYDVQQLDAtFbmdpbmVlcmluZzEfMB0GA1UEAwwWcGlsbGJv eC5ib3MucmVkaGF0LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMM9VrTiHmA1bFavmJMj1rY7UjhDPeGTILN5NpyiVb1ZVUwUG4SKNi0L8SSssIBZ S14KhSHMlTopKV6uDVtWg5fV/Rq6LwtBrGDoO3lVSW9D7zbgqXkWkviJuuQHS+h8 Dz8x9IbV2fXM9FjyXuKB62K47PDu5q+zGtMFMdoy+kOWItrAvRuowjMKfoNaLLJ0 4Fb9P3NmVW9fvjZ/46pUOCpAik+nRJr/D2PA1d3s8CI34sbJZb04GNSzA+BHLJBE 7PC1LDppo//g1IgDWNcp6IHSd6zwasTGzlhyMLVSfKze5qXJKS6JzX0DbbSJaZC/ UN0wfzcmXya8Pd6nmvoOT0sCAwEAAaOBjzCBjDAfBgNVHSMEGDAWgBTaNCP4eABB wBT/3pQoWQ+cxEo9vTBEBggrBgEFBQcBAQQ4MDYwNAYIKwYBBQUHMAGGKGh0dHA6 Ly9tYWNoZXRlLmJvcy5yZWRoYXQuY29tOjgwL2NhL29jc3AwDgYDVR0PAQH/BAQD AgTwMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBCwUAA4IBAQBdriiD zQIkPqzRY1nUR9jI5oTygHKqNYIj8+1oKHweyKi98L47lv2hZgtREfgUCl7PS7VL LEDAqboUEK4lJH2lstxmz2fHuQ2AOeGv6zr16u4X+woP6ZZLP6Lj/MDaueUAbOEf /qLsaw15i53YzWXOsie3rYvy/sg0Teu4VqO3E10erL8NBJkQeKKonG70f5HuVgcR 5sWwIsxJi8YQuRkhW9meftppJIz05VHesguFvdpr2xWSB5vTH4prbfketIZl6g/c RfOVKrVpzilh6++ZIbeFYqd3z4vIMLedjk2hSUwK5A3bPgFlqzYii8j4scn+0mZM AsSesPzyAiutWBAX -----END CERTIFICATE----- [submit-as-end-entity(good.profileSubmit.serial.in-range) = WAIT] error="Request Deferred - defer request",status="2",requestId="12" state=check&requestId=12 [review-as-end-entity(good.profileReview) = WAIT_WITH_DELAY] error_code="0",status="pending",requestId="17" 0 state=approve&requestId=17 [check-as-end-entity(good.checkRequest.complete) = WAIT_WITH_DELAY] status="complete",requestId="23" 0 state=retrieve&requestId=23 [check-as-end-entity(good.checkRequest.pending) = WAIT] status="pending",requestId="22" state=check&requestId=22 [fetch-as-end-entity(good.displayCertFromRequest) = ISSUED] requestId="11",cert="-----BEGIN CERTIFICATE-----" -----BEGIN CERTIFICATE----- MIIDEDCCAfigAwIBAgIBCzANBgkqhkiG9w0BAQsFADA5MRcwFQYDVQQKEw5CT1Mu UkVESEFULkNPTTEeMBwGA1UEAxMVQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTEy MDYyNTIxMDcxMloXDTE2MDYyNTIxMDcxMlowNzEXMBUGA1UEChMOQk9TLlJFREhB VC5DT00xHDAaBgNVBAMTE09iamVjdCBTaWduaW5nIENlcnQwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCmZoqUb8hHS6E/MmrlimQlhLHlPdxlJZn3de0K 8vHWCuyBqM9tmISsoSYHOdCm/c6vrVwwSMkn5HMjjWsJGKNdZouBmlA1WuiMDjWF r7WexGUd34lUlliG6VQdIdkQMn9rjG+W8wTEOPCxlUBUwUBzIyZ3XDe0eCIN7NBL wh7efZZjRgln8mH7aEGaUug2tOqj2niudXZZLLMthU/f74pdBTD+EXiAkEjN8j12 ba2Zv5mDyDqan5WDMf9a9EbDwMnFKU7/SEDCvra2jrQNPKu/dRsBvGdzqgEJDuNa Wrn/kSz2worbW2c7V9jLgsYSjTLeYIAulCifIzBG9bisAT8DAgMBAAGjJTAjMA4G A1UdDwEB/wQEAwIChDARBglghkgBhvhCAQEEBAMCBBAwDQYJKoZIhvcNAQELBQAD ggEBAJzERxUVdka5UF98Ks9Lj4Y69yoiIFRYswLsCYZoP8rwZlW4aprtE/caz3nb mFKSG1oS84DZ/d3wnvSBhdbfBLh59YH9eJnRZPS8Q+jIRkg9VSnleQTJg+kIngUZ eWBSUUSfAI6BrgdaFB4us7i0yWJTorRh/Te69M3UKNVfx8LJsPt/nG2nQW/X0ydJ LCT7m5N535pDf4tELcXRQAUv/xTp7F5O84pp8Bez14iVTtKazqseq5K7EKCsRXfW 4zj1FewSYaEaTHyBrcwwArEyBbdkC5cdwfJUVvNFWXrfYiCy6yBmTCQbrucmqC0M FxfR4qHzwpD9Q7rvTzFP2/J/Cr8= -----END CERTIFICATE----- [profiles-as-end-entity(good.profileList) = ISSUED] error_code="0",error_reason="" caUserCert caUserSMIMEcapCert caDualCert caSignedLogCert caTPSCert caServerCert caOtherCert caCACert caInstallCACert caRACert caOCSPCert caTransportCert caDirUserCert caAgentServerCert caAgentFileSigning caCMCUserCert DomainController caDualRAuserCert caRAagentCert caRAserverCert caSSLClientSelfRenewal caDirUserRenewal caManualRenewal [submit-as-end-entity(bad.profileSubmit.csr.empty) = REJECTED] error="Invalid Request",status="1" Server at "SUBMIT" replied: Invalid Request [submit-as-end-entity(bad.profileSubmit.csr.subject-mismatch) = REJECTED] error="Request Rejected - Subject Name Not Matched O=Default Company Ltd,L=Default City,C=XX",status="3",requestId="13" Server at "SUBMIT" replied: Request Rejected - Subject Name Not Matched O=Default Company Ltd,L=Default City,C=XX [submit-as-end-entity(bad.profileSubmit.serial.empty) = REJECTED] [submit-as-end-entity(bad.profileSubmit.serial.invalid) = REJECTED] [submit-as-end-entity(bad.profileSubmit.serial.out-of-range) = REJECTED] error_code="1",error_reason="Server Internal Error" Server at "SUBMIT" replied: 1: Server Internal Error [review-as-end-entity(bad.profileReview.no-such-request) = REJECTED] error_code="1",error_reason="Request 0 Not Found" Server at "REVIEW" replied: 1: Request 0 Not Found [review-as-end-entity(bad.profileReview.unauthorized-cert) = REJECTED] error_code="1",error_reason="Authentication Error" Server at "REVIEW" replied: 1: Authentication Error [review-as-end-entity(bad.profileReview.wrong-nssdb) = REJECTED] [approve-as-end-entity(bad.profileProcess.bad-property) = REJECTED] error_code="1",error_reason="Property Error - Invalid Property notBefore",status="pending",requestId="17" Server at "APPROVE" replied: 1: Property Error - Invalid Property notBefore [approve-as-end-entity(bad.profileProcess.no-agent-cert) = REJECTED] [approve-as-end-entity(bad.profileProcess.no-ca-cert) = REJECTED] [approve-as-end-entity(bad.profileProcess.no-property) = REJECTED] error_code="1",error_reason="Property Error - Invalid Property notBefore",status="pending",requestId="17" Server at "APPROVE" replied: 1: Property Error - Invalid Property notBefore [approve-as-end-entity(bad.profileProcess.not-pending) = REJECTED] error_code="1",error_reason="Request Not In Pending State",requestId="17" Server at "APPROVE" replied: 1: Request Not In Pending State [check-as-end-entity(bad.checkRequest.nosuch) = REJECTED] error="Request ID 29 was not found in the request queue." Server at "CHECK" replied: Request ID 29 was not found in the request queue. [fetch-as-end-entity(bad.displayCertFromRequest.incomplete) = REJECTED] error="Request ID 14 was not completed.",status="7" Server at "FETCH" replied: Request ID 14 was not completed. [fetch-as-end-entity(bad.displayCertFromRequest.no-such-request) = REJECTED] error="Request ID 19 was not found in the request queue.",status="7" Server at "FETCH" replied: Request ID 19 was not found in the request queue. [fetch-as-end-entity(bad.displayCertFromRequest.rejected) = REJECTED] error="Request ID 17 was not completed.",status="7" Server at "FETCH" replied: Request ID 17 was not completed. 48 samples. certmonger-0.78.6/tests/018-pembase/0000775000175000017500000000000012645513301014050 500000000000000certmonger-0.78.6/tests/018-pembase/run.sh0000775000175000017500000000511612645513264015146 00000000000000#!/bin/bash -e cd "$tmpdir" cat > 1.pem << EOF -----BEGIN CERTIFICATE----- MIICaDCCAdGgAwIBAgIQCgEBAQAAAnwAAAADAAAAAjANBgkqhkiG9w0BAQUFADBA MSEwHwYDVQQKExhYY2VydCBJbnRlcm5hdGlvbmFsIEluYy4xGzAZBgNVBAsTElhj ZXJ0IFJvb3QgQ0EgMTAyNDAeFw0wMDA4MTgxODMxMzJaFw0yNTA4MTUxOTAwNTZa MEAxITAfBgNVBAoTGFhjZXJ0IEludGVybmF0aW9uYWwgSW5jLjEbMBkGA1UECxMS WGNlcnQgUm9vdCBDQSAxMDI0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDW vjeJEami90csKs9qACZlKESkiuTeoENVmURrvG64x87GY7bT6G/FmCskkbieorpx SN40ICF61tLFiTKlicbchYRU8p5I7cxEtgb/jsTOWa2fbOkiWME/FApDgIcZUlDj KAfIrBjisRqqo+Jgt3ZRByk5XkjpZnCBLjiavRl96wIDAQABo2MwYTAPBgNVHRMB Af8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAfBgNVHSMEGDAWgBSEecdPB1mxa8E6 Nbq49NWZJ8i6DjAdBgNVHQ4EFgQUhHnHTwdZsWvBOjW6uPTVmSfIug4wDQYJKoZI hvcNAQEFBQADgYEAc7DhAO2uaNJgA0br+RzxpaZ8XDJ87AJh0xwdczEsuo69SU3I 3dl3dUHnkiGabCnbp2xwhqBcw+TzMswBhFnXiDk486ji4hqwl80rF9xkBA+qanOU 1usIxoBpTd561cU38ZIXPG3TiiHMZBCq3mKHH4+4+Kp1SvQILPXcZs/DOH4= -----END CERTIFICATE----- EOF cat > 1.b << EOF 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 EOF echo '['Tests begin.']' $toolsdir/pem2base < 1.pem > 2.b $toolsdir/base2pem < 1.b > 2.pem $toolsdir/pem2base < 2.pem > 3.b $toolsdir/base2pem < 2.b > 3.pem $toolsdir/pem2base < 3.pem > 4.b $toolsdir/pem2base < 4.b > 5.b unix2dos 1.pem > /dev/null 2> /dev/null unix2dos 2.pem > /dev/null 2> /dev/null unix2dos 3.pem > /dev/null 2> /dev/null unix2dos 1.b > /dev/null 2> /dev/null unix2dos 2.b > /dev/null 2> /dev/null unix2dos 3.b > /dev/null 2> /dev/null unix2dos 4.b > /dev/null 2> /dev/null unix2dos 5.b > /dev/null 2> /dev/null $toolsdir/base2pem -u < 4.b > 6.pem cp 6.pem 6a.pem unix2dos 6a.pem $toolsdir/base2pem -d < 4.b > 7.pem cp 7.pem 7a.pem dos2unix 7.pem diff -u 1.pem 2.pem diff -u 1.pem 3.pem diff -u 1.b 2.b diff -u 1.b 3.b diff -u 1.b 4.b diff -u 1.b 5.b diff -u 6.pem 7.pem diff -u 6a.pem 7a.pem echo '['Test complete.']' certmonger-0.78.6/tests/018-pembase/expected.out0000664000175000017500000000004012645513264016324 00000000000000[Tests begin.] [Test complete.] certmonger-0.78.6/tests/017-notoken-sql/0000775000175000017500000000000012645513301014705 500000000000000certmonger-0.78.6/tests/017-notoken-sql/run.sh0000775000175000017500000000007112645513264015776 00000000000000#!/bin/bash -e exec env scheme=sql ../017-notoken/run.sh certmonger-0.78.6/tests/017-notoken-sql/expected.out0000664000175000017500000000076612645513264017200 00000000000000[Creating database.] [Generating key (sql) with no token.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR NEED_KEY_GEN_TOKEN -STOP- state=NEED_KEY_GEN_TOKEN [Creating database.] [Reading Key Info (sql) with no token.] NEED_KEYINFO -START- READING_KEYINFO NEED_KEYINFO_READ_TOKEN -STOP- state=NEED_KEYINFO_READ_TOKEN [Creating database.] [Generating CSR (sql) with no token.] NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR NEED_CSR_GEN_TOKEN -STOP- state=NEED_CSR_GEN_TOKEN [Test complete.] certmonger-0.78.6/tests/017-notoken-dbm/0000775000175000017500000000000012645513301014650 500000000000000certmonger-0.78.6/tests/017-notoken-dbm/run.sh0000775000175000017500000000007112645513264015741 00000000000000#!/bin/bash -e exec env scheme=dbm ../017-notoken/run.sh certmonger-0.78.6/tests/017-notoken-dbm/expected.out0000664000175000017500000000076612645513264017143 00000000000000[Creating database.] [Generating key (dbm) with no token.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR NEED_KEY_GEN_TOKEN -STOP- state=NEED_KEY_GEN_TOKEN [Creating database.] [Reading Key Info (dbm) with no token.] NEED_KEYINFO -START- READING_KEYINFO NEED_KEYINFO_READ_TOKEN -STOP- state=NEED_KEYINFO_READ_TOKEN [Creating database.] [Generating CSR (dbm) with no token.] NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR NEED_CSR_GEN_TOKEN -STOP- state=NEED_CSR_GEN_TOKEN [Test complete.] certmonger-0.78.6/tests/017-notoken/0000775000175000017500000000000012645513301014110 500000000000000certmonger-0.78.6/tests/017-notoken/run.sh0000775000175000017500000000320312645513264015201 00000000000000#!/bin/bash cd "$tmpdir" source "$srcdir"/functions size=2048 cat > $tmpdir/ca << EOF id=Lostie ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-unconfigured EOF rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db echo '['Creating database.']' initnssdb "${scheme:+${scheme}:}$tmpdir/${scheme}db" BlahBlah cat > entry <<- EOF id=Test key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_token=No Such Token key_nickname=Test state=NEED_KEY_PAIR EOF echo '['Generating key${scheme:+ \($scheme\)} with no token.']' $toolsdir/iterate $tmpdir/ca $tmpdir/entry NEED_KEY_PAIR,GENERATING_KEY_PAIR grep ^state= $tmpdir/entry rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db echo '['Creating database.']' initnssdb "${scheme:+${scheme}:}$tmpdir/${scheme}db" BlahBlah cat > entry <<- EOF id=Test key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_token=No Such Token key_nickname=Test state=NEED_KEYINFO EOF echo '['Reading Key Info${scheme:+ \($scheme\)} with no token.']' $toolsdir/iterate $tmpdir/ca $tmpdir/entry NEED_KEYINFO,READING_KEYINFO grep ^state= $tmpdir/entry rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db echo '['Creating database.']' initnssdb "${scheme:+${scheme}:}$tmpdir/${scheme}db" BlahBlah cat > entry <<- EOF id=Test key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_token=No Such Token key_nickname=Test state=NEED_CSR EOF echo '['Generating CSR${scheme:+ \($scheme\)} with no token.']' $toolsdir/iterate $tmpdir/ca $tmpdir/entry NEED_CSR,GENERATING_CSR grep ^state= $tmpdir/entry echo '['Test complete.']' certmonger-0.78.6/tests/017-notoken/expected.out0000664000175000017500000000074412645513264016377 00000000000000[Creating database.] [Generating key with no token.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR NEED_KEY_GEN_TOKEN -STOP- state=NEED_KEY_GEN_TOKEN [Creating database.] [Reading Key Info with no token.] NEED_KEYINFO -START- READING_KEYINFO NEED_KEYINFO_READ_TOKEN -STOP- state=NEED_KEYINFO_READ_TOKEN [Creating database.] [Generating CSR with no token.] NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR NEED_CSR_GEN_TOKEN -STOP- state=NEED_CSR_GEN_TOKEN [Test complete.] certmonger-0.78.6/tests/016-dates/0000775000175000017500000000000012645513301013532 500000000000000certmonger-0.78.6/tests/016-dates/run.sh0000775000175000017500000000066012645513264014627 00000000000000#!/bin/bash -e cd "$tmpdir" CERTMONGER_CONFIG_DIR=$tmpdir; export CERTMONGER_CONFIG_DIR source "$srcdir"/functions echo '['Tests begin.']' $toolsdir/dates 1999 1s 30 1m 1h 24h 1d 2w 28d 1M 6M 1y 5y "3y 2M 3d" $toolsdir/dates 2000 1s 1m 60m 24h 1d 2w 28d 1M 6M 1y 5y "3y 2M 3d" $toolsdir/dates 2001 1s 1m 60m 1h 1d 2w 28d 1M 6M 1y 5y "3y 2M 3d" $toolsdir/dates 2008 36h 48h "2w3600" 336h 1080h 14M 1y14M echo '['Test complete.']' certmonger-0.78.6/tests/016-dates/expected.out0000664000175000017500000000426412645513264016022 00000000000000[Tests begin.] 1999-01-01 00:00:00 + "1s" = 1999-01-01 00:00:01 1999-01-01 00:00:00 + "30" = 1999-01-01 00:00:30 1999-01-01 00:00:00 + "1m" = 1999-01-01 00:01:00 1999-01-01 00:00:00 + "1h" = 1999-01-01 01:00:00 1999-01-01 00:00:00 + "24h" = 1999-01-02 00:00:00 1999-01-01 00:00:00 + "1d" = 1999-01-02 00:00:00 1999-01-01 00:00:00 + "2w" = 1999-01-15 00:00:00 1999-01-01 00:00:00 + "28d" = 1999-01-29 00:00:00 1999-01-01 00:00:00 + "1M" = 1999-02-01 00:00:00 1999-01-01 00:00:00 + "6M" = 1999-07-01 00:00:00 1999-01-01 00:00:00 + "1y" = 2000-01-01 00:00:00 1999-01-01 00:00:00 + "5y" = 2004-01-01 00:00:00 1999-01-01 00:00:00 + "3y 2M 3d" = 2002-03-04 00:00:00 2000-01-01 00:00:00 + "1s" = 2000-01-01 00:00:01 2000-01-01 00:00:00 + "1m" = 2000-01-01 00:01:00 2000-01-01 00:00:00 + "60m" = 2000-01-01 01:00:00 2000-01-01 00:00:00 + "24h" = 2000-01-02 00:00:00 2000-01-01 00:00:00 + "1d" = 2000-01-02 00:00:00 2000-01-01 00:00:00 + "2w" = 2000-01-15 00:00:00 2000-01-01 00:00:00 + "28d" = 2000-01-29 00:00:00 2000-01-01 00:00:00 + "1M" = 2000-02-01 00:00:00 2000-01-01 00:00:00 + "6M" = 2000-07-01 00:00:00 2000-01-01 00:00:00 + "1y" = 2001-01-01 00:00:00 2000-01-01 00:00:00 + "5y" = 2005-01-01 00:00:00 2000-01-01 00:00:00 + "3y 2M 3d" = 2003-03-04 00:00:00 2001-01-01 00:00:00 + "1s" = 2001-01-01 00:00:01 2001-01-01 00:00:00 + "1m" = 2001-01-01 00:01:00 2001-01-01 00:00:00 + "60m" = 2001-01-01 01:00:00 2001-01-01 00:00:00 + "1h" = 2001-01-01 01:00:00 2001-01-01 00:00:00 + "1d" = 2001-01-02 00:00:00 2001-01-01 00:00:00 + "2w" = 2001-01-15 00:00:00 2001-01-01 00:00:00 + "28d" = 2001-01-29 00:00:00 2001-01-01 00:00:00 + "1M" = 2001-02-01 00:00:00 2001-01-01 00:00:00 + "6M" = 2001-07-01 00:00:00 2001-01-01 00:00:00 + "1y" = 2002-01-01 00:00:00 2001-01-01 00:00:00 + "5y" = 2006-01-01 00:00:00 2001-01-01 00:00:00 + "3y 2M 3d" = 2004-03-04 00:00:00 2008-01-01 00:00:00 + "36h" = 2008-01-02 12:00:00 2008-01-01 00:00:00 + "48h" = 2008-01-03 00:00:00 2008-01-01 00:00:00 + "2w3600" = 2008-01-15 01:00:00 2008-01-01 00:00:00 + "336h" = 2008-01-15 00:00:00 2008-01-01 00:00:00 + "1080h" = 2008-02-15 00:00:00 2008-01-01 00:00:00 + "14M" = 2009-03-01 00:00:00 2008-01-01 00:00:00 + "1y14M" = 2010-03-01 00:00:00 [Test complete.] certmonger-0.78.6/tests/015-lockedkey-sql/0000775000175000017500000000000012645513301015200 500000000000000certmonger-0.78.6/tests/015-lockedkey-sql/run.sh0000775000175000017500000000007312645513264016273 00000000000000#!/bin/bash -e exec env scheme=sql ../015-lockedkey/run.sh certmonger-0.78.6/tests/015-lockedkey-sql/expected.out0000664000175000017500000000545612645513264017474 00000000000000[Generate Key Without PIN.] OK. -----BEGIN PRIVATE KEY----- -----END PRIVATE KEY----- [Try To Read Key Without PIN.] OK (RSA:2048). [Retry With Unnecessary PIN File.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Replacing key with an encrypted one.] [Read Key Info With Bogus PIN Location.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Read Key Info Without PIN.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retrying With PIN.] OK (RSA:512). [Read Key Info Without PIN File.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retry With PIN File.] OK (RSA:512). [Generate Key With PIN.] OK. -----BEGIN ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY----- [Try To Read Key Without PIN.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retry With PIN File.] OK (RSA:2048). [Generate CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Not pre-creating database.] [Generating key (sql) without PIN.] OK. < 0> rsa PRIVATE-KEY Test [Providing Unnecessary PIN.] [Reading Key Info With Unnecessary PIN.] Failed to read key "sql:$tmpdir/sqldb":"Test". (Need PIN.) < 0> rsa PRIVATE-KEY Test [Generating CSR With Unnecessary PIN.] < 0> rsa PRIVATE-KEY Test [Creating database, without PIN.] [Generating key (sql) without PIN.] OK. < 0> rsa PRIVATE-KEY Test [Providing Unnecessary PIN.] [Reading Key Info With Unnecessary PIN.] Failed to read key "sql:$tmpdir/sqldb":"Test". (Need PIN.) < 0> rsa PRIVATE-KEY Test [Generating CSR With Unnecessary PIN.] < 0> rsa PRIVATE-KEY Test [Not pre-creating database, with PIN.] [Generating key (sql) with PIN.] OK. < 0> rsa PRIVATE-KEY Test [Reading Key Info Without PIN.] Failed to read key "sql:$tmpdir/sqldb":"Test". (Need PIN.) Incorrect password/PIN entered. certutil: could not authenticate to token NSS Certificate DB.: The security password entered is incorrect. [Reading Key Info With Bogus PIN Location.] Failed to read key "sql:$tmpdir/sqldb":"Test". (Need PIN.) [Reading Key Info With PIN.] OK (RSA:2048). [Generating CSR Without PIN.] [Generating CSR With Bogus PIN Location.] [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Creating database with PIN.] [Generating key (sql) with PIN.] OK. < 0> rsa PRIVATE-KEY Test [Reading Key Info Without PIN.] Failed to read key "sql:$tmpdir/sqldb":"Test". (Need PIN.) Incorrect password/PIN entered. certutil: could not authenticate to token NSS Certificate DB.: The security password entered is incorrect. [Reading Key Info With Bogus PIN Location.] Failed to read key "sql:$tmpdir/sqldb":"Test". (Need PIN.) [Reading Key Info With PIN.] OK (RSA:2048). [Generating CSR Without PIN.] [Generating CSR With Bogus PIN Location.] [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Test complete.] certmonger-0.78.6/tests/015-lockedkey-dbm/0000775000175000017500000000000012645513301015143 500000000000000certmonger-0.78.6/tests/015-lockedkey-dbm/run.sh0000775000175000017500000000007312645513264016236 00000000000000#!/bin/bash -e exec env scheme=dbm ../015-lockedkey/run.sh certmonger-0.78.6/tests/015-lockedkey-dbm/expected.out0000664000175000017500000000545612645513264017437 00000000000000[Generate Key Without PIN.] OK. -----BEGIN PRIVATE KEY----- -----END PRIVATE KEY----- [Try To Read Key Without PIN.] OK (RSA:2048). [Retry With Unnecessary PIN File.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Replacing key with an encrypted one.] [Read Key Info With Bogus PIN Location.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Read Key Info Without PIN.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retrying With PIN.] OK (RSA:512). [Read Key Info Without PIN File.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retry With PIN File.] OK (RSA:512). [Generate Key With PIN.] OK. -----BEGIN ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY----- [Try To Read Key Without PIN.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retry With PIN File.] OK (RSA:2048). [Generate CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Not pre-creating database.] [Generating key (dbm) without PIN.] OK. < 0> rsa PRIVATE-KEY Test [Providing Unnecessary PIN.] [Reading Key Info With Unnecessary PIN.] Failed to read key "dbm:$tmpdir/dbmdb":"Test". (Need PIN.) < 0> rsa PRIVATE-KEY Test [Generating CSR With Unnecessary PIN.] < 0> rsa PRIVATE-KEY Test [Creating database, without PIN.] [Generating key (dbm) without PIN.] OK. < 0> rsa PRIVATE-KEY Test [Providing Unnecessary PIN.] [Reading Key Info With Unnecessary PIN.] Failed to read key "dbm:$tmpdir/dbmdb":"Test". (Need PIN.) < 0> rsa PRIVATE-KEY Test [Generating CSR With Unnecessary PIN.] < 0> rsa PRIVATE-KEY Test [Not pre-creating database, with PIN.] [Generating key (dbm) with PIN.] OK. < 0> rsa PRIVATE-KEY Test [Reading Key Info Without PIN.] Failed to read key "dbm:$tmpdir/dbmdb":"Test". (Need PIN.) Incorrect password/PIN entered. certutil: could not authenticate to token NSS Certificate DB.: The security password entered is incorrect. [Reading Key Info With Bogus PIN Location.] Failed to read key "dbm:$tmpdir/dbmdb":"Test". (Need PIN.) [Reading Key Info With PIN.] OK (RSA:2048). [Generating CSR Without PIN.] [Generating CSR With Bogus PIN Location.] [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Creating database with PIN.] [Generating key (dbm) with PIN.] OK. < 0> rsa PRIVATE-KEY Test [Reading Key Info Without PIN.] Failed to read key "dbm:$tmpdir/dbmdb":"Test". (Need PIN.) Incorrect password/PIN entered. certutil: could not authenticate to token NSS Certificate DB.: The security password entered is incorrect. [Reading Key Info With Bogus PIN Location.] Failed to read key "dbm:$tmpdir/dbmdb":"Test". (Need PIN.) [Reading Key Info With PIN.] OK (RSA:2048). [Generating CSR Without PIN.] [Generating CSR With Bogus PIN Location.] [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Test complete.] certmonger-0.78.6/tests/015-lockedkey/0000775000175000017500000000000012645513301014403 500000000000000certmonger-0.78.6/tests/015-lockedkey/run.sh0000775000175000017500000001464612645513264015511 00000000000000#!/bin/bash cd "$tmpdir" source "$srcdir"/functions size=2048 pin=blahblah echo $pin > pin.txt echo "" > empty.txt clean() { sed -r -e 's|'"$tmpdir"'|$tmpdir|g' -e 's,: SEC_ERROR_[^:]+: ,: ,g' |\ grep -vF 'certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services"' } echo '['Generate Key Without PIN.']' cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_gen_size=$size EOF rm -f $tmpdir/keyfile $toolsdir/keygen entry | clean egrep '(: |PRIVATE)' $tmpdir/keyfile echo '['Try To Read Key Without PIN.']' cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_gen_size=$size EOF $toolsdir/keyiread entry | clean echo '['Retry With Unnecessary PIN File.']' echo key_pin_file=$tmpdir/pin.txt >> entry $toolsdir/keyiread entry | clean echo '['Replacing key with an encrypted one.']' cat > keyfile <<- EOF -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: DES-EDE3-CBC,6D45AA0F810E9C67 4PkG3RcN8x3s5B1QlpCnfRouU5cR1Ws6lUTClbxqJwLtnJQb5gfvJmOCVft3guKE UYfYbwsE1xiz1SOPyQiMCQFN6kHTQQOXeoDa0FI2EJOKMaYDG8eyt9lIBVb3nAVo YsWh6lvgZVAcyf9EwqaXm/5Ay3rdoyT1yktN4TpC8AvCjAHy3y1Vb/e2TDmz8faQ FS5T/L7oCaNcbfK/PSBG9jAQdlLJoL53L9eKzMK6WP2LTtVFI2i7vDuQnQPw5GN7 Q+HGpLSICBZbw6n1MmTmmdOtowDnXmr6FSyECB5ibdCqb+2itNQ+J1HNOtKzpbKC 3q6YSAMDw/D8e45auh3FRt6SAYvZ8Tw4jNqd16P6/aa5rno3qMWBcv0G0fmb0N6R Hka4FKLjBQo5g0WxKvpRwxHrrQW6JeT9I5+NgNN4sJc= -----END RSA PRIVATE KEY----- EOF echo '['Read Key Info With Bogus PIN Location.']' cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_pin_file=$tmpdir/bogus-pin.txt EOF $toolsdir/keyiread entry | clean echo '['Read Key Info Without PIN.']' cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile EOF $toolsdir/keyiread entry | clean echo '['Retrying With PIN.']' echo key_pin=$pin >> entry $toolsdir/keyiread entry | clean echo '['Read Key Info Without PIN File.']' cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile EOF $toolsdir/keyiread entry | clean echo '['Retry With PIN File.']' echo key_pin_file=$tmpdir/pin.txt >> entry $toolsdir/keyiread entry | clean echo '['Generate Key With PIN.']' cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_gen_size=2048 key_pin_file=$tmpdir/pin.txt EOF rm -f $tmpdir/keyfile $toolsdir/keygen entry | clean egrep '(: |PRIVATE)' $tmpdir/keyfile echo '['Try To Read Key Without PIN.']' cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_gen_size=2048 EOF $toolsdir/keyiread entry | clean echo '['Retry With PIN File.']' echo key_pin_file=$tmpdir/pin.txt >> entry $toolsdir/keyiread entry | clean echo '['Generate CSR With PIN.']' rm -f csr.pem echo key_pin_file=$tmpdir/pin.txt >> entry $toolsdir/csrgen entry > csr.pem | clean egrep '(: |REQUEST)' $tmpdir/csr.pem for precreate in false true ; do rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db if $precreate ; then echo '['Creating database, without PIN.']' initnssdb "${scheme:+${scheme}:}$tmpdir/${scheme}db" else echo '['Not pre-creating database.']' fi cat > entry <<- EOF key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test EOF echo '['Generating key${scheme:+ \($scheme\)} without PIN.']' $toolsdir/keygen entry | clean run_certutil -K -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' | clean echo '['Providing Unnecessary PIN.']' echo key_pin_file=$tmpdir/pin.txt >> entry echo '['Reading Key Info With Unnecessary PIN.']' $toolsdir/keyiread entry | clean run_certutil -K -d ${scheme:+${scheme}:}$tmpdir/${scheme}db -f $tmpdir/pin.txt 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' | clean echo '['Generating CSR With Unnecessary PIN.']' rm -f csr.pem $toolsdir/csrgen entry > csr.pem | clean egrep '(: |REQUEST)' $tmpdir/csr.pem run_certutil -K -d ${scheme:+${scheme}:}$tmpdir/${scheme}db -f $tmpdir/pin.txt 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' | clean done for precreate in false true ; do rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db if $precreate ; then echo '['Creating database with PIN.']' initnssdb "${scheme:+${scheme}:}$tmpdir/${scheme}db" $pin else echo '['Not pre-creating database, with PIN.']' fi cat > entry <<- EOF key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test key_pin_file=$tmpdir/pin.txt EOF echo '['Generating key${scheme:+ \($scheme\)} with PIN.']' $toolsdir/keygen entry | clean run_certutil -K -f $tmpdir/pin.txt -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' | clean echo '['Reading Key Info Without PIN.']' cat > entry <<- EOF key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test EOF $toolsdir/keyiread entry | clean run_certutil -K -f $tmpdir/empty.txt -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' | clean echo '['Reading Key Info With Bogus PIN Location.']' echo key_pin_file=$tmpdir/bogus-pin.txt >> entry $toolsdir/keyiread entry | clean echo '['Reading Key Info With PIN.']' cat > entry <<- EOF key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test key_pin_file=$tmpdir/pin.txt EOF $toolsdir/keyiread entry | clean echo '['Generating CSR Without PIN.']' cat > entry <<- EOF key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test EOF rm -f csr.pem $toolsdir/csrgen entry > csr.pem | clean egrep '(: |REQUEST)' $tmpdir/csr.pem echo '['Generating CSR With Bogus PIN Location.']' echo key_pin_file=$tmpdir/bogus-pin.txt >> entry rm -f csr.pem $toolsdir/csrgen entry > csr.pem | clean egrep '(: |REQUEST)' $tmpdir/csr.pem echo '['Generating CSR With PIN.']' cat > entry <<- EOF key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test key_pin_file=$tmpdir/pin.txt EOF rm -f csr.pem $toolsdir/csrgen entry > csr.pem | clean egrep '(: |REQUEST)' $tmpdir/csr.pem done echo '['Test complete.']' certmonger-0.78.6/tests/015-lockedkey/expected.out0000664000175000017500000000535412645513264016674 00000000000000[Generate Key Without PIN.] OK. -----BEGIN PRIVATE KEY----- -----END PRIVATE KEY----- [Try To Read Key Without PIN.] OK (RSA:2048). [Retry With Unnecessary PIN File.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Replacing key with an encrypted one.] [Read Key Info With Bogus PIN Location.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Read Key Info Without PIN.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retrying With PIN.] OK (RSA:512). [Read Key Info Without PIN File.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retry With PIN File.] OK (RSA:512). [Generate Key With PIN.] OK. -----BEGIN ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY----- [Try To Read Key Without PIN.] Failed to read key "$tmpdir/keyfile". (Need PIN.) [Retry With PIN File.] OK (RSA:2048). [Generate CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Not pre-creating database.] [Generating key without PIN.] OK. < 0> rsa PRIVATE-KEY Test [Providing Unnecessary PIN.] [Reading Key Info With Unnecessary PIN.] Failed to read key "$tmpdir/db":"Test". (Need PIN.) < 0> rsa PRIVATE-KEY Test [Generating CSR With Unnecessary PIN.] < 0> rsa PRIVATE-KEY Test [Creating database, without PIN.] [Generating key without PIN.] OK. < 0> rsa PRIVATE-KEY Test [Providing Unnecessary PIN.] [Reading Key Info With Unnecessary PIN.] Failed to read key "$tmpdir/db":"Test". (Need PIN.) < 0> rsa PRIVATE-KEY Test [Generating CSR With Unnecessary PIN.] < 0> rsa PRIVATE-KEY Test [Not pre-creating database, with PIN.] [Generating key with PIN.] OK. < 0> rsa PRIVATE-KEY Test [Reading Key Info Without PIN.] Failed to read key "$tmpdir/db":"Test". (Need PIN.) Incorrect password/PIN entered. certutil: could not authenticate to token NSS Certificate DB.: The security password entered is incorrect. [Reading Key Info With Bogus PIN Location.] Failed to read key "$tmpdir/db":"Test". (Need PIN.) [Reading Key Info With PIN.] OK (RSA:2048). [Generating CSR Without PIN.] [Generating CSR With Bogus PIN Location.] [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Creating database with PIN.] [Generating key with PIN.] OK. < 0> rsa PRIVATE-KEY Test [Reading Key Info Without PIN.] Failed to read key "$tmpdir/db":"Test". (Need PIN.) Incorrect password/PIN entered. certutil: could not authenticate to token NSS Certificate DB.: The security password entered is incorrect. [Reading Key Info With Bogus PIN Location.] Failed to read key "$tmpdir/db":"Test". (Need PIN.) [Reading Key Info With PIN.] OK (RSA:2048). [Generating CSR Without PIN.] [Generating CSR With Bogus PIN Location.] [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Test complete.] certmonger-0.78.6/tests/014-prefs/0000775000175000017500000000000012645513301013547 500000000000000certmonger-0.78.6/tests/014-prefs/run.sh0000775000175000017500000000213312645513264014641 00000000000000#!/bin/bash -e cd "$tmpdir" CERTMONGER_CONFIG_DIR=$tmpdir; export CERTMONGER_CONFIG_DIR source "$srcdir"/functions echo '['Empty file.']' cat > certmonger.conf << EOF EOF $toolsdir/prefs echo '['Empty defaults.']' cat > certmonger.conf << EOF [defaults] EOF $toolsdir/prefs echo '['Other settings.']' cat > certmonger.conf << EOF [defaults] cipher = aes256 digest = sha-1 ttls = 30 60 90 notification_method = mail notification_destination = root EOF $toolsdir/prefs echo '['Other settings.']' cat > certmonger.conf << EOF [defaults] cipher = aes128 digest = sha512 ttls = 1d 14d 7d 28d 1y notification_method = mail notification_destination = root EOF # Accept 366*24*60*60 as a valid substitute for 365*24*60*60 when computing # seconds-until-it's-one-year-from-now $toolsdir/prefs | sed -e 's,31622400$,31536000,g' echo '['TTL settings compatibility and notification commands.']' cat > certmonger.conf << EOF [defaults] enroll_ttls = 1d 14d 7d 28d notify_ttls = 1d 14d 7d notification_method = command notification_destination = logger "The sky is falling!" EOF $toolsdir/prefs echo '['Test complete.']' certmonger-0.78.6/tests/014-prefs/expected.out0000664000175000017500000000161512645513264016034 00000000000000[Empty file.] cipher: AES128 digest: SHA256 notify_ttls: 86400, 172800, 259200, 604800, 2419200 enroll_ttls: 86400, 172800, 259200, 604800, 2419200 notification: SYSLOG:daemon.notice [Empty defaults.] cipher: AES128 digest: SHA256 notify_ttls: 86400, 172800, 259200, 604800, 2419200 enroll_ttls: 86400, 172800, 259200, 604800, 2419200 notification: SYSLOG:daemon.notice [Other settings.] cipher: AES128 digest: SHA1 notify_ttls: 30, 60, 90 enroll_ttls: 30, 60, 90 notification: MAILTO:root [Other settings.] cipher: AES128 digest: SHA512 notify_ttls: 86400, 604800, 1209600, 2419200, 31536000 enroll_ttls: 86400, 604800, 1209600, 2419200, 31536000 notification: MAILTO:root [TTL settings compatibility and notification commands.] cipher: AES128 digest: SHA256 notify_ttls: 86400, 604800, 1209600 enroll_ttls: 86400, 604800, 1209600, 2419200 notification: COMMAND:logger "The sky is falling!" [Test complete.] certmonger-0.78.6/tests/013-enckey-sql/0000775000175000017500000000000012645513301014502 500000000000000certmonger-0.78.6/tests/013-enckey-sql/run.sh0000775000175000017500000000007012645513264015572 00000000000000#!/bin/bash -e exec env scheme=sql ../013-enckey/run.sh certmonger-0.78.6/tests/013-enckey-sql/expected.out0000664000175000017500000000273412645513264016772 00000000000000[Read Key Info With PIN.] OK (RSA:2048). [Read Key Info With PIN File.] OK (RSA:2048). [Generate Key With PIN.] OK. -----BEGIN ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY----- [Generate CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Not Pre-creating database.] [Generating key (sql) with PIN.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Reading Key Info With PIN.] OK (RSA:2048). certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Creating database.] [Generating key (sql) with PIN.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Reading Key Info With PIN.] OK (RSA:2048). certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Test complete.] certmonger-0.78.6/tests/013-enckey-dbm/0000775000175000017500000000000012645513301014445 500000000000000certmonger-0.78.6/tests/013-enckey-dbm/run.sh0000775000175000017500000000007012645513264015535 00000000000000#!/bin/bash -e exec env scheme=dbm ../013-enckey/run.sh certmonger-0.78.6/tests/013-enckey-dbm/expected.out0000664000175000017500000000273412645513264016735 00000000000000[Read Key Info With PIN.] OK (RSA:2048). [Read Key Info With PIN File.] OK (RSA:2048). [Generate Key With PIN.] OK. -----BEGIN ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY----- [Generate CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Not Pre-creating database.] [Generating key (dbm) with PIN.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Reading Key Info With PIN.] OK (RSA:2048). certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Creating database.] [Generating key (dbm) with PIN.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Reading Key Info With PIN.] OK (RSA:2048). certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Test complete.] certmonger-0.78.6/tests/013-enckey/0000775000175000017500000000000012645513301013705 500000000000000certmonger-0.78.6/tests/013-enckey/run.sh0000775000175000017500000000742212645513264015005 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions size=2048 echo BlahBlah > pin.txt cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_pin=BlahBlah EOF cat > keyfile <<- EOF -----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: AES-128-CBC,6D3E363E83BA9625DBD7F9A72916A6C5 rwAsW2aMYZBbnPMK9ceei/xVq4OP7ecYKUcVYED6Vt+Z1j2mD2RJM1/WRtfhzkFB vVKzalWgsnqB8VzUbTe38s9HP5ldGbv9IYFW4KDIMDP603Cce3IrAhgSwUqoE+6I 5NwdzsqH/m8tCT9ZJk20nY/9G/2/OdAuu3C+DQziWVyhs44L5K3hlU4j1ox0/NaU cHTUORWB1yPLY2dEeeJoB/MgKN+RYQVaAXOfofDZOMsHlu71ZfWJIpEdHrSi1C1Q pKZK4sVXpwbT20WVAj710IyVu6i4ybCfNKsPCfpicvqpwqzAs+hap03D0BoTsZ0u GZ6mh8w6QLsqReXVsHK4KksJnpprBTCbtiA4KfmZ4LAoKjKBH//8UJhZHeuB3xao NACmweBANowsCdbVOFQV2vTg48zWHFnV92t9GLgAx6QeX161GCSXMK5JX854K0nq /9hb4/XtGoGRD1BrR5S3oVK6cKLsEffQ3wq4GfE5g3e4LhOpA6QFLMxU6Tj6lOHO mr6KrlAuyMzeCZImx786CtP87ECD+zHFzpx88EBAVIVr/zWUC0Z03cZXklFKLRfQ YnOahBXxrxjFSPfnQVFkATVqPb3cC87zUEahxYcRycHHed4Q7nlkcKcu/6d2+6O0 XGlcAuqtn9SurObxtn7KPQbZWi99SUguFpD51Orc0AWirWIGom41VBJ1FXHUiSb8 l8A5e9oHNwyweVOIvB0bUu8I2IgTGA5u8ObYhsEX48r6uH7qHWNjGoYm2gG461ec wYn+x8H/Jum+M3uLKH2ARrECHyOZAlvHWll1YT2XIfD2nTSjkXvirg9InzXhoncZ W2HU9u+N8Wl9S2dK5sDk+wIZjK2NrNr2kTgnIL3pLPK2QD0+SaDfG0FOt5dimHPd 0Qrj1iLjaEf11O3k5FRYctviPy/7Bxp4gfiNrdSZcvGsf4a1izjYsgR6x/1VDWhW A2d84q8rA0ac5KH3pQvucziJQbWAkJ2OGdcb3ciyxjUD97kN9X0ymXbDLiXrhy7x JYit5EUqvLHTpwen+/oFD/Vfc25qiAqjsa9Gqh6RxkiRGjV9ifNo83MvuhgdScFB XMtEL0ugTBII0V5xfg9OQYE7lwlK0WV59osGI3hlEDcPkqpfV030Yy8Ac0xfnNlL mWNzFL30/lbp7ujqRsazgT2w1IHZs/KiJ7USMtyKQvZvFiJIu5up1Mk7RMktNkb1 w18yPa98a5E2zVHtgOcwDu1+527UDLt9kw8EMrYw7Z2SZFuWmCIoYHfRZfv4VKEq 71JcF9MphytcpXJalLMVLm9qP2Fb60sSV1qOG1xiS0OhFGTPqFr9Gqj8jvpwTA62 u7DomMcgjaIqHQBexermp8MHhSBFkuPRHN8PqW2JnrnZ2yBBCzt8ggWXEIPvTRhy 9SUjHVen/LBk4ux2tfT2BwXWZTBRyjqmJDcEPFq9OA/InYFbEoZ4jaqqbE3S18pZ 0IQvbS6KT95b9zZhyUSW1ihOoVtBHlYSSFVkycXSiMVFJktEOMNdqsBm+zKwCq21 nV7TSp7bQHQ62mo4zyc5xRk0r/AJTGPY/NPmACewKuxth0zU+rLachA8EsmHel/4 -----END RSA PRIVATE KEY----- EOF echo '['Read Key Info With PIN.']' $toolsdir/keyiread entry cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_pin_file=$tmpdir/pin.txt EOF echo '['Read Key Info With PIN File.']' $toolsdir/keyiread entry cat > entry <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/keyfile key_pin_file=$tmpdir/pin.txt key_gen_size=2048 EOF rm $tmpdir/keyfile echo '['Generate Key With PIN.']' $toolsdir/keygen entry egrep '(: |PRIVATE)' $tmpdir/keyfile echo '['Generate CSR With PIN.']' rm -f csr.pem $toolsdir/csrgen entry > csr.pem egrep '(: |REQUEST)' $tmpdir/csr.pem for precreate in false true ; do rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db if $precreate ; then echo '['Creating database.']' initnssdb "${scheme:+${scheme}:}$tmpdir/${scheme}db" BlahBlah else echo '['Not Pre-creating database.']' fi cat > entry <<- EOF key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test key_pin_file=$tmpdir/pin.txt EOF echo '['Generating key${scheme:+ \($scheme\)} with PIN.']' $toolsdir/keygen entry certutil -K -f $tmpdir/pin.txt -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' echo '['Reading Key Info With PIN.']' $toolsdir/keyiread entry certutil -K -f $tmpdir/pin.txt -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' echo '['Generating CSR With PIN.']' rm -f csr.pem $toolsdir/csrgen entry > csr.pem egrep '(: |REQUEST)' $tmpdir/csr.pem certutil -K -f $tmpdir/pin.txt -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' done echo '['Test complete.']' certmonger-0.78.6/tests/013-enckey/expected.out0000664000175000017500000000272012645513264016170 00000000000000[Read Key Info With PIN.] OK (RSA:2048). [Read Key Info With PIN File.] OK (RSA:2048). [Generate Key With PIN.] OK. -----BEGIN ENCRYPTED PRIVATE KEY----- -----END ENCRYPTED PRIVATE KEY----- [Generate CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- [Not Pre-creating database.] [Generating key with PIN.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Reading Key Info With PIN.] OK (RSA:2048). certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Creating database.] [Generating key with PIN.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Reading Key Info With PIN.] OK (RSA:2048). certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Generating CSR With PIN.] -----BEGIN NEW CERTIFICATE REQUEST----- -----END NEW CERTIFICATE REQUEST----- certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Test complete.] certmonger-0.78.6/tests/012-dbadd-sql/0000775000175000017500000000000012645513301014261 500000000000000certmonger-0.78.6/tests/012-dbadd-sql/run.sh0000775000175000017500000000006712645513264015357 00000000000000#!/bin/bash -e exec env scheme=sql ../012-dbadd/run.sh certmonger-0.78.6/tests/012-dbadd-sql/expected.out0000664000175000017500000000042112645513264016540 00000000000000[Generating key (sql).] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Saving certificate (sql).] OK Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Test ,, [Test complete.] certmonger-0.78.6/tests/012-dbadd-dbm/0000775000175000017500000000000012645513301014224 500000000000000certmonger-0.78.6/tests/012-dbadd-dbm/run.sh0000775000175000017500000000006712645513264015322 00000000000000#!/bin/bash -e exec env scheme=dbm ../012-dbadd/run.sh certmonger-0.78.6/tests/012-dbadd-dbm/expected.out0000664000175000017500000000042112645513264016503 00000000000000[Generating key (dbm).] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Saving certificate (dbm).] OK Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Test ,, [Test complete.] certmonger-0.78.6/tests/012-dbadd/0000775000175000017500000000000012645513301013464 500000000000000certmonger-0.78.6/tests/012-dbadd/run.sh0000775000175000017500000000431012645513264014555 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions echo '['Generating key${scheme:+ \($scheme\)}.']' rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db initnssdb ${scheme:+${scheme}:}$tmpdir/${scheme}db cat > entry.key${scheme:+.$scheme} <<- EOF state=NEED_KEY_PAIR key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test EOF $toolsdir/keygen entry.key${scheme:+.$scheme} certutil -K -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' echo '['Saving certificate${scheme:+ \($scheme\)}.']' rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db initnssdb ${scheme:+${scheme}:}$tmpdir/${scheme}db cat > entry.cert${scheme:+.$scheme} <<- EOF state=NEED_TO_SAVE_CERT cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db cert_nickname=Test cert=-----BEGIN CERTIFICATE----- MIIC3jCCAcagAwIBAgIBAzANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDEwdwaWxs Ym94MB4XDTEwMDIxMDIyMDMzOVoXDTEwMDMxMjIyMDMzOVowEjEQMA4GA1UEAxMH cGlsbGJveDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMQOQn5USR/Q Gp2230fks3ZOjkF5VHxwLziS9rc+AFZ8UZrXMidnkhso9Eqp74CaJ+KhJI2F62wm SerBztRAVb8T98+dXUvgYIXE6OxB0ITCMMvdJZFKs5hek2Xd6uiulCegqsNOD1qy llBNLtWDoZqgXuEKfeQmUR6qUGqhVFfmL7qKmIOWN+lSswhkQrrGy3oSNVU5KWYM d7bkrKWEze8ksWgNOwDFQ2pQibYljywEfBZaLegeoASygK3yl6dVjioQmkHBk8Z1 fRLnMs8TRT7NwgsWFkKi04SGkn/VpVKZ9piMJCpYhQWIy0U2ib0nBaYec2ReFQ6r 2du1UMmkwXECAwEAAaM/MD0wFQYDVR0RAQEABAswCYIHcGlsbGJveDAWBgNVHSUB AQAEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IB AQA9dqnzVzblb0PKdiMOzLksEqFridaRVOB/hK4WHeSJQsCk6a151Fli1uX3/QHJ vRXH0P6i8eMblQ20J4IpZuO9aBLW1go8vPQM8/gD5dXUVm57sqsJlvxjKbnHplGi w8KKasuYMHGOI0M//MR84LI7Nd/JIu+9In9Y+qRj91saBIgHDKeiHQtzWdehNC+2 e3gdWc74hx26gXRO6bNE5CZExnVULNkDOsPh/nr4Qwwx+BOn4DdU8tbRvUbvjjzQ koiuvyXyTlj1E8JcT6q4P3YbCn4PTlF8xZK9+XdUzOA6HUlz2Q/ysjIQMHe6zapD 8Vw+Zwf78Wg6L4tcAJ6Y4W/Z -----END CERTIFICATE----- EOF $toolsdir/certsave entry.cert${scheme:+.$scheme} echo OK certutil -L -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,[ \t]+, ,g' -e 's,Services ",Services",g' echo '['Test complete.']' certmonger-0.78.6/tests/012-dbadd/expected.out0000664000175000017500000000040512645513264015745 00000000000000[Generating key.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Saving certificate.] OK Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Test ,, [Test complete.] certmonger-0.78.6/tests/011-dbinit-sql/0000775000175000017500000000000012645513301014473 500000000000000certmonger-0.78.6/tests/011-dbinit-sql/run.sh0000775000175000017500000000007012645513264015563 00000000000000#!/bin/bash -e exec env scheme=sql ../011-dbinit/run.sh certmonger-0.78.6/tests/011-dbinit-sql/expected.out0000664000175000017500000000042112645513264016752 00000000000000[Generating key (sql).] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Saving certificate (sql).] OK Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Test ,, [Test complete.] certmonger-0.78.6/tests/011-dbinit-dbm/0000775000175000017500000000000012645513301014436 500000000000000certmonger-0.78.6/tests/011-dbinit-dbm/run.sh0000775000175000017500000000007012645513264015526 00000000000000#!/bin/bash -e exec env scheme=dbm ../011-dbinit/run.sh certmonger-0.78.6/tests/011-dbinit-dbm/expected.out0000664000175000017500000000042112645513264016715 00000000000000[Generating key (dbm).] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Saving certificate (dbm).] OK Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Test ,, [Test complete.] certmonger-0.78.6/tests/011-dbinit/0000775000175000017500000000000012645513301013676 500000000000000certmonger-0.78.6/tests/011-dbinit/run.sh0000775000175000017500000000414012645513264014770 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions echo '['Generating key${scheme:+ \($scheme\)}.']' rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db cat > entry.key${scheme:+.$scheme} <<- EOF state=NEED_KEY_PAIR key_storage_type=NSSDB key_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db key_nickname=Test EOF $toolsdir/keygen entry.key${scheme:+.$scheme} certutil -K -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,rsa .* Test,rsa PRIVATE-KEY Test,g' -e 's,[ \t]+, ,g' -e 's,Services ",Services",g' echo '['Saving certificate${scheme:+ \($scheme\)}.']' rm -fr $tmpdir/${scheme}db mkdir -p $tmpdir/${scheme}db cat > entry.cert${scheme:+.$scheme} <<- EOF state=NEED_TO_SAVE_CERT cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir/${scheme}db cert_nickname=Test cert=-----BEGIN CERTIFICATE----- MIIC3jCCAcagAwIBAgIBAzANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDEwdwaWxs Ym94MB4XDTEwMDIxMDIyMDMzOVoXDTEwMDMxMjIyMDMzOVowEjEQMA4GA1UEAxMH cGlsbGJveDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMQOQn5USR/Q Gp2230fks3ZOjkF5VHxwLziS9rc+AFZ8UZrXMidnkhso9Eqp74CaJ+KhJI2F62wm SerBztRAVb8T98+dXUvgYIXE6OxB0ITCMMvdJZFKs5hek2Xd6uiulCegqsNOD1qy llBNLtWDoZqgXuEKfeQmUR6qUGqhVFfmL7qKmIOWN+lSswhkQrrGy3oSNVU5KWYM d7bkrKWEze8ksWgNOwDFQ2pQibYljywEfBZaLegeoASygK3yl6dVjioQmkHBk8Z1 fRLnMs8TRT7NwgsWFkKi04SGkn/VpVKZ9piMJCpYhQWIy0U2ib0nBaYec2ReFQ6r 2du1UMmkwXECAwEAAaM/MD0wFQYDVR0RAQEABAswCYIHcGlsbGJveDAWBgNVHSUB AQAEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IB AQA9dqnzVzblb0PKdiMOzLksEqFridaRVOB/hK4WHeSJQsCk6a151Fli1uX3/QHJ vRXH0P6i8eMblQ20J4IpZuO9aBLW1go8vPQM8/gD5dXUVm57sqsJlvxjKbnHplGi w8KKasuYMHGOI0M//MR84LI7Nd/JIu+9In9Y+qRj91saBIgHDKeiHQtzWdehNC+2 e3gdWc74hx26gXRO6bNE5CZExnVULNkDOsPh/nr4Qwwx+BOn4DdU8tbRvUbvjjzQ koiuvyXyTlj1E8JcT6q4P3YbCn4PTlF8xZK9+XdUzOA6HUlz2Q/ysjIQMHe6zapD 8Vw+Zwf78Wg6L4tcAJ6Y4W/Z -----END CERTIFICATE----- EOF $toolsdir/certsave entry.cert${scheme:+.$scheme} echo OK certutil -L -d ${scheme:+${scheme}:}$tmpdir/${scheme}db 2>&1 | sed -re 's,[ \t]+, ,g' -e 's,Services ",Services",g' echo '['Test complete.']' certmonger-0.78.6/tests/011-dbinit/expected.out0000664000175000017500000000040512645513264016157 00000000000000[Generating key.] OK. certutil: Checking token "NSS Certificate DB" in slot "NSS User Private Key and Certificate Services" < 0> rsa PRIVATE-KEY Test [Saving certificate.] OK Certificate Nickname Trust Attributes SSL,S/MIME,JAR/XPI Test ,, [Test complete.] certmonger-0.78.6/tests/010-iterate/0000775000175000017500000000000012645513301014061 500000000000000certmonger-0.78.6/tests/010-iterate/expected.out0000664000175000017500000003723612645513264016356 00000000000000[Generating key pair.] NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO -STOP- key_issued_count=0 key_requested_count=0 [Reading back key info.] NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- key_size=2048 key_issued_count=0 key_requested_count=0 [Generating CSR.] NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- key_issued_count=0 key_requested_count=0 [Getting CSR signed.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- key_issued_count=0 key_requested_count=1 [Saving certificate.] NEED_TO_SAVE_CERT -START- PRE_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT POST_SAVED_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED Certificate in file "$tmpdir/certfile" issued by CA and saved. MONITORING -STOP- key_issued_count=1 key_requested_count=1 [From-scratch enrollment scenario OK.] [Picking up mid-life without a key or a certificate.] NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING NEED_KEY_PAIR -STOP- [Picking up mid-life without a certificate.] NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING NEED_CSR -STOP- [Picking up mid-life.] NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING MONITORING -STOP- [Retroactive issuing.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED Certificate in file "$tmpdir/certfile2" issued by CA and saved. MONITORING -STOP- notBefore=Jan 1 00:00:00 1970 GMT notAfter=Jan 2 00:00:00 1970 GMT [Noticing expiration.] notBefore=Jan 1 00:00:00 1970 GMT notAfter=Jan 2 00:00:00 1970 GMT MONITORING -START- NEED_TO_NOTIFY_VALIDITY NOTIFYING_VALIDITY Certificate in file "$tmpdir/certfile2" is no longer valid. delay=86400 MONITORING -STOP- [Kicking off autorenew.] notBefore=Jan 1 00:00:00 1970 GMT notAfter=Jan 2 00:00:00 1970 GMT MONITORING -START- NEED_TO_NOTIFY_VALIDITY NOTIFYING_VALIDITY Certificate in file "$tmpdir/certfile2" is no longer valid. NEED_CSR -STOP- [Enroll.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- key_issued_count=0 key_requested_count=0 NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- key_issued_count=0 key_requested_count=0 HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- key_issued_count=0 key_requested_count=1 NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- key_issued_count=1 key_requested_count=1 [Enroll, helper produces noise before.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- [Enroll, helper produces noise after] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- [Enroll, helper produces noise before and after.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- [Enroll, helper omits newline at end of certificate.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- [Enroll, helper produces binary certificate output.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT -STOP- [Enroll, helper produces JSON output.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT -STOP- 1 1 2 [Try to enroll, but we need to generate a new key] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_KEY_PAIR -STOP- NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO -STOP- NEED_KEYINFO -START- READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- [Enroll until we notice we have no specified CA.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT NEED_CA -STOP- [Enroll until the CA tells us to come back later.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=604800 CA_WORKING -STOP- ca_cookie=iLoveCookiesSome CA_WORKING -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT -STOP- [Enroll until the CA rejects us.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- key_issued_count=0 key_requested_count=0 NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- key_issued_count=0 key_requested_count=0 HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_NOTIFY_REJECTION -STOP- key_issued_count=0 key_requested_count=1 NEED_TO_NOTIFY_REJECTION -START- NOTIFYING_REJECTION Request for certificate to be stored in file "$tmpdir/certfile3" rejected by CA. CA_REJECTED -STOP- key_issued_count=0 key_requested_count=1 CA_REJECTED -START- CA_REJECTED -STOP- key_issued_count=0 key_requested_count=1 [Enroll until the CA rejects us after poll.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=1 CA_WORKING NEED_TO_SUBMIT SUBMITTING NEED_TO_NOTIFY_REJECTION -STOP- NEED_TO_NOTIFY_REJECTION -START- NOTIFYING_REJECTION Request for certificate to be stored in file "$tmpdir/certfile3" rejected by CA. CA_REJECTED -STOP- CA_REJECTED -START- CA_REJECTED -STOP- [Enroll until the CA turns out to be unreachable.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=604800 CA_UNREACHABLE -STOP- CA_UNREACHABLE -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT -STOP- [Enroll until the CA client turns out to be unconfigured.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=604800 CA_UNCONFIGURED -STOP- CA_UNCONFIGURED -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT -STOP- [Enroll until the CA tells us to come back later.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=13 CA_WORKING -STOP- ca_cookie=iLoveCookiesMore CA_WORKING -(RESET)- HAVE_CSR -START- NEED_TO_SUBMIT -STOP- [Enroll until the CA tells us to come back later, but with a broken date.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_GUIDANCE -STOP- NO COOKIE FOR YOU NEED_GUIDANCE -START- NEED_GUIDANCE -STOP- [Enroll until we realize our enrollment helper doesn't support enrollment.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_GUIDANCE -STOP- [Enroll until we have SCEP data to go with it.] HAVE_KEY_PAIR -START- NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- key_issued_count=0 key_requested_count=0 NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- key_issued_count=0 key_requested_count=0 HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_SCEP_DATA -STOP- key_issued_count=0 key_requested_count=1 NEED_SCEP_DATA -START- GENERATING_SCEP_DATA HAVE_SCEP_DATA NEED_TO_SUBMIT -STOP- key_issued_count=0 key_requested_count=1 [CA poll timeout remaining=0.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=300 CA_UNREACHABLE -STOP- [CA poll timeout remaining=0.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=300 CA_WORKING -STOP- [CA poll timeout remaining=0.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=300 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=0.] MONITORING -START- delay=1800 MONITORING -STOP- [CA poll timeout remaining=30.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=300 CA_UNREACHABLE -STOP- [CA poll timeout remaining=30.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=300 CA_WORKING -STOP- [CA poll timeout remaining=30.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=300 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=30.] MONITORING -START- delay=1800 MONITORING -STOP- [CA poll timeout remaining=1800.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=900 CA_UNREACHABLE -STOP- [CA poll timeout remaining=1800.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=900 CA_WORKING -STOP- [CA poll timeout remaining=1800.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=900 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=1800.] MONITORING -START- delay=1800 MONITORING -STOP- [CA poll timeout remaining=3600.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=1800 CA_UNREACHABLE -STOP- [CA poll timeout remaining=3600.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=1800 CA_WORKING -STOP- [CA poll timeout remaining=3600.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=1800 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=3600.] MONITORING -START- delay=1800 MONITORING -STOP- [CA poll timeout remaining=7200.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=3600 CA_UNREACHABLE -STOP- [CA poll timeout remaining=7200.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=3600 CA_WORKING -STOP- [CA poll timeout remaining=7200.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=3600 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=7200.] MONITORING -START- delay=3600 MONITORING -STOP- [CA poll timeout remaining=86000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=43000 CA_UNREACHABLE -STOP- [CA poll timeout remaining=86000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=43000 CA_WORKING -STOP- [CA poll timeout remaining=86000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=43000 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=86000.] MONITORING -START- delay=43000 MONITORING -STOP- [CA poll timeout remaining=86500.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=43250 CA_UNREACHABLE -STOP- [CA poll timeout remaining=86500.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=43250 CA_WORKING -STOP- [CA poll timeout remaining=86500.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=43250 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=86500.] MONITORING -START- delay=43250 MONITORING -STOP- [CA poll timeout remaining=604800.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=302400 CA_UNREACHABLE -STOP- [CA poll timeout remaining=604800.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=302400 CA_WORKING -STOP- [CA poll timeout remaining=604800.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=302400 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=604800.] MONITORING -START- delay=86400 MONITORING -STOP- [CA poll timeout remaining=1000000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=500000 CA_UNREACHABLE -STOP- [CA poll timeout remaining=1000000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=500000 CA_WORKING -STOP- [CA poll timeout remaining=1000000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=500000 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=1000000.] MONITORING -START- delay=86400 MONITORING -STOP- [CA poll timeout remaining=2000000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=604800 CA_UNREACHABLE -STOP- [CA poll timeout remaining=2000000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=604800 CA_WORKING -STOP- [CA poll timeout remaining=2000000.] HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING delay=604800 CA_UNCONFIGURED -STOP- [Monitor poll timeout remaining=2000000.] MONITORING -START- delay=86400 MONITORING -STOP- [Kicking off split monitor/enroll TTL tests.] NEWLY_ADDED -START- NEWLY_ADDED_START_READING_KEYINFO NEWLY_ADDED_READING_KEYINFO NEWLY_ADDED_START_READING_CERT NEWLY_ADDED_READING_CERT NEWLY_ADDED_DECIDING NEED_KEY_PAIR -STOP- NEED_KEY_PAIR -START- GENERATING_KEY_PAIR HAVE_KEY_PAIR NEED_KEYINFO READING_KEYINFO HAVE_KEYINFO NEED_CSR -STOP- NEED_CSR -(RESET)- HAVE_KEYINFO -START- NEED_CSR GENERATING_CSR HAVE_CSR -STOP- HAVE_CSR -START- NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT -STOP- NEED_TO_SAVE_CERT -START- START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [Kicking off enroll only.] notBefore=Jan 1 00:00:00 1970 GMT notAfter=Jan 1 00:00:00 1971 GMT MONITORING -START- NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- [Kicking off notify only.] notBefore=Jan 1 00:00:00 1970 GMT notAfter=Jan 1 00:00:00 1971 GMT MONITORING -START- NEED_TO_NOTIFY_VALIDITY NOTIFYING_VALIDITY delay=86400 MONITORING -STOP- [Kicking off notify-then-submit.] notBefore=Jan 1 00:00:00 1970 GMT notAfter=Jan 1 00:00:00 1971 GMT MONITORING -START- NEED_TO_NOTIFY_VALIDITY NOTIFYING_VALIDITY NEED_CSR GENERATING_CSR HAVE_CSR NEED_TO_SUBMIT SUBMITTING NEED_TO_SAVE_CERT START_SAVING_CERT SAVING_CERT SAVED_CERT NEED_TO_SAVE_CA_CERTS START_SAVING_CA_CERTS SAVING_CA_CERTS NEED_TO_READ_CERT READING_CERT NEED_TO_NOTIFY_ISSUED_SAVED NOTIFYING_ISSUED_SAVED MONITORING -STOP- The sky is falling: Certificate in file "$tmpdir/certfile10" is no longer valid. The sky is falling: Certificate in file "$tmpdir/certfile10" issued by CA and saved. Test complete. certmonger-0.78.6/tests/010-iterate/run.sh0000775000175000017500000007043112645513264015161 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions cert="-----BEGIN CERTIFICATE----- MIIEDjCCAvagAwIBAgIOAQAAAAABPWT1Paf0wU4wDQYJKoZIhvcNAQEFBQAwRjEX MBUGA1UEChMOQ3liZXJ0cnVzdCBJbmMxKzApBgNVBAMTIkN5YmVydHJ1c3QgUHVi bGljIFN1cmVTZXJ2ZXIgU1YgQ0EwHhcNMTMwMzEzMTc0ODQ3WhcNMTQwMzEzMTc0 ODQ3WjBuMQswCQYDVQQGEwJVUzEXMBUGA1UECBMOTk9SVEggQ0FST0xJTkExEDAO BgNVBAcTB1JhbGVpZ2gxEDAOBgNVBAoTB1JlZCBIYXQxCzAJBgNVBAsTAklUMRUw EwYDVQQDFAwqLnJlZGhhdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC8NmWLQuAdaMTQ2Ae8AVPUKDEdCNtGBE4It5hb4xL9cHSzQeBaMDm9UR5X w5DLR93TQFL+Rc9mLbrBhIz9eacrs5qpUp4i5XhgnvEN7vBsUyFjZqQ+W5Zqs5Cv yMVv+rkRRa22hYPqFNM0R0lBPLltZO6+58VA53ttr87JOdPZsdomJtzruXz9ceLg ZnDULmIfZFhw7bz0Y9qAURSsULpIjLwWsGjOlNpPSTisCNwNWrmT4KerD8RnCXy+ keWZPSw9RgMBbyYD6am0nj2/JPmkv390F6HYi6f/0OyefKqZEaPgwDmhEiW6K2Ps qodUKMcfBFJNgPs6ZuqOLnGILVyrAgMBAAGjgdEwgc4wHwYDVR0jBBgwFoAUBJhg 34AblkldZVYtpSwJJArs3LkwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5v bW5pcm9vdC5jb20vUHVibGljU3VyZVNlcnZlclNWLmNybDAdBgNVHQ4EFgQUC5p5 rlungiFqeTNw0HOISTrudr8wCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG+EIBAQQEAwIGwDAN BgkqhkiG9w0BAQUFAAOCAQEAJC1PfXXjM3Y2ifPlzauQgLHiizx3XeIB86AXJHL2 N77UMfkSYmUJraWZX3Ye7icDbRwNHLIDJMfpjgcwnC+ZB+byyvmtjGjcTuqVZpXS 2JU8kgGxNlEjCd4NsumpzollG1W1iDorBCt9bHp8b4isLD+jSnqbWKnvuEUle0ad Pi7xjf9BidMvYUEBpJsd9rA1LQtp/ZfxxA6RtgCeXjQPexjsvf6SLKyrmacHZcMJ b6JbhXMTzB7QZjR3IooqzXS8T/2zBxDUSH4fJ4o0KSkY8cjNCCxdnkXL96PC9KQ5 kV1Ad3iHw/TnJjzrJJs3o92pRR/JtF0Jw6dszNP1Sn68uA== -----END CERTIFICATE-----" cert2="-----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE-----" cert3="-----BEGIN CERTIFICATE----- MIIB0TCCATqgAwIBAgICEjUwDQYJKoZIhvcNAQELBQAwFDESMBAGA1UEAxMJbG9j YWxob3N0MB4XDTcwMDEwMTExMTExMVoXDTcxMDEwMTExMTExMVowFDESMBAGA1UE AxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC394oITlJc hLbXLUAYJ+IGpvr3YfyQlQb3u95p3s0gEemx/+Dy3ViJW7WhMuc/FHJSV5ghLflk TRLfUdS18LGBkfkREBJVWfELhgm5ZHqiGzCvTmg01tgvouKj+8kFNJIaWsEm8mBa SoJzk8+vOQsnXjrZAKAFY7WrVryilh4cQQIDAQABozIwMDAMBgNVHRMBAf8EAjAA MCAGA1UdDgEBAAQWBBQfjVS9H0rXGb4SFB9bkzTpHHUH2jANBgkqhkiG9w0BAQsF AAOBgQCt6xbyri3BobQUPQmN7ROc3mveMSfMyOwBSTDjl2XIWV98HjVLWRjScbg7 KW6z8W7iaasSDF7GWM2YqWaanWx5XwzayNUvIX3gHKqo+OwHo5QUfawtEV5Niop1 N4nZp1GMclRuk9UFXLV2NfaohRPYs7FVdBVtWNvg7hH8XedLyw== -----END CERTIFICATE-----" cert4="-----BEGIN CERTIFICATE----- MIIBoDCCAQmgAwIBAAIBATANBgkqhkiG9w0BAQsFADAUMRIwEAYDVQQDEwls b2NhbGhvc3QwIhgPMjAxNTAxMjcwMDAwMDBaGA8yMTE1MDEyNzAwMDAwMFow FDESMBAGA1UEAxMJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDT7+BazrT3e/run8ZxrTfZNFx+vY+twKMPRXowSGot2eLcdDIIryOH ir1tUXIDZN2j+nF4U6kX3W66yMZjUApmYcFjhPk0Pg4ymsh/ScW2OlQXvC/f soPhvKA6cBeWUWwpdtRnFjZ14qmGuABPi6c/p0C/04HoBR9Y6QI5voRvHwID AQABMA0GCSqGSIb3DQEBCwUAA4GBAB4F1sjBaOJVuMmubbxc6vm3yDTwU3Qw JzjmXgwGUp5QryUIBZc9Kc5ceMUJ/Xf3OFDGWOqIx4JONdcgfLRJxax9WWg4 mYbkAmUQBRtl7fGgEvOqF9EgtEY06Nj5aI7vbFEfB80Xd0O9O06ckxr7QBSc Wc2RCeFYrUpNi6s3vfM5 -----END CERTIFICATE----- " cat > ca-issued << EOF #!/bin/sh echo "$cert" exit 0 EOF chmod u+x ca-issued cat > ca-issued-with-no-newline << EOF #!/bin/sh echo -n "$cert" exit 0 EOF chmod u+x ca-issued-with-no-newline cat > ca-issued-with-noise-before << EOF #!/bin/sh echo iLoveCookies echo "$cert" exit 0 EOF chmod u+x ca-issued-with-noise-before cat > ca-issued-with-noise-after << EOF #!/bin/sh echo "$cert" echo iLoveCookies exit 0 EOF chmod u+x ca-issued-with-noise-after cat > ca-issued-with-noise-both << EOF #!/bin/sh echo iLoveCookies echo "$cert" echo Also Monkeys exit 0 EOF chmod u+x ca-issued-with-noise-both cat > ca-issued-json << EOF #!/bin/sh echo -n "{\"certificate\":\"$cert\",\"roots\":[{\"nickname\":\"CA1\",\"certificate\":\"$cert2\"},{\"nickname\":\"CA2\",\"certificate\":\"$cert3\"}],\"chain\":[{\"nickname\":\"CA3\",\"certificate\":\"$cert4\"}],\"whatever\":null}" exit 0 EOF chmod u+x ca-issued-json cat > ca-ask-again << EOF #!/bin/sh echo iLoveCookiesSome exit 1 EOF chmod u+x ca-ask-again cat > ca-need-rekey << EOF #!/bin/sh echo NotThatKeyAgain exit 17 EOF chmod u+x ca-need-rekey cat > ca-issued-binary-x509 << EOF #!/bin/sh echo "$cert" | openssl x509 -outform der exit 0 EOF chmod u+x ca-issued-binary-x509 cat > ca-reject << EOF #!/bin/sh echo CA rejected us, must have been having a bad day. exit 2 EOF chmod u+x ca-reject cat > ca-reject-second-time << EOF #!/bin/sh if test -z "\$CERTMONGER_CA_COOKIE" ; then echo 1 echo Try again. echo echo Maybe later. exit 5 else echo CA rejected us, must have been having a bad day. echo cookie was "\$CERTMONGER_CA_COOKIE" exit 2 fi EOF chmod u+x ca-reject-second-time cat > ca-unreachable << EOF #!/bin/sh echo Could not contact CA. exit 3 EOF chmod u+x ca-unreachable cat > ca-unconfigured << EOF #!/bin/sh echo Something is wrong with my brain. exit 4 EOF chmod u+x ca-unconfigured cat > ca-ask-again-5 << EOF #!/bin/sh echo 13 echo iLoveCookiesMore exit 5 EOF chmod u+x ca-ask-again-5 cat > ca-ask-again-broken-5 << EOF #!/bin/sh echo "?1034h13" echo iLoveCookiesMore exit 5 EOF chmod u+x ca-ask-again-broken-5 cat > ca-what-what-6 << EOF #!/bin/sh echo What do you want? exit 6 EOF chmod u+x ca-what-what-6 cat > ca-needs-scep-16 << EOF #!/bin/sh echo Nope, need SCEP data. exit 16 EOF chmod u+x ca-needs-scep-16 cat > ca << EOF id=SelfSign ca_type=INTERNAL:SELF EOF cat > entry << EOF id=Test ca_name=SelfSign state=NEED_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile notification_method=STDOUT post_certsave_command=echo POSTHOOK post_certsave_uid=`id -u` pre_certsave_command=echo PREHOOK pre_certsave_uid=`id -u` EOF # These cover parts of the process, forcing it to stop if any phase needs # to be tried again, so that we don't hit infinite loops. echo '[Generating key pair.]' $toolsdir/iterate ca entry GENERATING_KEY_PAIR,HAVE_KEY_PAIR if test "`grep ^state entry`" != state=NEED_KEYINFO ; then echo Key generation failed or did not move to key info reading. grep ^state entry exit 1 fi grep ^key.\*count= entry | LANG=C sort echo echo '[Reading back key info.]' $toolsdir/iterate ca entry NEED_KEYINFO,START_READING_KEYINFO,READING_KEYINFO,HAVE_KEYINFO if test "`grep ^state entry`" != state=NEED_CSR ; then echo Key info read failed or did not move to CSR generation. grep ^state entry exit 1 fi grep ^key_size entry grep ^key.\*count= entry | LANG=C sort echo echo '[Generating CSR.]' $toolsdir/iterate ca entry HAVE_KEYINFO,NEED_CSR,GENERATING_CSR if test "`grep ^state entry`" != state=HAVE_CSR ; then echo CSR generation failed or did not move to submission. grep ^state entry exit 1 fi grep ^key.\*count= entry | LANG=C sort echo echo '[Getting CSR signed.]' $toolsdir/iterate ca entry HAVE_CSR,NEED_TO_SUBMIT,SUBMITTING if test "`grep ^state entry`" != state=NEED_TO_SAVE_CERT ; then echo Signing failed or did not move to saving. grep ^state entry exit 1 fi grep ^key.\*count= entry | LANG=C sort echo echo '[Saving certificate.]' $toolsdir/iterate ca entry START_SAVING_CERT,PRE_SAVE_CERT,SAVING_CERT,NEED_TO_READ_CERT,READING_CERT,POST_SAVED_CERT,NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS,NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED,SAVED_CERT | sed 's@'"$tmpdir"'@$tmpdir@g' if test "`grep ^state entry`" != state=MONITORING ; then echo Saving failed or did not move to monitoring. grep ^state entry exit 1 fi grep ^key.\*count= entry | LANG=C sort echo echo '[From-scratch enrollment scenario OK.]' echo echo '[Picking up mid-life without a key or a certificate.]' cat > entry << EOF id=Test state=NEWLY_ADDED key_storage_type=FILE key_storage_location=$tmpdir/keyfile2 cert_storage_type=FILE cert_storage_location=$tmpdir/certfile2 notification_method=STDOUT EOF $toolsdir/iterate ca entry NEWLY_ADDED,NEWLY_ADDED_START_READING_KEYINFO,NEWLY_ADDED_READING_KEYINFO,NEWLY_ADDED_START_READING_CERT,NEWLY_ADDED_READING_CERT,NEWLY_ADDED_DECIDING if test "`grep ^state entry`" != state=NEED_KEY_PAIR ; then echo Figuring stuff out failed or did not move to generating a key. grep ^state entry exit 1 fi echo echo '[Picking up mid-life without a certificate.]' cat > entry << EOF id=Test state=NEWLY_ADDED key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile2 notification_method=STDOUT EOF $toolsdir/iterate ca entry NEWLY_ADDED,NEWLY_ADDED_START_READING_KEYINFO,NEWLY_ADDED_READING_KEYINFO,NEWLY_ADDED_START_READING_CERT,NEWLY_ADDED_READING_CERT,NEWLY_ADDED_DECIDING if test "`grep ^state entry`" != state=NEED_CSR; then echo Figuring stuff out failed or did not move to generating a CSR. grep ^state entry exit 1 fi echo echo '[Picking up mid-life.]' cat > entry << EOF id=Test state=NEWLY_ADDED key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile notification_method=STDOUT EOF $toolsdir/iterate ca entry NEWLY_ADDED,NEWLY_ADDED_START_READING_KEYINFO,NEWLY_ADDED_READING_KEYINFO,NEWLY_ADDED_START_READING_CERT,NEWLY_ADDED_READING_CERT,NEWLY_ADDED_DECIDING if test "`grep ^state entry`" != state=MONITORING ; then echo Figuring stuff out failed or did not move to monitoring. grep ^state entry exit 1 fi echo echo '[Retroactive issuing.]' cat > entry2 << EOF id=Test ca_name=SelfSign state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile2 monitor=1 notification_method=STDOUT EOF cat > ca2 << EOF id=SelfSign ca_type=INTERNAL:SELF ca_internal_issue_time=0 EOF $toolsdir/iterate ca2 entry2 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca2 entry2 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca2 entry2 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca2 entry2 START_SAVING_CERT,SAVING_CERT,NEED_TO_READ_CERT,READING_CERT,NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS,NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED,SAVED_CERT | sed 's@'"$tmpdir"'@$tmpdir@g' openssl x509 -noout -startdate -enddate -in $tmpdir/certfile2 echo echo '[Noticing expiration.]' openssl x509 -noout -startdate -enddate -in $tmpdir/certfile2 $toolsdir/iterate ca entry2 NEED_TO_NOTIFY_VALIDITY,NOTIFYING_VALIDITY | sed 's@'"$tmpdir"'@$tmpdir@g' echo echo '[Kicking off autorenew.]' cat > entry2 << EOF id=Test ca_name=SelfSign state=MONITORING key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile2 monitor=1 autorenew=1 notification_method=STDOUT EOF openssl x509 -noout -startdate -enddate -in $tmpdir/certfile2 $toolsdir/iterate ca entry2 MONITORING,NEED_TO_NOTIFY_VALIDITY,NOTIFYING_VALIDITY | sed 's@'"$tmpdir"'@$tmpdir@g' echo echo '[Enroll.]' cat > entry3 << EOF id=Test ca_name=Friendly state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile4 notification_method=STDOUT EOF cat > ca3 << EOF id=Friendly ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-issued EOF : > $tmpdir/certfile4 $toolsdir/iterate ca3 entry3 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO grep ^key.\*count= entry3 | LANG=C sort $toolsdir/iterate ca3 entry3 NEED_CSR,GENERATING_CSR grep ^key.\*count= entry3 | LANG=C sort $toolsdir/iterate ca3 entry3 NEED_TO_SUBMIT,SUBMITTING grep ^key.\*count= entry3 | LANG=C sort $toolsdir/iterate ca3 entry3 NEED_TO_SAVE_CERT,SAVING_CERT,START_SAVING_CERT grep ^key.\*count= entry3 | LANG=C sort echo echo '[Enroll, helper produces noise before.]' cat > entry3 << EOF id=Test ca_name=Friendly state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile4 notification_method=STDOUT EOF cat > ca3 << EOF id=Friendly ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-issued-with-noise-before EOF : > $tmpdir/certfile4 $toolsdir/iterate ca3 entry3 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca3 entry3 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca3 entry3 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca3 entry3 NEED_TO_SAVE_CERT,SAVING_CERT,START_SAVING_CERT echo echo '[Enroll, helper produces noise after]' cat > entry3 << EOF id=Test ca_name=Friendly state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile4 notification_method=STDOUT EOF cat > ca3 << EOF id=Friendly ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-issued-with-noise-after EOF : > $tmpdir/certfile4 $toolsdir/iterate ca3 entry3 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca3 entry3 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca3 entry3 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca3 entry3 NEED_TO_SAVE_CERT,SAVING_CERT,START_SAVING_CERT echo echo '[Enroll, helper produces noise before and after.]' cat > entry3 << EOF id=Test ca_name=Friendly state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile4 notification_method=STDOUT EOF cat > ca3 << EOF id=Friendly ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-issued-with-noise-both EOF : > $tmpdir/certfile4 $toolsdir/iterate ca3 entry3 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca3 entry3 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca3 entry3 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca3 entry3 NEED_TO_SAVE_CERT,SAVING_CERT,START_SAVING_CERT echo echo '[Enroll, helper omits newline at end of certificate.]' cat > entry3 << EOF id=Test ca_name=Friendly state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile4 notification_method=STDOUT EOF cat > ca3 << EOF id=Friendly ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-issued-with-no-newline EOF : > $tmpdir/certfile4 $toolsdir/iterate ca3 entry3 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca3 entry3 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca3 entry3 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca3 entry3 NEED_TO_SAVE_CERT,SAVING_CERT,START_SAVING_CERT echo echo '[Enroll, helper produces binary certificate output.]' cat > entry3 << EOF id=Test ca_name=Friendly state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile4 notification_method=STDOUT EOF cat > ca3 << EOF id=Friendly ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-issued-binary-x509 EOF : > $tmpdir/certfile4 $toolsdir/iterate ca3 entry3 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca3 entry3 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca3 entry3 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca3 entry3 NEED_TO_SAVE_CERT,SAVING_CERT,START_SAVING_CERT echo echo '[Enroll, helper produces JSON output.]' cat > entry11 << EOF id=Test ca_name=Webby state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile11 root_cert_files=$tmpdir/rootcertfile other_cert_files=$tmpdir/othercertfile notification_method=STDOUT EOF cat > ca11 << EOF id=Webby ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-issued-json EOF : > $tmpdir/certfile11 rm -f $tmpdir/rootcertfile rm -f $tmpdir/othercertfile $toolsdir/iterate ca11 entry11 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca11 entry11 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca11 entry11 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca11 entry11 NEED_TO_SAVE_CERT,START_SAVING_CERT,SAVING_CERT,SAVED_CERT,NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS grep 'BEGIN CERTIFICATE' $tmpdir/certfile11 | wc -l grep 'BEGIN CERTIFICATE' $tmpdir/othercertfile | wc -l grep 'BEGIN CERTIFICATE' $tmpdir/rootcertfile | wc -l echo echo '[Try to enroll, but we need to generate a new key]' cat > entry12 << EOF id=Test ca_name=Webby state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile12 notification_method=STDOUT EOF cat > ca12 << EOF id=Webby ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-need-rekey EOF : > $tmpdir/certfile12 rm -f $tmpdir/rootcertfile rm -f $tmpdir/othercertfile $toolsdir/iterate ca12 entry12 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca12 entry12 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca12 entry12 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca12 entry12 NEED_KEY_PAIR,GENERATING_KEY_PAIR,HAVE_KEY_PAIR $toolsdir/iterate ca12 entry12 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO echo echo '[Enroll until we notice we have no specified CA.]' cat > entry3 << EOF id=Test state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca3 << EOF id=Meanie ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-reject EOF $toolsdir/iterate ca3 entry3 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca3 entry3 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca3 entry3 NEED_TO_SUBMIT,SUBMITTING echo echo '[Enroll until the CA tells us to come back later.]' cat > entry4 << EOF id=Test ca_name=Busy state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca4 << EOF id=Busy ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-ask-again EOF $toolsdir/iterate ca4 entry4 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca4 entry4 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca4 entry4 NEED_TO_SUBMIT,SUBMITTING grep ca_cookie entry4 $toolsdir/iterate ca4 entry4 "" echo echo '[Enroll until the CA rejects us.]' cat > entry5 << EOF id=Test ca_name=Meanie state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile3 notification_method=STDOUT EOF cat > ca5 << EOF id=Meanie ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-reject EOF $toolsdir/iterate ca5 entry5 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO grep ^key.\*count= entry5 | LANG=C sort $toolsdir/iterate ca5 entry5 NEED_CSR,GENERATING_CSR grep ^key.\*count= entry5 | LANG=C sort $toolsdir/iterate ca5 entry5 NEED_TO_SUBMIT,SUBMITTING grep ^key.\*count= entry5 | LANG=C sort $toolsdir/iterate ca5 entry5 NEED_TO_NOTIFY_REJECTION,NOTIFYING_REJECTION | sed 's@'"$tmpdir"'@$tmpdir@g' grep ^key.\*count= entry5 | LANG=C sort $toolsdir/iterate ca5 entry5 "" | sed 's@'"$tmpdir"'@$tmpdir@g' grep ^key.\*count= entry5 | LANG=C sort echo echo '[Enroll until the CA rejects us after poll.]' cat > entry5 << EOF id=Test ca_name=Meanie state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile cert_storage_type=FILE cert_storage_location=$tmpdir/certfile3 notification_method=STDOUT EOF cat > ca5 << EOF id=Meanie ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-reject-second-time EOF $toolsdir/iterate ca5 entry5 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca5 entry5 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca5 entry5 NEED_TO_SUBMIT,SUBMITTING,CA_WORKING $toolsdir/iterate ca5 entry5 NEED_TO_NOTIFY_REJECTION,NOTIFYING_REJECTION | sed 's@'"$tmpdir"'@$tmpdir@g' $toolsdir/iterate ca5 entry5 "" | sed 's@'"$tmpdir"'@$tmpdir@g' echo echo '[Enroll until the CA turns out to be unreachable.]' cat > entry6 << EOF id=Test ca_name=Lostie state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca6 << EOF id=Lostie ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-unreachable EOF $toolsdir/iterate ca6 entry6 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca6 entry6 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca6 entry6 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca6 entry6 "" echo echo '[Enroll until the CA client turns out to be unconfigured.]' cat > entry7 << EOF id=Test ca_name=Lostie state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca7 << EOF id=Lostie ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-unconfigured EOF $toolsdir/iterate ca7 entry7 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca7 entry7 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca7 entry7 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca7 entry7 "" echo echo '[Enroll until the CA tells us to come back later.]' cat > entry8 << EOF id=Test ca_name=Busy state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca8 << EOF id=Busy ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-ask-again-5 EOF $toolsdir/iterate ca8 entry8 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca8 entry8 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca8 entry8 NEED_TO_SUBMIT,SUBMITTING grep ca_cookie entry8 $toolsdir/iterate ca8 entry8 "" echo echo '[Enroll until the CA tells us to come back later, but with a broken date.]' cat > entry8 << EOF id=Test ca_name=Busy state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca8 << EOF id=Busy ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-ask-again-broken-5 EOF $toolsdir/iterate ca8 entry8 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca8 entry8 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca8 entry8 NEED_TO_SUBMIT,SUBMITTING grep ca_cookie entry8 || echo NO COOKIE FOR YOU $toolsdir/iterate ca8 entry8 "" echo echo "[Enroll until we realize our enrollment helper doesn't support enrollment.]" cat > entry9 << EOF id=Test ca_name=Confused state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca9 << EOF id=Confused ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-what-what-6 EOF $toolsdir/iterate ca9 entry9 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca9 entry9 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca9 entry9 NEED_TO_SUBMIT,SUBMITTING echo echo "[Enroll until we have SCEP data to go with it.]" cat > entry9 << EOF id=Test ca_name=SCEP state=HAVE_KEY_PAIR key_storage_type=FILE key_storage_location=$tmpdir/keyfile notification_method=STDOUT EOF cat > ca9 << EOF id=SCEP ca_type=EXTERNAL ca_external_helper=$tmpdir/ca-needs-scep-16 ca_encryption_cert=-----BEGIN CERTIFICATE----- MIICBDCCAW2gAwIBAgIEEjRWgTANBgkqhkiG9w0BAQUFADAaMRgwFgYDVQQDDA9U ZXN0IExldmVsIDggQ0EwHhcNMTUwMjA0MTk0NjU4WhcNMTYwMjA0MTk0NjU4WjAX MRUwEwYDVQQDDAxUZXN0IEVFIENlcnQwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJ AoGBALjcinKYW+KHmciWmdXK5ZNRpKXcc6DqKykg0dUYgUsKTr6GYBeyA64Jmq8S IOYqP2gWnSnw+LWQpbzKvCW0gCO6/skqwNdDZfcxXQmWVEE2oJPmu0a5I02DD46y vVeugjriz2RHVNNjORXmf2xm6bZtcWtzzXew+H5lJIpRzj4LAgMBAAGjWjBYMAkG A1UdEwQCMAAwCwYDVR0PBAQDAgTwMB0GA1UdDgQWBBRd3x1DMcHyzexXrenW0TRw 3ANRyjAfBgNVHSMEGDAWgBQz4V1OzMt4ObAn9koy3aLP2bzFTjANBgkqhkiG9w0B AQUFAAOBgQBozEcRs625HJ6YMZ2TLJKST1Z38ouIfwtl2Gv4WzGgVcRKVpoMgWjl DbC+yjEDPm5+GwzEwVuR0E4g/nThfff/Ld8wVLfqdvClIUcgM8XEpPSRGrWLri+t 9KqCx+t7heiWQcRD4OT1EfsHmXUz2+tAat6XvRcJ3AI1gtks0vJ6mA== -----END CERTIFICATE----- EOF $toolsdir/iterate ca9 entry9 NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO grep ^key.\*count= entry9 | LANG=C sort $toolsdir/iterate ca9 entry9 NEED_CSR,GENERATING_CSR grep ^key.\*count= entry9 | LANG=C sort $toolsdir/iterate ca9 entry9 NEED_TO_SUBMIT,SUBMITTING grep ^key.\*count= entry9 | LANG=C sort $toolsdir/iterate ca9 entry9 NEED_SCEP_DATA,GENERATING_SCEP_DATA,HAVE_SCEP_DATA grep ^key.\*count= entry9 | LANG=C sort # Note! The "iterate" harness rounds delay times up to the next multiple of 50. for interval in 0 30 1800 3600 7200 86000 86500 604800 1000000 2000000; do now=`date +%s` CM_FORCE_TIME=$now ; export CM_FORCE_TIME when=`expr $now + $interval` later=`env TZ=UTC date -d @$when +%Y%m%d%H%M%S` for ca in ca-unreachable ca-ask-again ca-unconfigured ; do echo echo '[CA poll timeout remaining='$interval'.]' cat > entry9 <<- EOF id=Test ca_name=Lostie state=HAVE_CSR cert_not_after=$later csr=AAAA notification_method=STDOUT EOF cat > ca9 <<- EOF id=Lostie ca_type=EXTERNAL ca_external_helper=$tmpdir/$ca EOF $toolsdir/iterate ca9 entry9 NEED_TO_SUBMIT,SUBMITTING done echo echo '[Monitor poll timeout remaining='$interval'.]' cat > entry9 <<- EOF id=Test ca_name=Lostie state=MONITORING cert_not_after=$later csr=AAAA notification_method=STDOUT EOF cat > ca9 <<- EOF id=Lostie ca_type=EXTERNAL ca_external_helper=$tmpdir/$ca EOF $toolsdir/iterate ca9 entry9 "" done SAVED_CONFIG_DIR="$CERTMONGER_CONFIG_DIR" CERTMONGER_CONFIG_DIR=`pwd` echo echo '[Kicking off split monitor/enroll TTL tests.]' cat > entry10 << EOF id=Test ca_name=SelfSign state=NEWLY_ADDED key_storage_type=FILE key_storage_location=$tmpdir/keyfile10 cert_storage_type=FILE cert_storage_location=$tmpdir/certfile10 monitor=1 autorenew=1 notification_method=STDOUT EOF cat > ca10 << EOF id=SelfSign ca_type=INTERNAL:SELF ca_internal_issue_time=0 EOF $toolsdir/iterate ca10 entry10 NEWLY_ADDED_START_READING_KEYINFO,NEWLY_ADDED_READING_KEYINFO,NEWLY_ADDED_START_READING_CERT,NEWLY_ADDED_READING_CERT,NEWLY_ADDED_DECIDING $toolsdir/iterate ca10 entry10 NEED_KEY_PAIR,GENERATING_KEY_PAIR,HAVE_KEY_PAIR,NEED_KEYINFO,READING_KEYINFO,HAVE_KEYINFO $toolsdir/iterate ca10 entry10 NEED_CSR,GENERATING_CSR $toolsdir/iterate ca10 entry10 NEED_TO_SUBMIT,SUBMITTING $toolsdir/iterate ca10 entry10 START_SAVING_CERT,SAVING_CERT,NEED_TO_READ_CERT,READING_CERT,NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS,NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED,SAVED_CERT | sed 's@'"$tmpdir"'@$tmpdir@g' cp $tmpdir/certfile10 $tmpdir/certfile10.bak echo echo '[Kicking off enroll only.]' cp $tmpdir/certfile10.bak $tmpdir/certfile10 cat > entry10 << EOF id=Test ca_name=SelfSign state=MONITORING key_storage_type=FILE key_storage_location=$tmpdir/keyfile10 cert_storage_type=FILE cert_storage_location=$tmpdir/certfile10 monitor=1 autorenew=1 notification_method=STDOUT EOF cat > ca10 << EOF id=SelfSign ca_type=INTERNAL:SELF ca_internal_issue_time=0 EOF openssl x509 -noout -startdate -enddate -in $tmpdir/certfile10 cat > certmonger.conf << EOF [defaults] enroll_ttls = 30s notify_ttls = N EOF $toolsdir/iterate ca10 entry10 NEED_CSR,GENERATING_CSR,HAVE_CSR,NEED_TO_SUBMIT,SUBMITTING,NEED_TO_SAVE_CERT,START_SAVING_CERT,SAVING_CERT,NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS,NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED,SAVED_CERT,NEED_TO_READ_CERT,READING_CERT | sed 's@'"$tmpdir"'@$tmpdir@g' echo echo '[Kicking off notify only.]' cp $tmpdir/certfile10.bak $tmpdir/certfile10 cat > entry10 << EOF id=Test ca_name=SelfSign state=MONITORING key_storage_type=FILE key_storage_location=$tmpdir/keyfile10 cert_storage_type=FILE cert_storage_location=$tmpdir/certfile10 monitor=1 autorenew=1 notification_method=STDOUT EOF cat > ca10 << EOF id=SelfSign ca_type=INTERNAL:SELF ca_internal_issue_time=0 EOF openssl x509 -noout -startdate -enddate -in $tmpdir/certfile10 cat > certmonger.conf << EOF [defaults] notify_ttls = 30s enroll_ttls = N EOF $toolsdir/iterate ca10 entry10 NEED_TO_NOTIFY_VALIDITY,NOTIFYING_VALIDITY | sed 's@'"$tmpdir"'@$tmpdir@g' echo echo '[Kicking off notify-then-submit.]' : > $tmpdir/notification.txt cat > $tmpdir/notify.sh << EOF #!/bin/sh touch $tmpdir/notification.txt echo The sky is falling: \$CERTMONGER_NOTIFICATION >> $tmpdir/notification.txt EOF chmod u+x $tmpdir/notify.sh cp $tmpdir/certfile10.bak $tmpdir/certfile10 cat > entry10 << EOF id=Test ca_name=SelfSign state=MONITORING key_storage_type=FILE key_storage_location=$tmpdir/keyfile10 cert_storage_type=FILE cert_storage_location=$tmpdir/certfile10 monitor=1 autorenew=1 notification_method=STDOUT EOF cat > ca10 << EOF id=SelfSign ca_type=INTERNAL:SELF ca_internal_issue_time=0 EOF openssl x509 -noout -startdate -enddate -in $tmpdir/certfile10 cat > certmonger.conf << EOF [defaults] notify_ttls = 30s enroll_ttls = 30s notification_method=command notification_destination=$tmpdir/notify.sh EOF $toolsdir/iterate ca10 entry10 NEED_TO_NOTIFY_VALIDITY,NOTIFYING_VALIDITY,NEED_CSR,GENERATING_CSR,HAVE_CSR,NEED_TO_SUBMIT,SUBMITTING,NEED_TO_SAVE_CERT,START_SAVING_CERT,SAVING_CERT,NEED_TO_SAVE_CA_CERTS,START_SAVING_CA_CERTS,SAVING_CA_CERTS,NEED_TO_NOTIFY_ISSUED_SAVED,NOTIFYING_ISSUED_SAVED,SAVED_CERT,NEED_TO_READ_CERT,READING_CERT | sed 's@'"$tmpdir"'@$tmpdir@g' cat $tmpdir/notification.txt | sed 's@'"$tmpdir"'@$tmpdir@g' CERTMONGER_CONFIG_DIR="$SAVED_CONFIG_DIR" echo echo Test complete. certmonger-0.78.6/tests/009-oiddict/0000775000175000017500000000000012645513301014053 500000000000000certmonger-0.78.6/tests/009-oiddict/expected.out0000664000175000017500000000230012645513264016330 00000000000000id-kp -> 1.3.6.1.5.5.7.3 id-kp.1 -> 1.3.6.1.5.5.7.3.1 id-kp.2 -> 1.3.6.1.5.5.7.3.2 id-kp.3 -> 1.3.6.1.5.5.7.3.3 id-kp.4 -> 1.3.6.1.5.5.7.3.4 id-kp.5 -> 1.3.6.1.5.5.7.3.5 id-kp.8 -> 1.3.6.1.5.5.7.3.8 id-kp.9 -> 1.3.6.1.5.5.7.3.9 id-kp-clientAuth -> 1.3.6.1.5.5.7.3.2 id-kp-codeSigning -> 1.3.6.1.5.5.7.3.3 id-kp-emailProtection -> 1.3.6.1.5.5.7.3.4 id-kp-OCSPSigning -> 1.3.6.1.5.5.7.3.9 id-kp-serverAuth -> 1.3.6.1.5.5.7.3.1 id-kp-timeStamping -> 1.3.6.1.5.5.7.3.8 id-ms-kp-sc-logon -> 1.3.6.1.4.1.311.20.2.2 id-pkinit -> 1.3.6.1.5.2.3 id-pkinit.4 -> 1.3.6.1.5.2.3.4 id-pkinit.5 -> 1.3.6.1.5.2.3.5 id-pkinit-KPClientAuth -> 1.3.6.1.5.2.3.4 id-pkinit-KPKdc -> 1.3.6.1.5.2.3.5 id-pkix -> 1.3.6.1.5.5.7 id-pkix.1 -> 1.3.6.1.5.5.7.1 id-pkix.3 -> 1.3.6.1.5.5.7.3 id-pkix-ocsp-nocheck -> 1.3.6.1.5.5.7.48.1.5 id-pe.1 -> 1.3.6.1.5.5.7.1.1 id-ce.35 -> 2.5.29.35 id-ce.14 -> 2.5.29.14 id-qt.2 -> 1.3.6.1.5.5.7.2.2 1.3.6.1.5 -> iso.org.dod.internet.security 1.3.6.1.5.5 -> iso.org.dod.internet.security.mechanisms 1.3.6.1.5.5.7 -> id-pkix 1.3.6.1.5.5.7.48.1.5 -> id-pkix-ocsp-nocheck 1.3.6.1.5.2 -> iso.org.dod.internet.security.kerberosV5 1.3.6.1.5.2.3 -> id-pkinit 1.3.6.1.4.1.311.20.2.2 -> id-ms-kp-sc-logon Test complete. certmonger-0.78.6/tests/009-oiddict/run.sh0000775000175000017500000000131712645513264015150 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions names=' id-kp id-kp.1 id-kp.2 id-kp.3 id-kp.4 id-kp.5 id-kp.8 id-kp.9 id-kp-clientAuth id-kp-codeSigning id-kp-emailProtection id-kp-OCSPSigning id-kp-serverAuth id-kp-timeStamping id-ms-kp-sc-logon id-pkinit id-pkinit.4 id-pkinit.5 id-pkinit-KPClientAuth id-pkinit-KPKdc id-pkix id-pkix.1 id-pkix.3 id-pkix-ocsp-nocheck id-pe.1 id-ce.35 id-ce.14 id-qt.2 ' oids=' 1.3.6.1.5 1.3.6.1.5.5 1.3.6.1.5.5.7 1.3.6.1.5.5.7.48.1.5 1.3.6.1.5.2 1.3.6.1.5.2.3 1.3.6.1.4.1.311.20.2.2 ' for name in $names ; do oid=`$toolsdir/name2oid "$name"` echo $name '->' $oid done for oid in $oids ; do name=`$toolsdir/oid2name "$oid"` echo $oid '->' $name done echo Test complete. certmonger-0.78.6/tests/008-certread/0000775000175000017500000000000012645513301014224 500000000000000certmonger-0.78.6/tests/008-certread/expected.out0000664000175000017500000000201712645513264016506 00000000000000cert_ca_path_length=-1 cert_email=babs@example.com cert_is_ca=0 cert_issuer=CN=Babs Jensen cert_issuer_der=3016311430120603550403130B42616273204A656E73656E cert_no_ocsp_check=0 cert_not_after=20091211214654 cert_not_before=20091111214654 cert_perms=0 cert_principal=bjensen@EXAMPLE.COM cert_serial=47 cert_spki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cert_subject=CN=Babs Jensen cert_subject_der=3016311430120603550403130B42616273204A656E73656E cert_token=NSS Certificate DB Test complete. certmonger-0.78.6/tests/008-certread/run.sh0000775000175000017500000000551012645513264015320 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" cert='-----BEGIN CERTIFICATE----- MIIDMTCCAhmgAwIBAgIBRzANBgkqhkiG9w0BAQsFADAWMRQwEgYDVQQDEwtCYWJz IEplbnNlbjAeFw0wOTExMTEyMTQ2NTRaFw0wOTEyMTEyMTQ2NTRaMBYxFDASBgNV BAMTC0JhYnMgSmVuc2VuMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA x4EdXC5qTDGng6w9P6iiCHPKvlKzIrKUon5A/gGdDPE1KZPc765u1GqC//VF6SPf RnnpAxfcP1yAl91EKZJNDokum5uBfUNm2DIeriOdS2Jiw5vNDzf45eU7+RQi0ZUl rbfTz6sBDoWSkjxLRbCJeB9khmZsiOCGSl+P5dM+2NWwHApXGvf374erTMD7VjMo 9kR76ZTQLyzvOHS3MSJdURw6fAsvblCkRUNRXF0cocF+dU6aw32O70E7jxv7MggH mq1JKKv6NOz34mpFfTSew9dWieFcwc7E6Nz2kwlXcPzAh9fN5bXTE0DdhgKLrpeJ lOJx+wVXxnjsyurTLK0J7QIDAQABo4GJMIGGMHYGA1UdEQEBAARsMGqBEGJhYnNA ZXhhbXBsZS5jb22gIwYKKwYBBAGCNxQCA6AVDBNiamVuc2VuQEVYQU1QTEUuQ09N oDEGBisGAQUCAqAnMCWgDRsLRVhBTVBMRS5DT02hFDASoAMCAQGhCzAJGwdiamVu c2VuMAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggEBAKwbX1XJIn78vSqE /VEnMECQG46z7JPJC0+40fqpF2chC2LwFGWTInbfrq0AVOJ3hFP4b8UY20KhjOYv 5SWQXotbOBUjqAGM69/IG9eNGoMi7yaeGCxq3O+yyyR8Nh2GfraHVeIhywtfyIft Iy4wMPoh6qoWCSyxokNTTsFhlV/Ka7e8fDqAGKWJvABzV4Qd6MxN9MNrVoYc5UcI /JzTBBsjXY4BF7xLgB5hAsL7PHAOYlraZkCuIP+8dEaCTdim8b9jVgPHVTp+mxmL yxLfZh7aPfW0TcCn4tVFugebEL1bFz9Sok0F1j7uYdu5e6f3jw+QUyE24KOGFTtQ i6k3fDQ= -----END CERTIFICATE-----' echo "$cert" | sed -e 's,^$,,g' -e 's,^ ,,g' > cert.original # Import it into NSS's database and read it back. certutil -d "$tmpdir" -A -n cert -t u,u,u < cert.original cat > entry.nss << EOF id=Test cert_storage_type=NSSDB cert_storage_location=$tmpdir cert_nickname=cert EOF $toolsdir/certread entry.nss # Read it from a PEM file. cp cert.original cert.openssl cat > entry.openssl << EOF id=Test cert_storage_type=FILE cert_storage_location=$tmpdir/cert.openssl EOF $toolsdir/certread entry.openssl # Strip out storage keywords. egrep -v '^(cert_storage_type|cert_storage_location|cert_nickname|cert_token)' entry.nss >\ entry.nss.clean egrep -v '^(cert_storage_type|cert_storage_location|cert_nickname|cert_token)' entry.openssl >\ entry.openssl.clean awk '/^cert=.*BEGIN CERTIFICATE/,/END CERTIFICATE/{print}{;}' entry.nss >> entry.nss.clean awk '/^cert=.*BEGIN CERTIFICATE/,/END CERTIFICATE/{print}{;}' entry.openssl >> entry.openssl.clean if ! grep -q '^cert=.*BEGIN CERTIFICATE' entry.nss.clean && \ ! grep -q '^ -----END CERTIFICATE-----' entry.nss.clean ; then echo Failed to pull certificate out of NSS. exit 1 fi if ! grep -q '^cert=.*BEGIN CERTIFICATE' entry.openssl.clean && \ ! grep -q '^ -----END CERTIFICATE-----' entry.openssl.clean ; then echo Failed to pull certificate out of OpenSSL. exit 1 fi # Compare the two cleaned entry files. if ! cmp entry.nss.clean entry.openssl.clean ; then echo Read certificates differently. diff -u entry.nss.clean entry.openssl.clean exit 1 fi # Let the caller make sure it looks right. grep ^cert_ entry.nss.clean | sort grep ^cert_token entry.nss echo Test complete. certmonger-0.78.6/tests/007-certsave-sql/0000775000175000017500000000000012645513301015043 500000000000000certmonger-0.78.6/tests/007-certsave-sql/expected.out0000664000175000017500000000257512645513264017336 00000000000000[nss:wrongnick] [nss:wrongcert] [nss:right] 1: "cert" [openssl:wrong] [openssl:right] dos2unix: converting file cert.original to unix format... dos2unix: converting file cert.nss to unix format... dos2unix: converting file cert.openssl to unix format... [openssl:rosubdir] Failed to save (FILE:${tmpdir}/rosubdir/cert.openssl), filesystem permissions error. [openssl:rwsubdir] Failed to save (FILE:${tmpdir}/rwsubdir/cert.openssl), filesystem permissions error. Testing setting trust to ,,: baseline: cert ,, right nickname, right subject: cert ,, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to P,,: baseline: cert P,, right nickname, right subject: cert P,, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to ,P,: baseline: cert ,P, right nickname, right subject: cert ,P, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to CT,C,: baseline: cert CT,C, right nickname, right subject: cert CT,C, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to C,c,p: baseline: cert C,c,p right nickname, right subject: cert C,c,p wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Skipping rosubdir test. Skipping rwsubdir test. Test complete. certmonger-0.78.6/tests/007-certsave-sql/run.sh0000775000175000017500000000007212645513264016135 00000000000000#!/bin/bash -e exec env scheme=sql ../007-certsave/run.sh certmonger-0.78.6/tests/007-certsave-sql/prequal.sh0000775000175000017500000000014512645513264017003 00000000000000#!/bin/sh if test `id -u` -eq 0 ; then echo "This test won't work right if run as root." exit 1 fi certmonger-0.78.6/tests/007-certsave-dbm/0000775000175000017500000000000012645513301015006 500000000000000certmonger-0.78.6/tests/007-certsave-dbm/expected.out0000664000175000017500000000277112645513264017277 00000000000000[nss:wrongnick] [nss:wrongcert] [nss:right] 1: "cert" [openssl:wrong] [openssl:right] dos2unix: converting file cert.original to unix format... dos2unix: converting file cert.nss to unix format... dos2unix: converting file cert.openssl to unix format... [openssl:rosubdir] Failed to save (FILE:${tmpdir}/rosubdir/cert.openssl), filesystem permissions error. [openssl:rwsubdir] Failed to save (FILE:${tmpdir}/rwsubdir/cert.openssl), filesystem permissions error. Testing setting trust to ,,: baseline: cert ,, right nickname, right subject: cert ,, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to P,,: baseline: cert P,, right nickname, right subject: cert P,, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to ,P,: baseline: cert ,P, right nickname, right subject: cert ,P, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to CT,C,: baseline: cert CT,C, right nickname, right subject: cert CT,C, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to C,c,p: baseline: cert C,c,p right nickname, right subject: cert C,c,p wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, [nss:rosubdir] Failed to save (NSS:${tmpdir}/rosubdir), filesystem permissions error. [nss:rwsubdir] Failed to save (NSS:${tmpdir}/rwsubdir), filesystem permissions error. Test complete. certmonger-0.78.6/tests/007-certsave-dbm/run.sh0000775000175000017500000000007212645513264016100 00000000000000#!/bin/bash -e exec env scheme=dbm ../007-certsave/run.sh certmonger-0.78.6/tests/007-certsave-dbm/prequal.sh0000775000175000017500000000014512645513264016746 00000000000000#!/bin/sh if test `id -u` -eq 0 ; then echo "This test won't work right if run as root." exit 1 fi certmonger-0.78.6/tests/007-certsave/0000775000175000017500000000000012645513301014246 500000000000000certmonger-0.78.6/tests/007-certsave/expected.out0000664000175000017500000000277112645513264016537 00000000000000[nss:wrongnick] [nss:wrongcert] [nss:right] 1: "cert" [openssl:wrong] [openssl:right] dos2unix: converting file cert.original to unix format... dos2unix: converting file cert.nss to unix format... dos2unix: converting file cert.openssl to unix format... [openssl:rosubdir] Failed to save (FILE:${tmpdir}/rosubdir/cert.openssl), filesystem permissions error. [openssl:rwsubdir] Failed to save (FILE:${tmpdir}/rwsubdir/cert.openssl), filesystem permissions error. Testing setting trust to ,,: baseline: cert ,, right nickname, right subject: cert ,, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to P,,: baseline: cert P,, right nickname, right subject: cert P,, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to ,P,: baseline: cert ,P, right nickname, right subject: cert ,P, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to CT,C,: baseline: cert CT,C, right nickname, right subject: cert CT,C, wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, Testing setting trust to C,c,p: baseline: cert C,c,p right nickname, right subject: cert C,c,p wrong nickname, right subject: cert ,, wrong subject, right nickname: cert ,, [nss:rosubdir] Failed to save (NSS:${tmpdir}/rosubdir), filesystem permissions error. [nss:rwsubdir] Failed to save (NSS:${tmpdir}/rwsubdir), filesystem permissions error. Test complete. certmonger-0.78.6/tests/007-certsave/run.sh0000775000175000017500000001735612645513264015355 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb ${scheme:+${scheme}:}$tmpdir wrongcert='-----BEGIN CERTIFICATE----- MIIDQTCCAimgAwIBAgIBBTANBgkqhkiG9w0BAQsFADASMRAwDgYDVQQDEwdwaWxs Ym94MB4XDTExMDMyMzE2NTIyMFoXDTEyMDMyMzE2NTIyMFowEjEQMA4GA1UEAxMH cGlsbGJveDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKw+VY4P8khm FC8uQPkjN2xHIURUewBZMYC5r/rWMbbSXCVCes63PEBP8uxKriuBLgwY44pZbUO0 JMezP4+kqSWZPZPKEPTvINJksNbewH51DGvMdGOh0mJhJqK/MjNTainmIWXqiwz7 9Bhr0Py4SzdMzsmyTfJfL+CKGuS+cydSfhdc/e1XrFwyM31nGjt2Zhk3EupcraTG ngoEj8tPuPBjLCKprm89pjdBWtUa2ruCZrPy09uD/5bg/dRja1l1MxRvpGnwVXzy CAc7LJh32jwkthwxgvxR0pVp0rnqg+FjHPp/bqgomac/upHcmCDI4zPJSlnqJhgD FysndL2TGlECAwEAAaOBoTCBnjB2BgNVHREBAQAEbDBqggdwaWxsYm94oCcGCisG AQQBgjcUAgOgGQwXaG9zdC9waWxsYm94QFJFREhBVC5DT02gNgYGKwYBBQICoCww KqAMGwpSRURIQVQuQ09NoRowGKADAgEBoREwDxsEaG9zdBsHcGlsbGJveDAWBgNV HSUBAQAEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUA A4IBAQAK1F0TEZEJL/i+GhcNOQJpbFKK2McOCH6+PH1TRfClPk/y0nH3jS/HZI1s ppHAYXOl4UWaPHKPhuHFi6y/Uh11trQ5v5Gm01Y16jvcS8UJVHQphRri6FF0iIL0 a15w3l3CcJRneDbX2hhi72ZODYzCzxdalF+ysHOyH6+ZYwWz1UR+zrz9qbqVMtLo YT4fxzSEEbg7VpvDOkfCBtXyAAPi307yqVoXWtJkdRwYt4fmCih9tn/GHPrRN46F G4IHEyvT9+WN2iqQQFpPkq8iyx4+3xyPs+/i6dIuDbZoTZ7aXjuwY+Rlz+xbbDRk Szk1zDVf9U0hdr0BC3cDhfbVysgx -----END CERTIFICATE-----' cert='-----BEGIN CERTIFICATE----- MIIDBTCCAe2gAwIBAgIBRDANBgkqhkiG9w0BAQsFADAAMB4XDTA5MTExMTE3MDMw N1oXDTA5MTIxMTE3MDMwN1owADCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMeBHVwuakwxp4OsPT+ooghzyr5SsyKylKJ+QP4BnQzxNSmT3O+ubtRqgv/1 Rekj30Z56QMX3D9cgJfdRCmSTQ6JLpubgX1DZtgyHq4jnUtiYsObzQ83+OXlO/kU ItGVJa2308+rAQ6FkpI8S0WwiXgfZIZmbIjghkpfj+XTPtjVsBwKVxr39++Hq0zA +1YzKPZEe+mU0C8s7zh0tzEiXVEcOnwLL25QpEVDUVxdHKHBfnVOmsN9ju9BO48b +zIIB5qtSSir+jTs9+JqRX00nsPXVonhXMHOxOjc9pMJV3D8wIfXzeW10xNA3YYC i66XiZTicfsFV8Z47Mrq0yytCe0CAwEAAaOBiTCBhjB2BgNVHREBAQAEbDBqgRBi YWJzQGV4YW1wbGUuY29toCMGCisGAQQBgjcUAgOgFQwTYmplbnNlbkBFWEFNUExF LkNPTaAxBgYrBgEFAgKgJzAloA0bC0VYQU1QTEUuQ09NoRQwEqADAgEBoQswCRsH YmplbnNlbjAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQAkHNQIKsgS yhowGHe8wtFD8Z+4bdRJ0NruMGltj+69AZTBt3Jo5ZvS+4UWqfRTMqZf16/uQGVJ BHVqYQr/LOkhB2j9vew7V4zhYPH23kAJO8P2lYZXX24nB8LlqRObVafPrQyrLVXU W481O+AzIFBtNIoi+sbsVm0COp8JGUo5nooBip5+as8ufQqCUu0SxhMpaokri9mB 5V3fxIA1SquOw/6aIUEir5Mi2kKUCVYm8VP9CrdYu0vVGoBZ2GkNGsD4MZS/+a6v Lgdt6ebhXuOUlaTMEYwgsJS4z9EB31oHyOt/YlJjR/fp434JRxPBfXAnXEzI9apG /DXE+1dr1yFa -----END CERTIFICATE-----' echo "$cert" | sed -e 's,^$,,g' -e 's,^ ,,g' > cert.original echo "$wrongcert" | sed -e 's,^$,,g' -e 's,^ ,,g' > cert.wrong # Save the right certificate to NSS's database with the wrong nickname. echo "[nss:wrongnick]" cat > entry.nss << EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=wrongnick cert=$cert EOF $toolsdir/certsave entry.nss # Save the wrong certificate to NSS's database with the right nickname. echo "[nss:wrongcert]" cat > entry.nss << EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=cert cert=$wrongcert EOF $toolsdir/certsave entry.nss # Save the right certificate to NSS's database and read it back. echo "[nss:right]" cat > entry.nss << EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=cert cert=$cert EOF $toolsdir/certsave entry.nss $toolsdir/listnicks entry.nss certutil -d ${scheme:+${scheme}:}$tmpdir -L -n cert -a > cert.nss # Save the wrong certificate to the PEM file. echo "[openssl:wrong]" cat > entry.openssl << EOF cert_storage_type=FILE cert_storage_location=$tmpdir/cert.openssl cert=$wrongcert EOF $toolsdir/certsave entry.openssl # Save the right certificate to the PEM file. echo "[openssl:right]" cat > entry.openssl << EOF cert_storage_type=FILE cert_storage_location=$tmpdir/cert.openssl cert=$cert EOF $toolsdir/certsave entry.openssl # Compare the three. run_dos2unix cert.original run_dos2unix cert.nss run_dos2unix cert.openssl if ! cmp cert.original cert.nss ; then echo Original and NSS disagree "(${scheme:+${scheme}:}$tmpdir)". cat cert.original cert.nss exit 1 fi if ! cmp cert.original cert.openssl ; then echo Original and OpenSSL disagree. cat cert.original cert.openssl exit 1 fi if ! cmp cert.nss cert.openssl ; then echo NSS and OpenSSL disagree. cat cert.nss cert.openssl exit 1 fi # Try to save the certificate to the read-only directory. echo "[openssl:rosubdir]" cat > entry.openssl << EOF cert_storage_type=FILE cert_storage_location=$tmpdir/rosubdir/cert.openssl cert=$cert EOF $toolsdir/certsave entry.openssl || true # Try to save the certificate to the read-write directory, read-only file. echo "[openssl:rwsubdir]" touch $tmpdir/rwsubdir/cert.openssl chmod u-w $tmpdir/rwsubdir/cert.openssl cat > entry.openssl << EOF cert_storage_type=FILE cert_storage_location=$tmpdir/rwsubdir/cert.openssl cert=$cert EOF $toolsdir/certsave entry.openssl || true # Now tweak the trust settings on the NSS certificate. The "u" flag seems to # be tied to whether or not we have a matching private key, so we can't mess # with it. for trust in ,, P,, ,P, CT,C, C,c,p ; do echo Testing setting trust to "$trust": # Save the right certificate to NSS's database and read it back. initnssdb ${scheme:+${scheme}:}$tmpdir cat > entry.nss <<- EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=cert cert=$cert EOF $toolsdir/certsave entry.nss certutil -d ${scheme:+${scheme}:}$tmpdir -M -n cert -t $trust echo -n " baseline: " certutil -d ${scheme:+${scheme}:}$tmpdir -L | grep cert | sed -r 's,[ \t]+, ,g' $toolsdir/certsave entry.nss echo -n " right nickname, right subject: " certutil -d ${scheme:+${scheme}:}$tmpdir -L | grep cert | sed -r 's,[ \t]+, ,g' # Save the right certificate to NSS's database with the wrong nickname. initnssdb ${scheme:+${scheme}:}$tmpdir $toolsdir/certsave entry.nss cat > entry.nss <<- EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=wrongnick cert=$cert EOF $toolsdir/certsave entry.nss certutil -d ${scheme:+${scheme}:}$tmpdir -M -n wrongnick -t $trust # Save the right certificate to NSS's database and read it back. cat > entry.nss <<- EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=cert cert=$cert EOF $toolsdir/certsave entry.nss echo -n " wrong nickname, right subject: " certutil -d ${scheme:+${scheme}:}$tmpdir -L | grep cert | sed -r 's,[ \t]+, ,g' # Save the wrong certificate to NSS's database with the right nickname. initnssdb ${scheme:+${scheme}:}$tmpdir $toolsdir/certsave entry.nss cat > entry.nss <<- EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=cert cert=$wrongcert EOF $toolsdir/certsave entry.nss certutil -d ${scheme:+${scheme}:}$tmpdir -M -n cert -t $trust # Save the right certificate to NSS's database and read it back. cat > entry.nss <<- EOF cert_storage_type=NSSDB cert_storage_location=${scheme:+${scheme}:}$tmpdir cert_nickname=cert cert=$cert EOF $toolsdir/certsave entry.nss echo -n " wrong subject, right nickname: " certutil -d ${scheme:+${scheme}:}$tmpdir -L | grep cert | sed -r 's,[ \t]+, ,g' done if test "$scheme" = sql ; then echo Skipping rosubdir test. else # Try to save the certificate to the read-only directory. echo "[nss:rosubdir]" cat > entry.nss <<- EOF cert_storage_type=NSSDB cert_storage_location=$tmpdir/rosubdir cert_nickname=cert cert=$cert EOF $toolsdir/certsave entry.nss || true fi if test "$scheme" = sql ; then echo Skipping rwsubdir test. else # Try to save the certificate to the read-write directory, read-only file. echo "[nss:rwsubdir]" cat > entry.nss <<- EOF cert_storage_type=NSSDB cert_storage_location=$tmpdir/rwsubdir cert_nickname=cert cert=$cert EOF $toolsdir/certsave entry.nss || true fi echo Test complete. certmonger-0.78.6/tests/007-certsave/prequal.sh0000775000175000017500000000014512645513264016206 00000000000000#!/bin/sh if test `id -u` -eq 0 ; then echo "This test won't work right if run as root." exit 1 fi certmonger-0.78.6/tests/006-serial/0000775000175000017500000000000012645513301013710 500000000000000certmonger-0.78.6/tests/006-serial/expected.out0000664000175000017500000001144712645513264016201 00000000000000Starting value = 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F 10 11 12 13 14 15 16 17 18 19 1A 1B 1C 1D 1E 1F 20 21 22 23 24 25 26 27 28 29 2A 2B 2C 2D 2E 2F 30 31 32 33 34 35 36 37 38 39 3A 3B 3C 3D 3E 3F 40 41 42 43 44 45 46 47 48 49 4A 4B 4C 4D 4E 4F 50 51 52 53 54 55 56 57 58 59 5A 5B 5C 5D 5E 5F 60 61 62 63 64 65 66 67 68 69 6A 6B 6C 6D 6E 6F 70 71 72 73 74 75 76 77 78 79 7A 7B 7C 7D 7E 7F 0080 0081 0082 0083 0084 0085 0086 0087 0088 0089 008A 008B 008C 008D 008E 008F 0090 0091 0092 0093 0094 0095 0096 0097 0098 0099 009A 009B 009C 009D 009E 009F 00A0 00A1 00A2 00A3 00A4 00A5 00A6 00A7 00A8 00A9 00AA 00AB 00AC 00AD 00AE 00AF 00B0 00B1 00B2 00B3 00B4 00B5 00B6 00B7 00B8 00B9 00BA 00BB 00BC 00BD 00BE 00BF 00C0 00C1 00C2 00C3 00C4 00C5 00C6 00C7 00C8 00C9 00CA 00CB 00CC 00CD 00CE 00CF 00D0 00D1 00D2 00D3 00D4 00D5 00D6 00D7 00D8 00D9 00DA 00DB 00DC 00DD 00DE 00DF 00E0 00E1 00E2 00E3 00E4 00E5 00E6 00E7 00E8 00E9 00EA 00EB 00EC 00ED 00EE 00EF 00F0 00F1 00F2 00F3 00F4 00F5 00F6 00F7 00F8 00F9 00FA 00FB 00FC 00FD 00FE 00FF 0100 0101 0102 0103 0104 0105 0106 0107 0108 0109 010A 010B 010C 010D 010E 010F 0110 0111 0112 0113 0114 0115 0116 0117 0118 0119 011A 011B 011C 011D 011E 011F 0120 0121 0122 0123 0124 0125 0126 0127 0128 0129 012A 012B 012C 012D 012E 012F 0130 0131 0132 0133 0134 0135 0136 0137 0138 0139 013A 013B 013C 013D 013E 013F 0140 0141 0142 0143 0144 0145 0146 0147 0148 0149 014A 014B 014C 014D 014E 014F 0150 0151 0152 0153 0154 0155 0156 0157 0158 0159 015A 015B 015C 015D 015E 015F 0160 0161 0162 0163 0164 0165 0166 0167 0168 0169 016A 016B 016C 016D 016E 016F 0170 0171 0172 0173 0174 0175 0176 0177 0178 0179 017A 017B 017C 017D 017E 017F 0180 0181 0182 0183 0184 0185 0186 0187 0188 0189 018A 018B 018C 018D 018E 018F 0190 0191 0192 0193 0194 0195 0196 0197 0198 0199 019A 019B 019C 019D 019E 019F 01A0 01A1 01A2 01A3 01A4 01A5 01A6 01A7 01A8 01A9 01AA 01AB 01AC 01AD 01AE 01AF 01B0 01B1 01B2 01B3 01B4 01B5 01B6 01B7 01B8 01B9 01BA 01BB 01BC 01BD 01BE 01BF 01C0 01C1 01C2 01C3 01C4 01C5 01C6 01C7 01C8 01C9 01CA 01CB 01CC 01CD 01CE 01CF 01D0 01D1 01D2 01D3 01D4 01D5 01D6 01D7 01D8 01D9 01DA 01DB 01DC 01DD 01DE 01DF 01E0 01E1 01E2 01E3 01E4 01E5 01E6 01E7 01E8 01E9 01EA 01EB 01EC 01ED 01EE 01EF 01F0 01F1 01F2 01F3 01F4 01F5 01F6 01F7 01F8 01F9 01FA 01FB 01FC 01FD 01FE 01FF 0200 0201 0202 0203 0204 0205 0206 0207 0208 0209 020A 020B 020C 020D 020E 020F 0210 0211 0212 0213 0214 0215 0216 0217 0218 0219 021A 021B 021C 021D 021E 021F 0220 0221 0222 0223 0224 0225 0226 0227 0228 0229 022A 022B 022C 022D 022E 022F 0230 0231 0232 0233 0234 0235 0236 0237 0238 0239 023A 023B 023C 023D 023E 023F 0240 0241 0242 0243 0244 0245 0246 0247 0248 0249 024A 024B 024C 024D 024E 024F 0250 0251 0252 0253 0254 0255 0256 0257 0258 0259 025A 025B 025C 025D 025E 025F 0260 0261 0262 0263 0264 0265 0266 0267 0268 0269 026A 026B 026C 026D 026E 026F 0270 0271 0272 0273 0274 0275 0276 0277 0278 0279 027A 027B 027C 027D 027E 027F 0280 0281 0282 0283 0284 0285 0286 0287 0288 0289 028A 028B 028C 028D 028E 028F 0290 0291 0292 0293 0294 0295 0296 0297 0298 0299 029A 029B 029C 029D 029E 029F 02A0 02A1 02A2 02A3 02A4 02A5 02A6 02A7 02A8 02A9 02AA 02AB 02AC 02AD 02AE 02AF 02B0 02B1 02B2 02B3 02B4 02B5 02B6 02B7 02B8 02B9 02BA 02BB 02BC 02BD 02BE 02BF 02C0 02C1 02C2 02C3 02C4 02C5 02C6 02C7 02C8 02C9 02CA 02CB 02CC 02CD 02CE 02CF 02D0 02D1 02D2 02D3 02D4 02D5 02D6 02D7 02D8 02D9 02DA 02DB 02DC 02DD 02DE 02DF 02E0 02E1 02E2 02E3 02E4 02E5 02E6 02E7 02E8 02E9 02EA 02EB 02EC 02ED 02EE 02EF 02F0 02F1 02F2 02F3 02F4 02F5 02F6 02F7 02F8 02F9 02FA 02FB 02FC 02FD 02FE 02FF 0300 0301 0302 0303 0304 0305 0306 0307 0308 0309 030A 030B 030C 030D 030E 030F 0310 0311 0312 0313 0314 0315 0316 0317 0318 0319 031A 031B 031C 031D 031E 031F 0320 0321 0322 0323 0324 0325 0326 0327 0328 0329 032A 032B 032C 032D 032E 032F 0330 0331 0332 0333 0334 0335 0336 0337 0338 0339 033A 033B 033C 033D 033E 033F 0340 0341 0342 0343 0344 0345 0346 0347 0348 0349 034A 034B 034C 034D 034E 034F 0350 0351 0352 0353 0354 0355 0356 0357 0358 0359 035A 035B 035C 035D 035E 035F 0360 0361 0362 0363 0364 0365 0366 0367 0368 0369 036A 036B 036C 036D 036E 036F 0370 0371 0372 0373 0374 0375 0376 0377 0378 0379 037A 037B 037C 037D 037E 037F 0380 0381 0382 0383 0384 0385 0386 0387 0388 0389 038A 038B 038C 038D 038E 038F 0390 0391 0392 0393 0394 0395 0396 0397 0398 0399 039A 039B 039C 039D 039E 039F 03A0 03A1 03A2 03A3 03A4 03A5 03A6 03A7 03A8 03A9 03AA 03AB 03AC 03AD 03AE 03AF 03B0 03B1 03B2 03B3 03B4 03B5 03B6 03B7 03B8 03B9 03BA 03BB 03BC 03BD 03BE 03BF 03C0 03C1 03C2 03C3 03C4 03C5 03C6 03C7 03C8 03C9 03CA 03CB 03CC 03CD 03CE 03CF 03D0 03D1 03D2 03D3 03D4 03D5 03D6 03D7 03D8 03D9 03DA 03DB 03DC 03DD 03DE 03DF 03E0 03E1 03E2 03E3 03E4 03E5 03E6 03E7 03E8 03E9 03EA 03EB 03EC 03ED 03EE 03EF 03F0 03F1 03F2 03F3 03F4 03F5 03F6 03F7 03F8 03F9 03FA 03FB 03FC 03FD 03FE 03FF 0400 0401 Test complete. certmonger-0.78.6/tests/006-serial/run.sh0000775000175000017500000000015712645513264015006 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions "$builddir"/../src/serial-check echo Test complete. certmonger-0.78.6/tests/005-dbusm/0000775000175000017500000000000012645513301013542 500000000000000certmonger-0.78.6/tests/005-dbusm/expected.out0000664000175000017500000000557312645513264016036 00000000000000Message 0 - b:TRUE Message 1 - n:12345 Message 2 - p:/this/is/a/path/to/an/object Message 3 - s:This is a string. Message 4 - b:TRUE,p:/this/is/a/path/to/an/object Message 5 - b:TRUE,s:This is a string. Message 6 - s:This is a string.,b:TRUE Message 7 - s:This is a string.,n:12345 Message 8 - s:This is a first string.,s:This is a second string. Message 9 - [p:/this,p:/is,p:/a,p:/path,p:/array] Message 10 - [s:This,s:is,s:a,s:string,s:array.] Message 11 - s:This is a first string.,s:This is a second string.,s:This is a third string. Message 12 - s:This is a first string.,s:This is a second string.,n:12345 Message 13 - s:This is a first string.,s:This is a second string.,b:TRUE Message 14 - s:This is a first string.,s:This is a second string.,as:[s:This,s:is,s:a,s:string,s:array.] Message 15 - s:This is a first string.,s:This is a second string.s:This is a third string.,s:This is a fourth string. Message 16 - s:This is a first string.,s:This is a second string.s:(NULL)s:(NULL) Message 17 - s:This is a first string.,s:This is a second string.s:This is a third string.s:(NULL) Message 18 - s:This is a first string.,s:This is a second string.s:This is a third string.s:This is a fourth string. Message 19 - s:This is a string.,s:(NULL)s:(NULL),s:(NULL) Message 20 - s:This is a first string.,s:This is a second string.s:(NULL),s:(NULL) Message 21 - s:This is a first string.,s:This is a second string.s:This is a third string.,s:(NULL) Message 22 - s:This is a first string.,s:This is a second string.s:This is a third string.,s:This is a fourth string. Message 23 - s:This is a first string.,s:This is a second string.,[s:This,s:is,s:a,s:string,s:array.] Message 24 - s:This is a first string.,s:This is a second string.,s:This is a third string.,[s:This,s:is,s:a,s:string,s:array.] Message 25 - s:This is a first string.,s:This is a second string.,s:This is a third string.,n:23456,[s:This,s:is,s:a,s:first,s:string,s:array.],[s:This,s:is,s:a,s:second,s:string,s:array.],[s:This,s:is,s:a,s:third,s:string,s:array.],n:34567,[s:This,s:is,s:a,s:fourth,s:string,s:array.] Message 26 - s:This is a string.,[s:This,s:is,s:a,s:first,s:string,s:array.],[s:This,s:is,s:a,s:second,s:string,s:array.],[s:This,s:is,s:a,s:third,s:string,s:array.],n:12345,[s:This,s:is,s:a,s:fourth,s:string,s:array.] Message 27 - [(This,is),(a,string)] Message 28 - [{key 0=b:TRUE},{key 1=n:12345},{key 2=s:this is a string value},{key 3=as:[This,is,a,string,array.],{key 4=ass:[(This,is),(a,string)],{key 5=d:[{key 0=b:TRUE},{key 1=n:12345}]] Message 29 - s:This is a string.,[{key 0=b:TRUE},{key 1=n:12345},{key 2=s:this is a string value},{key 3=as:[This,is,a,string,array.],{key 4=ass:[(This,is),(a,string)],{key 5=d:[{key 0=b:TRUE},{key 1=n:12345}]] Message 30 - s:This is a first string.,s:This is a second string.,ass:[(This,is),(a,string)] Message 31 - s:This is a first string.,s:This is a second string.,s:This is a third string. Test complete. certmonger-0.78.6/tests/005-dbusm/run.sh0000775000175000017500000000015712645513264014640 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions "$builddir"/../src/tdbusm-check echo Test complete. certmonger-0.78.6/tests/004-selfsign-rsa/0000775000175000017500000000000012645513301015024 500000000000000certmonger-0.78.6/tests/004-selfsign-rsa/expected.out0000664000175000017500000000007412645513264017307 000000000000001024 OK. 1536 OK. 2048 OK. 3072 OK. 4096 OK. Test complete. certmonger-0.78.6/tests/004-selfsign-rsa/run.sh0000775000175000017500000000415512645513264016124 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" grep -v ^validity_period $CERTMONGER_CONFIG_DIR/certmonger.conf > \ $tmpdir/certmonger.conf cat >> $tmpdir/certmonger.conf << EOF [selfsign] validity_period = 46129s EOF function append() { cat >> $1 <<- EOF template_subject=CN=Babs Jensen template_hostname=localhost,localhost.localdomain template_email=root@localhost,root@localhost.localdomain template_principal=root@EXAMPLE.COM,root@FOO.EXAMPLE.COM template_ku=111 template_eku=id-kp-clientAuth,id-kp-emailProtection EOF } function setupca() { cat > ca.self <<- EOF id=self_signer ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=04 ca_internal_issue_time=40271 EOF } for size in 1024 1536 2048 3072 4096 ; do # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k rsa # Export the certificate and key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -passin pass: -out key.$size -nodes > /dev/null 2>&1 # Read that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF $toolsdir/keyiread entry.$size > /dev/null 2>&1 grep ^key_pubkey_info= entry.$size > pubkey.$size grep ^key_pubkey= entry.$size >> pubkey.$size # Use that NSS key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.nss.$size setupca $toolsdir/submit ca.self entry.$size > cert.nss.$size # Use that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.openssl.$size setupca $toolsdir/submit ca.self entry.$size > cert.openssl.$size # Now compare them. if ! cmp cert.nss.$size cert.openssl.$size ; then echo Certificates differ: cat cert.nss.$size cert.openssl.$size exit 1 else echo $size OK. fi done echo Test complete. certmonger-0.78.6/tests/004-selfsign-ec/0000775000175000017500000000000012645513301014626 500000000000000certmonger-0.78.6/tests/004-selfsign-ec/expected.out0000664000175000017500000000005712645513264017112 00000000000000verification OK verification OK Test complete. certmonger-0.78.6/tests/004-selfsign-ec/run.sh0000775000175000017500000000404612645513264015725 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" grep -v ^validity_period $CERTMONGER_CONFIG_DIR/certmonger.conf > \ $tmpdir/certmonger.conf cat >> $tmpdir/certmonger.conf << EOF [selfsign] validity_period = 46129s EOF function append() { cat >> $1 <<- EOF template_subject=CN=Babs Jensen template_hostname=localhost,localhost.localdomain template_email=root@localhost,root@localhost.localdomain template_principal=root@EXAMPLE.COM,root@FOO.EXAMPLE.COM template_ku=111 template_eku=id-kp-clientAuth,id-kp-emailProtection EOF } function setupca() { cat > ca.self <<- EOF id=self_signer ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=04 ca_internal_issue_time=40271 EOF } size=secp256r1 # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k ec -q $size # Export the certificate and key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -passin pass: -out key.$size -nodes > /dev/null 2>&1 # Read that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF $toolsdir/keyiread entry.$size > /dev/null 2>&1 grep ^key_pubkey_info= entry.$size > pubkey.$size grep ^key_pubkey= entry.$size >> pubkey.$size # Use that NSS key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.nss.$size setupca $toolsdir/submit ca.self entry.$size > cert.nss.$size # Use that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.openssl.$size setupca $toolsdir/submit ca.self entry.$size > cert.openssl.$size # Now check their signatures. grep -v CERTIFICATE cert.nss.$size | base64 -d | $toolsdir/checksig grep -v CERTIFICATE cert.openssl.$size | base64 -d | $toolsdir/checksig echo Test complete. certmonger-0.78.6/tests/004-selfsign-dsa/0000775000175000017500000000000012645513301015006 500000000000000certmonger-0.78.6/tests/004-selfsign-dsa/expected.out0000664000175000017500000000005712645513264017272 00000000000000verification OK verification OK Test complete. certmonger-0.78.6/tests/004-selfsign-dsa/run.sh0000775000175000017500000000404212645513264016101 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" grep -v ^validity_period $CERTMONGER_CONFIG_DIR/certmonger.conf > \ $tmpdir/certmonger.conf cat >> $tmpdir/certmonger.conf << EOF [selfsign] validity_period = 46129s EOF function append() { cat >> $1 <<- EOF template_subject=CN=Babs Jensen template_hostname=localhost,localhost.localdomain template_email=root@localhost,root@localhost.localdomain template_principal=root@EXAMPLE.COM,root@FOO.EXAMPLE.COM template_ku=111 template_eku=id-kp-clientAuth,id-kp-emailProtection EOF } function setupca() { cat > ca.self <<- EOF id=self_signer ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=04 ca_internal_issue_time=40271 EOF } size=2048 # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k dsa # Export the certificate and key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -passin pass: -out key.$size -nodes > /dev/null 2>&1 # Read that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF $toolsdir/keyiread entry.$size > /dev/null 2>&1 grep ^key_pubkey_info= entry.$size > pubkey.$size grep ^key_pubkey= entry.$size >> pubkey.$size # Use that NSS key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.nss.$size setupca $toolsdir/submit ca.self entry.$size > cert.nss.$size # Use that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.openssl.$size setupca $toolsdir/submit ca.self entry.$size > cert.openssl.$size # Now check their signatures. grep -v CERTIFICATE cert.nss.$size | base64 -d | $toolsdir/checksig grep -v CERTIFICATE cert.openssl.$size | base64 -d | $toolsdir/checksig echo Test complete. certmonger-0.78.6/tests/004-selfsign/0000775000175000017500000000000012645513301014241 500000000000000certmonger-0.78.6/tests/004-selfsign/expected.out0000664000175000017500000000007412645513264016524 000000000000001024 OK. 1536 OK. 2048 OK. 3072 OK. 4096 OK. Test complete. certmonger-0.78.6/tests/004-selfsign/run.sh0000775000175000017500000000524512645513264015342 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" grep -v ^validity_period $CERTMONGER_CONFIG_DIR/certmonger.conf > \ $tmpdir/certmonger.conf cat >> $tmpdir/certmonger.conf << EOF [selfsign] validity_period = 46129s EOF function append() { cat >> $1 <<- EOF template_subject=CN=Babs Jensen template_hostname=localhost,localhost.localdomain template_email=root@localhost,root@localhost.localdomain template_principal=root@EXAMPLE.COM,root@FOO.EXAMPLE.COM template_ku=111 template_eku=id-kp-clientAuth,id-kp-emailProtection template_challengepassword=ChallengePasswordIsEncodedInPlainText template_certfname=CertificateFriendlyName template_crldp=http://crl-1.example.com:12345/get,http://crl-2.example.com:12345/get template_ocsp=http://ocsp-1.example.com:12345,http://ocsp-2.example.com:12345 template_nscomment=certmonger generated this request template_ipaddress=127.0.0.1,::1 template_freshest_crl=http://dcrl-1.example.com:12345/get,http://dcrl-2.example.com:12345/get template_no_ocsp_check=1 template_profile=caAwesomeCert template_ns_certtype=client,email EOF } function setupca() { cat > ca.self <<- EOF id=self_signer ca_is_default=0 ca_type=INTERNAL:SELF ca_internal_serial=04 ca_internal_issue_time=40271 EOF } for size in 1024 1536 2048 3072 4096 ; do # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u # Export the certificate and key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -passin pass: -out key.$size -nodes > /dev/null 2>&1 # Read that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF $toolsdir/keyiread entry.$size > /dev/null 2>&1 grep ^key_pubkey_info= entry.$size > pubkey.$size grep ^key_pubkey= entry.$size >> pubkey.$size # Use that NSS key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.nss.$size setupca $toolsdir/submit ca.self entry.$size > cert.nss.$size # Use that OpenSSL key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size EOF append entry.$size cat pubkey.$size >> entry.$size $toolsdir/csrgen entry.$size > csr.openssl.$size setupca $toolsdir/submit ca.self entry.$size > cert.openssl.$size # Now compare them. if ! cmp cert.nss.$size cert.openssl.$size ; then echo Certificates differ: cat cert.nss.$size cert.openssl.$size exit 1 else echo $size OK. fi done cat cert.nss.$size 1>&2 echo Test complete. certmonger-0.78.6/tests/003-csrgen-rsa/0000775000175000017500000000000012645513301014472 500000000000000certmonger-0.78.6/tests/003-csrgen-rsa/expected.out0000664000175000017500000001213312645513264016754 00000000000000pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK 1024 OK. Signature OK pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK 1536 OK. Signature OK pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK 2048 OK. Signature OK pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK 3072 OK. Signature OK pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK 4096 OK. Signature OK The last CSR (the one with everything) was: 0:d=0 hl=4 l=1413 cons: SEQUENCE 4:d=1 hl=4 l=1133 cons: SEQUENCE 8:d=2 hl=2 l= 1 prim: INTEGER :00 11:d=2 hl=2 l= 22 cons: SEQUENCE 13:d=3 hl=2 l= 20 cons: SET 15:d=4 hl=2 l= 18 cons: SEQUENCE 17:d=5 hl=2 l= 3 prim: OBJECT :commonName 22:d=5 hl=2 l= 11 prim: PRINTABLESTRING :Babs Jensen 35:d=2 hl=4 l= 290 cons: SEQUENCE 39:d=3 hl=2 l= 13 cons: SEQUENCE 41:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption 52:d=4 hl=2 l= 0 prim: NULL 54:d=3 hl=4 l= 271 prim: BIT STRING 329:d=2 hl=4 l= 808 cons: cont [ 0 ] 333:d=3 hl=2 l= 52 cons: SEQUENCE 335:d=4 hl=2 l= 9 prim: OBJECT :challengePassword 346:d=4 hl=2 l= 39 cons: SET 348:d=5 hl=2 l= 37 prim: PRINTABLESTRING :ChallengePasswordIsEncodedInPlainText 387:d=3 hl=2 l= 61 cons: SEQUENCE 389:d=4 hl=2 l= 9 prim: OBJECT :friendlyName 400:d=4 hl=2 l= 48 cons: SET 402:d=5 hl=2 l= 46 prim: BMPSTRING 450:d=3 hl=4 l= 687 cons: SEQUENCE 454:d=4 hl=2 l= 9 prim: OBJECT :Extension Request 465:d=4 hl=4 l= 672 cons: SET 469:d=5 hl=4 l= 668 cons: SEQUENCE 473:d=6 hl=2 l= 14 cons: SEQUENCE 475:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Key Usage 480:d=7 hl=2 l= 1 prim: BOOLEAN :0 483:d=7 hl=2 l= 4 prim: OCTET STRING [HEX DUMP]:030205E0 489:d=6 hl=4 l= 264 cons: SEQUENCE 493:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Subject Alternative Name 498:d=7 hl=2 l= 1 prim: BOOLEAN :0 501:d=7 hl=3 l= 253 prim: OCTET STRING [HEX DUMP]:3081FA82096C6F63616C686F737482156C6F63616C686F73742E6C6F63616C646F6D61696E810E726F6F74406C6F63616C686F7374811A726F6F74406C6F63616C686F73742E6C6F63616C646F6D61696EA020060A2B060104018237140203A0120C10726F6F74404558414D504C452E434F4DA02E06062B0601050202A0243022A00D1B0B4558414D504C452E434F4DA111300FA003020101A10830061B04726F6F74A024060A2B060104018237140203A0160C14726F6F7440464F4F2E4558414D504C452E434F4DA03206062B0601050202A0283026A0111B0F464F4F2E4558414D504C452E434F4DA111300FA003020101A10830061B04726F6F74 757:d=6 hl=2 l= 32 cons: SEQUENCE 759:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Extended Key Usage 764:d=7 hl=2 l= 1 prim: BOOLEAN :0 767:d=7 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:301406082B0601050507030206082B06010505070304 791:d=6 hl=2 l= 18 cons: SEQUENCE 793:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Basic Constraints 798:d=7 hl=2 l= 1 prim: BOOLEAN :255 801:d=7 hl=2 l= 8 prim: OCTET STRING [HEX DUMP]:30060101FF020103 811:d=6 hl=2 l= 34 cons: SEQUENCE 813:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Authority Key Identifier 818:d=7 hl=2 l= 1 prim: BOOLEAN :0 821:d=7 hl=2 l= 24 prim: OCTET STRING [HEX DUMP]:30168014A9993E364706816ABA3E25717850C26C9CD0D89D 847:d=6 hl=2 l= 32 cons: SEQUENCE 849:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Subject Key Identifier 854:d=7 hl=2 l= 1 prim: BOOLEAN :0 857:d=7 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:0414A9993E364706816ABA3E25717850C26C9CD0D89D 881:d=6 hl=2 l= 107 cons: SEQUENCE 883:d=7 hl=2 l= 8 prim: OBJECT :Authority Information Access 893:d=7 hl=2 l= 1 prim: BOOLEAN :0 896:d=7 hl=2 l= 92 prim: OCTET STRING [HEX DUMP]:305A302B06082B06010505073001861F687474703A2F2F6F6373702D312E6578616D706C652E636F6D3A3132333435302B06082B06010505073001861F687474703A2F2F6F6373702D322E6578616D706C652E636F6D3A3132333435 990:d=6 hl=2 l= 96 cons: SEQUENCE 992:d=7 hl=2 l= 3 prim: OBJECT :X509v3 CRL Distribution Points 997:d=7 hl=2 l= 1 prim: BOOLEAN :0 1000:d=7 hl=2 l= 86 prim: OCTET STRING [HEX DUMP]:30543028A026A0248622687474703A2F2F63726C2D312E6578616D706C652E636F6D3A31323334352F6765743028A026A0248622687474703A2F2F63726C2D322E6578616D706C652E636F6D3A31323334352F676574 1088:d=6 hl=2 l= 51 cons: SEQUENCE 1090:d=7 hl=2 l= 9 prim: OBJECT :Netscape Comment 1101:d=7 hl=2 l= 1 prim: BOOLEAN :0 1104:d=7 hl=2 l= 35 prim: OCTET STRING [HEX DUMP]:1621636572746D6F6E6765722067656E65726174656420746869732072657175657374 1141:d=1 hl=2 l= 13 cons: SEQUENCE 1143:d=2 hl=2 l= 9 prim: OBJECT :sha256WithRSAEncryption 1154:d=2 hl=2 l= 0 prim: NULL 1156:d=1 hl=4 l= 257 prim: BIT STRING Test complete (32 combinations). certmonger-0.78.6/tests/003-csrgen-rsa/run.sh0000775000175000017500000002075112645513264015572 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 1024 1536 2048 3072 4096 ; do # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k rsa # Export the key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts 2>&1 # Read the public key and cache it. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size id=keyi$size EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 # Add the cached value to the prepping for the NSS copy. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size id=keyi$size EOF grep ^key_pubkey_info= entry.openssl.$size >> entry.nss.$size grep ^key_pubkey= entry.openssl.$size >> entry.nss.$size # Generate a new CSR for that certificate's key. $toolsdir/csrgen entry.nss.$size > csr.nss.$size grep ^spkac entry.nss.$size | sed s,spkac,SPKAC, > spkac.nss.$size # Generate a new CSR using the extracted key. $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size grep ^spkac entry.openssl.$size | sed s,spkac,SPKAC, > spkac.openssl.$size # They'd better be the same! if cmp csr.nss.$size csr.openssl.$size ; then if cmp spkac.nss.$size spkac.openssl.$size ; then echo $size OK. cat spkac.nss.$size | openssl spkac -verify -noout 2>&1 else echo With basic/default settings, SPKACs differ: cat spkac.nss.$size spkac.openssl.$size exit 1 fi else echo With basic/default settings, these differ: cat csr.nss.$size csr.openssl.$size exit 1 fi done iterate() { size=${1} subject=${2} hostname=${3} email=${4} principal=${5} ku=${6} eku=${7} challengepassword=${8} certfname=${9} ca=${10} capathlen=${11} crldp=${12} ocsp=${13} nscomment=${14} ${certnickname:+cert_nickname=$cert_nickname} # Generate a new CSR using the copy of the key that's in a file. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size key_pubkey=616263 id=keyi$size ${certfname:+cert_nickname=$certfname} ${challengepassword:+challenge_password=$challengepassword} ${subject:+template_subject=$subject} ${hostname:+template_hostname=$hostname} ${email:+template_email=$email} ${principal:+template_principal=$principal} ${ku:+template_ku=$ku} ${eku:+template_eku=$eku} ${ca:+template_is_ca=$ca} ${capathlen:+template_ca_path_length=$capathlen} ${crldp:+template_crldp=$crldp} ${ocsp:+template_ocsp=$ocsp} ${nscomment:+template_ns_comment=$nscomment} EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 echo key_pubkey=616263 >> entry.openssl.$size $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size # Generate a new CSR using the copy of the key in the NSS database. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size key_pubkey=616263 id=keyi$size ${certfname:+cert_nickname=$certfname} ${challengepassword:+challenge_password=$challengepassword} ${subject:+template_subject=$subject} ${hostname:+template_hostname=$hostname} ${email:+template_email=$email} ${principal:+template_principal=$principal} ${ku:+template_ku=$ku} ${eku:+template_eku=$eku} ${ca:+template_is_ca=$ca} ${capathlen:+template_ca_path_length=$capathlen} ${crldp:+template_crldp=$crldp} ${ocsp:+template_ocsp=$ocsp} ${nscomment:+template_ns_comment=$nscomment} EOF grep ^key_pubkey_info= entry.openssl.$size >> entry.nss.$size echo key_pubkey=616263 >> entry.openssl.$size $toolsdir/csrgen entry.nss.$size > csr.nss.$size # Both should verify. if test "`openssl req -verify -key key.$size -in csr.openssl.$size -noout 2>&1`" != "verify OK" ; then echo Signature failed for OpenSSL: cat csr.openssl.$size echo Private key: awk '/BEGIN PRIVATE KEY/,/END PRIVATE KEY/{print}{;}' $tmpdir/key.$size exit 1 fi if test "`openssl req -verify -key key.$size -in csr.nss.$size -noout 2>&1`" != "verify OK" ; then echo Signature failed for NSS: cat csr.nss.$size echo Private key: awk '/BEGIN PRIVATE KEY/,/END PRIVATE KEY/{print}{;}' $tmpdir/key.$size exit 1 fi # They'd better be the same! if ! cmp csr.nss.$size csr.openssl.$size ; then echo With these settings: tail -n +3 entry.nss.$size | sed 's,^$,,g' echo These differ: cat csr.nss.$size csr.openssl.$size echo Private key: awk '/BEGIN PRIVATE KEY/,/END PRIVATE KEY/{print}{;}' $tmpdir/key.$size exit 1 fi iteration=`expr $iteration + 1` } iteration=1 for size in 1024 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done for subject in CN=somehost "CN=Babs Jensen" ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done subject= for hostname in "" localhost,localhost.localdomain; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done hostname= for email in "" root@localhost,root@localhost.localdomain; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done email= for principal in "" root@EXAMPLE.COM,root@FOO.EXAMPLE.COM; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done principal= for ku in "" 1 10 111 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done ku= for eku in "" id-kp-clientAuth,id-kp-emailProtection ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done eku= for challengepassword in "" ChallengePasswordIsEncodedInPlainText ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done challengepassword= for certfname in "" CertificateFriendlyName ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done certfname= for ca in "" 0 1 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done ca= for capathlen in -1 3 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done capathlen= for crldp in "" http://crl-1.example.com:12345/get,http://crl-2.example.com:12345/get ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done crldp= for ocsp in "" http://ocsp-1.example.com:12345,http://ocsp-2.example.com:12345 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done ocsp= for nscomment in "" "certmonger generated this request" ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" done nscomment= size=2048 subject="CN=Babs Jensen" hostname=localhost,localhost.localdomain email=root@localhost,root@localhost.localdomain principal=root@EXAMPLE.COM,root@FOO.EXAMPLE.COM ku=111 eku=id-kp-clientAuth,id-kp-emailProtection challengepassword=ChallengePasswordIsEncodedInPlainText certfname=CertificateFriendlyName ca=1 capathlen=3 crldp=http://crl-1.example.com:12345/get,http://crl-2.example.com:12345/get ocsp=http://ocsp-1.example.com:12345,http://ocsp-2.example.com:12345 nscomment="certmonger generated this request" iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" echo "The last CSR (the one with everything) was:" openssl req -in csr.nss.$size -outform der | openssl asn1parse -inform der echo Test complete "($iteration combinations)". certmonger-0.78.6/tests/003-csrgen-ec/0000775000175000017500000000000012645513301014274 500000000000000certmonger-0.78.6/tests/003-csrgen-ec/expected.out0000664000175000017500000000017712645513264016563 00000000000000verify OK verify OK Signature OK Signature OK minicert.openssl.secp256r1.pem: OK minicert.nss.secp256r1.pem: OK Test complete. certmonger-0.78.6/tests/003-csrgen-ec/run.sh0000775000175000017500000000400712645513264015370 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" size=secp256r1 # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k ec -q $size # Export the key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts > /dev/null 2>&1 # Read the public key and cache it. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size id=keyi$size EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 # Add the cached value to the prepping for the NSS copy. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size id=keyi$size EOF # Generate a new CSR for that certificate's key. $toolsdir/csrgen entry.nss.$size > csr.nss.$size grep ^spkac= entry.nss.$size | sed s,spkac,SPKAC, > spkac.nss.$size # Generate a new CSR using the extracted key. $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size grep ^spkac= entry.openssl.$size | sed s,spkac,SPKAC, > spkac.openssl.$size # Pull out the mini-cert. grep ^minicert= entry.openssl.$size | sed s,^minicert=,, | base64 -d > minicert.openssl.$size openssl x509 -out minicert.openssl.$size.pem -in minicert.openssl.$size -inform der grep ^minicert= entry.nss.$size | sed s,^minicert=,, | base64 -d > minicert.nss.$size openssl x509 -out minicert.nss.$size.pem -in minicert.nss.$size -inform der # The RSA tests already verify the contents of the requests, so we really only # need to care about the signatures passing verification. openssl req -verify -noout < csr.nss.$size 2>&1 openssl req -verify -noout < csr.openssl.$size 2>&1 openssl spkac -verify -noout < spkac.nss.$size 2>&1 openssl spkac -verify -noout < spkac.openssl.$size 2>&1 openssl verify -CAfile minicert.openssl.$size.pem minicert.openssl.$size.pem 2>&1 openssl verify -CAfile minicert.nss.$size.pem minicert.nss.$size.pem 2>&1 echo Test complete. certmonger-0.78.6/tests/003-csrgen-dsa/0000775000175000017500000000000012645513301014454 500000000000000certmonger-0.78.6/tests/003-csrgen-dsa/expected.out0000664000175000017500000000016512645513264016740 00000000000000verify OK verify OK Signature OK Signature OK minicert.openssl.2048.pem: OK minicert.nss.2048.pem: OK Test complete. certmonger-0.78.6/tests/003-csrgen-dsa/run.sh0000775000175000017500000000400212645513264015543 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" size=2048 # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k dsa # Export the key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts > /dev/null 2>&1 # Read the public key and cache it. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size id=keyi$size EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 # Add the cached value to the prepping for the NSS copy. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size id=keyi$size EOF # Generate a new CSR for that certificate's key. $toolsdir/csrgen entry.nss.$size > csr.nss.$size grep ^spkac= entry.nss.$size | sed s,spkac,SPKAC, > spkac.nss.$size # Generate a new CSR using the extracted key. $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size grep ^spkac= entry.openssl.$size | sed s,spkac,SPKAC, > spkac.openssl.$size # Pull out the mini-cert. grep ^minicert= entry.openssl.$size | sed s,^minicert=,, | base64 -d > minicert.openssl.$size openssl x509 -out minicert.openssl.$size.pem -in minicert.openssl.$size -inform der grep ^minicert= entry.nss.$size | sed s,^minicert=,, | base64 -d > minicert.nss.$size openssl x509 -out minicert.nss.$size.pem -in minicert.nss.$size -inform der # The RSA tests already verify the contents of the requests, so we really only # need to care about the signatures passing verification. openssl req -verify -noout < csr.nss.$size 2>&1 openssl req -verify -noout < csr.openssl.$size 2>&1 openssl spkac -verify -noout < spkac.nss.$size 2>&1 openssl spkac -verify -noout < spkac.openssl.$size 2>&1 openssl verify -CAfile minicert.openssl.$size.pem minicert.openssl.$size.pem 2>&1 openssl verify -CAfile minicert.nss.$size.pem minicert.nss.$size.pem 2>&1 echo Test complete. certmonger-0.78.6/tests/003-csrgen/0000775000175000017500000000000012645513301013707 500000000000000certmonger-0.78.6/tests/003-csrgen/expected.out0000664000175000017500000001464512645513264016203 00000000000000pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK Signature OK minicert.openssl.1024.pem: OK 1024 OK. pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK Signature OK minicert.openssl.1536.pem: OK 1536 OK. pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK Signature OK minicert.openssl.2048.pem: OK 2048 OK. pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK Signature OK minicert.openssl.3072.pem: OK 3072 OK. pk12util: PKCS12 EXPORT SUCCESSFUL MAC verified OK Signature OK minicert.openssl.4096.pem: OK 4096 OK. The last CSR (the one with everything) was: 0:d=0 hl=4 l=1635 cons: SEQUENCE 4:d=1 hl=4 l=1355 cons: SEQUENCE 8:d=2 hl=2 l= 1 prim: INTEGER :00 11:d=2 hl=2 l= 22 cons: SEQUENCE 13:d=3 hl=2 l= 20 cons: SET 15:d=4 hl=2 l= 18 cons: SEQUENCE 17:d=5 hl=2 l= 3 prim: OBJECT :commonName 22:d=5 hl=2 l= 11 prim: PRINTABLESTRING :Babs Jensen 35:d=2 hl=4 l= 290 cons: SEQUENCE 39:d=3 hl=2 l= 13 cons: SEQUENCE 41:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption 52:d=4 hl=2 l= 0 prim: NULL 54:d=3 hl=4 l= 271 prim: BIT STRING 329:d=2 hl=4 l=1030 cons: cont [ 0 ] 333:d=3 hl=2 l= 52 cons: SEQUENCE 335:d=4 hl=2 l= 9 prim: OBJECT :challengePassword 346:d=4 hl=2 l= 39 cons: SET 348:d=5 hl=2 l= 37 prim: PRINTABLESTRING :ChallengePasswordIsEncodedInPlainText 387:d=3 hl=2 l= 61 cons: SEQUENCE 389:d=4 hl=2 l= 9 prim: OBJECT :friendlyName 400:d=4 hl=2 l= 48 cons: SET 402:d=5 hl=2 l= 46 prim: BMPSTRING 450:d=3 hl=4 l= 909 cons: SEQUENCE 454:d=4 hl=2 l= 9 prim: OBJECT :Extension Request 465:d=4 hl=4 l= 894 cons: SET 469:d=5 hl=4 l= 890 cons: SEQUENCE 473:d=6 hl=2 l= 14 cons: SEQUENCE 475:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Key Usage 480:d=7 hl=2 l= 1 prim: BOOLEAN :0 483:d=7 hl=2 l= 4 prim: OCTET STRING [HEX DUMP]:030205E0 489:d=6 hl=4 l= 290 cons: SEQUENCE 493:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Subject Alternative Name 498:d=7 hl=2 l= 1 prim: BOOLEAN :0 501:d=7 hl=4 l= 278 prim: OCTET STRING [HEX DUMP]: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 783:d=6 hl=2 l= 32 cons: SEQUENCE 785:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Extended Key Usage 790:d=7 hl=2 l= 1 prim: BOOLEAN :0 793:d=7 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:301406082B0601050507030206082B06010505070304 817:d=6 hl=2 l= 18 cons: SEQUENCE 819:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Basic Constraints 824:d=7 hl=2 l= 1 prim: BOOLEAN :255 827:d=7 hl=2 l= 8 prim: OCTET STRING [HEX DUMP]:30060101FF020103 837:d=6 hl=2 l= 34 cons: SEQUENCE 839:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Authority Key Identifier 844:d=7 hl=2 l= 1 prim: BOOLEAN :0 847:d=7 hl=2 l= 24 prim: OCTET STRING [HEX DUMP]:30168014A9993E364706816ABA3E25717850C26C9CD0D89D 873:d=6 hl=2 l= 32 cons: SEQUENCE 875:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Subject Key Identifier 880:d=7 hl=2 l= 1 prim: BOOLEAN :0 883:d=7 hl=2 l= 22 prim: OCTET STRING [HEX DUMP]:0414A9993E364706816ABA3E25717850C26C9CD0D89D 907:d=6 hl=2 l= 107 cons: SEQUENCE 909:d=7 hl=2 l= 8 prim: OBJECT :Authority Information Access 919:d=7 hl=2 l= 1 prim: BOOLEAN :0 922:d=7 hl=2 l= 92 prim: OCTET STRING [HEX DUMP]:305A302B06082B06010505073001861F687474703A2F2F6F6373702D312E6578616D706C652E636F6D3A3132333435302B06082B06010505073001861F687474703A2F2F6F6373702D322E6578616D706C652E636F6D3A3132333435 1016:d=6 hl=2 l= 96 cons: SEQUENCE 1018:d=7 hl=2 l= 3 prim: OBJECT :X509v3 CRL Distribution Points 1023:d=7 hl=2 l= 1 prim: BOOLEAN :0 1026:d=7 hl=2 l= 86 prim: OCTET STRING [HEX DUMP]:30543028A026A0248622687474703A2F2F63726C2D312E6578616D706C652E636F6D3A31323334352F6765743028A026A0248622687474703A2F2F63726C2D322E6578616D706C652E636F6D3A31323334352F676574 1114:d=6 hl=2 l= 106 cons: SEQUENCE 1116:d=7 hl=2 l= 3 prim: OBJECT :X509v3 Freshest CRL 1121:d=7 hl=2 l= 1 prim: BOOLEAN :0 1124:d=7 hl=2 l= 96 prim: OCTET STRING [HEX DUMP]:305E302DA02BA0298627687474703A2F2F63726C2D312E6578616D706C652E636F6D3A31323334352F67657464656C7461302DA02BA0298627687474703A2F2F63726C2D322E6578616D706C652E636F6D3A31323334352F67657464656C7461 1222:d=6 hl=2 l= 51 cons: SEQUENCE 1224:d=7 hl=2 l= 9 prim: OBJECT :Netscape Comment 1235:d=7 hl=2 l= 1 prim: BOOLEAN :0 1238:d=7 hl=2 l= 35 prim: OCTET STRING [HEX DUMP]:1621636572746D6F6E6765722067656E65726174656420746869732072657175657374 1275:d=6 hl=2 l= 18 cons: SEQUENCE 1277:d=7 hl=2 l= 9 prim: OBJECT :OCSP No Check 1288:d=7 hl=2 l= 1 prim: BOOLEAN :0 1291:d=7 hl=2 l= 2 prim: OCTET STRING [HEX DUMP]:0500 1295:d=6 hl=2 l= 44 cons: SEQUENCE 1297:d=7 hl=2 l= 9 prim: OBJECT :1.3.6.1.4.1.311.20.2 1308:d=7 hl=2 l= 1 prim: BOOLEAN :0 1311:d=7 hl=2 l= 28 prim: OCTET STRING [HEX DUMP]:1E1A006300610041007700650073006F006D00650043006500720074 1341:d=6 hl=2 l= 20 cons: SEQUENCE 1343:d=7 hl=2 l= 9 prim: OBJECT :Netscape Cert Type 1354:d=7 hl=2 l= 1 prim: BOOLEAN :0 1357:d=7 hl=2 l= 4 prim: OCTET STRING [HEX DUMP]:030205A0 1363:d=1 hl=2 l= 13 cons: SEQUENCE 1365:d=2 hl=2 l= 9 prim: OBJECT :sha256WithRSAEncryption 1376:d=2 hl=2 l= 0 prim: NULL 1378:d=1 hl=4 l= 257 prim: BIT STRING Test complete (69 combinations). certmonger-0.78.6/tests/003-csrgen/run.sh0000775000175000017500000003400012645513264014777 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 1024 1536 2048 3072 4096 ; do # Build a self-signed certificate. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u # Export the key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts 2>&1 # Read the public key and cache it. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size id=keyi$size EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 # Add the cached value to the prepping for the NSS copy. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size id=keyi$size EOF grep ^key_pubkey_info= entry.openssl.$size >> entry.nss.$size grep ^key_pubkey= entry.openssl.$size >> entry.nss.$size # Generate a new CSR for that certificate's key. $toolsdir/csrgen entry.nss.$size > csr.nss.$size grep ^spkac entry.nss.$size | sed s,spkac,SPKAC, > spkac.nss.$size grep ^scep_tx entry.nss.$size | sed s,^scep_tx=,, > sceptx.nss.$size if ! test -s sceptx.nss.$size ; then echo No SCEP TX ID \(NSS\) exit 1 fi grep ^minicert entry.nss.$size | sed s,^minicert=,, > minicert.nss.$size if ! test -s minicert.nss.$size ; then echo No minicert \(NSS\) exit 1 fi # Generate a new CSR using the extracted key. $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size grep ^spkac entry.openssl.$size | sed s,spkac,SPKAC, > spkac.openssl.$size grep ^scep_tx entry.openssl.$size | sed s,^scep_tx=,, > sceptx.openssl.$size if ! test -s sceptx.openssl.$size ; then echo No SCEP TX ID \(OpenSSL\) exit 1 fi grep ^minicert entry.openssl.$size | sed s,^minicert=,, > minicert.openssl.$size if ! test -s minicert.openssl.$size ; then echo No minicert \(OpenSSL\) exit 1 fi # They'd better be the same! if cmp csr.nss.$size csr.openssl.$size ; then if cmp spkac.nss.$size spkac.openssl.$size ; then if cmp sceptx.nss.$size sceptx.openssl.$size ; then cat spkac.nss.$size | openssl spkac -verify -noout 2>&1 if cmp minicert.nss.$size minicert.openssl.$size ; then base64 -d < minicert.openssl.$size | openssl x509 -out minicert.openssl.$size.pem -inform der openssl verify -CAfile minicert.openssl.$size.pem minicert.openssl.$size.pem echo $size OK. else echo With basic/default settings, minicerts differ \(NSS, OpenSSL\): cat minicert.nss.$size minicert.openssl.$size exit 1 fi else echo With basic/default settings, SCEP TX IDs differ \(NSS, OpenSSL\): cat sceptx.nss.$size sceptx.openssl.$size exit 1 fi else echo With basic/default settings, SPKACs differ \(NSS, OpenSSL\): cat spkac.nss.$size spkac.openssl.$size exit 1 fi else echo With basic/default settings, these differ \(NSS, OpenSSL\): cat csr.nss.$size csr.openssl.$size exit 1 fi done iterate() { size=${1} subject=${2} hostname=${3} email=${4} principal=${5} ku=${6} eku=${7} challengepassword=${8} certfname=${9} ca=${10} capathlen=${11} crldp=${12} ocsp=${13} nscomment=${14} subjectder=${15} ipaddress=${16} freshestcrl=${17} no_ocsp_check=${18} profile=${19} ns_certtype=${20} ${certnickname:+cert_nickname=$cert_nickname} # Generate a new CSR using the copy of the key that's in a file. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size key_pubkey=616263 id=keyi$size ${certfname:+cert_nickname=$certfname} ${challengepassword:+challenge_password=$challengepassword} ${subject:+template_subject=$subject} ${subjectder:+template_subject_der=$subjectder} ${hostname:+template_hostname=$hostname} ${email:+template_email=$email} ${principal:+template_principal=$principal} ${ku:+template_ku=$ku} ${eku:+template_eku=$eku} ${ca:+template_is_ca=$ca} ${capathlen:+template_ca_path_length=$capathlen} ${crldp:+template_crldp=$crldp} ${ocsp:+template_ocsp=$ocsp} ${nscomment:+template_ns_comment=$nscomment} ${ipaddress:+template_ipaddress=$ipaddress} ${freshestcrl:+template_freshest_crl=$freshestcrl} ${no_ocsp_check:+template_no_ocsp_check=$no_ocsp_check} ${profile:+template_profile=$profile} ${ns_certtype:+template_ns_certtype=$ns_certtype} EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 echo key_pubkey=616263 >> entry.openssl.$size $toolsdir/csrgen entry.openssl.$size > csr.openssl.$size # Generate a new CSR using the copy of the key in the NSS database. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size key_pubkey=616263 id=keyi$size ${certfname:+cert_nickname=$certfname} ${challengepassword:+challenge_password=$challengepassword} ${subject:+template_subject=$subject} ${subjectder:+template_subject_der=$subjectder} ${hostname:+template_hostname=$hostname} ${email:+template_email=$email} ${principal:+template_principal=$principal} ${ku:+template_ku=$ku} ${eku:+template_eku=$eku} ${ca:+template_is_ca=$ca} ${capathlen:+template_ca_path_length=$capathlen} ${crldp:+template_crldp=$crldp} ${ocsp:+template_ocsp=$ocsp} ${nscomment:+template_ns_comment=$nscomment} ${ipaddress:+template_ipaddress=$ipaddress} ${freshestcrl:+template_freshest_crl=$freshestcrl} ${no_ocsp_check:+template_no_ocsp_check=$no_ocsp_check} ${profile:+template_profile=$profile} ${ns_certtype:+template_ns_certtype=$ns_certtype} EOF grep ^key_pubkey_info= entry.openssl.$size >> entry.nss.$size echo key_pubkey=616263 >> entry.openssl.$size $toolsdir/csrgen entry.nss.$size > csr.nss.$size # Both should verify. if test "`openssl req -verify -key key.$size -in csr.openssl.$size -noout 2>&1`" != "verify OK" ; then echo Signature failed for OpenSSL: cat csr.openssl.$size echo Private key: awk '/BEGIN PRIVATE KEY/,/END PRIVATE KEY/{print}{;}' $tmpdir/key.$size exit 1 fi if test "`openssl req -verify -key key.$size -in csr.nss.$size -noout 2>&1`" != "verify OK" ; then echo Signature failed for NSS: cat csr.nss.$size echo Private key: awk '/BEGIN PRIVATE KEY/,/END PRIVATE KEY/{print}{;}' $tmpdir/key.$size exit 1 fi # They'd better be the same! if ! cmp csr.nss.$size csr.openssl.$size ; then echo With these settings: tail -n +3 entry.nss.$size | sed 's,^$,,g' echo These differ \(NSS, OpenSSL\): cat csr.nss.$size csr.openssl.$size echo Private key: awk '/BEGIN PRIVATE KEY/,/END PRIVATE KEY/{print}{;}' $tmpdir/key.$size exit 1 fi iteration=`expr $iteration + 1` } iteration=1 for size in 1024 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done for subject in "" "Babs Jensen" CN=somehost "CN=Babs Jensen" ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done subject= for subjectder in "" 30223120301E060355040313177361 30223120301E0603550403131773616265722E626F73746F6E2E7265646861742E636F6D ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done subjectder= for hostname in "" "," localhost,localhost.localdomain; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done hostname= for email in "" "," root@localhost,root@localhost.localdomain; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done email= for principal in "" "," root@EXAMPLE.COM,root@FOO.EXAMPLE.COM; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done principal= for ku in "" 1 10 111 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done ku= for eku in "" "," id-kp-clientAuth,id-kp-emailProtection ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done eku= for challengepassword in "" ChallengePasswordIsEncodedInPlainText ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done challengepassword= for certfname in "" CertificateFriendlyName ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done certfname= for ca in "" 0 1 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done ca= for capathlen in -1 3 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done capathlen= for crldp in "" "," http://crl-1.example.com:12345/get,http://crl-2.example.com:12345/get ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done crldp= for ocsp in "" "," http://ocsp-1.example.com:12345,http://ocsp-2.example.com:12345 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done ocsp= for nscomment in "" "certmonger generated this request" ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done nscomment= for ipaddress in "" "," "127.0.0.1" "::1" "blargh" "this request" "1.2.3.4,fe80::" ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done ipaddress= for freshestcrl in "" "," http://crl-1.example.com:12345/getdelta,http://crl-2.example.com:12345/getdelta ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done freshestcrl= for no_ocsp_check in "" 0 1 ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done no_ocsp_check= for profile in "" caLessThanAwesomeCert caAwesomeCert ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done profile= for ns_certtype in "" client server email objsign reserved sslca emailca objca client,email ; do iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" done ns_certtype= size=2048 subject="CN=Babs Jensen" hostname=localhost,localhost.localdomain email=root@localhost,root@localhost.localdomain principal=root@EXAMPLE.COM,root@FOO.EXAMPLE.COM ku=111 eku=id-kp-clientAuth,id-kp-emailProtection challengepassword=ChallengePasswordIsEncodedInPlainText certfname=CertificateFriendlyName ca=1 capathlen=3 crldp=http://crl-1.example.com:12345/get,http://crl-2.example.com:12345/get ocsp=http://ocsp-1.example.com:12345,http://ocsp-2.example.com:12345 nscomment="certmonger generated this request" subjectder= ipaddress="127.0.0.1,::1" freshestcrl=http://crl-1.example.com:12345/getdelta,http://crl-2.example.com:12345/getdelta no_ocsp_check=1 profile=caAwesomeCert ns_certtype=client,email iterate "$size" "$subject" "$hostname" "$email" "$principal" "$ku" "$eku" "$challengepassword" "$certfname" "$ca" "$capathlen" "$crldp" "$ocsp" "$nscomment" "$subjectder" "$ipaddress" "$freshestcrl" "$no_ocsp_check" "$profile" "$ns_certtype" echo "The last CSR (the one with everything) was:" openssl req -in csr.nss.$size -outform der | openssl asn1parse -inform der | sed 's,2.5.29.46,X509v3 Freshest CRL,g' cat $tmpdir/key.$size csr.nss.$size 1>&2 echo Test complete "($iteration combinations)". certmonger-0.78.6/tests/002-keygen-rsa/0000775000175000017500000000000012645513301014472 500000000000000certmonger-0.78.6/tests/002-keygen-rsa/expected.out0000664000175000017500000000123512645513264016755 00000000000000[nss:1024] OK. OK (RSA:1024). [nss:1536] OK. OK (RSA:1536). [nss:2048] OK. OK (RSA:2048). [nss:3072] OK. OK (RSA:3072). [nss:4096] OK. OK (RSA:4096). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:1024] OK. OK (RSA:1024). [openssl:1536] OK. OK (RSA:1536). [openssl:2048] OK. OK (RSA:2048). [openssl:3072] OK. OK (RSA:3072). [openssl:4096] OK. OK (RSA:4096). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.4096: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.4096: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-rsa/run.sh0000775000175000017500000000326512645513264015573 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 1024 1536 2048 3072 4096 ; do echo "[nss:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size key_gen_size=$size key_gen_type=RSA EOF $toolsdir/keygen entry.$size # Read the type and size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size done echo "[nss:rosubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rosubdir key_nickname=keyi$size key_gen_size=$size key_gen_type=RSA EOF $toolsdir/keygen entry.$size || true echo "[nss:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rwsubdir key_nickname=keyi$size key_gen_size=$size key_gen_type=RSA EOF $toolsdir/keygen entry.$size || true for size in 1024 1536 2048 3072 4096 ; do echo "[openssl:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/sample.$size key_gen_size=$size key_gen_type=RSA EOF $toolsdir/keygen entry.$size # Read the size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size done echo "[openssl:rosubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rosubdir/sample.$size key_gen_size=$size key_gen_type=RSA EOF $toolsdir/keygen entry.$size || true echo "[openssl:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rwsubdir/sample.$size key_gen_size=$size key_gen_type=RSA EOF touch $tmpdir/rwsubdir/sample.$size chmod u-w $tmpdir/rwsubdir/sample.$size $toolsdir/keygen entry.$size || true echo Test complete. certmonger-0.78.6/tests/002-keygen-rsa/prequal.sh0000775000175000017500000000014512645513264016432 00000000000000#!/bin/sh if test `id -u` -eq 0 ; then echo "This test won't work right if run as root." exit 1 fi certmonger-0.78.6/tests/002-keygen-ec/0000775000175000017500000000000012645513301014274 500000000000000certmonger-0.78.6/tests/002-keygen-ec/expected.out.40000664000175000017500000000101112645513264016711 00000000000000[nss:256] OK. OK (EC:256). [nss:384] OK. OK (EC:384). [nss:521] OK. OK (EC:384). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:256] OK. OK (EC:256). [openssl:384] OK. OK (EC:384). [openssl:521] OK. OK (EC:521). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.521: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.521: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-ec/expected.out.30000664000175000017500000000101112645513264016710 00000000000000[nss:256] OK. OK (EC:256). [nss:384] OK. OK (EC:384). [nss:521] OK. OK (EC:384). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:256] OK. OK (EC:256). [openssl:384] OK. OK (EC:384). [openssl:521] OK. OK (EC:384). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.521: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.521: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-ec/expected.out.20000664000175000017500000000101112645513264016707 00000000000000[nss:256] OK. OK (EC:256). [nss:384] OK. OK (EC:384). [nss:521] OK. OK (EC:521). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:256] OK. OK (EC:256). [openssl:384] OK. OK (EC:384). [openssl:521] OK. OK (EC:384). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.521: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.521: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-ec/expected.out0000664000175000017500000000101112645513264016547 00000000000000[nss:256] OK. OK (EC:256). [nss:384] OK. OK (EC:384). [nss:521] OK. OK (EC:521). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:256] OK. OK (EC:256). [openssl:384] OK. OK (EC:384). [openssl:521] OK. OK (EC:521). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.521: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.521: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-ec/run.sh0000775000175000017500000000322512645513264015371 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 256 384 521 ; do echo "[nss:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size key_gen_size=$size key_gen_type=EC EOF $toolsdir/keygen entry.$size # Read the type and size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size done echo "[nss:rosubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rosubdir key_nickname=keyi$size key_gen_size=$size key_gen_type=EC EOF $toolsdir/keygen entry.$size || true echo "[nss:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rwsubdir key_nickname=keyi$size key_gen_size=$size key_gen_type=EC EOF $toolsdir/keygen entry.$size || true for size in 256 384 521 ; do echo "[openssl:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/sample.$size key_gen_size=$size key_gen_type=EC EOF $toolsdir/keygen entry.$size # Read the size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size done echo "[openssl:rosubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rosubdir/sample.$size key_gen_size=$size key_gen_type=EC EOF $toolsdir/keygen entry.$size || true echo "[openssl:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rwsubdir/sample.$size key_gen_size=$size key_gen_type=EC EOF touch $tmpdir/rwsubdir/sample.$size chmod u-w $tmpdir/rwsubdir/sample.$size $toolsdir/keygen entry.$size || true echo Test complete. certmonger-0.78.6/tests/002-keygen-ec/prequal.sh0000775000175000017500000000014512645513264016234 00000000000000#!/bin/sh if test `id -u` -eq 0 ; then echo "This test won't work right if run as root." exit 1 fi certmonger-0.78.6/tests/002-keygen-dsa/0000775000175000017500000000000012645513301014454 500000000000000certmonger-0.78.6/tests/002-keygen-dsa/expected.out.30000664000175000017500000000123512645513264017100 00000000000000[nss:1024] OK. OK (DSA:1016). [nss:1536] OK. OK (DSA:2048). [nss:2048] OK. OK (DSA:2048). [nss:3072] OK. OK (DSA:3072). [nss:4096] OK. OK (DSA:3072). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:1024] OK. OK (DSA:1024). [openssl:1536] OK. OK (DSA:1536). [openssl:2048] OK. OK (DSA:2048). [openssl:3072] OK. OK (DSA:3072). [openssl:4096] OK. OK (DSA:4096). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.4096: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.4096: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-dsa/expected.out.20000664000175000017500000000123512645513264017077 00000000000000[nss:1024] OK. OK (DSA:1024). [nss:1536] OK. OK (DSA:2048). [nss:2048] OK. OK (DSA:2048). [nss:3072] OK. OK (DSA:3072). [nss:4096] OK. OK (DSA:3072). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:1024] OK. OK (DSA:1024). [openssl:1536] OK. OK (DSA:1536). [openssl:2048] OK. OK (DSA:2048). [openssl:3072] OK. OK (DSA:3072). [openssl:4096] OK. OK (DSA:4096). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.4096: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.4096: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-dsa/expected.out0000664000175000017500000000123512645513264016737 00000000000000[nss:1024] OK. OK (DSA:1024). [nss:1536] OK. OK (DSA:2048). [nss:2048] OK. OK (DSA:2048). [nss:3072] OK. OK (DSA:3072). [nss:4096] OK. OK (DSA:3072). [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:1024] OK. OK (DSA:1024). [openssl:1536] OK. OK (DSA:1536). [openssl:2048] OK. OK (DSA:2048). [openssl:3072] OK. OK (DSA:3072). [openssl:4096] OK. OK (DSA:4096). [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.4096: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.4096: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen-dsa/run.sh0000775000175000017500000000326512645513264015555 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 1024 1536 2048 3072 4096 ; do echo "[nss:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size key_gen_size=$size key_gen_type=DSA EOF $toolsdir/keygen entry.$size # Read the type and size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size done echo "[nss:rosubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rosubdir key_nickname=keyi$size key_gen_size=$size key_gen_type=DSA EOF $toolsdir/keygen entry.$size || true echo "[nss:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rwsubdir key_nickname=keyi$size key_gen_size=$size key_gen_type=DSA EOF $toolsdir/keygen entry.$size || true for size in 1024 1536 2048 3072 4096 ; do echo "[openssl:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/sample.$size key_gen_size=$size key_gen_type=DSA EOF $toolsdir/keygen entry.$size # Read the size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size done echo "[openssl:rosubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rosubdir/sample.$size key_gen_size=$size key_gen_type=DSA EOF $toolsdir/keygen entry.$size || true echo "[openssl:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rwsubdir/sample.$size key_gen_size=$size key_gen_type=DSA EOF touch $tmpdir/rwsubdir/sample.$size chmod u-w $tmpdir/rwsubdir/sample.$size $toolsdir/keygen entry.$size || true echo Test complete. certmonger-0.78.6/tests/002-keygen-dsa/prequal.sh0000775000175000017500000000014512645513264016414 00000000000000#!/bin/sh if test `id -u` -eq 0 ; then echo "This test won't work right if run as root." exit 1 fi certmonger-0.78.6/tests/002-keygen/0000775000175000017500000000000012645513301013707 500000000000000certmonger-0.78.6/tests/002-keygen/expected.out0000664000175000017500000000342112645513264016171 00000000000000[nss:1024] OK. OK (RSA:1024). OK. OK (RSA:1024 after RSA:1024). OK. OK (RSA:1024 after RSA:1024). keyi1024 keyi1024 (candidate (next)) [nss:1536] OK. OK (RSA:1536). OK. OK (RSA:1536 after RSA:1536). OK. OK (RSA:1536 after RSA:1536). keyi1536 keyi1536 (candidate (next)) [nss:2048] OK. OK (RSA:2048). OK. OK (RSA:2048 after RSA:2048). OK. OK (RSA:2048 after RSA:2048). keyi2048 keyi2048 (candidate (next)) [nss:3072] OK. OK (RSA:3072). OK. OK (RSA:3072 after RSA:3072). OK. OK (RSA:3072 after RSA:3072). keyi3072 keyi3072 (candidate (next)) [nss:4096] OK. OK (RSA:4096). OK. OK (RSA:4096 after RSA:4096). OK. OK (RSA:4096 after RSA:4096). keyi4096 keyi4096 (candidate (next)) [nss:rosubdir] Failed to save NSS:${tmpdir}/rosubdir: need fs permissions. [nss:rwsubdir] Failed to save NSS:${tmpdir}/rwsubdir: need fs permissions. [openssl:1024] OK. OK (RSA:1024). OK. OK (RSA:1024 after RSA:1024). OK. OK (RSA:1024 after RSA:1024). ${tmpdir}/sample.1024 ${tmpdir}/sample.1024.(next).key [openssl:1536] OK. OK (RSA:1536). OK. OK (RSA:1536 after RSA:1536). OK. OK (RSA:1536 after RSA:1536). ${tmpdir}/sample.1536 ${tmpdir}/sample.1536.(next).key [openssl:2048] OK. OK (RSA:2048). OK. OK (RSA:2048 after RSA:2048). OK. OK (RSA:2048 after RSA:2048). ${tmpdir}/sample.2048 ${tmpdir}/sample.2048.(next).key [openssl:3072] OK. OK (RSA:3072). OK. OK (RSA:3072 after RSA:3072). OK. OK (RSA:3072 after RSA:3072). ${tmpdir}/sample.3072 ${tmpdir}/sample.3072.(next).key [openssl:4096] OK. OK (RSA:4096). OK. OK (RSA:4096 after RSA:4096). OK. OK (RSA:4096 after RSA:4096). ${tmpdir}/sample.4096 ${tmpdir}/sample.4096.(next).key [openssl:rosubdir] Failed to save FILE:${tmpdir}/rosubdir/sample.4096: need fs permissions. [openssl:rwsubdir] Failed to save FILE:${tmpdir}/rwsubdir/sample.4096: need fs permissions. Test complete. certmonger-0.78.6/tests/002-keygen/run.sh0000775000175000017500000000470212645513264015005 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 1024 1536 2048 3072 4096 ; do echo "[nss:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size key_gen_size=$size EOF $toolsdir/keygen entry.$size # Read the type and size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size # Generate a new key and read it. echo key_gen_size=$size >> entry.$size $toolsdir/keygen entry.$size $toolsdir/keyiread entry.$size # One more time. $toolsdir/keygen entry.$size $toolsdir/keyiread entry.$size # Extract the marker. marker=`grep ^key_next_marker= entry.$size | cut -f2- -d=` # Make sure we're clean. run_certutil -K -d "$tmpdir" | grep keyi$size | sed -e 's,.*keyi,keyi,' -e s,"${marker:-////////}","(next)",g | env LANG=C sort done echo "[nss:rosubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rosubdir key_nickname=keyi$size key_gen_size=$size EOF $toolsdir/keygen entry.$size || true echo "[nss:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir/rwsubdir key_nickname=keyi$size key_gen_size=$size EOF $toolsdir/keygen entry.$size || true for size in 1024 1536 2048 3072 4096 ; do echo "[openssl:$size]" # Generate a key. cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/sample.$size key_gen_size=$size EOF $toolsdir/keygen entry.$size # Read the size. sed -i 's,^key_gen_size.*,,g' entry.$size $toolsdir/keyiread entry.$size # Generate a new key and read it. echo key_gen_size=$size >> entry.$size $toolsdir/keygen entry.$size $toolsdir/keyiread entry.$size # One more time. $toolsdir/keygen entry.$size $toolsdir/keyiread entry.$size # Extract the marker. marker=`grep ^key_next_marker= entry.$size | cut -f2- -d=` # Make sure we're clean. find $tmpdir -name "sample.$size"'*' -print | sed s,"${marker:-////////}","(next)",g | env LANG=C sort done echo "[openssl:rosubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rosubdir/sample.$size key_gen_size=$size EOF $toolsdir/keygen entry.$size || true echo "[openssl:rwsubdir]" cat > entry.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/rwsubdir/sample.$size key_gen_size=$size EOF touch $tmpdir/rwsubdir/sample.$size chmod u-w $tmpdir/rwsubdir/sample.$size $toolsdir/keygen entry.$size || true echo Test complete. certmonger-0.78.6/tests/002-keygen/prequal.sh0000775000175000017500000000014512645513264015647 00000000000000#!/bin/sh if test `id -u` -eq 0 ; then echo "This test won't work right if run as root." exit 1 fi certmonger-0.78.6/tests/001-keyiread-rsa/0000775000175000017500000000000012645513301015004 500000000000000certmonger-0.78.6/tests/001-keyiread-rsa/expected.out0000664000175000017500000000024512645513264017267 00000000000000OK (RSA:1024). OK (RSA:1536). OK (RSA:2048). OK (RSA:3072). OK (RSA:4096). OK (RSA:1024). OK (RSA:1536). OK (RSA:2048). OK (RSA:3072). OK (RSA:4096). Test complete. certmonger-0.78.6/tests/001-keyiread-rsa/run.sh0000775000175000017500000000233512645513264016102 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 1024 1536 2048 3072 4096 ; do # Generate a self-signed cert. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k rsa # Export the key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts > /dev/null 2>&1 cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 # Check the size of the key. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF grep ^key_pubkey_info= entry.openssl.$size >> entry.nss.$size grep ^key_pubkey= entry.openssl.$size >> entry.nss.$size $toolsdir/keyiread entry.nss.$size done for size in 1024 1536 2048 3072 4096 ; do # Generate a key. openssl genrsa $size > sample.$size 2> /dev/null # Check the size of the key. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/sample.$size EOF $toolsdir/keyiread entry.openssl.$size done echo Test complete. certmonger-0.78.6/tests/001-keyiread-ec/0000775000175000017500000000000012645513301014606 500000000000000certmonger-0.78.6/tests/001-keyiread-ec/expected.out.40000664000175000017500000000020512645513264017227 00000000000000OK (EC:256). OK (EC:256). OK (EC:384). OK (EC:384). OK (EC:384). Error parsing exported key for nistp521, continuing. Test complete. certmonger-0.78.6/tests/001-keyiread-ec/expected.out.30000664000175000017500000000020512645513264017226 00000000000000OK (EC:256). OK (EC:256). OK (EC:384). OK (EC:384). OK (EC:521). Error parsing exported key for nistp521, continuing. Test complete. certmonger-0.78.6/tests/001-keyiread-ec/expected.out.20000664000175000017500000000013512645513264017227 00000000000000OK (EC:256). OK (EC:256). OK (EC:384). OK (EC:384). OK (EC:384). OK (EC:521). Test complete. certmonger-0.78.6/tests/001-keyiread-ec/expected.out0000664000175000017500000000013512645513264017067 00000000000000OK (EC:256). OK (EC:256). OK (EC:384). OK (EC:384). OK (EC:521). OK (EC:521). Test complete. certmonger-0.78.6/tests/001-keyiread-ec/run.sh0000775000175000017500000000172012645513264015701 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in nistp256 nistp384 nistp521 ; do # Generate a self-signed cert. run_certutil -d "$tmpdir" -S -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k ec -q $size # Check the size of the key. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF $toolsdir/keyiread entry.nss.$size # Export the key. if ! pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 ; then echo Error exporting key for $size, continuing. continue fi if ! openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts > /dev/null 2>&1 ; then echo Error parsing exported key for $size, continuing. continue fi cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size EOF $toolsdir/keyiread entry.openssl.$size done echo Test complete. certmonger-0.78.6/tests/001-keyiread-dsa/0000775000175000017500000000000012645513301014766 500000000000000certmonger-0.78.6/tests/001-keyiread-dsa/expected.out0000664000175000017500000000054212645513264017251 00000000000000OK (DSA >= ~512). OK (DSA >= ~512). OK (DSA >= ~512). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). OK (DSA >= ~1024). Test complete. certmonger-0.78.6/tests/001-keyiread-dsa/run.sh0000775000175000017500000000237012645513264016063 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 512 1024 1536 2048 3072 4096 ; do # Generate a self-signed cert. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u -k dsa # Correct the expected size of the key. if test $size -gt 1024 ; then size=1024 fi # Export the key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts > /dev/null 2>&1 cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size EOF $toolsdir/keyiread -m $size -s entry.openssl.$size # Check the size of the key (with cache). cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF grep ^key_pubkey_info= entry.openssl.$size >> entry.nss.$size grep ^key_pubkey= entry.openssl.$size >> entry.nss.$size $toolsdir/keyiread -m $size -s entry.nss.$size # Check the size of the key (without cache). cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF $toolsdir/keyiread -m $size -s entry.nss.$size done echo Test complete. certmonger-0.78.6/tests/001-keyiread/0000775000175000017500000000000012645513301014221 500000000000000certmonger-0.78.6/tests/001-keyiread/expected.out0000664000175000017500000000024512645513264016504 00000000000000OK (RSA:1024). OK (RSA:1536). OK (RSA:2048). OK (RSA:3072). OK (RSA:4096). OK (RSA:1024). OK (RSA:1536). OK (RSA:2048). OK (RSA:3072). OK (RSA:4096). Test complete. certmonger-0.78.6/tests/001-keyiread/run.sh0000775000175000017500000000232612645513264015317 00000000000000#!/bin/bash -e cd "$tmpdir" source "$srcdir"/functions initnssdb "$tmpdir" for size in 1024 1536 2048 3072 4096 ; do # Generate a self-signed cert. run_certutil -d "$tmpdir" -S -g $size -n keyi$size \ -s "cn=T$size" -c "cn=T$size" \ -x -t u # Export the key. pk12util -d "$tmpdir" -o $size.p12 -W "" -n "keyi$size" > /dev/null 2>&1 openssl pkcs12 -in $size.p12 -out key.$size -passin pass: -nodes -nocerts > /dev/null 2>&1 cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/key.$size key_nickname=keyi$size EOF $toolsdir/keyiread entry.openssl.$size > /dev/null 2>&1 # Check the size of the key. cat > entry.nss.$size <<- EOF key_storage_type=NSSDB key_storage_location=$tmpdir key_nickname=keyi$size EOF grep ^key_pubkey= entry.openssl.$size >> entry.nss.$size grep ^key_pubkey_info= entry.openssl.$size >> entry.nss.$size $toolsdir/keyiread entry.nss.$size done for size in 1024 1536 2048 3072 4096 ; do # Generate a key. openssl genrsa $size > sample.$size 2> /dev/null # Check the size of the key. cat > entry.openssl.$size <<- EOF key_storage_type=FILE key_storage_location=$tmpdir/sample.$size EOF $toolsdir/keyiread entry.openssl.$size done echo Test complete. certmonger-0.78.6/sysvinit/0000775000175000017500000000000012645513301012654 500000000000000certmonger-0.78.6/sysvinit/certmonger.in0000775000175000017500000000406012645513264015304 00000000000000#!/bin/sh # # certmonger monitors certificates for impending expiration and can # attempt to re-enroll when they expire # # chkconfig: - 99 01 # description: Provides certificate monitoring and PKI enrollment. # processname: @mysbindir@/certmonger # pidfile: /var/run/certmonger.pid # ### BEGIN INIT INFO # Provides: certmonger # Required-Start: messagebus # Required-Stop: messagebus # Should-Start: $network # Should-Stop: $network # Short-Description: Certificate monitor and PKI enrollment client # Description: Provides certificate monitoring and PKI enrollment. ### END INIT INFO program=@mysbindir@/certmonger prog=${program##*/} pidfile=/var/run/certmonger.pid lockfile=/var/lock/subsys/certmonger if [ -f /etc/rc.d/init.d/functions ]; then . /etc/rc.d/init.d/functions fi if [ -f /etc/sysconfig/certmonger ]; then . /etc/sysconfig/certmonger fi RETVAL=0 start() { echo -n $"Starting $prog: " [ -x $program ] || exit 5 daemon $program -S -p ${pidfile} $OPTS RETVAL=$? echo [ $RETVAL -eq 0 ] && touch $lockfile return $RETVAL } stop() { echo -n $"Stopping $prog: " killproc $program RETVAL=$? echo if [ $RETVAL -eq 0 ]; then rm -f $lockfile fi } mystatusq() { status $program > /dev/null 2> /dev/null } restart() { stop start } # See how we were called. case "$1" in start) if mystatusq ; then touch $lockfile exit 0 fi $1 ;; stop) if ! test -f $pidfile ; then mystatusq || exit 0 fi $1 ;; restart) $1 ;; status) status -p $pidfile $program RETVAL=$? ;; condrestart|try-restart) [ -f $lockfile ] && restart || : ;; reload) echo "can't reload configuration, you have to restart it" RETVAL=3 ;; force-reload) restart ;; *) echo $"Usage: $0 {start|stop|status|restart|condrestart|try-restart|reload|force-reload}" exit 2 ;; esac exit $RETVAL certmonger-0.78.6/sysvinit/Makefile.in0000664000175000017500000004331012645513271014650 00000000000000# Makefile.in generated by automake 1.15 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2014 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = sysvinit ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/intlmacosx.m4 \ $(top_srcdir)/m4/lib-ld.m4 $(top_srcdir)/m4/lib-link.m4 \ $(top_srcdir)/m4/lib-prefix.m4 $(top_srcdir)/m4/nls.m4 \ $(top_srcdir)/m4/po.m4 $(top_srcdir)/m4/progtest.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/src/config.h CONFIG_CLEAN_FILES = certmonger CONFIG_CLEAN_VPATH_FILES = am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(initddir)" SCRIPTS = $(initd_SCRIPTS) AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/certmonger.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CERTMONGER_CFLAGS = @CERTMONGER_CFLAGS@ CERTMONGER_LIBS = @CERTMONGER_LIBS@ CERTMONGER_PVT_ADDRESS_ENV = @CERTMONGER_PVT_ADDRESS_ENV@ CFLAGS = @CFLAGS@ CM_CERTMASTER_CA_NAME = @CM_CERTMASTER_CA_NAME@ CM_DBUS_NAME = @CM_DBUS_NAME@ CM_DEFAULT_CERT_LIFETIME = @CM_DEFAULT_CERT_LIFETIME@ CM_DEFAULT_IDLE_TIMEOUT = @CM_DEFAULT_IDLE_TIMEOUT@ CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ CM_DEFAULT_POPULATE_UNIQUE_ID = @CM_DEFAULT_POPULATE_UNIQUE_ID@ CM_DEFAULT_PUBKEY_SIZE = @CM_DEFAULT_PUBKEY_SIZE@ CM_DEFAULT_TTL_LIST = @CM_DEFAULT_TTL_LIST@ CM_HOMEDIR = @CM_HOMEDIR@ CM_IPA_CA_NAME = @CM_IPA_CA_NAME@ CM_LOCAL_CA_NAME = @CM_LOCAL_CA_NAME@ CM_MINIMUM_DSA_KEY_SIZE = @CM_MINIMUM_DSA_KEY_SIZE@ CM_MINIMUM_EC_KEY_SIZE = @CM_MINIMUM_EC_KEY_SIZE@ CM_MINIMUM_RSA_KEY_SIZE = @CM_MINIMUM_RSA_KEY_SIZE@ CM_NOTIFICATION_ENV = @CM_NOTIFICATION_ENV@ CM_SELF_SIGN_CA_NAME = @CM_SELF_SIGN_CA_NAME@ CM_STORE_CAS_DIRECTORY = @CM_STORE_CAS_DIRECTORY@ CM_STORE_CAS_DIRECTORY_ENV = @CM_STORE_CAS_DIRECTORY_ENV@ CM_STORE_CONFIG_DIRECTORY_ENV = @CM_STORE_CONFIG_DIRECTORY_ENV@ CM_STORE_LOCAL_CA_DIRECTORY = @CM_STORE_LOCAL_CA_DIRECTORY@ CM_STORE_LOCAL_CA_DIRECTORY_ENV = @CM_STORE_LOCAL_CA_DIRECTORY_ENV@ CM_STORE_REQUESTS_DIRECTORY = @CM_STORE_REQUESTS_DIRECTORY@ CM_STORE_REQUESTS_DIRECTORY_ENV = @CM_STORE_REQUESTS_DIRECTORY_ENV@ CM_STORE_SYSTEM_LOCK_FILE = @CM_STORE_SYSTEM_LOCK_FILE@ CM_STORE_SYSTEM_LOCK_FILE_ENV = @CM_STORE_SYSTEM_LOCK_FILE_ENV@ CM_TMPDIR = @CM_TMPDIR@ CM_TMPDIR_ENV = @CM_TMPDIR_ENV@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CURL_CFLAGS = @CURL_CFLAGS@ CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ GETCERT_CFLAGS = @GETCERT_CFLAGS@ GETCERT_LIBS = @GETCERT_LIBS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GMP_CFLAGS = @GMP_CFLAGS@ GMP_LIBS = @GMP_LIBS@ GMSGFMT = @GMSGFMT@ GMSGFMT_015 = @GMSGFMT_015@ GREP = @GREP@ IDN_CFLAGS = @IDN_CFLAGS@ IDN_LIBS = @IDN_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTLLIBS = @INTLLIBS@ INTL_MACOSX_LIBS = @INTL_MACOSX_LIBS@ KRB5_CFLAGS = @KRB5_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ KRB5_LIBS = @KRB5_LIBS@ LDAP_CFLAGS = @LDAP_CFLAGS@ LDAP_LIBS = @LDAP_LIBS@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBINTL = @LIBINTL@ LIBOBJS = @LIBOBJS@ LIBS = @LIBS@ LTLIBICONV = @LTLIBICONV@ LTLIBINTL = @LTLIBINTL@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAN_DSA = @MAN_DSA@ MAN_EC = @MAN_EC@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ NO_MAN_DSA = @NO_MAN_DSA@ NO_MAN_EC = @NO_MAN_EC@ NSS_CFLAGS = @NSS_CFLAGS@ NSS_LIBS = @NSS_LIBS@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OPENSSL_SSL_CFLAGS = @OPENSSL_SSL_CFLAGS@ OPENSSL_SSL_LIBS = @OPENSSL_SSL_LIBS@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ POPT_CFLAGS = @POPT_CFLAGS@ POPT_LIBS = @POPT_LIBS@ POSUB = @POSUB@ RANLIB = @RANLIB@ RESOLV_LIBS = @RESOLV_LIBS@ SESSIONBUSSERVICESDIR = @SESSIONBUSSERVICESDIR@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ STRIP = @STRIP@ SYSTEMBUSSERVICESDIR = @SYSTEMBUSSERVICESDIR@ SYSTEMD = @SYSTEMD@ SYSTEMDSYSTEMUNITDIR = @SYSTEMDSYSTEMUNITDIR@ SYSVINIT = @SYSVINIT@ TALLOC_CFLAGS = @TALLOC_CFLAGS@ TALLOC_LIBS = @TALLOC_LIBS@ TEVENT_CFLAGS = @TEVENT_CFLAGS@ TEVENT_LIBS = @TEVENT_LIBS@ TMPFILES = @TMPFILES@ USE_NLS = @USE_NLS@ UUID_CFLAGS = @UUID_CFLAGS@ UUID_LIBS = @UUID_LIBS@ VERSION = @VERSION@ XGETTEXT = @XGETTEXT@ XGETTEXT_015 = @XGETTEXT_015@ XGETTEXT_EXTRA_OPTIONS = @XGETTEXT_EXTRA_OPTIONS@ XMLRPC_CFLAGS = @XMLRPC_CFLAGS@ XMLRPC_C_CONFIG = @XMLRPC_C_CONFIG@ XMLRPC_LIBS = @XMLRPC_LIBS@ XML_CFLAGS = @XML_CFLAGS@ XML_LIBS = @XML_LIBS@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_CC = @ac_ct_CC@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ mybindir = @mybindir@ mylibexecdir = @mylibexecdir@ mysbindir = @mysbindir@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ @SYSVINIT_TRUE@initddir = @SYSVINIT@ @SYSVINIT_TRUE@initd_SCRIPTS = certmonger all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign sysvinit/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign sysvinit/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): certmonger: $(top_builddir)/config.status $(srcdir)/certmonger.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ install-initdSCRIPTS: $(initd_SCRIPTS) @$(NORMAL_INSTALL) @list='$(initd_SCRIPTS)'; test -n "$(initddir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(initddir)'"; \ $(MKDIR_P) "$(DESTDIR)$(initddir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ if test -f "$$d$$p"; then echo "$$d$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n' \ -e 'h;s|.*|.|' \ -e 'p;x;s,.*/,,;$(transform)' | sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1; } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) { files[d] = files[d] " " $$1; \ if (++n[d] == $(am__install_max)) { \ print "f", d, files[d]; n[d] = 0; files[d] = "" } } \ else { print "f", d "/" $$4, $$1 } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_SCRIPT) $$files '$(DESTDIR)$(initddir)$$dir'"; \ $(INSTALL_SCRIPT) $$files "$(DESTDIR)$(initddir)$$dir" || exit $$?; \ } \ ; done uninstall-initdSCRIPTS: @$(NORMAL_UNINSTALL) @list='$(initd_SCRIPTS)'; test -n "$(initddir)" || exit 0; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 's,.*/,,;$(transform)'`; \ dir='$(DESTDIR)$(initddir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(SCRIPTS) installdirs: for dir in "$(DESTDIR)$(initddir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-initdSCRIPTS install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-initdSCRIPTS .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic cscopelist-am \ ctags-am distclean distclean-generic distdir dvi dvi-am html \ html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-initdSCRIPTS install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic pdf \ pdf-am ps ps-am tags-am uninstall uninstall-am \ uninstall-initdSCRIPTS .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/sysvinit/Makefile.am0000664000175000017500000000010312645513264014632 00000000000000if SYSVINIT initddir = @SYSVINIT@ initd_SCRIPTS = certmonger endif certmonger-0.78.6/systemd/0000775000175000017500000000000012645513301012454 500000000000000certmonger-0.78.6/systemd/org.fedorahosted.certmonger.service.in0000664000175000017500000000014012645513264021767 00000000000000[D-BUS Service] Name=@CM_DBUS_NAME@ Exec=/bin/false User=root SystemdService=certmonger.service certmonger-0.78.6/systemd/certmonger.service.in0000664000175000017500000000052012645513264016535 00000000000000[Unit] Description=Certificate monitoring and PKI enrollment After=syslog.target network.target dbus.service [Service] Type=dbus PIDFile=/var/run/certmonger.pid EnvironmentFile=-/etc/sysconfig/certmonger ExecStart=/usr/sbin/certmonger -S -p /var/run/certmonger.pid -n $OPTS BusName=@CM_DBUS_NAME@ [Install] WantedBy=multi-user.target certmonger-0.78.6/systemd/certmonger.conf.in0000664000175000017500000000026312645513264016026 00000000000000# certmonger uses libraries which may want to put temporary files in $TMPDIR, # but SELinux policy won't let anything running as certmonger_t do that d @CM_TMPDIR@ 0755 root root certmonger-0.78.6/systemd/Makefile.in0000664000175000017500000004711212645513271014454 00000000000000# Makefile.in generated by automake 1.15 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2014 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = systemd ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/intlmacosx.m4 \ $(top_srcdir)/m4/lib-ld.m4 $(top_srcdir)/m4/lib-link.m4 \ $(top_srcdir)/m4/lib-prefix.m4 $(top_srcdir)/m4/nls.m4 \ $(top_srcdir)/m4/po.m4 $(top_srcdir)/m4/progtest.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/src/config.h CONFIG_CLEAN_FILES = certmonger.service certmonger.conf \ org.fedorahosted.certmonger.service CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(servicedir)" "$(DESTDIR)$(tmpfilesdir)" \ "$(DESTDIR)$(unitsdir)" DATA = $(service_DATA) $(tmpfiles_DATA) $(units_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/certmonger.conf.in \ $(srcdir)/certmonger.service.in \ $(srcdir)/org.fedorahosted.certmonger.service.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CERTMONGER_CFLAGS = @CERTMONGER_CFLAGS@ CERTMONGER_LIBS = @CERTMONGER_LIBS@ CERTMONGER_PVT_ADDRESS_ENV = @CERTMONGER_PVT_ADDRESS_ENV@ CFLAGS = @CFLAGS@ CM_CERTMASTER_CA_NAME = @CM_CERTMASTER_CA_NAME@ CM_DBUS_NAME = @CM_DBUS_NAME@ CM_DEFAULT_CERT_LIFETIME = @CM_DEFAULT_CERT_LIFETIME@ CM_DEFAULT_IDLE_TIMEOUT = @CM_DEFAULT_IDLE_TIMEOUT@ CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ CM_DEFAULT_POPULATE_UNIQUE_ID = @CM_DEFAULT_POPULATE_UNIQUE_ID@ CM_DEFAULT_PUBKEY_SIZE = @CM_DEFAULT_PUBKEY_SIZE@ CM_DEFAULT_TTL_LIST = @CM_DEFAULT_TTL_LIST@ CM_HOMEDIR = @CM_HOMEDIR@ CM_IPA_CA_NAME = @CM_IPA_CA_NAME@ CM_LOCAL_CA_NAME = @CM_LOCAL_CA_NAME@ CM_MINIMUM_DSA_KEY_SIZE = @CM_MINIMUM_DSA_KEY_SIZE@ CM_MINIMUM_EC_KEY_SIZE = @CM_MINIMUM_EC_KEY_SIZE@ CM_MINIMUM_RSA_KEY_SIZE = @CM_MINIMUM_RSA_KEY_SIZE@ CM_NOTIFICATION_ENV = @CM_NOTIFICATION_ENV@ CM_SELF_SIGN_CA_NAME = @CM_SELF_SIGN_CA_NAME@ CM_STORE_CAS_DIRECTORY = @CM_STORE_CAS_DIRECTORY@ CM_STORE_CAS_DIRECTORY_ENV = @CM_STORE_CAS_DIRECTORY_ENV@ CM_STORE_CONFIG_DIRECTORY_ENV = @CM_STORE_CONFIG_DIRECTORY_ENV@ CM_STORE_LOCAL_CA_DIRECTORY = @CM_STORE_LOCAL_CA_DIRECTORY@ CM_STORE_LOCAL_CA_DIRECTORY_ENV = @CM_STORE_LOCAL_CA_DIRECTORY_ENV@ CM_STORE_REQUESTS_DIRECTORY = @CM_STORE_REQUESTS_DIRECTORY@ CM_STORE_REQUESTS_DIRECTORY_ENV = @CM_STORE_REQUESTS_DIRECTORY_ENV@ CM_STORE_SYSTEM_LOCK_FILE = @CM_STORE_SYSTEM_LOCK_FILE@ CM_STORE_SYSTEM_LOCK_FILE_ENV = @CM_STORE_SYSTEM_LOCK_FILE_ENV@ CM_TMPDIR = @CM_TMPDIR@ CM_TMPDIR_ENV = @CM_TMPDIR_ENV@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CURL_CFLAGS = @CURL_CFLAGS@ CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ GETCERT_CFLAGS = @GETCERT_CFLAGS@ GETCERT_LIBS = @GETCERT_LIBS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GMP_CFLAGS = @GMP_CFLAGS@ GMP_LIBS = @GMP_LIBS@ GMSGFMT = @GMSGFMT@ GMSGFMT_015 = @GMSGFMT_015@ GREP = @GREP@ IDN_CFLAGS = @IDN_CFLAGS@ IDN_LIBS = @IDN_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTLLIBS = @INTLLIBS@ INTL_MACOSX_LIBS = @INTL_MACOSX_LIBS@ KRB5_CFLAGS = @KRB5_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ KRB5_LIBS = @KRB5_LIBS@ LDAP_CFLAGS = @LDAP_CFLAGS@ LDAP_LIBS = @LDAP_LIBS@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBINTL = @LIBINTL@ LIBOBJS = @LIBOBJS@ LIBS = @LIBS@ LTLIBICONV = @LTLIBICONV@ LTLIBINTL = @LTLIBINTL@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAN_DSA = @MAN_DSA@ MAN_EC = @MAN_EC@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ NO_MAN_DSA = @NO_MAN_DSA@ NO_MAN_EC = @NO_MAN_EC@ NSS_CFLAGS = @NSS_CFLAGS@ NSS_LIBS = @NSS_LIBS@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OPENSSL_SSL_CFLAGS = @OPENSSL_SSL_CFLAGS@ OPENSSL_SSL_LIBS = @OPENSSL_SSL_LIBS@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ POPT_CFLAGS = @POPT_CFLAGS@ POPT_LIBS = @POPT_LIBS@ POSUB = @POSUB@ RANLIB = @RANLIB@ RESOLV_LIBS = @RESOLV_LIBS@ SESSIONBUSSERVICESDIR = @SESSIONBUSSERVICESDIR@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ STRIP = @STRIP@ SYSTEMBUSSERVICESDIR = @SYSTEMBUSSERVICESDIR@ SYSTEMD = @SYSTEMD@ SYSTEMDSYSTEMUNITDIR = @SYSTEMDSYSTEMUNITDIR@ SYSVINIT = @SYSVINIT@ TALLOC_CFLAGS = @TALLOC_CFLAGS@ TALLOC_LIBS = @TALLOC_LIBS@ TEVENT_CFLAGS = @TEVENT_CFLAGS@ TEVENT_LIBS = @TEVENT_LIBS@ TMPFILES = @TMPFILES@ USE_NLS = @USE_NLS@ UUID_CFLAGS = @UUID_CFLAGS@ UUID_LIBS = @UUID_LIBS@ VERSION = @VERSION@ XGETTEXT = @XGETTEXT@ XGETTEXT_015 = @XGETTEXT_015@ XGETTEXT_EXTRA_OPTIONS = @XGETTEXT_EXTRA_OPTIONS@ XMLRPC_CFLAGS = @XMLRPC_CFLAGS@ XMLRPC_C_CONFIG = @XMLRPC_C_CONFIG@ XMLRPC_LIBS = @XMLRPC_LIBS@ XML_CFLAGS = @XML_CFLAGS@ XML_LIBS = @XML_LIBS@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_CC = @ac_ct_CC@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ mybindir = @mybindir@ mylibexecdir = @mylibexecdir@ mysbindir = @mysbindir@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ @SYSTEMD_TRUE@unitsdir = @SYSTEMDSYSTEMUNITDIR@ @SYSTEMD_TRUE@units_DATA = certmonger.service @SYSTEMD_TRUE@servicedir = @SYSTEMBUSSERVICESDIR@ @SYSTEMD_TRUE@service_DATA = org.fedorahosted.certmonger.service @TMPFILES_TRUE@tmpfilesdir = $(prefix)/lib/tmpfiles.d @TMPFILES_TRUE@tmpfiles_DATA = certmonger.conf all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign systemd/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign systemd/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): certmonger.service: $(top_builddir)/config.status $(srcdir)/certmonger.service.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger.conf: $(top_builddir)/config.status $(srcdir)/certmonger.conf.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ org.fedorahosted.certmonger.service: $(top_builddir)/config.status $(srcdir)/org.fedorahosted.certmonger.service.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ install-serviceDATA: $(service_DATA) @$(NORMAL_INSTALL) @list='$(service_DATA)'; test -n "$(servicedir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(servicedir)'"; \ $(MKDIR_P) "$(DESTDIR)$(servicedir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(servicedir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(servicedir)" || exit $$?; \ done uninstall-serviceDATA: @$(NORMAL_UNINSTALL) @list='$(service_DATA)'; test -n "$(servicedir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(servicedir)'; $(am__uninstall_files_from_dir) install-tmpfilesDATA: $(tmpfiles_DATA) @$(NORMAL_INSTALL) @list='$(tmpfiles_DATA)'; test -n "$(tmpfilesdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(tmpfilesdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(tmpfilesdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(tmpfilesdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(tmpfilesdir)" || exit $$?; \ done uninstall-tmpfilesDATA: @$(NORMAL_UNINSTALL) @list='$(tmpfiles_DATA)'; test -n "$(tmpfilesdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(tmpfilesdir)'; $(am__uninstall_files_from_dir) install-unitsDATA: $(units_DATA) @$(NORMAL_INSTALL) @list='$(units_DATA)'; test -n "$(unitsdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(unitsdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(unitsdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(unitsdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(unitsdir)" || exit $$?; \ done uninstall-unitsDATA: @$(NORMAL_UNINSTALL) @list='$(units_DATA)'; test -n "$(unitsdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(unitsdir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(servicedir)" "$(DESTDIR)$(tmpfilesdir)" "$(DESTDIR)$(unitsdir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-serviceDATA install-tmpfilesDATA \ install-unitsDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-serviceDATA uninstall-tmpfilesDATA \ uninstall-unitsDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic cscopelist-am \ ctags-am distclean distclean-generic distdir dvi dvi-am html \ html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-man install-pdf install-pdf-am \ install-ps install-ps-am install-serviceDATA install-strip \ install-tmpfilesDATA install-unitsDATA installcheck \ installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic pdf \ pdf-am ps ps-am tags-am uninstall uninstall-am \ uninstall-serviceDATA uninstall-tmpfilesDATA \ uninstall-unitsDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/systemd/Makefile.am0000664000175000017500000000040312645513264014435 00000000000000if SYSTEMD unitsdir = @SYSTEMDSYSTEMUNITDIR@ units_DATA = certmonger.service servicedir = @SYSTEMBUSSERVICESDIR@ service_DATA = org.fedorahosted.certmonger.service endif if TMPFILES tmpfilesdir = $(prefix)/lib/tmpfiles.d tmpfiles_DATA = certmonger.conf endif certmonger-0.78.6/dbus/0000775000175000017500000000000012645513301011721 500000000000000certmonger-0.78.6/dbus/certmonger.service.in0000664000175000017500000000011312645513264016000 00000000000000[D-BUS Service] Name=@CM_DBUS_NAME@ Exec=@mylibexecdir@/certmonger-session certmonger-0.78.6/dbus/certmonger.conf.in0000664000175000017500000000163612645513264015300 00000000000000 certmonger-0.78.6/dbus/Makefile.in0000664000175000017500000004445412645513271013727 00000000000000# Makefile.in generated by automake 1.15 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2014 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = dbus ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/intlmacosx.m4 \ $(top_srcdir)/m4/lib-ld.m4 $(top_srcdir)/m4/lib-link.m4 \ $(top_srcdir)/m4/lib-prefix.m4 $(top_srcdir)/m4/nls.m4 \ $(top_srcdir)/m4/po.m4 $(top_srcdir)/m4/progtest.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/src/config.h CONFIG_CLEAN_FILES = certmonger.conf certmonger.service CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(servicedir)" \ "$(DESTDIR)$(systemdbusdir)" DATA = $(service_DATA) $(systemdbus_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/certmonger.conf.in \ $(srcdir)/certmonger.service.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CERTMONGER_CFLAGS = @CERTMONGER_CFLAGS@ CERTMONGER_LIBS = @CERTMONGER_LIBS@ CERTMONGER_PVT_ADDRESS_ENV = @CERTMONGER_PVT_ADDRESS_ENV@ CFLAGS = @CFLAGS@ CM_CERTMASTER_CA_NAME = @CM_CERTMASTER_CA_NAME@ CM_DBUS_NAME = @CM_DBUS_NAME@ CM_DEFAULT_CERT_LIFETIME = @CM_DEFAULT_CERT_LIFETIME@ CM_DEFAULT_IDLE_TIMEOUT = @CM_DEFAULT_IDLE_TIMEOUT@ CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ CM_DEFAULT_POPULATE_UNIQUE_ID = @CM_DEFAULT_POPULATE_UNIQUE_ID@ CM_DEFAULT_PUBKEY_SIZE = @CM_DEFAULT_PUBKEY_SIZE@ CM_DEFAULT_TTL_LIST = @CM_DEFAULT_TTL_LIST@ CM_HOMEDIR = @CM_HOMEDIR@ CM_IPA_CA_NAME = @CM_IPA_CA_NAME@ CM_LOCAL_CA_NAME = @CM_LOCAL_CA_NAME@ CM_MINIMUM_DSA_KEY_SIZE = @CM_MINIMUM_DSA_KEY_SIZE@ CM_MINIMUM_EC_KEY_SIZE = @CM_MINIMUM_EC_KEY_SIZE@ CM_MINIMUM_RSA_KEY_SIZE = @CM_MINIMUM_RSA_KEY_SIZE@ CM_NOTIFICATION_ENV = @CM_NOTIFICATION_ENV@ CM_SELF_SIGN_CA_NAME = @CM_SELF_SIGN_CA_NAME@ CM_STORE_CAS_DIRECTORY = @CM_STORE_CAS_DIRECTORY@ CM_STORE_CAS_DIRECTORY_ENV = @CM_STORE_CAS_DIRECTORY_ENV@ CM_STORE_CONFIG_DIRECTORY_ENV = @CM_STORE_CONFIG_DIRECTORY_ENV@ CM_STORE_LOCAL_CA_DIRECTORY = @CM_STORE_LOCAL_CA_DIRECTORY@ CM_STORE_LOCAL_CA_DIRECTORY_ENV = @CM_STORE_LOCAL_CA_DIRECTORY_ENV@ CM_STORE_REQUESTS_DIRECTORY = @CM_STORE_REQUESTS_DIRECTORY@ CM_STORE_REQUESTS_DIRECTORY_ENV = @CM_STORE_REQUESTS_DIRECTORY_ENV@ CM_STORE_SYSTEM_LOCK_FILE = @CM_STORE_SYSTEM_LOCK_FILE@ CM_STORE_SYSTEM_LOCK_FILE_ENV = @CM_STORE_SYSTEM_LOCK_FILE_ENV@ CM_TMPDIR = @CM_TMPDIR@ CM_TMPDIR_ENV = @CM_TMPDIR_ENV@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CURL_CFLAGS = @CURL_CFLAGS@ CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ GETCERT_CFLAGS = @GETCERT_CFLAGS@ GETCERT_LIBS = @GETCERT_LIBS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GMP_CFLAGS = @GMP_CFLAGS@ GMP_LIBS = @GMP_LIBS@ GMSGFMT = @GMSGFMT@ GMSGFMT_015 = @GMSGFMT_015@ GREP = @GREP@ IDN_CFLAGS = @IDN_CFLAGS@ IDN_LIBS = @IDN_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTLLIBS = @INTLLIBS@ INTL_MACOSX_LIBS = @INTL_MACOSX_LIBS@ KRB5_CFLAGS = @KRB5_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ KRB5_LIBS = @KRB5_LIBS@ LDAP_CFLAGS = @LDAP_CFLAGS@ LDAP_LIBS = @LDAP_LIBS@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBINTL = @LIBINTL@ LIBOBJS = @LIBOBJS@ LIBS = @LIBS@ LTLIBICONV = @LTLIBICONV@ LTLIBINTL = @LTLIBINTL@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAN_DSA = @MAN_DSA@ MAN_EC = @MAN_EC@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ NO_MAN_DSA = @NO_MAN_DSA@ NO_MAN_EC = @NO_MAN_EC@ NSS_CFLAGS = @NSS_CFLAGS@ NSS_LIBS = @NSS_LIBS@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OPENSSL_SSL_CFLAGS = @OPENSSL_SSL_CFLAGS@ OPENSSL_SSL_LIBS = @OPENSSL_SSL_LIBS@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ POPT_CFLAGS = @POPT_CFLAGS@ POPT_LIBS = @POPT_LIBS@ POSUB = @POSUB@ RANLIB = @RANLIB@ RESOLV_LIBS = @RESOLV_LIBS@ SESSIONBUSSERVICESDIR = @SESSIONBUSSERVICESDIR@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ STRIP = @STRIP@ SYSTEMBUSSERVICESDIR = @SYSTEMBUSSERVICESDIR@ SYSTEMD = @SYSTEMD@ SYSTEMDSYSTEMUNITDIR = @SYSTEMDSYSTEMUNITDIR@ SYSVINIT = @SYSVINIT@ TALLOC_CFLAGS = @TALLOC_CFLAGS@ TALLOC_LIBS = @TALLOC_LIBS@ TEVENT_CFLAGS = @TEVENT_CFLAGS@ TEVENT_LIBS = @TEVENT_LIBS@ TMPFILES = @TMPFILES@ USE_NLS = @USE_NLS@ UUID_CFLAGS = @UUID_CFLAGS@ UUID_LIBS = @UUID_LIBS@ VERSION = @VERSION@ XGETTEXT = @XGETTEXT@ XGETTEXT_015 = @XGETTEXT_015@ XGETTEXT_EXTRA_OPTIONS = @XGETTEXT_EXTRA_OPTIONS@ XMLRPC_CFLAGS = @XMLRPC_CFLAGS@ XMLRPC_C_CONFIG = @XMLRPC_C_CONFIG@ XMLRPC_LIBS = @XMLRPC_LIBS@ XML_CFLAGS = @XML_CFLAGS@ XML_LIBS = @XML_LIBS@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_CC = @ac_ct_CC@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ mybindir = @mybindir@ mylibexecdir = @mylibexecdir@ mysbindir = @mysbindir@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ servicedir = @SESSIONBUSSERVICESDIR@ service_DATA = certmonger.service systemdbusdir = $(sysconfdir)/dbus-1/system.d systemdbus_DATA = certmonger.conf all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign dbus/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign dbus/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): certmonger.conf: $(top_builddir)/config.status $(srcdir)/certmonger.conf.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger.service: $(top_builddir)/config.status $(srcdir)/certmonger.service.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ install-serviceDATA: $(service_DATA) @$(NORMAL_INSTALL) @list='$(service_DATA)'; test -n "$(servicedir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(servicedir)'"; \ $(MKDIR_P) "$(DESTDIR)$(servicedir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(servicedir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(servicedir)" || exit $$?; \ done uninstall-serviceDATA: @$(NORMAL_UNINSTALL) @list='$(service_DATA)'; test -n "$(servicedir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(servicedir)'; $(am__uninstall_files_from_dir) install-systemdbusDATA: $(systemdbus_DATA) @$(NORMAL_INSTALL) @list='$(systemdbus_DATA)'; test -n "$(systemdbusdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(systemdbusdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(systemdbusdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(systemdbusdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(systemdbusdir)" || exit $$?; \ done uninstall-systemdbusDATA: @$(NORMAL_UNINSTALL) @list='$(systemdbus_DATA)'; test -n "$(systemdbusdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(systemdbusdir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(servicedir)" "$(DESTDIR)$(systemdbusdir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-serviceDATA install-systemdbusDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-serviceDATA uninstall-systemdbusDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic cscopelist-am \ ctags-am distclean distclean-generic distdir dvi dvi-am html \ html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-man install-pdf install-pdf-am \ install-ps install-ps-am install-serviceDATA install-strip \ install-systemdbusDATA installcheck installcheck-am \ installdirs maintainer-clean maintainer-clean-generic \ mostlyclean mostlyclean-generic pdf pdf-am ps ps-am tags-am \ uninstall uninstall-am uninstall-serviceDATA \ uninstall-systemdbusDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/dbus/Makefile.am0000664000175000017500000000022712645513264013706 00000000000000servicedir = @SESSIONBUSSERVICESDIR@ service_DATA = certmonger.service systemdbusdir = $(sysconfdir)/dbus-1/system.d systemdbus_DATA = certmonger.conf certmonger-0.78.6/depcomp0000755000175000017500000005601612645513271012275 00000000000000#! /bin/sh # depcomp - compile a program generating dependencies as side-effects scriptversion=2013-05-30.07; # UTC # Copyright (C) 1999-2014 Free Software Foundation, Inc. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # Originally written by Alexandre Oliva . case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: depcomp [--help] [--version] PROGRAM [ARGS] Run PROGRAMS ARGS to compile a file, generating dependencies as side-effects. Environment variables: depmode Dependency tracking mode. source Source file read by 'PROGRAMS ARGS'. object Object file output by 'PROGRAMS ARGS'. DEPDIR directory where to store dependencies. depfile Dependency file to output. tmpdepfile Temporary file to use when outputting dependencies. libtool Whether libtool is used (yes/no). Report bugs to . EOF exit $? ;; -v | --v*) echo "depcomp $scriptversion" exit $? ;; esac # Get the directory component of the given path, and save it in the # global variables '$dir'. Note that this directory component will # be either empty or ending with a '/' character. This is deliberate. set_dir_from () { case $1 in */*) dir=`echo "$1" | sed -e 's|/[^/]*$|/|'`;; *) dir=;; esac } # Get the suffix-stripped basename of the given path, and save it the # global variable '$base'. set_base_from () { base=`echo "$1" | sed -e 's|^.*/||' -e 's/\.[^.]*$//'` } # If no dependency file was actually created by the compiler invocation, # we still have to create a dummy depfile, to avoid errors with the # Makefile "include basename.Plo" scheme. make_dummy_depfile () { echo "#dummy" > "$depfile" } # Factor out some common post-processing of the generated depfile. # Requires the auxiliary global variable '$tmpdepfile' to be set. aix_post_process_depfile () { # If the compiler actually managed to produce a dependency file, # post-process it. if test -f "$tmpdepfile"; then # Each line is of the form 'foo.o: dependency.h'. # Do two passes, one to just change these to # $object: dependency.h # and one to simply output # dependency.h: # which is needed to avoid the deleted-header problem. { sed -e "s,^.*\.[$lower]*:,$object:," < "$tmpdepfile" sed -e "s,^.*\.[$lower]*:[$tab ]*,," -e 's,$,:,' < "$tmpdepfile" } > "$depfile" rm -f "$tmpdepfile" else make_dummy_depfile fi } # A tabulation character. tab=' ' # A newline character. nl=' ' # Character ranges might be problematic outside the C locale. # These definitions help. upper=ABCDEFGHIJKLMNOPQRSTUVWXYZ lower=abcdefghijklmnopqrstuvwxyz digits=0123456789 alpha=${upper}${lower} if test -z "$depmode" || test -z "$source" || test -z "$object"; then echo "depcomp: Variables source, object and depmode must be set" 1>&2 exit 1 fi # Dependencies for sub/bar.o or sub/bar.obj go into sub/.deps/bar.Po. depfile=${depfile-`echo "$object" | sed 's|[^\\/]*$|'${DEPDIR-.deps}'/&|;s|\.\([^.]*\)$|.P\1|;s|Pobj$|Po|'`} tmpdepfile=${tmpdepfile-`echo "$depfile" | sed 's/\.\([^.]*\)$/.T\1/'`} rm -f "$tmpdepfile" # Avoid interferences from the environment. gccflag= dashmflag= # Some modes work just like other modes, but use different flags. We # parameterize here, but still list the modes in the big case below, # to make depend.m4 easier to write. Note that we *cannot* use a case # here, because this file can only contain one case statement. if test "$depmode" = hp; then # HP compiler uses -M and no extra arg. gccflag=-M depmode=gcc fi if test "$depmode" = dashXmstdout; then # This is just like dashmstdout with a different argument. dashmflag=-xM depmode=dashmstdout fi cygpath_u="cygpath -u -f -" if test "$depmode" = msvcmsys; then # This is just like msvisualcpp but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvisualcpp fi if test "$depmode" = msvc7msys; then # This is just like msvc7 but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvc7 fi if test "$depmode" = xlc; then # IBM C/C++ Compilers xlc/xlC can output gcc-like dependency information. gccflag=-qmakedep=gcc,-MF depmode=gcc fi case "$depmode" in gcc3) ## gcc 3 implements dependency tracking that does exactly what ## we want. Yay! Note: for some reason libtool 1.4 doesn't like ## it if -MD -MP comes after the -MF stuff. Hmm. ## Unfortunately, FreeBSD c89 acceptance of flags depends upon ## the command line argument order; so add the flags where they ## appear in depend2.am. Note that the slowdown incurred here ## affects only configure: in makefiles, %FASTDEP% shortcuts this. for arg do case $arg in -c) set fnord "$@" -MT "$object" -MD -MP -MF "$tmpdepfile" "$arg" ;; *) set fnord "$@" "$arg" ;; esac shift # fnord shift # $arg done "$@" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi mv "$tmpdepfile" "$depfile" ;; gcc) ## Note that this doesn't just cater to obsosete pre-3.x GCC compilers. ## but also to in-use compilers like IMB xlc/xlC and the HP C compiler. ## (see the conditional assignment to $gccflag above). ## There are various ways to get dependency output from gcc. Here's ## why we pick this rather obscure method: ## - Don't want to use -MD because we'd like the dependencies to end ## up in a subdir. Having to rename by hand is ugly. ## (We might end up doing this anyway to support other compilers.) ## - The DEPENDENCIES_OUTPUT environment variable makes gcc act like ## -MM, not -M (despite what the docs say). Also, it might not be ## supported by the other compilers which use the 'gcc' depmode. ## - Using -M directly means running the compiler twice (even worse ## than renaming). if test -z "$gccflag"; then gccflag=-MD, fi "$@" -Wp,"$gccflag$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The second -e expression handles DOS-style file names with drive # letters. sed -e 's/^[^:]*: / /' \ -e 's/^['$alpha']:\/[^:]*: / /' < "$tmpdepfile" >> "$depfile" ## This next piece of magic avoids the "deleted header file" problem. ## The problem is that when a header file which appears in a .P file ## is deleted, the dependency causes make to die (because there is ## typically no way to rebuild the header). We avoid this by adding ## dummy dependencies for each header file. Too bad gcc doesn't do ## this for us directly. ## Some versions of gcc put a space before the ':'. On the theory ## that the space means something, we add a space to the output as ## well. hp depmode also adds that space, but also prefixes the VPATH ## to the object. Take care to not repeat it in the output. ## Some versions of the HPUX 10.20 sed can't process this invocation ## correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e "s|.*$object$||" -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; sgi) if test "$libtool" = yes; then "$@" "-Wp,-MDupdate,$tmpdepfile" else "$@" -MDupdate "$tmpdepfile" fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" if test -f "$tmpdepfile"; then # yes, the sourcefile depend on other files echo "$object : \\" > "$depfile" # Clip off the initial element (the dependent). Don't try to be # clever and replace this with sed code, as IRIX sed won't handle # lines with more than a fixed number of characters (4096 in # IRIX 6.2 sed, 8192 in IRIX 6.5). We also remove comment lines; # the IRIX cc adds comments like '#:fec' to the end of the # dependency line. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' \ | tr "$nl" ' ' >> "$depfile" echo >> "$depfile" # The second pass generates a dummy entry for each header file. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' -e 's/$/:/' \ >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" ;; xlc) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; aix) # The C for AIX Compiler uses -M and outputs the dependencies # in a .u file. In older versions, this file always lives in the # current directory. Also, the AIX compiler puts '$object:' at the # start of each line; $object doesn't have directory information. # Version 6 uses the directory in both cases. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.u tmpdepfile2=$base.u tmpdepfile3=$dir.libs/$base.u "$@" -Wc,-M else tmpdepfile1=$dir$base.u tmpdepfile2=$dir$base.u tmpdepfile3=$dir$base.u "$@" -M fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done aix_post_process_depfile ;; tcc) # tcc (Tiny C Compiler) understand '-MD -MF file' since version 0.9.26 # FIXME: That version still under development at the moment of writing. # Make that this statement remains true also for stable, released # versions. # It will wrap lines (doesn't matter whether long or short) with a # trailing '\', as in: # # foo.o : \ # foo.c \ # foo.h \ # # It will put a trailing '\' even on the last line, and will use leading # spaces rather than leading tabs (at least since its commit 0394caf7 # "Emit spaces for -MD"). "$@" -MD -MF "$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each non-empty line is of the form 'foo.o : \' or ' dep.h \'. # We have to change lines of the first kind to '$object: \'. sed -e "s|.*:|$object :|" < "$tmpdepfile" > "$depfile" # And for each line of the second kind, we have to emit a 'dep.h:' # dummy dependency, to avoid the deleted-header problem. sed -n -e 's|^ *\(.*\) *\\$|\1:|p' < "$tmpdepfile" >> "$depfile" rm -f "$tmpdepfile" ;; ## The order of this option in the case statement is important, since the ## shell code in configure will try each of these formats in the order ## listed in this file. A plain '-MD' option would be understood by many ## compilers, so we must ensure this comes after the gcc and icc options. pgcc) # Portland's C compiler understands '-MD'. # Will always output deps to 'file.d' where file is the root name of the # source file under compilation, even if file resides in a subdirectory. # The object file name does not affect the name of the '.d' file. # pgcc 10.2 will output # foo.o: sub/foo.c sub/foo.h # and will wrap long lines using '\' : # foo.o: sub/foo.c ... \ # sub/foo.h ... \ # ... set_dir_from "$object" # Use the source, not the object, to determine the base name, since # that's sadly what pgcc will do too. set_base_from "$source" tmpdepfile=$base.d # For projects that build the same source file twice into different object # files, the pgcc approach of using the *source* file root name can cause # problems in parallel builds. Use a locking strategy to avoid stomping on # the same $tmpdepfile. lockdir=$base.d-lock trap " echo '$0: caught signal, cleaning up...' >&2 rmdir '$lockdir' exit 1 " 1 2 13 15 numtries=100 i=$numtries while test $i -gt 0; do # mkdir is a portable test-and-set. if mkdir "$lockdir" 2>/dev/null; then # This process acquired the lock. "$@" -MD stat=$? # Release the lock. rmdir "$lockdir" break else # If the lock is being held by a different process, wait # until the winning process is done or we timeout. while test -d "$lockdir" && test $i -gt 0; do sleep 1 i=`expr $i - 1` done fi i=`expr $i - 1` done trap - 1 2 13 15 if test $i -le 0; then echo "$0: failed to acquire lock after $numtries attempts" >&2 echo "$0: check lockdir '$lockdir'" >&2 exit 1 fi if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each line is of the form `foo.o: dependent.h', # or `foo.o: dep1.h dep2.h \', or ` dep3.h dep4.h \'. # Do two passes, one to just change these to # `$object: dependent.h' and one to simply `dependent.h:'. sed "s,^[^:]*:,$object :," < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this invocation # correctly. Breaking it into two sed invocations is a workaround. sed 's,^[^:]*: \(.*\)$,\1,;s/^\\$//;/^$/d;/:$/d' < "$tmpdepfile" \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp2) # The "hp" stanza above does not work with aCC (C++) and HP's ia64 # compilers, which have integrated preprocessors. The correct option # to use with these is +Maked; it writes dependencies to a file named # 'foo.d', which lands next to the object file, wherever that # happens to be. # Much of this is similar to the tru64 case; see comments there. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.d tmpdepfile2=$dir.libs/$base.d "$@" -Wc,+Maked else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d "$@" +Maked fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" do test -f "$tmpdepfile" && break done if test -f "$tmpdepfile"; then sed -e "s,^.*\.[$lower]*:,$object:," "$tmpdepfile" > "$depfile" # Add 'dependent.h:' lines. sed -ne '2,${ s/^ *// s/ \\*$// s/$/:/ p }' "$tmpdepfile" >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" "$tmpdepfile2" ;; tru64) # The Tru64 compiler uses -MD to generate dependencies as a side # effect. 'cc -MD -o foo.o ...' puts the dependencies into 'foo.o.d'. # At least on Alpha/Redhat 6.1, Compaq CCC V6.2-504 seems to put # dependencies in 'foo.d' instead, so we check for that too. # Subdirectories are respected. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then # Libtool generates 2 separate objects for the 2 libraries. These # two compilations output dependencies in $dir.libs/$base.o.d and # in $dir$base.o.d. We have to check for both files, because # one of the two compilations can be disabled. We should prefer # $dir$base.o.d over $dir.libs/$base.o.d because the latter is # automatically cleaned when .libs/ is deleted, while ignoring # the former would cause a distcleancheck panic. tmpdepfile1=$dir$base.o.d # libtool 1.5 tmpdepfile2=$dir.libs/$base.o.d # Likewise. tmpdepfile3=$dir.libs/$base.d # Compaq CCC V6.2-504 "$@" -Wc,-MD else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d tmpdepfile3=$dir$base.d "$@" -MD fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done # Same post-processing that is required for AIX mode. aix_post_process_depfile ;; msvc7) if test "$libtool" = yes; then showIncludes=-Wc,-showIncludes else showIncludes=-showIncludes fi "$@" $showIncludes > "$tmpdepfile" stat=$? grep -v '^Note: including file: ' "$tmpdepfile" if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The first sed program below extracts the file names and escapes # backslashes for cygpath. The second sed program outputs the file # name when reading, but also accumulates all include files in the # hold buffer in order to output them again at the end. This only # works with sed implementations that can handle large buffers. sed < "$tmpdepfile" -n ' /^Note: including file: *\(.*\)/ { s//\1/ s/\\/\\\\/g p }' | $cygpath_u | sort -u | sed -n ' s/ /\\ /g s/\(.*\)/'"$tab"'\1 \\/p s/.\(.*\) \\/\1:/ H $ { s/.*/'"$tab"'/ G p }' >> "$depfile" echo >> "$depfile" # make sure the fragment doesn't end with a backslash rm -f "$tmpdepfile" ;; msvc7msys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; #nosideeffect) # This comment above is used by automake to tell side-effect # dependency tracking mechanisms from slower ones. dashmstdout) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout, regardless of -o. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done test -z "$dashmflag" && dashmflag=-M # Require at least two characters before searching for ':' # in the target name. This is to cope with DOS-style filenames: # a dependency such as 'c:/foo/bar' could be seen as target 'c' otherwise. "$@" $dashmflag | sed "s|^[$tab ]*[^:$tab ][^:][^:]*:[$tab ]*|$object: |" > "$tmpdepfile" rm -f "$depfile" cat < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this sed invocation # correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; dashXmstdout) # This case only exists to satisfy depend.m4. It is never actually # run, as this mode is specially recognized in the preamble. exit 1 ;; makedepend) "$@" || exit $? # Remove any Libtool call if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # X makedepend shift cleared=no eat=no for arg do case $cleared in no) set ""; shift cleared=yes ;; esac if test $eat = yes; then eat=no continue fi case "$arg" in -D*|-I*) set fnord "$@" "$arg"; shift ;; # Strip any option that makedepend may not understand. Remove # the object too, otherwise makedepend will parse it as a source file. -arch) eat=yes ;; -*|$object) ;; *) set fnord "$@" "$arg"; shift ;; esac done obj_suffix=`echo "$object" | sed 's/^.*\././'` touch "$tmpdepfile" ${MAKEDEPEND-makedepend} -o"$obj_suffix" -f"$tmpdepfile" "$@" rm -f "$depfile" # makedepend may prepend the VPATH from the source file name to the object. # No need to regex-escape $object, excess matching of '.' is harmless. sed "s|^.*\($object *:\)|\1|" "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process the last invocation # correctly. Breaking it into two sed invocations is a workaround. sed '1,2d' "$tmpdepfile" \ | tr ' ' "$nl" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" "$tmpdepfile".bak ;; cpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done "$@" -E \ | sed -n -e '/^# [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ -e '/^#line [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ | sed '$ s: \\$::' > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" cat < "$tmpdepfile" >> "$depfile" sed < "$tmpdepfile" '/^$/d;s/^ //;s/ \\$//;s/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; msvisualcpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi IFS=" " for arg do case "$arg" in -o) shift ;; $object) shift ;; "-Gm"|"/Gm"|"-Gi"|"/Gi"|"-ZI"|"/ZI") set fnord "$@" shift shift ;; *) set fnord "$@" "$arg" shift shift ;; esac done "$@" -E 2>/dev/null | sed -n '/^#line [0-9][0-9]* "\([^"]*\)"/ s::\1:p' | $cygpath_u | sort -u > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::'"$tab"'\1 \\:p' >> "$depfile" echo "$tab" >> "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::\1\::p' >> "$depfile" rm -f "$tmpdepfile" ;; msvcmsys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; none) exec "$@" ;; *) echo "Unknown depmode $depmode" 1>&2 exit 1 ;; esac exit 0 # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: certmonger-0.78.6/po/0000775000175000017500000000000012645513301011402 500000000000000certmonger-0.78.6/po/stamp-po0000664000175000017500000000001212645513300012775 00000000000000timestamp certmonger-0.78.6/po/certmonger.pot0000664000175000017500000012634312645513275014236 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the certmonger package. # FIRST AUTHOR , YEAR. # #, fuzzy msgid "" msgstr "" "Project-Id-Version: certmonger 0.78.6\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: LANGUAGE \n" "Language: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=CHARSET\n" "Content-Transfer-Encoding: 8bit\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/zu.gmo0000664000175000017500000000100712645513300012461 00000000000000Þ•$,8Í9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Zulu (http://www.transifex.com/projects/p/certmonger/language/zu/) Language: zu MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/zh_TW.gmo0000664000175000017500000002264012645513300013064 00000000000000Þ•jl•¼  -- [ d u „ #’ ¶ ½ Ä Í Û ñ   2 ? K =_ ' BÅ # 8, ?e #¥ >É ? .H Iw "Á (ä  () R l !| ž ² Ì (ì 4FU d r~ ž%¨#Î+ò,'Ks ‘ ›%©)Ïù!; Yd#€$¤É Î(ï!):d*&¬ Óßô!#aE;§ã?ó/3cuŠC™2Ý2&C!j+Œ6¸-ï2$P u+–ÂÜú#5"Y|÷„"|8Ÿ Øâö!:B JUi~–ª ¿ ÍÚ4ì-!?O!C±?õ!5RW7ª'âh !s!•· Òó ";Ng&€§ÆÙè÷ -&<c|#›¿Þ ü+4C(x%¡!Ç éö #. R *V % *§ %Ò $ø "!&@!g!}!—!¬!!È!Wê!/B"r"=‡",Å"ò"##.0#'_#'‡#¯#Ê# å##$*$!I$#k$$-¬$Ú$õ$%1%$P%#u%™%P%bZA,*$MaW!8 4&ej/21+5T[iDd= 6'>< E]F;(9"gRY:3KhL` GS ^JfI?.VX OC0U-_N)@Q\H#7cB -S use system bus -d LEVEL set debugging level (implies -n) CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s known-issuer-names: next-serial-number: %s principal name: status: %s track: %s -P PIN PIN value -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -t NAME optional token name for NSS-based storage (only valid with -d) -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If using an NSS database for storage: * If using files for storage: * Other options: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Error %s Error %s: %s Error creating DBus request message. Error initializing Kerberos library: %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error: %s Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No request found with specified nickname. No response received from %s service. No such CA.Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request ID '%s': Required arguments: Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to read signing request. Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Chinese (Taiwan) (http://www.transifex.com/projects/p/certmonger/language/zh_TW/) Language: zh-TW MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; X-Generator: Zanata 3.6.2 -S 使用系統匯æµæŽ’ -d 等級 設定除錯等級 (等於åŒæ™‚指定 -n) CA:%s 自動更新:%s ca-錯誤:%s ca-類型:%s 憑證:類型=%sã€ä½ç½®='%s' dns: eku: 電郵: 失效日期:%s helper-ä½ç½®ï¼š%s known-issuer-names: 下個åºè™Ÿï¼š%s principal å稱: 狀態:%s track:%s -P PIN PIN 值 -c CA åªåˆ—出與此 CA 有關的請求與憑證 -d 目錄 金鑰åŠæ†‘證的 NSS 資料庫 -d 目錄 åªåˆ—出使用此 NSS 資料庫的請求åŠæ†‘è­‰ -f 檔案 憑證的 PEM 檔案 -f 檔案 憑證的 PEM 檔案 (åªæœ‰èˆ‡ -k 一起用æ‰æœ‰æ•ˆ) -f 檔案 åªåˆ—出儲存於此 PEM 檔案的請求åŠæ†‘è­‰ -k 檔案 ç§é‘°çš„ PEM 檔案 -n å稱 基於 NSS 的儲存è£ç½®çš„暱稱 (åªæœ‰èˆ‡ -d 一起用æ‰æœ‰æ•ˆ) -n å稱 åªåˆ—出使用此暱稱的請求åŠæ†‘è­‰ -p 檔案 儲存加密 PIN 的檔案 -t å稱 基於 NSS 的儲存è£ç½®çš„ token å稱 (å¯æœ‰å¯ç„¡ï¼›åªæœ‰èˆ‡ -d 一起用æ‰æœ‰æ•ˆ) -v 報告錯誤的所有詳情 %s - 客戶端憑證註冊工具 %s:é¸é …無效 -- '%c' %s:é¸é …必需引數 -- '%c' %s:指令無法辨識 * 匯æµæŽ’é¸é …: * 憑證處ç†è¨­å®šï¼š * 一般é¸é …: * 如金鑰已加密: * 如金鑰è¦åŠ å¯†ï¼š * 如以 NSS 資料庫作為儲存: * 如以檔案作為儲存: * 其他é¸é …: ã€ä½ç½®='%s'ã€æš±ç¨±='%s'ã€pin檔案='%s'ã€token='%s'發生內部錯誤。CA「%sã€ï¼š 未知的憑證授權機構「%sã€ã€‚未指定憑證暱稱。未指定憑證儲存ä½ç½®ã€‚ä¸æ”¯æ´æ†‘證儲存類型 "%s"。未指定憑證儲存類型。無法評估 OID 「%sã€ã€‚ 錯誤 %s 錯誤 %s:%s 建立 DBus 請求訊æ¯æ™‚發生錯誤。 åˆå§‹åŒ– Kerberos 函å¼åº«æ™‚發生錯誤:%s。 解æžä¼ºæœå™¨å›žæ‡‰æ™‚發生錯誤。 設定請求åƒæ•¸æ™‚發生錯誤。 設置 XMLRPC 時發生錯誤。 錯誤:%s 未指定金鑰暱稱。未指定金鑰儲存ä½ç½®ã€‚ä¸æ”¯æ´é‡‘鑰儲存類型 "%s"。無已加入新增的簽署請求「%sã€ã€‚ 無法加入新增的簽署請求。 已加入新增的追蹤請求「%sã€ã€‚ 無法加入新增的追蹤請求。 找ä¸åˆ°å稱為「%sã€çš„ CA。 找ä¸åˆ°æŒ‡å®šæš±ç¨±çš„請求。 沒有從 %s æœå‹™æŽ¥æ”¶åˆ°å›žæ‡‰ã€‚ 沒有這樣的 CA。å¯æœ‰å¯ç„¡çš„引數: 記憶體ä¸è¶³ã€‚ "%s" 路徑並éžç›®éŒ„。 "%s" 路徑並éžæ™®é€šæª”案。 路徑「%sã€éžçµ•å°è·¯å¾‘,並且在判斷目å‰ç›®éŒ„çš„å稱時發生錯誤。 "%s" 並éžçµ•å°è·¯å¾‘,改為使用 "%s"。 路徑 "%s":%s。 請驗證訊æ¯åŒ¯æµæŽ’ (D-Bus) æœå‹™æ˜¯å¦æ­£åœ¨åŸ·è¡Œã€‚ 從本地 %s æœå‹™æŽ¥æ”¶åˆ°éŒ¯èª¤å›žæ‡‰ã€‚ 請求 ID「%sã€ï¼š 請求的åƒæ•¸ï¼š 伺æœå™¨éŒ¯èª¤ã€‚ é¸é … -K ä¸èƒ½èˆ‡ -k 或 -t 一起使用。 é¸é … -k ä¸èƒ½èˆ‡ -K 一起使用。 é¸é … -t ä¸èƒ½èˆ‡ -K 一起使用。 "%s" ä½ç½®é ˆç‚ºç›®éŒ„。"%s" ä½ç½®é ˆç‚ºæª”案。"%s" ä½ç½®é ˆç‚ºçµ•å°è·¯å¾‘。"%s" 的上層須為有效目錄。已有暱稱為 "%s" çš„ CA。已有暱稱為 "%s" 的請求。無法判斷 CA 的主機å稱。 無法讀å–簽署請求。 無法辨識的åƒæ•¸æˆ–錯誤的值類型。用法:%s list [é¸é …] 用法:%s list-cas [é¸é …] 用法:%s 請求 [é¸é …] 用法:%s resubmit [é¸é …] 用法:%s start-tracking [é¸é …] 用法:%s stop-tracking [é¸é …] 未知certmonger-0.78.6/po/zh_TW.Big5.gmo0000664000175000017500000000104412645513300013644 00000000000000Þ•$,8ê9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Chinese (Taiwan) (Big5) (http://www.transifex.com/projects/p/certmonger/language/zh_TW.Big5/) Language: zh_TW.Big5 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/zh_HK.gmo0000664000175000017500000000102512645513300013026 00000000000000Þ•$,8Û9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Chinese (Hong Kong) (http://www.transifex.com/projects/p/certmonger/language/zh_HK/) Language: zh_HK MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/zh_CN.gmo0000664000175000017500000004566512645513300013046 00000000000000Þ•À &!%Hn(Š-³á"&$Khq‚ ‘#ŸÃÊÑ Úè þ &6Le}” ¦ ³ ¿ Í2Ù1 )>$h,'º3â,/C,s' >ÈC:_9šSÔ8(3a:•6Ð:=B'€B¨#ë8?HEˆ(Î3÷#+>O?Ž.ÎGý6E;|:¸6óI*,t"¡(Äí( 2L\!v˜¬Æ$æ# (/X0w¨6º&ñ' 6 DP pKz%Æ#ì+,<'i‘8¯;è$ @ ` j )x !¢ %Ä )ê !0+!\!!|!ž!2¼! ï!#ú!-"6L"(ƒ"¬"<Ì"C #M##i#$#²# ·#(Ø#!$)#$M$/j$4š$Ï$6é$) %*J%&u% œ%M¨%Gö%7>&v&‹&›&!º&aÜ&;>'z'<Š'<Ç'?(/D($t(#™(½(Õ(ì(þ()/)C)CR)2–)2É)nü)&k*!’*+´*6à*-+2E+$x+8+ Ö+÷++,@,Z,x,•,#³,"×,ú,ö-!ù.*/F/,f/+“/¿/!ß/*0",0 O0\0s0‡0›0 º0 Æ0Ñ0æ0ý01)1G1Z1x1’1¨1¾1Ð1á1ò12'2'<2(d2)20·22è223*N3/y3&©3#Ð3Dô3940N4943¹4Mí47;57s51«51Ý5:67J6,‚6r¯6""7GE7u7>8#B8)f8!8P²8j9(n9:—90Ò99:3=:0q:W¢:-ú:!(;!J;l;%‰;¯;Å;Ø;ñ; <<9<X<'w<,Ÿ<$Ì<!ñ<='&=N=j=y= ˆ= –=¢= ¾=EÊ=#>4>!P>&r>!™>»>.Ø>(?0?K? j?u?,…?!²?%Ô?%ú? @3<@"p@“@³@7Ï@ A*A.@A4oA'¤A!ÌA1îAB BcB!B&¡BÈB'ÌB"ôB'C"?C(bC:‹C:ÆCD=!D%_D(…D#®DÒDAâD:$E*_EŠE›E%¬E+ÒEDþE=CFF.•F1ÄF<öF)3G]G|G›G¸GÔGçG)øG"HAH:UH-H.¾H[íH II jI&‹I2²I*åI,J=J(\J…J¢J*ÁJìJK&KEK%dK#ŠK®KÀ p‘hJ³’\“sŠ¹˜c{¢™ƒSCœN—g–°Œ U¸¥a¼ªF·d&?¤w²'YbvºL•|H"Ž€EOž+zy)›$š;‹WGr­}Z½V~¶7x0#„[‰4noµ‚«Q(…¾2t:*=9 ®¨iR,^j!`3¿uX¦ k”.‡A´e>PmB8I5D6T±¯/¡l ] ©§M 1ˆqKŸ<†¬f»_%-£@ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known-issuer-names: next-serial-number: %s post-save command: %s pre-save command: %s principal name: status: %s stuck: %s subject: %s track: %s -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Chinese (China) (http://www.transifex.com/projects/p/certmonger/language/zh_CN/) Language: zh-CN MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; X-Generator: Zanata 3.6.2 -B ä¸ä½¿ç”¨ idle 超时 -F 强制 NSS 进入 FIPS æ¨¡å¼ -S 使用系统总线 -b TIMEOUT 使用总线激活, idle 超时 -d LEVEL 设定调试级别 (使用 -n) -f æˆä¸ºå®ˆæŠ¤è¿›ç¨‹ -n ä¸æˆä¸ºå®ˆæŠ¤è¿›ç¨‹ -p FILE 在文件中写入æœåŠ¡ PID -s 使用和会è¯æ€»çº¿ CA:%s 自动更新:%s CA 错误:%s CA 类型:%s è¯ä¹¦ï¼štype=%s,location='%s' DNS: EKU: 电å­é‚®ä»¶ï¼š 到期时间:%s helper ä½ç½®ï¼š%s å‘行者:%s 密钥对存储:type=%s 密钥用法: %s 已知å‘行者å称: 下个åºåˆ—å·ï¼š%s ä¿å­˜åŽå‘½ä»¤: %s ä¿å­˜å‰å‘½ä»¤: %s 实体å: 状æ€ï¼š%s 死机:%s 主题:%s 跟踪:%s -B 在ä¿å­˜è¯ä¹¦å‰è¿è¡Œçš„命令 -C 在ä¿å­˜è¯ä¹¦åŽè¿è¡Œçš„命令 -D DNSNAME 覆盖所需的 DNS å -D DNSNAME 设定所需的 DNS å -E EMAIL 覆盖所需的电å­é‚®ä»¶åœ°å€ -E EMAIL 设定所需的电å­é‚®ä»¶åœ°å€ -I NAME è¦æŒ‡å®šäºŽè·Ÿè¸ªè¯·æ±‚的新别å -I NAME è¦åˆ†é…给请求的别å -I NAME è¦æŒ‡å®šäºŽè·Ÿè¸ªè¯·æ±‚的别å -K NAME 覆盖所需的实体å -K NAME 设定所需实体å -N NAME 设定所需的主题å(默认:CN=<主机å>) -P PIN PIN 值 -R ä¸åœ¨ä¸´è¿‘到期时试图更新è¯ä¹¦ -S 在系统总线上连接到的 certmonger æœåŠ¡ -S 在系统总线上连接 certmonger æœåŠ¡ -T 预置文件 è¦æ±‚ CA 使用指å的预置文件或模æ¿å¤„ç†è¯·æ±‚ -U EXTUSAGE 覆盖所需的扩展密钥使用 OID -U EXTUSAGE 设定所需的扩展密钥使用 OID -c CA 使用指定的 CA 而ä¸æ˜¯å½“å‰çš„ -c CA 使用指定的 CA 而ä¸æ˜¯é»˜è®¤ CA -c CA åªåˆ—出具有此å称的 CA çš„ç›¸å…³ä¿¡æ¯ -c CA åªåˆ—出与此 CA å…³è”的请求和è¯ä¹¦ -d DIR 密钥和è¯ä¹¦çš„NSS æ•°æ®åº“ -d 目录»仅列出使用该 NSS æ•°æ®åº“çš„è¯·æ±‚å’Œè®¤è¯ -f FILE è¯ä¹¦çš„ PEM 文件 -f FILE è¯ä¹¦çš„ PEM 文件(åªåœ¨åŒæ—¶ä½¿ç”¨ -k 时有效) -f 文件»仅列出ä¿å­˜åœ¨æ­¤ PEM æ–‡ä»¶ä¸­çš„è¯·æ±‚å’Œè®¤è¯ -g SIZE è¦ç”Ÿæˆçš„密钥大å°ï¼Œå¦‚果密钥ä¸å­˜åœ¨ -i NAME 跟踪请求的别å -i NAME 现存跟踪请求的别å -k FILE ç§é’¥çš„PEM 文件 -n NAME 基于 NSS 的存储的别å(åªåœ¨åŒæ—¶ä½¿ç”¨ -d 时有效) -n å称»仅显示使用该åç§°çš„è¯·æ±‚å’Œè®¤è¯ -p FILE ä¿å­˜åŠ å¯† PIN 的文件 -r 在临近到期时试图更新è¯ä¹¦ï¼ˆé»˜è®¤ï¼‰ -r åªåˆ—å‡ºæœªè§£å†³è¯·æ±‚çš„ç›¸å…³ä¿¡æ¯ -s 在会è¯æ€»çº¿ä¸Šè¿žæŽ¥åˆ°çš„ certmonger æœåŠ¡ -s 在会è¯æ€»çº¿ä¸Šè¿žæŽ¥ certmonger æœåŠ¡ -t åªåˆ—出被跟踪è¯ä¹¦çš„ç›¸å…³ä¿¡æ¯ -t NAME 基于 NSS 的存储的å¯é€‰ä»¤ç‰Œå(åªåœ¨åŒæ—¶ä½¿ç”¨ -d 时有效) -u KEYUSAGE 设定请求的密钥用法值 -v 报告所有错误细节 %s - 客户端è¯ä¹¦ç™»è®°å·¥å…· %s: 无效的选项 -- '%c' %s: æ“作需è¦ä¸€ä¸ªå‚æ•° -- '%c' %s:未识别命令 * 总线选项: * 由请求标识符: * è¯ä¹¦å¤„ç†è®¾ç½®ï¼š * 一般选项: * 如果密钥已加密: * 如果密钥è¦è¢«åŠ å¯†ï¼š * 如果修改现存请求: * 如果选择一个特定的需求: * 如果使用 NSS æ•°æ®åº“作为存储: * 如果使用文件作为存储: * ç­¾å请求的新å‚数值: * 其他选项: * ç­¾å请求在更新时的å‚数: * ç­¾å请求的å‚数: ,location='%s',nickname='%s',pinfile='%s',token='%s'å‘生一个内部错误。CA '%s': 在相åŒä½ç½®çš„认è¯å·²ç»è¢«åŒ…å«æ˜µç§° "%s" 的请求使用。è¯ä¹¦è®¤è¯ä¸­å¿ƒâ€œ%sâ€æœªçŸ¥ã€‚è¯ä¹¦åˆ«å没有指定。è¯ä¹¦å­˜å‚¨ä½ç½®æ²¡æœ‰æŒ‡å®šã€‚è¯ä¹¦å­˜å‚¨ç±»åž‹â€œ%sâ€ä¸æ”¯æŒã€‚è¯ä¹¦å­˜å‚¨ç±»åž‹æ²¡æœ‰æŒ‡å®šã€‚无法估计 OID“%sâ€ã€‚ æ•°æ®åº“目录和è¯ä¹¦æ–‡ä»¶éƒ½å·²æŒ‡å®šã€‚ æ•°æ®åº“ä½ç½®æˆ–别å缺一ä¸å¯ã€‚ 错误 %d 连接至 %s。 错误 %d 连接至 %s: %s。 错误 %s 错误 %s:%s 试图æ交“%sâ€åˆ°â€œ%sâ€æ—¶å‡ºé”™ã€‚ 试图æ交“%sâ€æ—¶å‡ºé”™ã€‚ 创建 DBus 请求消æ¯æ—¶å‡ºé”™ã€‚ åˆå§‹åŒ– Kerberos 库时出错:%s 修改“%sâ€æ—¶å‡ºé”™ã€‚ è§£æž Kerberos 实体å“%sâ€æ—¶å‡ºé”™ï¼š%s。 分æžæœåŠ¡å™¨å“应时出错。 设定请求å‚数时出错。 设置 xmlrpc 时出错。 åè§£æž Kerberos 主机å “%sâ€æ—¶å‡ºé”™ï¼š%s。 错误: %s 错误:未使用的é¢å¤–å‚æ•° "%s"。 错误:输入了é¢å¤–未使用的å‚数。 访问æƒé™ä¸è¶³ã€‚请以根用户é‡è¯•æ“作。 内部错误: "%s?%s" 没有å“应。 内部错误: 未知的状æ€ã€‚ 密钥和è¯ä¹¦ä¸èƒ½ä¿å­˜åˆ°åŒä¸€ä¸ªæ–‡ä»¶ã€‚ 在相åŒä½ç½®çš„键已ç»è¢«åŒ…å«æ˜µç§° "%s" 的请求使用。密钥别å没有指定。密钥存储ä½ç½®æ²¡æœ‰æŒ‡å®šã€‚密钥存储类型“%sâ€ä¸æ”¯æŒã€‚æ— æ–°çš„ç­¾å请求“%sâ€å·²æ·»åŠ ã€‚ æ–°çš„ç­¾å请求无法添加。 新的跟踪请求“%sâ€å·²æ·»åŠ ã€‚ 新的跟踪请求无法添加。 没有找到具有å称“%sâ€çš„ CA. æœªæŒ‡å®šä¸­é—´ä»£ç† URL (-A),且无已知默认值。 未指定结尾æ¡ç›® URL (-E),且无已知默认值。 没有找到匹é…çš„æ¡ç›®ã€‚ 未指定预置文件/æ¨¡æ¿ (-T),且无已知默认值。 没有找到匹é…å‚数的请求。 未找到包å«æŒ‡å®šæ˜µç§°çš„请求。 没有从 %s æœåŠ¡æ”¶åˆ°å“应。 没有该 CA。没有指定 ID ã€æ•°æ®åº“目录和别å,或è¯ä¹¦æ–‡ä»¶ã€‚ 没有指定数æ®åº“目录和别å,或è¯ä¹¦æ–‡ä»¶ã€‚ 正在跟踪的è¯ä¹¦å’Œè¯·æ±‚æ•°é‡ï¼š%d å¯é€‰å‚数: 内存ä¸è¶³ã€‚ 路径 "%s" 并ä¸æ˜¯ä¸€ä¸ªç›®å½•ã€‚ 路径 "%s" 并ä¸æ˜¯ä¸€ä¸ªæ™®é€šæ–‡ä»¶ã€‚ 路径 %s ä¸æ˜¯ç»å¯¹è·¯å¾„,并且确定当å‰ç›®å½•æ—¶å‡ºé”™ã€‚ 路径 "%s" 并éžç»å¯¹è·¯å¾„,å°è¯•ä½¿ç”¨ "%s" 替代。 路径 "%s": %s。 请检验 certmonger æœåŠ¡æ˜¯å¦å·²å¯åŠ¨ã€‚ 请检验 certmonger æœåŠ¡æ˜¯å¦ä»åœ¨è¿è¡Œã€‚ 请检验信æ¯æ€»çº¿ï¼ˆD-Bus)æœåŠ¡æ˜¯å¦æ­£åœ¨è¿è¡Œã€‚ 从本地 %s æœåŠ¡æ”¶åˆ°é”™è¯¯å“应。 请求“%sâ€æ— æ³•ä¿®æ”¹ã€‚ 请求“%sâ€æ— æ³•ç§»é™¤ã€‚ 请求 “%sâ€å·²ä¿®æ”¹ã€‚ 请求“%sâ€å·²ç§»é™¤ã€‚ 请求 ID '%s': 所需å‚数: 正在é‡æ–°æ交“%sâ€åˆ°â€œ%sâ€ã€‚ 正在é‡æ–°æ交“%sâ€ã€‚ æœåŠ¡å™¨å‡ºé”™ã€‚ 选项 -K ä¸å¯è·Ÿé€‰é¡¹ -k 或选项 -t å…±åŒä½¿ç”¨ã€‚ 选项 -k ä¸å¯è·Ÿé€‰é¡¹ -K å…±åŒä½¿ç”¨ã€‚ 选项 -t ä¸å¯è·Ÿé€‰é¡¹ -K å…±åŒä½¿ç”¨ã€‚ 当使用 -N 选项(主题å)时,IPA åŽç«¯è¦æ±‚使用 -K 选项(实体å)。 ä½ç½®â€œ%sâ€å¿…须是目录。ä½ç½®â€œ%sâ€å¿…须是文件。ä½ç½®â€œ%sâ€å¿…须是ç»å¯¹è·¯å¾„。ä½ç½®â€œ%sâ€çš„上一层必须是有效目录。具有别å“%sâ€çš„ CA å·²ç»å­˜åœ¨ã€‚具有别å“%sâ€çš„请求已ç»å­˜åœ¨ã€‚无法确定CA的主机å。 无法确定签å请求的实体å。 无法读å–ç­¾å请求。 未识别的 keyUsage "%s"。 未识别的å‚数或错误的值类型。用法:%s list [选项] 用法:%s list-cas [选项] 用法:%s request [options] 用法:%s resubmit [选项] 用法:%s start-tracking [options] 用法:%s stop-tracking [选项] 未知certmonger-0.78.6/po/zh_CN.GB2312.gmo0000664000175000017500000000105012645513300013621 00000000000000Þ•$,8î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Chinese (China) (GB2312) (http://www.transifex.com/projects/p/certmonger/language/zh_CN.GB2312/) Language: zh_CN.GB2312 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/xh.gmo0000664000175000017500000000101012645513300012434 00000000000000Þ•$,8Î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Xhosa (http://www.transifex.com/projects/p/certmonger/language/xh/) Language: xh MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/wo.gmo0000664000175000017500000000100112645513300012442 00000000000000Þ•$,8Ç9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Wolof (http://www.transifex.com/projects/p/certmonger/language/wo/) Language: wo MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/vi.gmo0000664000175000017500000000100612645513300012440 00000000000000Þ•$,8Ì9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Vietnamese (http://www.transifex.com/projects/p/certmonger/language/vi/) Language: vi MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/uz.gmo0000664000175000017500000000100112645513300012453 00000000000000Þ•$,8Ç9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Uzbek (http://www.transifex.com/projects/p/certmonger/language/uz/) Language: uz MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/ur.gmo0000664000175000017500000000100712645513300012451 00000000000000Þ•$,8Í9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Urdu (http://www.transifex.com/projects/p/certmonger/language/ur/) Language: ur MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/uk_UA.gmo0000664000175000017500000000114212645513300013027 00000000000000Þ•$,8(9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Ukrainian (Ukraine) (http://www.transifex.com/projects/p/fedora/language/uk_UA/) Language: uk_UA MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); certmonger-0.78.6/po/uk.gmo0000664000175000017500000010552512645513300012454 00000000000000Þ•ó´KLx&y% Æ(â- 9"Y&|£À É×è ÷#')QX_h ƒ‘ §´Ï%ß(4$]-‚)°Úò '#Cg €  ™ §+³&ß219)k$•,º'ç2EB3ˆ,¼/é,'F>n­CÁ:9@Sz8Î3:;:v6±:è=#8a'šBÂ<#B8f?Ÿ9ßE (_ 3ˆ #¼ >à ?!:_!.š!GÉ!6";H":„"6¿"Iö",@#"m#2#(Ã#ì#$(#$L$f$v$!$²$Æ$à$$%#%%(I%r%0‘%Â%6Ô%& & 2&*S& ~&Ÿ&®& ½& Ë&×& ÷&K'%M'#s'+—',Ã''ð'("6(%Y(8(;¸(ô() 0) :))H)!r)%”))º)ä)0û),*E*!e*E‡*BÍ*O+L`++­+Ù+÷+2, D,#O,-s,6¡,(Ø,-<!-C^-¢-#¾-$â-. .+%. Q.(r.!›.)½.ç.//44/i/6ƒ/)º/*ä/&0 60%B0h0M†0GÔ071T1i1y1!˜1aº1;2X2%h2<Ž2<Ë2?3/H3$x3#3Á3Ù3%ð3!4842J4}4’4®4Â4Ñ4Cç42+52^5n‘5H6&I6!p6+’6R¾667-H72v7A©7$ë7188B8 {8œ8+¹8å89999V9v9“9#±9Õ9"ñ9:;:uX<IÎ<P=i=qù=Kk>P·>B?NK?š?£? ¶?×?ï?@ÿ?V@@—@ž@¥@L¹@!A8(AaA.xA)§AQÑA)#B4MBM‚BHÐBRCYlC4ÆC.ûC(*DUSDP©D(úD#E2ELEiEL€EFÍEgFm|FRêFL=GnŠGhùGSbH|¶H3I\µIvJo‰JiùJtcK<ØKL„¦Lƒ+Mœ¯M†LN€ÓN`TOzµOx0PŠ©PÀ4QOõQUER³›RhOS2¸SpëS©\TŒU—“UJ+V]vV9ÔV†W¢•W‘8X_ÊX­*Y]ØY|6Z{³Z‡/[«·[wc\KÛ\c']a‹]7í]5%^Z[^$¶^3Û^4_>D_'ƒ_.«_7Ú_:`8M`l†`_ó`aSaµafÕaE»d>údI9eeƒeCée3-f.af9fiÊfœ4gJÑgeh‚h•hS¬hGinHi[·iAjkUjNÁjAkfRk¢¹kš\l³÷l©«mMUn0£nQÔno&o–o6ªojáoŽLpQÛp@-q`nqÏq2Qr=„rYÂr;s XsLcsM°sZþsEYtRŸtYòt|Lu—Éu=avzŸvUwOpwAÀwLxWOxL§x¤ôx™yxz0”z%Åz7ëzD#{©h{|||A¥|eç|eM}u³}k)~6•~8Ì~"$(HMC–0Úw €,ƒ€:°€.ë€&:rajÔj?‚ת‚c‚ƒ5æƒ/„DL„ƒ‘„r…^ˆ…>ç…s&†iš†Y‡Œ^‡Kë‡V7ˆXŽˆ;çˆ7#‰;[‰:—‰=Ò‰:Š;KŠA‡Š9ÉŠ@‹D‹ïIØ?w“˜OÍ·êÈ<åŒcL ÎÛ*•&8AxÔ€ºÖÒ£m†ˆÊ °v,®'¯y"—ƒì3rND9hŠWª+{!žu…Ž‚ÚV1¿©^±¾œUëÞYšò’Ù‘Éæ)çdË«„sKM.kլ㨠P­Ÿ‹ÓÄ›R¤#–-EÆ:J³Ý$]”CÌ[²BàâHÀí`lÏ ¢Âè;î\4‡a2tÑX™ñ¡½´if> Å6bá»ÜǶ(Z¹¸gÃ_¼ð=~p|TFózµon5Gj0S%q}éeÁß׉@Ð7¦¥/ äQ§ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -d DIR return status for the request in this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -f FILE return status for cert stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -n NAME return status for cert which uses this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors -w try to wait for the certificate to be issued %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: * Selecting a specific request: * When using an NSS database for storage: * When using files for storage: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Data for CA '%s' being refreshed. Data for unnamed CA being refreshed. Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:NONENeither CA nickname nor -a flag specified. New signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s' NOT being refreshed. Request ID '%s' being refreshed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. State %s, stuck: %s. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s refresh [options] Usage: %s refresh-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s status [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Ukrainian (http://www.transifex.com/projects/p/certmonger/language/uk/) Language: uk MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); X-Generator: Zanata 3.6.2 -B не викориÑтовувати Ñ‡Ð°Ñ Ð¾Ñ‡Ñ–ÐºÑƒÐ²Ð°Ð½Ð½Ñ Ñƒ Ñтані бездіÑльноÑÑ‚Ñ– -F примуÑово перевеÑти NSS у режим FIPS -S викориÑтовувати канал даних ÑиÑтеми -b ЧÐС_ОЧІКУВÐÐÐЯ задіÑÐ½Ð½Ñ ÐºÐ°Ð½Ð°Ð»Ñƒ даних, Ñ‡Ð°Ñ Ð¾Ñ‡Ñ–ÐºÑƒÐ²Ð°Ð½Ð½Ñ Ñƒ Ñтані бездіÑльноÑÑ‚Ñ– -d РІВЕÐЬ вÑтановити рівень діагноÑтики (викориÑтовуєтьÑÑ -n) -f запуÑтити у режимі фонової Ñлужби -n не запуÑкати у режимі фонової Ñлужби -p ФÐЙЛ запиÑати PID Ñлужби до файла -s викориÑтовувати канал даних ÑеанÑу CA: %s IP-адреÑа: автооновленнÑ: %s ca-помилка: %s ca-тип: %s Ñертифікат: тип=%s,розташуваннÑ=«%s» типовий профіль, шаблон або тип Ñертифіката: %s dns: eku: ел. пошта: помилка під Ñ‡Ð°Ñ Ñпроби Ð¾Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ… CA Ð·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ Ð´Ñ–Ñ—: %s адреÑа допоміжної програми: %s видавець: %s Ñховище пар ключів: тип=%s викориÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð°: %s відомі профілі, шаблони, типи Ñертифікатів: відомі назви видавцÑ: наÑтупний Ñерійний номер: %s інші Ñертифікати, збережені до баз даних: інші Ñертифікати, збережені до файлів: інше кореневі файли, збережені до баз даних: інші кореневі Ñертифікати, збережені до файлів: команда піÑÐ»Ñ Ð·Ð±ÐµÑ€ÐµÐ¶ÐµÐ½Ð½Ñ: %s команда до збереженнÑ: %s реєÑтраційний запиÑ: кореневі Ñертифікати, збережені до баз даних: кореневі Ñертифікати, збережені до файлів: ÑамоідентифікаціÑ: %s Ñтан: %s прив’Ñзка: %s призначеннÑ: %s ÑтеженнÑ: %s -A ÐДРЕСРперевизначити вказану IP-адреÑу -A ÐДРЕСРвÑтановити вказану IP-адреÑу -B команда, Ñку Ñлід виконати до Ð·Ð±ÐµÑ€ÐµÐ¶ÐµÐ½Ð½Ñ Ñертифіката -C команда, Ñку Ñлід виконати піÑÐ»Ñ Ð·Ð±ÐµÑ€ÐµÐ¶ÐµÐ½Ð½Ñ Ñертифіката -D ÐÐЗВÐ-DNS Перевизначити вказану назву за DNS -D ÐÐЗВÐ-DNS вÑтановити вказану назву за DNS -E ЕЛ.ПОШТРПеревизначити вказану адреÑу електронної пошти -E ЕЛ.ПОШТРвÑтановити вказану адреÑу електронної пошти -F файл, у Ñкому Ñлід зберігати Ñертифікати CA -G ТИП тип ключа, Ñкий Ñлід Ñтворити, Ñкщо не буде виÑвлено готового -I ÐÐЗВРÐовий пÑевдонім, Ñкий Ñлід пов’Ñзати з запитом щодо ÑÑ‚ÐµÐ¶ÐµÐ½Ð½Ñ -I ÐÐЗВРпÑевдонім, Ñкий Ñлід пов’Ñзати з запитом -I ÐÐЗВРПÑевдонім, Ñкий Ñлід пов’Ñзати з запитом щодо ÑÑ‚ÐµÐ¶ÐµÐ½Ð½Ñ -K ÐÐЗВРПеревизначити вказану назву реєÑтраційного запиÑу -K ÐÐЗВРВÑтановити вказану назву реєÑтраційного запиÑу -N ÐÐЗВРВÑтановити бажане Ð¿Ñ€Ð¸Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ (Типово: CN=<назва вузла>) -P PIN Ð—Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ PIN-коду ÑˆÐ¸Ñ„Ñ€ÑƒÐ²Ð°Ð½Ð½Ñ -R Ðе намагатиÑÑ Ð¾Ð½Ð¾Ð²Ð¸Ñ‚Ð¸ Ñертифікат, Ñкщо наближаєтьÑÑ Ð·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ Ñтроку дії -S Ð’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою ÑиÑтемного каналу -S Ð’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою ÑиÑтемного каналу -T ПРОФІЛЬ попроÑити CA обробити запит з викориÑтаннÑм вказаного профілю або шаблона -U ДОД.ВИКОР. Перевизначити додаткове викориÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð° за допомогою OID -U ДОД.ВИКОР. Ð’Ñтановити додаткове викориÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð° за допомогою OID -a база даних NSS, у Ñкій Ñлід зберігати Ñертифікати CA -c CA ВикориÑтовувати вказану Ñлужбу Ñертифікації (CA), а не поточну -c CA викориÑтовувати вказану Ñлужбу Ñертифікації (CA), а не типову -c CA Показати лише відомоÑÑ‚Ñ– щодо Ñлужби Ñертифікації (CA) з вказаною назвою -c CA Показати ÑпиÑок лише тих запитів та Ñертифікатів, Ñкі пов’Ñзано з вказаною Ñлужбою Ñертифікації (CA) -c CA оновити дані щодо CA із вказаною назвою -d КÐТÐЛОГ База даних ключів Ñ– Ñертифікатів NSS -d КÐТÐЛОГ показувати ÑпиÑок лише тих запитів Ñ– Ñертифікатів, Ñкі викориÑтовують цю базу даних NSS -d КÐТ повернути Ñтан Ð´Ð»Ñ Ð·Ð°Ð¿Ð¸Ñ‚Ñƒ у вказаній базі даних NSS -f ФÐЙЛ Файл PEM Ñертифіката -f ФÐЙЛ Файл PEM Ñертифіката (працюватиме, лише Ñкщо вказано -k) -f ФÐЙЛ показувати ÑпиÑок лише тих запитів Ñ– Ñертифікатів, Ñкі зберігаютьÑÑ Ñƒ цьому файлі PEM -f ФÐЙЛ повернути Ñтан Ð´Ð»Ñ Ñертифіката, що зберігаєтьÑÑ Ñƒ вказаному файлі PEM -g РОЗМІР розмір ключа, Ñкий Ñлід Ñтворити, Ñкщо не буде виÑвлено готового, у бітах -i ÐÐЗВРПÑевдонім запиту щодо ÑÑ‚ÐµÐ¶ÐµÐ½Ð½Ñ -i ÐÐЗВРПÑевдонім Ñ–Ñнуючого запиту щодо ÑÑ‚ÐµÐ¶ÐµÐ½Ð½Ñ -k ФÐЙЛ Файл PEM закритого ключа -n ÐÐЗВРпÑевдонім Ñховища на оÑнові NSS (працюватиме, лише Ñкщо вказано -d) -d ÐÐЗВРпоказувати ÑпиÑок лише тих запитів Ñ– Ñертифікатів, Ñкі викориÑтовують цю назву -n ÐÐЗВРповернути Ñтан Ð´Ð»Ñ Ñертифіката, Ñкий викориÑтовує вказаний пÑевдонім -p ФÐЙЛ Файл, у Ñкому зберігаєтьÑÑ PIN-код ÑˆÐ¸Ñ„Ñ€ÑƒÐ²Ð°Ð½Ð½Ñ -r Спробувати оновити Ñертифікат, Ñкщо наближаєтьÑÑ Ð·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ Ñтроку дії (типова поведінка) -r Показати лише відомоÑÑ‚Ñ– щодо нетипових запитів -s Ð’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою каналу ÑеанÑу -s Ð’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою каналу ÑеанÑу -t Показати лише відомоÑÑ‚Ñ– щодо Ñертифікатів, за Ñкими ведетьÑÑ ÑÑ‚ÐµÐ¶ÐµÐ½Ð½Ñ -t ÐÐЗВРдодаткова назва ключа до заÑнованого на NSS Ñховища (працюватиме, лише Ñкщо вказано -d) -u ВИКОРИСТÐÐÐЯ вÑтановити вказане Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð²Ð¸ÐºÐ¾Ñ€Ð¸ÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð° -v повідомлÑти про вÑÑ– дані щодо помилок -w Ñпробувати зачекати на момент випуÑку Ñертифіката %s — інÑтрумент реєÑтрації клієнтÑьких Ñертифікатів %s: некоректний параметр — «%c» %s: некоректне Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ â€” «%s» %s: разом з параметром Ñлід вказати аргумент -- «%c» %s: невідома команда * Параметри каналу зв’Ñзку: * За ідентифікатором запиту: * Параметри обробки Ñертифікатів: * Загальні параметри: * Якщо ключі зашифровано: * Якщо ключі Ñлід зашифрувати: * У разі зміни Ñ–Ñнуючого запиту: * У разі вибору певного запиту: * Якщо Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ… викориÑтовуєтьÑÑ Ð±Ð°Ð·Ð° даних NSS: * Якщо Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ… викориÑтовуютьÑÑ Ñ„Ð°Ð¹Ð»Ð¸: * Ðові Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ñ–Ð² запиту щодо підпиÑуваннÑ: * Інші параметри: * Параметри запиту щодо підпиÑÑƒÐ²Ð°Ð½Ð½Ñ Ð¿Ñ–Ð´ Ñ‡Ð°Ñ Ð¾Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ: * Параметри запиту щодо підпиÑуваннÑ: * Вибір певного запиту: * Якщо викориÑтовуємо базу даних NSS Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ: * Якщо викориÑтовуємо файли Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ…: ,розташуваннÑ=«%s»,пÑевдонім=«%s»,пін-файл=«%s»,ключ=«%s»СталаÑÑ Ð²Ð½ÑƒÑ‚Ñ€Ñ–ÑˆÐ½Ñ Ð¿Ð¾Ð¼Ð¸Ð»ÐºÐ°.Служба Ñертифікації «%s»: Сертифікат з цією адреÑою вже викориÑтовуєтьÑÑ Ð·Ð° запитом з пÑевдонімом «%s».Ðевідома Ñлужба Ñертифікації «%s».ПÑевдонім Ñертифіката не вказано.ÐдреÑу Ñховища Ñертифікатів не вказано.Підтримки типу Ñховищ Ñертифікатів «%s» не передбачено.Тип Ñховища Ñертифікатів не вказано.Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ OID «%s». Оновлюємо дані Ð´Ð»Ñ CA «%s». Оновлюємо дані Ð´Ð»Ñ CA без назви. ОдночаÑно вказано каталог бази даних Ñ– файл Ñертифіката. Вказано адреÑу бази даних або пÑевдонім без Ð²Ð¸Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ñ–Ð½ÑˆÐ¾Ð³Ð¾ необхідного елемента. Помилка %d під Ñ‡Ð°Ñ Ñпроби з’єднатиÑÑ Ð· %s. Помилка %d під Ñ‡Ð°Ñ Ñпроби вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ Ð·â€™Ñ”Ð´Ð½Ð°Ð½Ð½Ñ Ð· %s: %s. Помилка %s Помилка %s: %s Помилка під Ñ‡Ð°Ñ Ñпроби надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s» до «%s». Помилка під Ñ‡Ð°Ñ Ñпроби надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s». Помилка під Ñ‡Ð°Ñ Ñпроби ÑÑ‚Ð²Ð¾Ñ€ÐµÐ½Ð½Ñ Ð¿Ð¾Ð²Ñ–Ð´Ð¾Ð¼Ð»ÐµÐ½Ð½Ñ Ð·Ð°Ð¿Ð¸Ñ‚Ñƒ до DBus. Помилка під Ñ‡Ð°Ñ Ñ–Ð½Ñ–Ñ†Ñ–Ð°Ð»Ñ–Ð·Ð°Ñ†Ñ–Ñ— бібліотеки Kerberos: %s. Помилка під Ñ‡Ð°Ñ Ñпроби змінити «%s». Помилка під Ñ‡Ð°Ñ Ð¾Ð±Ñ€Ð¾Ð±ÐºÐ¸ реєÑтраційного запиÑу Kerberos «%s»: %s. Помилка під Ñ‡Ð°Ñ Ñпроби обробити аргументи.Помилка обробки відповіді Ñервера. Помилка під Ñ‡Ð°Ñ Ñпроби вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ñ–Ð² запиту. Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Â«%s» на боці клієнта за допомогою типової таблиці ключів: %s. Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Â«%s» на боці клієнта за допомогою Ñховища ключів «%s»: %s. Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Ñлужби «host» на боці клієнта за допомогою типового Ñховища ключів: %s. Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Ñлужби «host» на боці клієнта за допомогою Ñховища ключів «%s»: %s. Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ XMLRPC на боці клієнта. Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ XMLRPC. Помилка під Ñ‡Ð°Ñ Ñпроби Ð·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ Ñ€Ð¾Ð±Ð¾Ñ‚Ð¸ NSS. Помилка під Ñ‡Ð°Ñ Ð¿Ð°ÐºÑƒÐ²Ð°Ð½Ð½Ñ Ñ€ÐµÑ”Ñтраційного запиÑу Kerberos «%s»: %s. Помилка: %s Помилка: зайвий аргумент «%s». Помилка: було вказано невикориÑтовувані зайві аргументи. ÐедоÑтатні права доÑтупу. Будь лаÑка, повторіть дію від імені кориÑтувача root. Ð’Ð½ÑƒÑ‚Ñ€Ñ–ÑˆÐ½Ñ Ð¿Ð¾Ð¼Ð¸Ð»ÐºÐ°: немає відповіді на «%s?%s». Ð’Ð½ÑƒÑ‚Ñ€Ñ–ÑˆÐ½Ñ Ð¿Ð¾Ð¼Ð¸Ð»ÐºÐ°: невідомий Ñтан. Ключ Ñ– Ñертифікат не можна зберігати у одному файлі. Ключ з цією адреÑою вже викориÑтовуєтьÑÑ Ð·Ð° запитом з пÑевдонімом «%s».ПÑевдонім ключа не вказано.ÐдреÑу Ñховища ключів не вказано.Підтримки типу Ñховищ ключів «%s» не передбачено.Серед відомих типів ключів такі:ÐемаєÐе вказано ні пÑевдоніма CA, ні Ð¿Ñ€Ð°Ð¿Ð¾Ñ€Ñ†Ñ -a. Додано новий запит «%s» щодо підпиÑуваннÑ. Ðе вдалоÑÑ Ð´Ð¾Ð´Ð°Ñ‚Ð¸ новий запит щодо підпиÑуваннÑ. Додано новий запит «%s» щодо ÑтеженнÑ. Ðе вдалоÑÑ Ð´Ð¾Ð´Ð°Ñ‚Ð¸ новий запит щодо ÑтеженнÑ. Ðе виÑвлено Ñлужби Ñертифікації (CA) з назвою «%s». Ðе вказано адреÑи агента (-A), типове Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð°Ð´Ñ€ÐµÑи також невідоме. Ðе вказано завершального запиÑу адреÑи (-E), типове Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð·Ð°Ð¿Ð¸Ñу також невідоме. Відповідного запиÑу не знайдено. Ðе вказано профілю або шаблону (-T), типове Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ñ‚Ð°ÐºÐ¾Ð¶ невідоме. Запиту, що відповідає аргументам, не виÑвлено. Ðе виÑвлено запиту з вказаним пÑевдонімом. Ðе отримано відповіді від Ñлужби %s. Такої Ñлужби Ñертифікації (CA) не виÑвлено.Підтримки ÑÑ‚Ð²Ð¾Ñ€ÐµÐ½Ð½Ñ ÐºÐ»ÑŽÑ‡Ñ–Ð² «%s» не передбачено. Підтримки ключів типу «%s» не передбачено.Ðе вказано ні ідентифікатора, ні каталогу бази даних з пÑевдонімом, ні файла Ñертифіката. Ðе вказано ні каталогу бази даних з пÑевдонімом, ні файла Ñертифіката. КількіÑÑ‚ÑŒ Ñертифікатів та запитів, за Ñкими ведетьÑÑ ÑтеженнÑ: %d. Ðеобов’Ñзкові аргументи: Ðе виÑтачає пам'ÑÑ‚Ñ–. ШлÑÑ… «%s» не вказує на каталог. ШлÑÑ… «%s» не вказує на звичайний файл. ШлÑÑ… «%s» не Ñ” абÑолютним, Ñпроба Ð²Ð¸Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð½Ð°Ð·Ð²Ð¸ поточного каталогу також зазнала невдачі. ШлÑÑ… «%s» не Ñ” абÑолютним, Ñпробуємо заміÑÑ‚ÑŒ нього ÑкориÑтатиÑÑ Â«%s». ШлÑÑ… «%s»: %s. ШлÑÑ… «%s»: недоÑтатні права доÑтупу. Будь лаÑка, перевірте, чи запущено фонову Ñлужбу certmonger. Будь лаÑка, перевірте, чи працює ще фонова Ñлужба certmonger Будь лаÑка, перевірте, чи працює Ñлужба каналу повідомлень (D-Bus). Отримано Ð¿Ð¾Ð²Ñ–Ð´Ð¾Ð¼Ð»ÐµÐ½Ð½Ñ Ð¿Ñ€Ð¾ помилку від локальної Ñлужби %s. Ðе вдалоÑÑ Ð·Ð¼Ñ–Ð½Ð¸Ñ‚Ð¸ запит «%s». Ðе вдалоÑÑ Ð²Ð¸Ð»ÑƒÑ‡Ð¸Ñ‚Ð¸ запит «%s». Змінено запит «%s». Запит «%s» вилучено. Ðе оновлюємо ідентифікатор запиту «%s». Оновлюємо ідентифікатор запиту «%s». Ідентифікатор запиту «%s»: ÐадіÑлано запит щодо поновленнÑ, але не надано Ñерійного номера. Обов’Ñзкові аргументи: Повторне надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s» до «%s». Повторне надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s». Помилка Ñервера. Стан %s, прив’Ñзка: %s. Параметр -K не можна викориÑтовувати разом з параметрами -k Ñ– -t. Параметр -k не можна викориÑтовувати разом з параметром -K. Параметр -t не можна викориÑтовувати разом з параметром -K. Сервер IPA потребує викориÑÑ‚Ð°Ð½Ð½Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ð° -K (назви реєÑтраційного запиÑу), Ñкщо викориÑтано параметр -N (призначеннÑ). ÐдреÑа «%s» недоÑтупна через недоÑтатні права доÑтупу.ÐдреÑою «%s» має бути каталог.ÐдреÑою «%s» має бути файл.ÐдреÑою «%s» має бути абÑолютний шлÑÑ….БатьківÑька тека адреÑи «%s» недоÑтупна через недоÑтатні права доÑтупу.БатьківÑьким каталогом адреÑи «%s» має бути коректний каталог.Служба Ñертифікації (CA) з пÑевдонімом «%s» вже Ñ–Ñнує.Запит з пÑевдонімом «%s» вже Ñ–Ñнує.Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ базовий DN даних щодо домену на Ñервері IPA. Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ назву вузла Ñлужби Ñертифікації (CA). Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ Ñ€Ð¾Ð·Ñ‚Ð°ÑˆÑƒÐ²Ð°Ð½Ð½Ñ Ñервера LDAP IPA. Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ назву реєÑтраційного запиÑу запиту щодо підпиÑуваннÑ. Ðе вдалоÑÑ Ð¿Ñ€Ð¾Ñ‡Ð¸Ñ‚Ð°Ñ‚Ð¸ запит щодо підпиÑу. Ðерозпізнане Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð²Ð¸ÐºÐ¾Ñ€Ð¸ÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð° «%s». Ðевідомий параметр або помилковий тип значеннÑ.Ðерозпізнана назва влаÑтивоÑÑ‚Ñ–.ВикориÑтаннÑ: %s list [параметри] ВикориÑтаннÑ: %s list-cas [параметри] КориÑтуваннÑ: %s refresh [параметри] КориÑтуваннÑ: %s refresh-ca [параметри] ВикориÑтаннÑ: %s request [параметри] ВикориÑтаннÑ: %s resubmit [параметри] ВикориÑтаннÑ: %s start-tracking [параметри] КориÑтуваннÑ: %s status [параметри] ВикориÑтаннÑ: %s stop-tracking [параметри] невідомеcertmonger-0.78.6/po/tr.gmo0000664000175000017500000000250112645513300012450 00000000000000Þ• |Ü !* 9GN W d n x †‘î ;CË@9P<Š>Ç   &0   CA: %s ca-error: %s ca-type: %s dns: email: status: %s CA '%s': Error %s Error %s: %s Error: %s Server error. Project-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Turkish (http://www.transifex.com/projects/p/certmonger/language/tr/) Language: tr MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); X-Generator: Zanata 3.6.2 »CA: %s »ca-hatası: %s »ca-tipi: %s »dns: »eposta: »durum: %s CA '%s': Hata %s Hata %s: %s Hata: %s Sunucu hatası. certmonger-0.78.6/po/tl.gmo0000664000175000017500000000101112645513300012435 00000000000000Þ•$,8Ï9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Tagalog (http://www.transifex.com/projects/p/certmonger/language/tl/) Language: tl MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); certmonger-0.78.6/po/th.gmo0000664000175000017500000000100012645513300012427 00000000000000Þ•$,8Æ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Thai (http://www.transifex.com/projects/p/certmonger/language/th/) Language: th MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/tg.gmo0000664000175000017500000000101012645513300012427 00000000000000Þ•$,8Î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Tajik (http://www.transifex.com/projects/p/certmonger/language/tg/) Language: tg MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/te.gmo0000664000175000017500000000101112645513300012426 00000000000000Þ•$,8Ï9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Telugu (http://www.transifex.com/projects/p/certmonger/language/te/) Language: te MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ta_IN.gmo0000664000175000017500000000102212645513300013012 00000000000000Þ•$,8Ø9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Tamil (India) (http://www.transifex.com/projects/p/fedora/language/ta_IN/) Language: ta_IN MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ta.gmo0000664000175000017500000000120412645513300012426 00000000000000Þ•,<PQíZ;H CA: %s Project-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Tamil (http://www.transifex.com/projects/p/certmonger/language/ta/) Language: ta MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 »CA: %s certmonger-0.78.6/po/sv.gmo0000664000175000017500000006245212645513300012466 00000000000000Þ•ó´KLx&y% Æ(â- 9"Y&|£À É×è ÷#')QX_h ƒ‘ §´Ï%ß(4$]-‚)°Úò '#Cg €  ™ §+³&ß219)k$•,º'ç2EB3ˆ,¼/é,'F>n­CÁ:9@Sz8Î3:;:v6±:è=#8a'šBÂ<#B8f?Ÿ9ßE (_ 3ˆ #¼ >à ?!:_!.š!GÉ!6";H":„"6¿"Iö",@#"m#2#(Ã#ì#$(#$L$f$v$!$²$Æ$à$$%#%%(I%r%0‘%Â%6Ô%& & 2&*S& ~&Ÿ&®& ½& Ë&×& ÷&K'%M'#s'+—',Ã''ð'("6(%Y(8(;¸(ô() 0) :))H)!r)%”))º)ä)0û),*E*!e*E‡*BÍ*O+L`++­+Ù+÷+2, D,#O,-s,6¡,(Ø,-<!-C^-¢-#¾-$â-. .+%. Q.(r.!›.)½.ç.//44/i/6ƒ/)º/*ä/&0 60%B0h0M†0GÔ071T1i1y1!˜1aº1;2X2%h2<Ž2<Ë2?3/H3$x3#3Á3Ù3%ð3!4842J4}4’4®4Â4Ñ4Cç42+52^5n‘5H6&I6!p6+’6R¾667-H72v7A©7$ë7188B8 {8œ8+¹8å89999V9v9“9#±9Õ9"ñ9:ï:7 <'D<!l<9Ž<3È<ü<=,5=#b=†= =œ= ²= ¿="Ì=)ï=> > '> 1>R>b>v>…> >)¸>â>ù>(?$;?+`?'Œ?´?Ô? ô?%@!'@I@ f@ s@ @ @*™@#Ä@2è@2A+NA)zA,¤A*ÑA0üAA-B<oB.¬B0ÛB( C&5CB\CŸCJ´C8ÿC78D_pDAÐD?E8RE?‹E4ËE8FF9F5€F*¶FNáF<0G!mG9GFÉGCHOTH+¤H7ÐH$ID-ILrIJ¿I- JT8J6J:ÄJ9ÿJ59KPoKAÀK%L5(L0^L L °L-ÑLÿLM&$M+KMwMM­M'ÌM"ôM/N&GN0nNŸN?±N&ñNO-5O$cOˆO˜O«O½OÎO íOQûO(MP vP+—P2ÃP)öP) Q"JQ"mQ0Q4ÁQöQ#R:R BR4NR&ƒR1ªR.ÜR S5)S_S(yS0¢STÓSW(T`€TráT2TU ‡U¨U7ÄUüU'V$-VARV)”V ¾V<ßVJWgW!„W*¦WÑWðW,öW,#X3PX)„X0®X'ßXBYFJY‘YD®Y1óY.%Z(TZ}Z0ŽZ&¿ZQæZB8[.{[ª[½[)Î[*ø[x#\Nœ\ë\2]36]7j]7¢].Ú]& ^'0^X^t^'’^"º^Ý^3õ^)_#B_f_ |_ˆ_@¤_.å_.`dC`J¨`(ó`$a1Aa[sa?Ïa.b4>b@sb1´b0æb=c#Uc#yc&cÄcÚc#úc"d%Ad"gd#Šd)®d!Ød(úd#eïIØ?w“˜OÍ·êÈ<åŒcL ÎÛ*•&8AxÔ€ºÖÒ£m†ˆÊ °v,®'¯y"—ƒì3rND9hŠWª+{!žu…Ž‚ÚV1¿©^±¾œUëÞYšò’Ù‘Éæ)çdË«„sKM.kլ㨠P­Ÿ‹ÓÄ›R¤#–-EÆ:J³Ý$]”CÌ[²BàâHÀí`lÏ ¢Âè;î\4‡a2tÑX™ñ¡½´if> Å6bá»ÜǶ(Z¹¸gÃ_¼ð=~p|TFózµon5Gj0S%q}éeÁß׉@Ð7¦¥/ äQ§ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -d DIR return status for the request in this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -f FILE return status for cert stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -n NAME return status for cert which uses this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors -w try to wait for the certificate to be issued %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: * Selecting a specific request: * When using an NSS database for storage: * When using files for storage: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Data for CA '%s' being refreshed. Data for unnamed CA being refreshed. Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:NONENeither CA nickname nor -a flag specified. New signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s' NOT being refreshed. Request ID '%s' being refreshed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. State %s, stuck: %s. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s refresh [options] Usage: %s refresh-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s status [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Swedish (http://www.transifex.com/projects/p/certmonger/language/sv/) Language: sv MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B använd inte en tidsgräns vid inaktivitet -F tvinga in NSS i FIPS-läge -S använd systembussen -b TIDSGRÄNS bussaktiverad, tidsgräns vid inaktivitet -d NIVÃ… sätt felsökningsnivÃ¥n (medför -n) -f bli en demon -n bli inte en demon -p FIL skriv tjänstens PID till filen -s använd sessionsbussen CA: %s IP-adress: auto-förnyelse: %s ca-fel: %s ca-typ: %s certifikat: typ=%s,plats=â€%s†standardprofil/-mall/-certifikattyp: %s dns: eku: e-post: fel vid uppdatering av CA-data löper ut: %s hjälparplats: %s utgivare: %s nyckelparslagring: typ=%s nyckelanvändning: %s kända profiler/mallar/certifikattyper: känt utfärdarnamn: nästa-serienummer: %s andra certifikat sparades i databaser: andra certifikat sparades i filer: andra rotcertifikat sparades i databaser: andra rotcertifikat sparades i filer: kommando efter det sparas: %s kommando före det sparas: %s huvudnamn: rotcertifikat sparades i databaser: rotcertifikat sparades i filer: självidentifierar som: %s status: %s fastnat: %s ämne: %s spÃ¥r: %s -A ADRESS Ã¥sidosätt begärd IP-adress -A ADRESS ange begärd IP-adress -B kommando att köra före certifikatet sparas -C kommando att köra efter certifikatet sparas -D DNS-NAMN Ã¥sidosätt begärt DNS-namn -D DNS-NAMN ställ in begärt DNS-namn -E EMAIL Ã¥sidosätt begärd e-postadress -E EPOST ställ in begärd e-postadress -F fil i vilken CA:ns certifikat skall lagras -G TYPE typ av nyckel att genereras om det inte redan finns en -I NAMN nytt smeknamn för att ge till spÃ¥rningsbegäran -I NAMN smeknamn att tilldela till begäran -I NAMN smeknamn att ge pÃ¥ spÃ¥rningbegäran -K NAMN Ã¥sidosätt begärt huvudnamn -K NAMN ställ in begärt huvudnamn -N NAMN ställ in begärt ämnesnamn (standard: CN=) -P PIN PIN-värde -R försök inte förnya certifikatet när utgÃ¥ngsdatumet närmar sig -S anslut till tjänsten certmonger pÃ¥ systembussen -S anslut till tjänsten certmonger pÃ¥ systembussen -T PROFIL be CA:n att bearbeta begäran med användning av den angivna profilen eller mallen -U EXTANV Ã¥sidosätt begärd förlängd nyckelanvändning-OID -U EXTANV ställ in begärd förlängd nyckelanvändning-OID -a NSS-databas i vilken CA:ns certifikat skall lagras -c CA använd den angivna CA:n istället för den nuvarande -c CA använd angiven CA istället för standard -c CA lista endast information om CA:n med detta namn -c CA lista endast begäran och certifikat associerade med denna CA -c CA uppdatera information om CA:n med detta namn -d KAT NSS-databas för nyckel och cert -d KAT lista endast begäran och certifikat som använder denna NSS-databas -d KAT returnera status för begäran i denna NSS-databas -f FIL PEM-fil för certifikat -f FIL PEM-fil för certifikat (endast giltigt med -k) -f FIL lista endast begäran och certifikat lagrade i denna PEM-fil -f FIL returnera status för certifikatet lagrat i denna PEM-fil -g STORLEK storlek pÃ¥ nyckel som skall genereras om det inte redan finns en -i NAMN smeknamn för spÃ¥rningsbegäran -i NAMN smeknamn pÃ¥ en befintlig spÃ¥rningsbegäran -k FIL PEM-fil för privat nyckel -n NAMN smeknamn för NSS-baserad lagring (endast giltigt med -d) -n NAMN lista endast begäran och certifikat som använder detta smeknamn -n NAMN returnera status för certifikatet som använder detta smeknamn -p FIL fil som hÃ¥ller PIN för kryptering -r försök att förnya certifikatet när utgÃ¥ngsdatumet närmar sig (standard) -r lista endast information om utestÃ¥ende begäran -s anslut till tjänsten certmonger pÃ¥ sessionsbussen -s anslut till tjänsten certmonger pÃ¥ sessionsbussen -t lista endast information om spÃ¥rade certifikat -t NAMN frivilligt symbolnamn för NSS-baserad lagring (endast giltig med -d) -u NYCELANVÄNDNING sätt angivet värde pÃ¥ nyckelanvändning -v rapportera alla detaljer om fel -w försök att vänta pÃ¥ att certifikatet ges ut %s - registreringsverktyg för klientcertifikat %s: felaktig flagga -- â€%c†%s: ogiltigt värde -- â€%s†%s: flaggan kräver ett argument -- â€%c†%s: okänt kommando * Bussflaggor: * Enligt identifierare för begäran: * Inställningar för certifikathantering: * Allmänna flaggor: * Om nycklarna är krypterade: * Om nycklar skall krypteras: * Om du ändrar en befintlig begäran: * Om du väljer en viss begäran: * Om du använder en NSS-databas för lagring: * Om du använder filer för lagring: * Nya parametervärden för signeringsbegäran: * Andra flaggor: * Parametrar för signeringsbegäran vid förnyelsetidpunkten: * Parametrar för signeringsbegäran: * Väljer en viss begäran: * När en NSS-databas används för lagring: * När filer används för lagring: ,plats=â€%sâ€,smeknamn=â€%sâ€,pin-fil=â€%sâ€,symbol=â€%sâ€Ett internt fel har uppstÃ¥tt.CA â€%sâ€: Certifikat pÃ¥ samma plats används redan av av begäran med smeknamnet â€%sâ€.Certifikatmyndighet â€%s†inte känd.Certifikatsmeknamn inte angivet.Lagringsplats för certifikat inte angiven.Lagringstyp â€%s†för certifikat stödjs inte.Lagringstyp för certifikat inte angiven.Det gick inte att beräkna OID â€%sâ€. Data för CA â€%s†uppdateras. Data för namnlös CA uppdateras. Databaskatalog och certifikatfil bÃ¥da angivna. Databasplats eller smeknamn angivet utan den andra. Fel %d vid anslutning till %s. Fel %d vid anslutning till %s: %s. Fel %s Fel %s: %s Fel vid försök att skicka â€%s†till â€%sâ€. Fel vid försök att skicka â€%sâ€. Fel när DBus-meddelandet med begäran skapades. Fel vid initiering av Kerberos bibliotek: %s. Fel när â€%s†ändrades. Fel vid tolkning av Kerberos-huvudnamn â€%sâ€: %s. Fel vid argumenttolkning.Fel vid tolkning av svar frÃ¥n servern. Fel vid inställning av argument till begäran. Fel när ccache sattes upp för â€%s†pÃ¥ klienten med standardnyckeltabell: %s. Fel när ccache sattes upp för â€%s†pÃ¥ klienten med nyckeltabellen â€%sâ€: %s. Fel när ccache sattes upp för tjänsten â€host†pÃ¥ klienten med standardnyckeltabell: %s. Fel när ccache sattes upp för tjänsten â€host†pÃ¥ klienten med användning av nyckeltabellen â€%sâ€: %s. Fel när det sattes upp för XMLRPC pÃ¥ klienten. Fel vid inställning av XMLRPC. Fel när NSS stängdes av. Fel vid avtolkning av Kerberos-huvudnamn â€%sâ€: %s. Fel: %s Fel: oanvänt extra argument â€%sâ€. Fel: oanvända extra argument gavs. Otillräckliga rättigheter. Försök Ã¥tgärden igen som root. Internt fel: inget svar pÃ¥ â€%s?%sâ€. Internt fel: okänt tillstÃ¥nd. Nyckeln och certifikatet kan inte bÃ¥da sparas i samma fil. Nyckel pÃ¥ samma plats används redan av begäran med smeknamnet â€%sâ€.Nyckelsmeknamn inte angivet.Nyckellagringsplats inte angiven.Nyckellagringstypen â€%s†stödjs inte.Kända nyckeltyper inkluderar:INGENVarken CA-smeknamn eller -a-flaggan angavs. Nya begäran om signering â€%s†tillagd. Nya begäran om signering kunde inte läggas till. Ny spÃ¥rningsbegäran â€%s†tilllagd. Nya spÃ¥rningsbegäran kunde inte läggas till. Ingen CA med namnet â€%s†hittades. Ingen agent-URL (-A) angiven, och inget standardvärde är känt. Ingen slutposts-URL (-E) angiven, och inget standardvärde är känt. Inga matchande post funnen. Ingen profil/mall (-T) angiven, och inget standardvärde är känt. Ingen begäran hittades som matchade argumenten. Ingen begäran hittades med angivet smeknamn. Inget svar mottaget frÃ¥n tjänsten %s. Ingen sÃ¥dan CA.Inget stöd för att generera â€%sâ€-nycklar. Inget stöd för nyckeltypen â€%sâ€.Ingen av ID eller databaskatalog och smeknamn eller certifikatfil filen angiven. Ingen av databaskatalog och smeknamn eller certifikatfil angiven. Antalet certifikat och spÃ¥rade begäran: %d. Valfria argument: Slut pÃ¥ minne. Sökvägen â€%s†är inte en katalog. Sökvägen â€%s†är inte normal fil. Sökvägen â€%s†är inte absolut, och det uppstod ett fel när namnet pÃ¥ den aktuella katalogen skulle bestämmas. Sökvägen â€%s†är inte absolut, försöker använda â€%s†istället. Sökväg â€%sâ€: %s. Sökvägen â€%sâ€: otillräckliga rättigheter. Kontrollera att tjänsten certmonger har startats. Kontrollera att tjänsten certmonger fortfarande kör. Kontrollera att tjänsten meddelandebuss (D-Bus) kör. Mottog felsvar frÃ¥n den lokala tjänsten %s. Begäran â€%s†kunde inte ändras. Begäran â€%s†kunde inte tas bort. Begäran â€%s†ändrad. Begäran â€%s†borttagen. Begärans-ID â€%s†uppdateras INTE. Begärans-ID â€%s†uppdateras. Begärans-id â€%sâ€: Förnyelse begärd, men inget serienummer angivet. Obligatoriska argument: Skickar om â€%s†till â€%sâ€. Skickar om â€%sâ€. Serverfel. TillstÃ¥ndet %s, fast: %s. Flaggan -K kan inte användas med vare sig flaggan -k eller -t. Flaggan -k kan inte användas med flaggan -K. Flaggan -t kan inte användas med flaggan -K. IPA-backänden kräver användning av -K-flaggan (huvudnamn) när -N-flaggan (ämnesnamn) används. Platsen â€%s†kunde inte nÃ¥s pÃ¥ grund av otillräckliga rättigheter.Platsen â€%s†mÃ¥ste vara en katalog.Platsen â€%s†mÃ¥ste vara en fil.Platsen â€%s†mÃ¥ste vara en absolut sökväg.Föräldern till platsen â€%s†kunde inte nÃ¥s pÃ¥ grund av otillräckliga rättigheter.Förälder till platsen â€%s†mÃ¥ste vara en giltig katalog.Det finns redan en CA med smeknamnet â€%sâ€.Det finns redan en begäran med smeknamnet â€%sâ€.Kan inte avgöra bas-DN för domäninformation pÃ¥ IPA-servern. Det gÃ¥r inte att avgöra värdnamnet för CA:n. Kan inte avgöra platsen för IPA LDAP-servern. Det gÃ¥r inte att avgöra huvudnamn för signeringsbegäran. Kan inte läsa signeringsbegäran. Okänd nyckelanvändning â€%sâ€. Okända parameter eller fel värdetyp.Okänt egenskapsnamn.Användning: %s list [flaggor] Användning: %s list-cas [flaggor] Användning: %s refresh [flaggor] Användning: %s refresh-ca [flaggor] Användning: %s request [flaggor] Användning: %s resubmit [flaggor] Användning: %s start-tracking [flaggor] Användning: %s status [flaggor] Användning: %s stop-tracking [flaggor] okäntcertmonger-0.78.6/po/sr@latin.gmo0000664000175000017500000000115012645513300013576 00000000000000Þ•$,8.9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Serbian (Latin) (http://www.transifex.com/projects/p/certmonger/language/sr@latin/) Language: sr@latin MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); certmonger-0.78.6/po/sr.gmo0000664000175000017500000000112412645513300012447 00000000000000Þ•$,89Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Serbian (http://www.transifex.com/projects/p/certmonger/language/sr/) Language: sr MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); certmonger-0.78.6/po/sq.gmo0000664000175000017500000000101312645513300012443 00000000000000Þ•$,8Ñ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Albanian (http://www.transifex.com/projects/p/certmonger/language/sq/) Language: sq MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/sl.gmo0000664000175000017500000000110012645513300012433 00000000000000Þ•$,89Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Slovenian (http://www.transifex.com/projects/p/certmonger/language/sl/) Language: sl MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=4; plural=(n%100==1 ? 0 : n%100==2 ? 1 : n%100==3 || n%100==4 ? 2 : 3); certmonger-0.78.6/po/sk.gmo0000664000175000017500000000104412645513300012441 00000000000000Þ•$,8ê9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Slovak (http://www.transifex.com/projects/p/certmonger/language/sk/) Language: sk MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2; certmonger-0.78.6/po/si.gmo0000664000175000017500000000101212645513300012432 00000000000000Þ•$,8Ð9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Sinhala (http://www.transifex.com/projects/p/certmonger/language/si/) Language: si MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ru_RU.gmo0000664000175000017500000000114312645513300013060 00000000000000Þ•$,8)9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Russian (Russia) (http://www.transifex.com/projects/p/certmonger/language/ru_RU/) Language: ru_RU MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); certmonger-0.78.6/po/ru.gmo0000664000175000017500000001357212645513300012463 00000000000000Þ•/”C " 1?F O ] jx’¦(Æï0? _8i ¢ ¬%º)à !! C<N ‹(¬Õ&òMGg¯aÄ?&/f$–#»ß÷  5 -D $r — ¸ 9À ;ú H6 B 9 ;ü I8 E‚ AÈ * 5;U`‘Sò]F5¤ ÚcäHY=nK¬&øEeewIÝ]'+…<±|îk1í¯zÏCJ;Ž9Ê" 'H+_‹5©4ßNc!  - %#(,&".+/'* )$ CA: %s ca-error: %s ca-type: %s dns: email: expires: %s status: %s subject: %s %s: unrecognized command * General options: * If keys are to be encrypted: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: An internal error has occurred.CA '%s': Database directory and certificate file both specified. Error %s Error %s: %s Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error setting request arguments. Error: %s Key and certificate can not both be saved to the same file. New signing request "%s" added. New signing request could not be added. No CA with name "%s" found. No response received from %s service. None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Optional arguments: Path "%s" is not absolute, and there was an error determining the name of the current directory. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Server error. There is already a CA with the nickname "%s".Unable to determine hostname of CA. Unable to read signing request. unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Russian (http://www.transifex.com/projects/p/certmonger/language/ru/) Language: ru MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); X-Generator: Zanata 3.6.2 »CA: %s »ca-ошибка: %s »ca-тип: %s »dns: »email: »иÑтекает: %s »ÑтатуÑ: %s »тема: %s %s: неизвеÑÑ‚Ð½Ð°Ñ ÐºÐ¾Ð¼Ð°Ð½Ð´Ð° * ОÑновные опции: * Ð’ Ñлучае, еÑли ключи шифруютÑÑ: * Ð’ Ñлучае иÑÐ¿Ð¾Ð»ÑŒÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ð´Ð»Ñ Ñ…Ñ€Ð°Ð½ÐµÐ½Ð¸Ñ Ð±Ð°Ð·Ñ‹ данных NSS: * Ð’ Ñлучае иÑÐ¿Ð¾Ð»ÑŒÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ñ„Ð°Ð¹Ð»Ð¾Ð² Ð´Ð»Ñ Ñ…Ñ€Ð°Ð½ÐµÐ½Ð¸Ñ: * Ðовые Ð·Ð½Ð°Ñ‡ÐµÐ½Ð¸Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ð¾Ð² запроÑа на подпиÑание: Произошла внутреннÑÑ Ð¾ÑˆÐ¸Ð±ÐºÐ°.CA '%s': Ðе определены каталог базы данных и файл Ñертификата. Ошибка %s Ошибка %s: %s Ошибка при Ñоздании запроÑа к DBus. Ошибка инициализации библиотеки Kerberos: %s. Ошибка Ð¸Ð·Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ "%s". Ошибка уÑтановки аргументов запроÑа. Ошибка: %s Ключи и Ñертификат не могут быть Ñохранены в один файл. Ðовый Ð·Ð°Ð¿Ñ€Ð¾Ñ Ð½Ð° подпиÑание "%s" добавлен. Ðовый Ð·Ð°Ð¿Ñ€Ð¾Ñ Ð½Ð° подпиÑание не может быть добавлен. CA Ñ Ð¸Ð¼ÐµÐ½ÐµÐ¼ "%s" не найден. От Ñлужбы %s не был получен ответ. Ðе были опрделены ни ID базы данных, ни никнейм или файл Ñертификата. Ðе определены ни каталог базы данных, ни никнейм или файл Ñертификата. ÐеобÑзательный аргументы: Путь "%s" не ÑвлÑетÑÑ Ð°Ð±Ñолютным, определение имени текущего каталога было выполнено Ñ Ð¾ÑˆÐ¸Ð±ÐºÐ°Ð¼Ð¸. ПожалуйÑта, проверьте, что Ñлужба шины Ñообщений (D-Bus) выполнÑетÑÑ. Получен ошибочный ответ от Ñлужбы %s. Ð—Ð°Ð¿Ñ€Ð¾Ñ "%s" не может быть изменен. Ð—Ð°Ð¿Ñ€Ð¾Ñ "%s" не может быть удален. Ð—Ð°Ð¿Ñ€Ð¾Ñ "%s" изменен. Ð—Ð°Ð¿Ñ€Ð¾Ñ "%s" удален. Ð—Ð°Ð¿Ñ€Ð¾Ñ ID '%s': Ðеобходимый аргументы: Ошибка Ñервера. CA Ñ Ð¸Ð¼ÐµÐ½ÐµÐ¼ "%s" уже ÑущеÑтвует.Ðевозможно определить Ð¸Ð¼Ñ CA Ðевозможно прочеÑÑ‚ÑŒ Ð·Ð°Ð¿Ñ€Ð¾Ñ Ð½Ð° подпиÑание. неизвеÑтныйcertmonger-0.78.6/po/ro.gmo0000664000175000017500000000106412645513300012446 00000000000000Þ•$,8ú9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Romanian (http://www.transifex.com/projects/p/certmonger/language/ro/) Language: ro MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n==1?0:(((n%100>19)||((n%100==0)&&(n!=0)))?2:1)); certmonger-0.78.6/po/pt_BR.gmo0000664000175000017500000006062012645513300013037 00000000000000Þ•ã43L&%@f(‚-«Ù"ù&C` iwˆ —#¥'Éñøÿ #1 GTo%¥»(Ô$ý-")Pz’©'»#ã  - 9 G+S&2¦1Ù) $5,Z'‡2¯Eâ3(,\/‰,¹'æ>MCa:¥9àS8n3§:Û:6Q:ˆ=Ã8':Bb#¥8É?EB(ˆ3±#å> ?H.ˆG·6ÿ;6 :r 6­ Iä ,.!"[!(~!§!(Ã!ì!""!0"R"f"€"$ "#Å"(é"#01#b#6t#&«#Ò#á# ð# þ# $ *$K4$%€$#¦$+Ê$,ö$'#%K%8i%;¢%Þ%ú% & $&)2&!\&%~&)¤&Î&0å&'/'!O'Eq'B·'Oú'LJ(+—(Ã(á(2û( .)#9)-])6‹)(Â)ë)< *CH*Œ*#¨*$Ì*ñ* + +(0+!Y+){+¥+/Â+4ò+',6A,)x,*¢,&Í, ô,%-&-MD-G’-7Ú-.'.7.!V.ax.;Ú./%&/<L/<‰/?Æ//0$60#[00—0®02À0ó01$181CG12‹12¾1nñ1H`2&©2!Ð2+ò2R36q3-¨32Ö3A 4$K41p48¢4 Û4ü4+5E5a5{5™5¹5Ö5#ô5"6;6C6)D8$n8)“8(½86æ8 9%>93d9)˜9Â9Ë9Û9 î9 ü9( :+3:_:f:m:!v:˜:ª:Ä:'Ó:û:) ;6;S;5q;.§;9Ö;2<C<\<t<1‰<+»<ç< = = = *=:6=6q=7¨=4à=5>6K>:‚>:½>.ø>C'?@k?*¬?<×?0@5E@J{@Æ@IÚ@M$AIrAV¼AFB>ZB:™B2ÔB4C=SqyUÊ‘)‰@®Bº‚5Å·e‹8£¢b¿gÈo«"˜Ò–^´²Ã°1W]ÉDã¤'ªÔm©k6Ψ„¸¯ =§™&»Žá+MZK F$!(šÝÆCˆâà ¡•p vÀtdc…<¼x#½ hN~µY3P\? Ë2Þ0“€ÏÕw`G%Úz,}7i¦‡ƒ¾­f_{-¹4Öž*9aHÍÙŸuœ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s refresh-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Portuguese (Brazil) (http://www.transifex.com/projects/p/certmonger/language/pt_BR/) Language: pt-BR MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); X-Generator: Zanata 3.6.2 -B não use um timeout oscioso -F força NSS no FIPS modo -S use o sistema do barramento -b TIMEOUT bus-activated, idle timeout -d NIVEL define depuração de nível(implica -n) -f torna-se um daemon -n não se torna um daemon -p ARQUIVO escreve serviço para o arquivo PID -s use a sessão do barramento CA: %s Endereço IP: auto-renovar: %s "ca-error:%s ca-tipo: %s certificado: tipo=%s,localização='%s' padrão perfil/modelo/certificadotipo: %s dns: eku: email: erro ao atualizar o dado de CA expiração: %s ajuda-localização: %s emitente: %s armazenamento do par de chave: tipo=%s uso da key: %s conhecidos perfis/modelos/certificados: nomes-conhecidos-emitente: próximo-serial-número: %s outros certificados salvos para os bancos de dados: outros certificados salvos para os arquivos: outro root certificados salvos para os bancos de dados: outro root certificados salvos para os arquivos: post-salva comando: %s pre-salva comando: %s nome do principal: root certificados salvos para o banco de dados: root certificados salvo para os arquivos: self-identifies como: %s "status:%s travado: %s subject: %s faixa: %s -A ENDEREÇO sobreescreve requisição de endereço IP -A ENDEREÇO definido requisição de endereço IP -B comando para rodar antes de salvar o certificado -C comando para rodar após salvar o certificado -D DNSNAME substituir requisição do nome do DNS -D DNSNAME conjunto solicitado para o nome do DNS -E EMAIL substituir requisição do endereço de email -E EMAIL conjunto solicitado para o endereço de email -F arquivo para armazenar certificados CA's -G TIPO tipo de chave para a gerada se um já não esta no local -I NOME novo apelido para dar a solicitação de rastreamento -I NOME apelido para atribuir ao pedido -I NOME apelido para dar à solicitação de rastreamento -K NOME substituir o nome principal requerido -K NOME conjunto solicitado para o nome principal -N NOME nome do assunto solicitado em conjunto (padrão: CN=) -P PIN PIN valor -R não tente renovar o certificado quando se aproxima da expiração -S connectado para o serviço de certmonger sobre o barramento do sistema -S conectado para o serviço de certmonger sob o barramento do sistema -T PERFIL perguntar o CA processar a requisição usando o modelo ou perfil nomeado -U EXTUSAGE substituir requisição extendida para uso de chave OID -U EXTUSAGE conjunto solicitado prolongado uso de chave OID -a NSS banco de dados para armazenar certificados CA's -c CA use o CA especificado ao invés do atual -c CA use o CA especificado ao invés do padrão -c CA lista informações somente sobre o CA com este nome -c CA listar somente solicitações e certificados associados com esta CA -c CA atualizar informação sobre a CA com este nome -d DIR Banco de dados NSS para chave e certificado -d DIRETÓRIO somente lista as requisições e os certificados que usam este NSS como banco de dados -f ARQUIVO PEM arquivo para o certificado -f ARQUIVO PEM arquivo para certificado (válido somente com -k) -f ARQUIVO somente lista as requisições e os certificados armazenadas neste arquivo PEM -g TAMANHO tamanho da chave a ser gerada se um já não está neste lugar -i NOME apelido para rastreamento de requisição -i NOME apelido de uma solicitação de rastreamento existente -k ARQUIVO PEM arquivo para chave privada -n NOME apelido para NSS-based armazenamento (válido somente com -d) -n NOME somente lista requisições e certificados que usem este apelido -p ARQUIVO arquivo que mantém a criptografia PIN -r tentativa de renovar o certificado quando o vencimento se aproximar (padrão) -r listar somente informações sobre solicitações pendentes -s connectado para o serviço de certmonger sobre o barramento da sessão -s conectado para o serviço de certmonger sob a sessão do barramento -t listar somente informações sobre certificados rastreados -t NOME nome de token opcional para NSS-based armazenamento (válido somente com -d) -u KEYUSAGE define requisição o valor de uso da chave -v reportar todos os detalhes de erros %s - ferramenta de inscrição de certificado cliente %s: opção inválida -- '%c' %s: opção requer um argumento -- '%c' %s: comando não reconhecido * Bus opções: * Por identificador de requisição: * Configurações de manejo de certificado: * Opções gerais: * Se as chaves são criptografadas: * Se as chaves devem ser criptografadas: * Se estiver modificando um pedido existente: * Se selecionado um pedido específico: Se estiver utilizando uma base de dados NSS para armazenamento: * Se estiver utilizando arquivos para armazenamento: * Novos valores de parâmentro para o pedido de assinatura: * Outras opções: * Parâmetros para a solicitação de assinatura em tempo de renovação: * Parâmetros para a solicitação de assinatura: ,localização='%s',apelido='%s',pinfile='%s',token='%s'Um erro interno ocorreu.CA '%s': Certificado no mesmo local já é utilizado por requisição com o apelido de "%s".Autoridade do certificado "%s" não conhecida.Nome de usuário do certificado não especificado.Localização do armazenamento de certificado não especificada.Tipo de armazenamento de certificado "%s" não suportado.Tipo de armazenamento de certificado não especificado.Não foi possível avaliar OID "%s". Diretório do banco de dados e arquivo de certificado, ambos especificados Localização do banco de dados ou login especificado sem o outro Erro %d ao conectar em %s. Erro %d ao conectar em %s: %s. Erro %s Erro %s: %s Erro ao tentar enviar "%s" para "%s". Erro ao tentar enviar "%s". Erro ao criar mensagem de pedido DBus. Erro ao inicializar biblioteca Kerberos: %s. Erro ao modificar "%s". Erro ao analisar nome principal do Kerberos "%s": %s. Erro ao analisar argumentos.Erro ao analisar resposta do servidor. Erro ao configurar argumentos do pedido. Erro definido ccache para "%s" no cliente usando o padrão keytab: %s. Erro definido ccache para "%s" no cliente usando keytab "%s": %s. Erro definido ccache para serviço de "host" no cliente usando o padrão keytab: %s. Erro definido ccache para "host" no cliente usando keytab "%s": %s. Erro definido para XMLRPC no cliente. Erro de criação para XMLRPC. Erro ao desligar NSS. Erro a não analisar o nome principal do Kerberos "%s":%s. Erro: %s Erro: argumento extra não utilizado "%s". Erro: Argumentos extras não utilizados foram fornecidos. Permissões insuficientes. Por favor tente novamente como root. Erro interno: nenhuma resposta para "%s?%s". Erro interno: estado desconhecido. A chave e o certificado não podem ser salvos no mesmo arquivo. Chave no mesmo local já é utilizado por solicitação com o apelido de "%s".Nome de usuário da chave não foi especificado.A localização de armazenamento da chave não foi especificada.Tipo de armazenamento de chave "%s" não suportado.Conhece tipos de chaves incluídas:NADANovo pedido de assinatura "%s" adicionado. O novo pedido de assinatura não pôde ser adicionado. Nova requisição de rastreamento "%s" adicionada. Nova requisição de rastreamento não foi adicionada. Nenhum CA com o nome "%s" encontrado. Nenhum agente de URL (-A) dado e nenhum padrão conhecido. Nenhuma URL de entidade final (-E) dada e nenhum padrão conhecido Nenhuma entrada compatível encontrada. Nenhum perfil/modelo (-T) dada e nenhum padrão conhecido. Nenhuma requisição encontrada que tenha argumentos correspondentes. Nenhum pedido encontrado com apelido especificado. Nenhuma resposta recebida do serviço %s. Não há tal CA.Sem suporte para geração "%s" chaves. Sem suporte para tipo de chave "%s".Nenhum ID, diretório da base de dados e nome de usuário ou arquivo de certificados especificados. Nenhum diretório e login de banco de dados ou arquivo de certificado especificado. Números de certificados e pedidos sendo rastreados: %d. Argumentos opcionais: Sem memória. Caminho "%s" não é um diretório. Caminho "%s" não é um arquivo normal. Caminho "%s" não é absoluto, e houve um erro ao determinar o nome do diretório atual. Caminho "%s" não é absoluto, tente usar o "%s" em vez disso. Caminho "%s": %s. Caminho "%s": permissões insuficiêntes. Por favor verifique se o serviço certmonger foi iniciado. Por favor verifique se o serviço certmonger ainda está rodando. Por favor verifique se o serviço de barramento de mensagens (D-Bus) está em execução. Recebida reposta com erro do serviço local %s. Requisição "%s" não podia ser modificada. Pedido "%s" não pôde ser removido. Pedido "%s" modificado. Pedido "%s" removido. ID do Pedido '%s': Renovação solicitada, mas não prove número serial. Argumentos necessários: Reenviando "%s" para "%s". Reenviando "%s". Erro no Servidor. A opção -K não pode ser usada com a opção -k ou com a opção -t. A opção -k não pode ser usada com a opção -K. A opção -t não pode ser usada com a opção -K. O backend IPA requer o uso da opção -K (nome do principal) quando a opção -N (nome do subject) é usada. A localização "%s" não pode ser acessada devido a permissões insuficientes.A localização "%s" deve ser um diretório.A localização "%s" deve ser um arquivo.O local de "%s" deve ser um caminho absoluto.O pai da localização "%s" não pode ser acessado devido a permissões insuficientes.O parente de localização "%s" deve ser um diretório válido.Já existe um CA com o apelido de "%s".Já existe um pedido com o nome de usuário "%s".Não foi possível determinar a base DN do domínio no servidor IPA. Não foi possível determinar nome da máquina do CA. Não foi possível determinar a localização do servidor IPA LDAP server. Não é possível determinar o nome principal para solicitação de assinatura. Não foi possível ler pedido de assinatura. Não reconhecido keyUsage "%s". Parâmetro não reconhecido ou tipo de valor errado.Nome da propriedade não é reconhecida.Uso: %s lista [opções] Use: %s list-cas [opções] Uso: %s refresh-ca [opções] Uso: %s pedido [opções] Uso: %s reenvio [opções] Use: %s start-tracking [opções] Use: %s stop-tracking [opções] desconhecidocertmonger-0.78.6/po/pt.gmo0000664000175000017500000004410212645513300012451 00000000000000Þ•®Œéü  &¡È(ä- ;"[&~¥ÂËÜ ë#ù$+ 4B Xe€–¯Æ Ø å ñ ÿ) $5,Z'‡3¯,ã/,@'m>•ÔCè:,9g8¡3Ú:6I:€=»'ùB!#d8ˆ?ÁE(G3p#¤>È?.GGv6¾;õ:16lI£"í(9(U~˜¨!Âäø$2#W({¤0Ãô6&=ds ‚ œ ¼KÆ%#8+\,ˆ'µÝ8û;4 p z)ˆ!²%Ô)ú$0;l!Œ®2Ì ÿ# -.<\C™Ý#ù$ B G (h !‘ )³ Ý ú )!*>!&i! !Mœ!Gê!72"j"""!®"aÐ";2#n#?~#/¾#$î##$7$O$f$x$$©$½$CÌ$2%2C%nv%&å%! &+.&6Z&-‘&2¿&$ò&8' P'+q''·'Õ'ò'#("4(W(ò_(:R*+*G¹*;+ =+%^+2„++·+ã+ì+ , ,(&,O,V,], u,‚, œ,%ª,Ð,î, -(- :- G- S-a-)q-.›-2Ê-Bý-7@.$x.2.,Ð.,ý.H*/s/IŠ/1Ô/00G70C01Ã06õ0<,1Bi16¬1Rã1(62L_2N¬2Gû20C39t3,®3JÛ3I&46p4]§4854>53s5A§5aé5)K65u6«6(Ê6ó67 "7#C7g7"{7,ž7&Ë7(ò748(P8;y8µ8CÉ8+ 999 M9[9 n9z9 “9R9/ð9& :@G:9ˆ:7Â:'ú:O";Ar;´; ½;%Ê;ð;) <.6<e<5}<(³<&Ü< =?$= d=+n=9š=DÔ=L> f>:‡>3Â>ö>.û>9*?0d?;•?+Ñ?+ý?9)@7c@/›@Ë@XÜ@\5A=’AÐAçA'ûA,#B]PBH®B÷BD C0OC&€C$§CÌCåCüCD(DBDRD?eD7¥D7ÝDmE/ƒE,³E4àE>F-TF%‚F8¨FDáF'&G4NGƒGœG¹GÔG"ñG H 5H7T-‡6¨m2 j–M¥>Vf<)l5[% ’4yDœ•E‰ˆ®*K€Y#§~?:0\hei'Sr"¤“„pwa¢ F=`!B1¬J}Žt›£‘sPR OGInvšq˜ªzN&9;( u—d¡kQo­†/©C”™«_Ÿ3 ]gƒ,$‹.¦W{^|ŠA+…Uc‚8HLŒ@XZxbž  -B don't use an idle timeout -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s known-issuer-names: next-serial-number: %s pre-save command: %s principal name: status: %s stuck: %s subject: %s track: %s -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No matching entry found. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Portuguese (http://www.transifex.com/projects/p/certmonger/language/pt/) Language: pt MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B não utilizar um temporizador de inactividade -S utilizar barramento do sistema -b TEMPORIZADOR activado-por-barramento, temporizador de inactividade -d NÃVEL definir nível de depuração (pressupõe -n) -f converter em daemon -n não converter em daemon -p FIC escrever PID do serviço para ficheiro -s utilizar barramento da sessão CA: %s renovação automática: %s erro-ca: %s tipo-ca: %s certificado: tipo=%s,localização='%s' dns: eku: correio electrónico: expira: %s localização-ajuda: %s emissor: %s armazenamento par de chaves: tipo=%s nomes-emissores-conhecidos: próximo-número-série: %s comando pré-guardado: %s nome principal: estado: %s preso: %s assunto: %s traçagem: %s -D DNSNAME sobrescreve nome DNS pedido -D DNSNAME definir o nome de DNS solicitado -E EMAIL sobrescreve endereço de e-mail pedido -E EMAIL definir o endereço de correio electrónico solicitado -I NAME novo nome a dar ao pedido de monitorização -I NAME nome a atribuir ao pedido -I NAME nome a dar ao pedido de monitorização -K NAME sobrescreve nome principal pedido -K NAME definir nome principal solicitado -N NAME define o nome do assunto pretendido (omissão: CN=) -P PIN valor do PIN -R não tentar renovar o certificado quando a expiração se aproxima -S liga ao serviço certmonger no sistema bus -S liga ao serviço certmonger no sistema bus -U EXTUSAGE sobrescreve a utilização de chave estendida OID pedida -U EXTUSAGE definir a utilização de chave estendida OID pedida -c CA usar o CA especificado em vez do actual -c CA usar o CA especificado em vez do por defeito -c CA listar apenas informação sobre o CA com este nome -c CA listar apenas pedidos e certificados associados a este CA -d DIR Base de dados NSS para a chave e certificado -d DIR listar apenas pedidos e certificados que utilizem esta base de dados NSS -f FILE ficheiro PEM para certificado -f FILE Ficheiro PEM para o certificado (apenas válido com a opção -k) -f FILE listar apenas pedidos e certificados armazenados neste ficheiro PEM -g SIZE tamanho da chave a ser gerada se uma já não estiver em uso -i NAME nome para o pedido de monitorização -i NAME nome de um pedido de monitorização existente -k FILE Ficheiro PEM para a chave privada -n NAME nome para o armazenamento NSS (apenas válido com a opção -d) -n NAME listar apenas pedidos e certificados que utilizem esta alcunha -p FILE ficheiro que contém o PIN de encriptação -r tentativa de renovação do certificado quando a expiração se aproxima (por defeito) -r lista apenas informações sobre pedidos pendentes -s liga ao serviço certmonger no bus de sessão -s liga ao serviço certmonger no bus de sessão -t listar apenas informação sobre certificados monitorozados -t NAME nome de testemunho opcional para o armazenamento NSS (apenas válido com a opção -d) -v reportar todos os detalhes de erros %s - ferramenta de registo do certificado do cliente %s: opção inválida -- '%c' %s: opção requer um argumento -- '%c' %s: comando não reconhecido * Opções Bus: * Pelo identificador do pedido: * Certificado das configurações: * Opções gerais: * Se as chaves forem encriptadas: * Se as chaves são para serem encriptadas: * Se a modificar um pedido existente: * Se a selecionar um pedido especifico: * Se usar uma base de dados NSS para armazenamento: * Se usar ficheiros para armazenamento: * Novos valores do parâmetro para o pedido de assinatura: * Outras opções: * Parâmetros para o pedido de assinatura no tempo de renovação: * Parâmetros para o pedido de assinatura: ,localização='%s',alcunha='%s',ficheiro pin='%s',token='%s'Ocorreu um erro interno.CA '%s': Certificado na mesma localização já é utilizado para pedidos com alcunha "%s".Autoridade de certificação "%s" desconhecida.Nome do certificado não especificado.Localização de armazenamento do certificado não especificado.Tipo de armazenamento do certificado "%s" não suportado.Tipo de armazenamento do certificado não especificado.Não foi possível avaliar o OID "%s". Directório da base de dados e do ficheiro do certificado ambos especificados. Localização da base de dados ou nome especificado sem o outro. Erro %s Erro %s: %s Erro a tentar enviar "%s" para "%s". Erro a tentar enviar "%s". Erro ao criar a mensagem de pedido DBus. Erro a inicializar a biblioteca Kerberos: %s. Erro a modificar "%s". Erro ao analisar o nome Kerberos principal "%s": %s. Erro a analisar a resposta do servidor. Erro a definir os argumentos pedidos. Erro ao configurar para XMLRPC. Erro ao analisar novamente o nome Kerberos principal "%s": %s. Erro: %s Erro: argumento extra não utilizado "%s". Erro: foram fornecidos argumentos extra não utilizados. Não é possível gravar a chave e o certicifado no mesmo ficheiro. Chave na mesma localização já é utilizada para pedidos com alcunha "%s".Nome da chave não especificado.Localização de armazenamento da chave não especificado.Tipo de armazenamento da chave "%s" não suportado.NONENovo pedido de contratação "%s" adicionado. O novo pedido de contratação não pode ser adicionado. Novo pedido de monitorização "%s" adicionado. O novo pedido de monitorização não pode ser adicionado. Não foi encontrado um CA com o nome "%s". Nenhuma entrada correspondente encontrada. Nenhum pedido encontrado que corresponda aos argumentos. Não foi encontrado pedido com a alcunha especificada. Não foi recebida uma resposta do serviço %s. CA desconhecido.Nenhum ID, directoria da base de dados e nome ou ficheiro do certificado especificados. Não foi especificada uma directoria de base de dados e nome ou um ficheiro de certificado. Número de certificados e pedidos a serem monitorizados: %d. Argumentos opcionais: Memória esgotada. O caminho "%s" não é um directório. O caminho "%s" não é um ficheiro regular. O caminho "%s" não é absoluto, e houve um erro ao determinar o nome do directório actual. O caminho "%s" não é absoluto, a tentar utilizar "%s" em alternativa. Caminho "%s": %s. Verifique se o serviço do bus de mensagens (D-Bus) está a correr. Recebida resposta de erro do serviço local %s. Pedido "%s" não pode ser modificado. Pedido "%s" não pode ser removido. Pedido "%s" modificado. Pedido "%s" removido. ID do pedido '%s': Argumentos requeridos: Reenviar "%s" para "%s". Reenviar "%s". Erro do servidor. A opção -K não pode ser utilizada com as opções -k ou -t. A opção -k não pode ser utilizada com a opção -K. A opção -t não pode ser utilizada com a opção -K. O IPA backend necessita o uso da opção -K (nome principal) quando a opção -N (nome do assunto) é usada. A localização "%s" tem de ser uma directoria.A localização "%s" tem de ser um ficheiro.A localização "%s" tem de ser um caminho absoluto.O pai da localização "%s" tem de ser uma directoria válida.Já existe um CA com nome de utilizador "%s".Já existe um pedido com o nome "%s".Não foi possível determinar o nome do servidor do CA. Incapaz de determinar o nome principal para o pedido de assinatura. Incapaz de ler o pedido de assinatura. Parâmetro desconhecido ou tipo de valor incorrecto.Uso: %s list [opções] Uso: %s list-cas [opções] Uso: %s pedido [opções] Uso: %s resubmit [opções] Uso: %s start-tracking [opções] Uso: %s stop-tracking [options] desconhecidocertmonger-0.78.6/po/pl.gmo0000664000175000017500000007073212645513300012451 00000000000000Þ•TaŒ&%82^3‘Å(á0 -;i/‰"¹&Ü  )7H W#e'‰±¸¿È ãñ /%?e{(”$½-â):Ri'{#£Ç à í ù +&?2f1™)Ë$õ,'G2oE¢3è,/I,y'¦>Î C!:e9 SÚ8.3g:›:Ö6 :H =ƒ 8Á 'ú B"!<e!#¢!8Æ!?ÿ!9?"Ey"(¿"3è"##>@#?#:¿#.ú#G)$6q$;¨$:ä$6%IV%, %"Í%2ð%(#&L&h&(ƒ&¬&Æ&Ö&!ð&'&'@'$`'#…'(©'Ò'0ñ'"(64(&k( ’(*³( Þ(ÿ() ) +)7) W)Ka)%­)#Ó)+÷),#*'P*x*"–*%¹*8ß*;+T+p+ + š+)¨+!Ò+ô+%,)6,`,0w,¨,Á,!á,E-BI-OŒ-LÜ-+).U.s.2. À.#Ë.-ï.6/(T/}/</CÚ/0#:0$^0ƒ0.œ0Ë0+Ð0 ü0(1!F1)h1’1/¯16ß142K26e2)œ2*Æ2&ñ2 3%$3J3h3Q€3MÒ3G 47h4 4µ4Å4!ä4a5;h5¤5%´5<Ú5<6?T6/”6$Ä6#é6 7%7%<7!b7„72–7É7Þ7ú78!808CF82Š82½8nð8H_9&¨9!Ï9+ñ9R:6p:-§:2Õ:&;A/;$q;1–;8È; <"<+?<k<‡<¤<¾<Ü<ù<=6=#T=x="”=/·=9ç=?!>0a>4’>$Ç>?ì>,?K? S?;tA1°A=âA: B)[BK…BLÑB;CZC9xC!²C*ÔC$ÿC$D -D9DWD gD$tD.™DÈDÏD ÖD(àD EE2E$AEfE,{E¨EÅE,ãE'F28F-kF™F³FÌF-àF(G7G TG_G nGzG(ŠG%³G9ÙG5H/IH,yH-¦H*ÔH2ÿHB2I:uI0°I6áI2J/KJN{JÊJLçJF4KD{KYÀKNLKiL=µL0óL0$M6UMEŒM0ÒM2N\6N:“N#ÎNCòNQ6OFˆOJÏO/P8JP)ƒP_­PV QFdQ2«QTÞQ=3RAqR@³R=ôRf2S?™S/ÙS- T77T oT$T"µTØTõT$ U*/UZU"lU,U1¼U&îU7V/MV9}V·V9ÆV%W$&W7KW/ƒW³WÅWÕW åWñW XYXtX"…X2¨X:ÛX+YBY#bY+†YA²YEôY#:Z'^Z †Z‘Z. Z&ÏZ,öZ5#[4Y[#Ž[B²[)õ[1\1Q\`ƒ\eä\pJ]u»]31^'e^!^M¯^ ý^- _07_Bh_0«_#Ü_?`T@`•`-³`5á`a7*aba'ga'a/·a'ça/b"?bBbbR¥bOøb#HcAlc6®c3åc'dAd%Td#zd+žd\Êd['eDƒe1Èeúef$!f*FfiqfMÛf)g/>gAngE°gRög6Ih)€h$ªhÏhîh4 i0>ioi8ŽiÇi!Üiþij2jCj5[j.‘j.ÀjfïjYVk&°k#×k4ûkj0l>›l$Úl+ÿl3+mG_m*§m2ÒmAn+Gn#sn2—n#Ênîn o'oEobo‚oŸo#½oáo"ýo3 p1Tp8†p<¿pFüpCqGcq%«qÑqÞ ¥XP÷‡®‚Jf&DöÑõy aãð{hoôäŸÅ$ÇŠ…wÐR@ÛBlÖ¤ë’6 ûàó>n—¦U+j%=ŽÕv¯†§[ ¢·æí# ŒºÒVx¿„Qý)´T‰×™ü–NÄb?;Æ_Ô*êIÜ2šg‹ú›dc ùH“Muÿ!çñ©Âò žØFOmÁÍɱS(3<ÝÚ¨4p€µË'¬}ïiGìsÓ"â߃¶,E¾œ¹­\»².Ïqz³~½èCéáe£`Ìå•È]1A°/tø«|r¸Î”ZK˜Ã97^-WÊYLÙÀˆk8:þ50ª¡ -B don't use an idle timeout -F force NSS into FIPS mode -L only use a dedicated listening socket -P PATH specify the dedicated listening socket -S use system bus -b TIMEOUT bus-activated, idle timeout -c COMMAND start COMMAND and exit when it does -d LEVEL set debugging level (implies -n) -f do become a daemon -l start a dedicated listening socket -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -d DIR return status for the request in this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -f FILE return status for cert stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -n NAME return status for cert which uses this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors -w try to wait for the certificate to be issued %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: * Selecting a specific request: * When using an NSS database for storage: * When using files for storage: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Data for CA '%s' being refreshed. Data for unnamed CA being refreshed. Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error connecting to D-Bus. Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:Launching temporary dedicated service daemon. NONENeither CA nickname nor -a flag specified. New signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No agent credentials (-n) given, but they are needed. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".No system bus running. None of ID or database directory and and nickname or certificate file specified. None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s' NOT being refreshed. Request ID '%s' being refreshed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Running as UID 0. Server error. State %s, stuck: %s. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to contact an IPA LDAP server. Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s command [options] Usage: %s list [options] Usage: %s list-cas [options] Usage: %s refresh [options] Usage: %s refresh-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s status [options] Usage: %s stop-tracking [options] begin monitoring an already-issued certificate check on the status of an in-progress enrollment request check the status of a certificate being monitored or requested list certificates being monitored and requested refresh cache of all information obtained from a CA request a new certificate from a CA resubmit an in-progress enrollment request, or start a new one stop monitoring a certificate unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-14 08:29-0500 Last-Translator: Piotr DrÄ…g Language-Team: Polish (http://www.transifex.com/projects/p/certmonger/language/pl/) Language: pl MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); X-Generator: Zanata 3.6.2 -B bez użycia czasu oczekiwania na bezczynność -F wymusza przejÅ›cie NSS do trybu FIPS -L używa tylko dedykowanego gniazda nasÅ‚uchiwania -P ÅšCIEÅ»KA podaje dedykowane gniazdo nasÅ‚uchiwania -S używa magistrali systemowej -b CZAS aktywacja przez magistralÄ™, czas oczekiwania na bezczynność -c POLECENIE rozpoczyna POLECENIE i koÅ„czy dziaÅ‚anie po jego ukoÅ„czeniu -d POZIOM ustawia poziom debugowania (wymusza opcjÄ™ -n) -f zmiana na demona -l rozpoczyna dedykowane gniazdo nasÅ‚uchiwania -n bez zmiany na demona -p PLIK zapisuje PID usÅ‚ugi do pliku -s używa magistrali sesji CA: %s Adres IP: automatyczne-odnawianie: %s bÅ‚Ä…d-ca: %s typ-ca: %s certyfikat: typ=%s,poÅ‚ożenie="%s" domyÅ›lny profil/szablon/typ certyfikatu: %s dns: eku: e-mail: bÅ‚Ä…d podczas odÅ›wieżania danych CA wygasa: %s poÅ‚ożenie-pomocnika: %s wystawca: %s pamięć masowa pary kluczy: typ=%s użycie klucza: %s znane profile/szablony/typy certyfikatów: nazwy-znanych-wystawców: nastÄ™pny-numer-seryjny: %s inne certyfikaty zapisane w bazach danych: inne certyfikaty zapisane do plików: inne certyfikaty roota zapisane w bazach danych: inne certyfikaty roota zapisane do plików: polecenie post-save: %s polecenie pre-save: %s nazwa naczelnika: certyfikaty roota zapisane w bazach danych: certyfikaty roota zapisane do plików: identyfikuje siÄ™ jako: %s stan: %s zatkanie: %s temat: %s Å›cieżka: %s -A ADRES zastÄ™puje żądany adres IP -A ADRES ustawia żądany adres IP -B polecenie do wykonania przed zapisaniem certyfikatu -C polecenie do wykonania po zapisaniu certyfikatu -D NAZWA-DNS zastÄ™puje żądanÄ… nazwÄ™ DNS -D NAZWA-DNS ustawia żądanÄ… nazwÄ™ DNS -E E-MAIL zastÄ™puje żądany adres e-mail -E E-MAIL ustawia żądany adres e-mail -F plik, w którym przechowywać certyfikaty CA -G TYP typ klucza do utworzenia, jeÅ›li jeszcze nie ma żadnego -I NAZWA nowy pseudonim przyznany Å›ledzonemu żądaniu -I NAZWA pseudonim do przydzielenia żądaniu -I NAZWA pseudonim do nadania Å›ledzonemu żądaniu -K NAZWA zastÄ™puje żądanÄ… nazwÄ™ naczelnika -K NAZWA ustawia żądanÄ… nazwÄ™ naczelnika -N NAZWA ustawia żądanÄ… nazwÄ™ tematu (domyÅ›lnie: CN=) -P PIN wartość kodu PIN -R nie próbuje odnowić certyfikatu, kiedy zbliża siÄ™ jego wygaszenie -S Å‚Ä…czy siÄ™ z usÅ‚ugÄ… certmonger przez magistralÄ™ systemowÄ… -S Å‚Ä…czy siÄ™ z uslugÄ… certmonger przez magistralÄ™ systemowÄ… -T PROFIL prosi CAo przetworzenie żądania używajÄ…c nazwanego profilu lub szablonu -U UÅ»YCIE-ZEWNĘTRZNE zastÄ™puje żądany OID użycia rozszerzonego klucza -U UÅ»YCIE-ZEWNĘTRZNE ustawia żądany OID użycia rozszerzonego klucza -a baza danych NSS, w której przechowywać certyfikaty CA -c CA używa podanego CA zamiast bieżącego -c CA używa podanego CA zamiast domyÅ›lnego -c CA wyÅ›wietla informacje tylko o CA o tej nazwie -c CA wyÅ›wietla tylko żądania i certyfikaty powiÄ…zane z tym CA -c CA odÅ›wieża informacje o CA o tej nazwie -d KAT baza danych NSS dla klucza i certyfikatu -d KATALOG wyÅ›wietla tylko żądania i certyfikaty, które używajÄ… tej bazy danych NSS -d KATALOG wyÅ›wietla stan żądania w bazie danych NSS -f PLIK plik PEM dla certyfikatu -f PLIK plik PEM dla certyfikatu (prawidÅ‚owe tylko z opcjÄ… -k) -f PLIK wyÅ›wietla tylko żądania i certyfikaty przechowywane w tym pliku PEM -f PLIK wyÅ›wietla stan certyfikatu przechowywanego w tym pliku PEM -g ROZMIAR rozmiar klucza do utworzenia, jeÅ›li jeszcze nie ma żadnego -i NAZWA pseudonim dla Å›ledzonego żądania -i NAZWA pseudonim istniejÄ…cego żądania Å›ledzenia -k PLIK plik PEM dla klucza prywatnego -n NAZWA pseudonim dla przechowywania danych opartego na NSS (prawidÅ‚owe tylko z opcjÄ… -d) -n NAZWA wyÅ›wietla tylko żądania i certyfikaty, które używajÄ… tego pseudonimu -n NAZWA wyÅ›wietla stan certyfikatu, który używa tego pseudonimu -p PLIK plik przechowujÄ…cy kod PIN szyfrowania -r próbuje odnowić certyfikat, kiedy zbliża siÄ™ jego wygaszenie (domyÅ›lnie) -r wyÅ›wietla informacje tylko o oczekujÄ…cych żądaniach -s Å‚Ä…czy siÄ™ z usÅ‚ugÄ… certmonger przez magistralÄ™ sesji -s Å‚Ä…czy siÄ™ z usÅ‚ugÄ… certmonger przez magistralÄ™ sesji -t wyÅ›wietla informacje tylko o Å›ledzonych certyfikatach -t NAZWA opcjonalna nazwa tokenu dla przechowywania opartego na NSS (prawidÅ‚owe tylko z opcjÄ… -d) -u UÅ»YCIE-KLUCZA ustawia żądanÄ… wartość użycia klucza -v zgÅ‚asza wszystkie informacje o bÅ‚Ä™dach -w próbuje czekać na wydanie certyfikatu %s - narzÄ™dzie kwalifikowania certyfikatów klientów %s: nieprawidÅ‚owa opcja - "%c" %s: nieprawidÅ‚owa wartość - "%s" %s: opcja wymaga parametru - "%c" %s: nierozpoznane polecenie * Opcje magistrali: * WedÅ‚ug identyfikatora żądania: * Ustawienia obsÅ‚ugiwania certyfikatów: * Ogólne opcje: * JeÅ›li klucze sÄ… zaszyfrowane: * JeÅ›li klucze majÄ… zostać zaszyfrowane: * Podczas modyfikowania istniejÄ…cego żądania: * JeÅ›li wybrano konkretne żądanie: * Podczas używania bazy NSS do przechowywania danych: * Podczas używania plików do przechowywania: * WartoÅ›ci nowych parametrów dla żądania podpisania: * Inne opcje: * Parametry do żądania podpisania w czasie odnowienia: * Parametry do żądania podpisania: * Wybieranie konkretnego żądania: * Podczas używania bazy NSS do przechowywania danych: * Podczas używania plików do przechowywania: ,poÅ‚ożenie="%s",pseudonim="%s",plik-pinu="%s",token="%s"WystÄ…piÅ‚ wewnÄ™trzny bÅ‚Ä…d.CA "%s": Certyfikat w tym samym poÅ‚ożeniu jest już używany przez żądanie o pseudonimie "%s".Nieznane CA "%s"Nie podano pseudonimu certyfikatu.Nie podano poÅ‚ożenia przechowywania certyfikatu.Typ przechowywania certyfikatu "%s" nie jest obsÅ‚ugiwany.Nie podano typu przechowywania certyfikatu.Nie można obliczyć OID "%s". Dane dla CA "%s" sÄ… odÅ›wieżane. Dane dla nienazwanego CA sÄ… odÅ›wieżane. OkreÅ›lono zarówno katalog bazy danych, jak i plik certyfikatu. Podano poÅ‚ożenie bazy danych lub pseudonim bez drugiego parametru. BÅ‚Ä…d %d podczas Å‚Ä…czenia z %s. BÅ‚Ä…d %d podczas Å‚Ä…czenia z %s: %s. BÅ‚Ä…d %s BÅ‚Ä…d %s: %s BÅ‚Ä…d podczas próby wysÅ‚ania "%s" do "%s". BÅ‚Ä…d podczas próby wysÅ‚ania "%s". BÅ‚Ä…d podczas Å‚Ä…czenia z usÅ‚ugÄ… D-Bus. BÅ‚Ä…d podczas tworzenia komunikatu żądania D-Bus. BÅ‚Ä…d podczas inicjowania biblioteki Kerberos: %s. BÅ‚Ä…d podczas modyfikowania "%s". BÅ‚Ä…d podczas przetwarzania nazwy naczelnika Kerberosa "%s": %s. BÅ‚Ä…d podczas przetwarzania parametrów.BÅ‚Ä…d podczas przetwarzania odpowiedzi serwera. BÅ‚Ä…d podczas ustawiania parametrów żądania. BÅ‚Ä…d podczas ustawiania ccache dla "%s" na kliencie używajÄ…c domyÅ›lnej tablicy kluczy: %s. BÅ‚Ä…d podczas ustawiania ccache dla "%s" na kliencie używajÄ…c domyÅ›lnej tablicy kluczy "%s": %s. BÅ‚Ä…d podczas ustawiania ccache dla usÅ‚ugi "gospodarza" na kliencie używajÄ…c domyÅ›lnej tablicy kluczy: %s. BÅ‚Ä…d podczas ustawiania ccache dla usÅ‚ugi "gospodarza" na kliencie używajÄ…c domyÅ›lnej tablicy kluczy "%s": %s. BÅ‚Ä…d podczas ustawiania dla XML-RPC na kliencie. BÅ‚Ä…d podczas ustawiania dla XML-RPC. BÅ‚Ä…d podczas wyÅ‚Ä…czania NSS. BÅ‚Ä…d podczas odwracania przetworzenia nazwy naczelnika Kerberosa "%s": %s. BÅ‚Ä…d: %s BÅ‚Ä…d: nieużywany dodatkowy parametr "%s". BÅ‚Ä…d: podano nieużywane dodatkowe parametry. NiewystarczajÄ…cy dostÄ™p. ProszÄ™ ponowić dziaÅ‚anie jako root. WewnÄ™trzny bÅ‚Ä…d: brak odpowiedzi na "%s?%s". WewnÄ™trzny bÅ‚Ä…d: nieznany stan. Nie można zapisać klucza i certyfikatu do tego samego pliku. Klucz w tym samym poÅ‚ożeniu jest już używany przez żądanie o pseudonimie "%s".Nie podano pseudonimu klucza.Nie podano poÅ‚ożenia przechowywania klucza.Typ przechowywania klucza "%s" nie jest obsÅ‚ugiwany.Znane typy kluczy:Uruchamianie tymczasowego dedykowanego demona usÅ‚ugi. BRAKNie podano pseudonimu CA ani flagi -a. Dodano nowe żądanie podpisania "%s". Nie można dodać nowego żądania podpisania. Dodano nowe żądanie Å›ledzenia "%s". Nie można dodać nowego żądania Å›ledzenia. Nie odnaleziono CA o nazwie "%s". Nie podano adresu URL agenta (-A), a nie ma wartoÅ›ci domyÅ›lnej. Nie podano żadnych danych uwierzytelniajÄ…cych agenta (-n), które sÄ… wymagane. Nie podano adresu URL koÅ„cowej jednostki (-E), a nie ma wartoÅ›ci domyÅ›lnej. Nie odnaleziono pasujÄ…cego wpisu. Nie podano profilu/szablonu (-T), a nie ma wartoÅ›ci domyÅ›lnej. Nie odnaleziono żądania pasujÄ…cego do parametrów. Nie odnaleziono żądania dla podanego pseudonimu. Nie otrzymano odpowiedzi z usÅ‚ugi %s. Nie ma takiego CA.Brak obsÅ‚ugi tworzenia kluczy "%s". Brak obsÅ‚ugi dla typu klucza "%s".Magistrala systemowa nie jest uruchomiona. Nie podano identyfikatora, albo katalogu bazy danych i pseudonimu, albo pliku certyfikatu. Nie podano identyfikatora, albo katalogu bazy danych i pseudonimu, albo pliku certyfikatu. Nie podano katalogu bazy danych i pseudonimu lub pliku certyfikatu. Liczba Å›ledzonych certyfikatów i żądaÅ„: %d. Opcjonalne parametry: Brak pamiÄ™ci. Åšcieżka "%s" nie jest katalogiem. Åšcieżka "%s" nie jest zwykÅ‚ym plikiem. Åšcieżka "%s" nie jest bezwzglÄ™dna i wystÄ…piÅ‚ bÅ‚Ä…d podczas okreÅ›lania nazwy bieżącego katalogu. Åšcieżka "%s" nie jest bezwzglÄ™dna, próbowanie użycia "%s" zamiast niej. Åšcieżka "%s": %s. Åšcieżka "%s": niewystarczajÄ…ce uprawnienia. ProszÄ™ sprawdzić, czy usÅ‚uga certmonger zostaÅ‚a uruchomiona. ProszÄ™ sprawdzić, czy usÅ‚uga certmonger jest ciÄ…gle uruchomiona. ProszÄ™ sprawdzić, czy usÅ‚uga magistrali komunikatów (D-Bus) jest uruchomiona. Otrzymano bÅ‚Ä™dnÄ… odpowiedź z lokalnej usÅ‚ugi %s. Nie można zmodyfikować żądania "%s". Nie można usunąć żądania "%s". Zmodyfikowano żądanie "%s". UsuniÄ™to żądanie "%s". Identyfikator żądania "%s" NIE jest odÅ›wieżany. Identyfikator żądania "%s" jest odÅ›wieżany. Identyfikator żądania "%s": Zażądano odnowienia, ale nie podano numeru seryjnego. Wymagane parametry: Ponowne wysyÅ‚anie "%s" do "%s". Ponowne wysyÅ‚anie "%s". Uruchamianie jako UID 0. BÅ‚Ä…d serwera. Stan %s, zatkanie: %s. Opcja -K nie może być używana z opcjÄ… -k lub -t. Opcja -k nie może być używana z opcjÄ… -K. Opcja -t nie może być używana z opcjÄ… -K. Zaplecze IPA wymaga użycia opcji -K (nazwy naczelnika), kiedy używana jest opcja -N (nazwa tematu). Nie można uzyskać dostÄ™pu do poÅ‚ożenia "%s" z powodu niewystarczajÄ…cych uprawnieÅ„.PoÅ‚ożenie "%s" musi być katalogiem.PoÅ‚ożenie "%s" musi być plikiem.PoÅ‚ożenie "%s" musi być Å›cieżkÄ… bezwzglÄ™dnÄ….Nie można uzyskać dostÄ™pu do poÅ‚ożenia nadrzÄ™dnego dla "%s" z powodu niewystarczajÄ…cych uprawnieÅ„.NadrzÄ™dne poÅ‚ożenie "%s" musi być prawidÅ‚owym katalogiem.Istnieje już CA o pseudonimie "%s".Istnieje już żądanie o pseudonimie "%s".Nie można skontaktować siÄ™ z serwerem IPA LDAP. Nie można ustalić podstawowego DN informacji domeny na serwerze IPA. Nie można okreÅ›lić nazwy komputera CA. Nie można ustalić poÅ‚ożenia serwera LDAP IPA. Nie można okreÅ›lić nazwy naczelnika dla żądania podpisania. Nie można odczytać żądania podpisania. Nierozpoznane użycie klucza "%s". Nierozpoznany parametr lub bÅ‚Ä™dny typ wartoÅ›ci.Nierozpoznana nazwa wÅ‚aÅ›ciwoÅ›ci.Użycie: %s polecenie [opcje] Użycie: %s list [opcje] Użycie: %s list-cas [opcje] Użycie: %s refresh [opcje] Użycie: %s refresh-ca [opcje] Użycie: %s request [opcje] Użycie: %s resubmit [opcje] Użycie: %s start-tracking [opcje] Użycie: %s status [opcje] Użycie: %s stop-tracking [opcje] rozpoczyna monitorowanie już wydanego certyfikatu sprawdza stan trwajÄ…cego żądania kwalifikacji sprawdza stan monitorowanego lub żądanego certyfikatu wyÅ›wietla listÄ™ monitorowanych i żądanych certyfikatów odÅ›wieża pamięć podrÄ™cznÄ… wszystkich informacji uzyskanych z CA żąda nowego certyfikatu z CA ponownie wysyÅ‚a trwajÄ…ce żądanie kwalifikacji, lub rozpoczyna nowe zatrzymuje monitorowanie certyfikatu nieznanecertmonger-0.78.6/po/pa.gmo0000664000175000017500000000102412645513300012422 00000000000000Þ•$,8Ú9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Panjabi (Punjabi) (http://www.transifex.com/projects/p/certmonger/language/pa/) Language: pa MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/or.gmo0000664000175000017500000000101012645513300012435 00000000000000Þ•$,8Î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Oriya (http://www.transifex.com/projects/p/certmonger/language/or/) Language: or MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/nso.gmo0000664000175000017500000000102212645513300012617 00000000000000Þ•$,8Ø9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Northern Sotho (http://www.transifex.com/projects/p/certmonger/language/nso/) Language: nso MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); certmonger-0.78.6/po/no.gmo0000664000175000017500000000101412645513300012435 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Norwegian (http://www.transifex.com/projects/p/certmonger/language/no/) Language: no MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/nn.gmo0000664000175000017500000000102412645513300012435 00000000000000Þ•$,8Ú9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Norwegian Nynorsk (http://www.transifex.com/projects/p/certmonger/language/nn/) Language: nn MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/nl.gmo0000664000175000017500000006763212645513300012454 00000000000000Þ•TaŒ&%82^3‘Å(á0 -;i/‰"¹&Ü  )7H W#e'‰±¸¿È ãñ /%?e{(”$½-â):Ri'{#£Ç à í ù +&?2f1™)Ë$õ,'G2oE¢3è,/I,y'¦>Î C!:e9 SÚ8.3g:›:Ö6 :H =ƒ 8Á 'ú B"!<e!#¢!8Æ!?ÿ!9?"Ey"(¿"3è"##>@#?#:¿#.ú#G)$6q$;¨$:ä$6%IV%, %"Í%2ð%(#&L&h&(ƒ&¬&Æ&Ö&!ð&'&'@'$`'#…'(©'Ò'0ñ'"(64(&k( ’(*³( Þ(ÿ() ) +)7) W)Ka)%­)#Ó)+÷),#*'P*x*"–*%¹*8ß*;+T+p+ + š+)¨+!Ò+ô+%,)6,`,0w,¨,Á,!á,E-BI-OŒ-LÜ-+).U.s.2. À.#Ë.-ï.6/(T/}/</CÚ/0#:0$^0ƒ0.œ0Ë0+Ð0 ü0(1!F1)h1’1/¯16ß142K26e2)œ2*Æ2&ñ2 3%$3J3h3Q€3MÒ3G 47h4 4µ4Å4!ä4a5;h5¤5%´5<Ú5<6?T6/”6$Ä6#é6 7%7%<7!b7„72–7É7Þ7ú78!808CF82Š82½8nð8H_9&¨9!Ï9+ñ9R:6p:-§:2Õ:&;A/;$q;1–;8È; <"<+?<k<‡<¤<¾<Ü<ù<=6=#T=x="”=/·=9ç=?!>0a>4’>$Ç>?ì>,?K?ëS?&?A+fAE’AGØA B+AB7mB1¥B#×B=ûB(9C1bC”C ´C ¾CÊCÜCëC#úC)DHDPD XD bDƒD“D¨D¸DÖD(æDE*E.DE.sE3¢E3ÖE F"F9F,LF,yF¦F ¿F ÍFÙF êF*÷F%"GAHG?ŠG-ÊG,øG.%H.TH@ƒHGÄH8 I-EI.sI1¢I/ÔIHJMJNcJ<²J:ïJ[*KE†KEÌKELBXLD›L>àLFM4fM,›MPÈMAN+[NB‡N[ÊNG&ONnO&½O2äO-PHEPMŽP:ÜP2QUJQ< Q;ÝQ9R=SRU‘R:çR""S<ES-‚S°SÍS'ëST*T9T%KTqT…T(¥T.ÎT0ýT3.U-bU9UÊU?ÜU-V%JV3pV-¤V ÒV àVîV ÿV" W .WX8W+‘W#½W.áW.X,?XlX"ŠX&­X9ÔX8Y"GY&jY‘Y šY)§Y ÑY"òY/Z9EZ Z< Z%ÝZ2['6[[^[Uº[d\Tu\1Ê\"ü\ ]9@] z])„];®]=ê]((^"Q^Qt^TÆ^_*;_*f_‘_<¬_é_-î_,`8I`&‚`0©`#Ú`<þ`B;aD~a"ÃaCæa6*b7ab'™b Áb>Ïb/c>cJZcD¥c>êc;)ded|d˜d!¯d]ÑdT/e„e“e3³e6çe5f)Tf(~f)§fÑfêf%g *gKgE]g£g ¹gÚgòg hh<-h6jh6¡htØhBMi"i&³i+ÚiLj4Sj$ˆj)­j2×jC k%Nk2tk@§k$èk l-+lYltl“l®lÍl ël m*m$Imnm#‹m=¯m@ímP.n.n:®n+énOo+eo‘oÞ ¥XP÷‡®‚Jf&DöÑõy aãð{hoôäŸÅ$ÇŠ…wÐR@ÛBlÖ¤ë’6 ûàó>n—¦U+j%=ŽÕv¯†§[ ¢·æí# ŒºÒVx¿„Qý)´T‰×™ü–NÄb?;Æ_Ô*êIÜ2šg‹ú›dc ùH“Muÿ!çñ©Âò žØFOmÁÍɱS(3<ÝÚ¨4p€µË'¬}ïiGìsÓ"â߃¶,E¾œ¹­\»².Ïqz³~½èCéáe£`Ìå•È]1A°/tø«|r¸Î”ZK˜Ã97^-WÊYLÙÀˆk8:þ50ª¡ -B don't use an idle timeout -F force NSS into FIPS mode -L only use a dedicated listening socket -P PATH specify the dedicated listening socket -S use system bus -b TIMEOUT bus-activated, idle timeout -c COMMAND start COMMAND and exit when it does -d LEVEL set debugging level (implies -n) -f do become a daemon -l start a dedicated listening socket -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -d DIR return status for the request in this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -f FILE return status for cert stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -n NAME return status for cert which uses this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors -w try to wait for the certificate to be issued %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: * Selecting a specific request: * When using an NSS database for storage: * When using files for storage: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Data for CA '%s' being refreshed. Data for unnamed CA being refreshed. Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error connecting to D-Bus. Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:Launching temporary dedicated service daemon. NONENeither CA nickname nor -a flag specified. New signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No agent credentials (-n) given, but they are needed. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".No system bus running. None of ID or database directory and and nickname or certificate file specified. None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s' NOT being refreshed. Request ID '%s' being refreshed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Running as UID 0. Server error. State %s, stuck: %s. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to contact an IPA LDAP server. Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s command [options] Usage: %s list [options] Usage: %s list-cas [options] Usage: %s refresh [options] Usage: %s refresh-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s status [options] Usage: %s stop-tracking [options] begin monitoring an already-issued certificate check on the status of an in-progress enrollment request check the status of a certificate being monitored or requested list certificates being monitored and requested refresh cache of all information obtained from a CA request a new certificate from a CA resubmit an in-progress enrollment request, or start a new one stop monitoring a certificate unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-12 06:06-0500 Last-Translator: Geert Warrink Language-Team: Dutch (http://www.transifex.com/projects/p/certmonger/language/nl/) Language: nl MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B gebruik geen idle timeout -F forceer NSS naar de FIPS modus -L gebruik alleen een specifiek socket om naar te luisteren -P PAD specificeert de specifieke socket waarnaar geluisterd wordt -S gebruik systeem bus -b TIMEOUT bus-geactiveerde, idle timeout -c COMMANDO start COMMANDO sluit af als deze dat doet -d LEVEL stel debug niveau in (impliceert -n) -f omzetten in een daemon -l start een specifieke socket om naar te luisteren -n niet omzetten in een daemon -p BESTAND schrijf een service PID naar bestand -s gebruik sessie bus »CA: %s IP adres: »auto-renew: %s »ca-fout: %s »ca-type: %s »certificaat: type=%s,locatie='%s' standaard profiel/template/certtype: %s »dns: »eku: »email: fout bij verversen van CA data »verloopt: %s »helper-locatie %s »uitgever: %s »sleutelpaar opslag: type=%s key usage: %s bekende profielen/templates/certtypes: »bekende-uitgever-namen: »next-serial-nummer: %s andere certificaten opgeslagen in databases: andere certificaten opgeslagen in bestanden: andere root certificaten opgeslagen in databases: andere root certificaten opgeslagen in bestanden: post-save command: %s pre-save command: %s »principal naam: root certificaten opgeslagen in databases: root certificaten opgeslagen in bestanden: zelf-identificatie: %s »status: %s »vast: %s »onderwerp: %s »track: %s -A ADRES overschrijf gevraagde IP adres -A ADRES stel vereiste IP adres in -B commando uit te voeren voor het opslaan van het certificaat -C commando uit te voeren na het opslaan van het certificaat -D DNSNAAM»overschrijf gevraagde DNS naam -D DNSNAAM»stel de gevraagde DNS naam in -E EMAIL»overschrijf gevraagde email adres -E EMAIL»stel het gevraagde email adres in -F bestand waarin de certificaten van de CA opgeslagen worden -G TYPE sleuteltype dat aangemaakt wordt als er nog geen aanwezig is -I NAAM»nieuwe bijnaam om aan track verzoek te geven -I NAAM»bijnaam toegekend aan het verzoek -I NAAM»bijnaam te geven aan track verzoek -K NAAM»overschrijf gevraagde principal naame -K NAAM»stel de gevraagde principal naam in -N NAAM»stel de gevraagde subject naam in (standaard: CN=) -P PIN»PIN waarde -R»»probeer het certificaat niet te vernieuwen als de verloopdatum nadert -S»»verbind met de certmonger service op de systeem bus -S»verbind met de certmonger service op de systeem bus -T PROFILE vraag de CA om het verzoek de verwerken met het opgegeven profiel of template -U EXTUSAGE»overschrijf gevraagde uitgebreide sleutel gebruik OID -U EXTUSAGE»stel het gevraagde uitgebreide sleutel gebruik OID in -a NSS database waarin de certificaten van de CA opgeslagen worden -c CA»»gebruik de gespecificeerde CA in plaats van de huidige -c CA»»gebruik de gespecificeerde CA in plaats van de standaard -c CA»laat alleen informatie zien over de CA met deze naam -c CA»laat allen verzoeken certificaten zien die bij deze CA horen -c CA ververs informatie over de CA met deze naam -d MAP»NSS database voor sleutel en cert -d MAP»toon alleen verzoeken en certificaten die deze NSS database gebruiken -d MAP geef status voor het verzoek terug in deze NSS database -f BESTAND»PEM bestand voor certificaat -f BESTAND»PEM bestand voor certificaat (alleen geldig met -k) -f BESTAND»toon alleen verzoeken en certificaten die in dit PEM bestand opgeslagen zijn -f BESTAND geef status terug voor cert opgeslagen in dit PEM bestand -g GROOTTE»grootte van de te genereren sleutel als er nog geen aanwezig is -i NAAM»bijnaam voor track verzoek -i NAAM»bijnaam van een bestaand track verzoek -k BESTAND»PEM bestand voor prive sleutel -n NAAM»bijnaam voor op NSS gebaseerde opslag (alleen geldig met -d) -n NAAM» toon alleen verzoeken en certificaten die deze bijnaam gebruiken -n NAAM geef status voor cert die deze bijnaam gebruikt -p BESTAND»bestand welke de codering PIN bevat -r»»probeer het certificaat te vernieuwen als de verloopdatum nadert (standaard) -r»laat alleen informatie zien over uitstaande verzoeken -s»»verbind met de certmonger service op de sessie bus -s»verbind met de certmonger service op de sessie bus -t»laat alleen informatie zien over gevolgde certificaten -t NAAM»optionele token naam voor op NSS gebaseerde opslag (alleen geldig met -d) -u KEYUSAGE stel aangevraagde sleutel gebruik waarde in -v»rapporteer alle foutdetails -w probeer te wachten totdat het certificaat afgegeven is %s - cliënt certificaat uitgeef gereedschap %s: ongeldige optie -- '%c' %s: ongeldige waarde -- '%s' %s: optie vereist een argument -- '%c' %s: onbekend commando * Bus opties: * Op verzoek id: * Certificaat afhandel instellingen: * Algemene opties: * Als sleutels gecodeerd zijn: * Als sleutels gecodeerd moeten worden: * Als een bestaande aanvraag veranderd wordt: * Als een specifiek verzoek geselecteerd wordt: * Als een NSS database voor opslag gebruikt wordt: * Als bestanden voor opslag gebruikt worden: * Nieuwe parameterwaarden voor de ondertekening verzoek: * Andere opties: * Parameters voor het ondertekeningverzoek bij het vernieuwen: * Parameters voor het ondertekening verzoek: * Selecteer een specifieke aanvraag: * Als een NSS database gebruikt wordt voor opslag: * Als bestanden gebruikt worden voor opslag: ,locatie='%s',bijnaam='%s',pinbestand='%s',token='%s'Er is een interne fout opgetreden.CA '%s': Een certificaat op dezelfde locatie wordt al gebruik door een aanvraag met bijnaam "%s".Certificaat autoriteit "%s" is niet bekend.Certificaat bijnaam niet opgegeven.Certificaat opslaglocatie niet gespecificeerd.Certificaat opslag type "%s" niet ondersteund.Certificaat opslag type niet gespecificeerd.Kon OID "%s" niet evalueren. Data voor CA '%s' wordt ververst. Data voor naamloze CA wordt ververst. Database map en certificaatbestand beide gespecificeerd. Database locatie of bijnaam opgegeven zonder de andere. Fout %d bij het verbinden met %s. Fout %d bij het verbinden met %s: %s. Fout %s Fout %s: %s Fout bij het indienen van "%s" bij "%s". Fout bij het indienen van "%s". Fout bij het verbinden met D-Bus. Fout bij het aanmaken van DBus verzoekbericht. Fout bij het initialiseren van Kerberos bibliotheek: %s. Fout bij het wijzigen van "%s". Fout bij het ontleden van Kerberos principal naam "%s": %s. Fout bij het ontleden van argumenten.Fout bij het ontleden van antwoord van de server. Fout bij instellen verzoek argumenten. Fout bij het instellen van ccache voor "%s" op cliënt die standaard keytab: %s gebruikt. Fout bij het instellen van ccache voor "%s" op cliënt die keytab "%s" gebruikt: %s. Fout bij het instellen van ccache voor "host" service op cliënt die standaard keytab: %s gebruikt. Fout bij het instellen van ccache voor "host" service die keytab "%s" gebruikt: %s. Fout bij het instellen van XMLRPC op de cliënt. Fout bij het opzetten van XMLRPC. Fout bij het afsluiten van NSS. Fout bij unparsing van Kerberos principal naam "%s": %s. Fout: %s Fout: niet gebruikt extra argument "%s". Fout: er zijn niet gebruikte extra argumenten opgegeven. Onvoldoende toegang. Probeer de bewerking opnieuw als root. Interne fout: geen antwoord op "%s?%s". Interne fout: onbekende toestand. Sleutel en certificaat kunnen niet beide in hetzelfde bestand opgeslagen worden. Een sleutel op dezelfde locatie wordt al gebruik door een aanvraag met bijnaam "%s".Sleutel bijnaam niet opgegeven.sleutel opslaglocatie niet gespecificeerd.Sleutel opslag type "%s" niet ondersteund.Bekende sleuteltypen zijn:Er wordt een tijdelijk specifieke service daemon opgestart. GEENNoch CA bijnaam noch -a vlag gespecificeerd. Nieuw ondertekeningverzoek "%s" toegevoegd. Nieuw ondertekeningverzoek kon niet toegevoegd worden. Nieuwe track verzoek "%s" toegevoegd. Nieuw track verzoek kon niet toegevoegd worden. Geen CA met de naam "%s" gevonden. Geen agent URL (-A) gegeven en er is geen standaard bekend. Er is geen agent legitimatie (-n) opgeven, maar dit is wel nodig. Geen eind-entity URL (-E) opgegeven en er is geen standaard bekend. Geen bijpassende ingang gevonden. Geen profiel/template (-T) gegeven en er is geen standaard bekend. Geen verzoek gevonden dat overeenkomt met argumenten. Geen aanvraag gevonden met de gespecificeerde bijnaam. Geen reactie ontvangen van %s service. Onbekende CA.Er is geen ondersteuning voor het aanmaken van "%s" sleutels. Er is geen ondersteuning voor sleuteltype "%s".Er draait geen systeembus. Zowel ID als database map en bijnaam of certificaat zijn niet opgegeven. Zowel ID als database map en bijnaam of certificaat niet opgegeven. Zowel database map als bijnaam of certificaat niet opgegeven. Aantal certificaten en verzoeken dat bijgehouden wordt:%d. Optionele argumenten: Geen geheugen beschikbaar. Pad "%s" is geen map. Pad "%s" is geen gewoon bestand. Pad "%s" is niet absoluut en er was een fout bij het bepalen van de naam van de huidige map. Pad "%s" is niet absoluut, in plaats daarvan wordt geprobeerd om "%s" te gebruiken. Pad "%s": %s. Pad "%s": onvoldoende rechten. Verifieer of de certmonger service opgestart werd. Verifieer of de certmonger service nog steeds draait. Verifieer of de berichtenbus (D-Bus) service draait. Fout ontvangen van de lokale %s service. Verzoek "%s" kan niet gewijzigd worden. Verzoek "%s" kon niet verwijderd worden. Verzoek "%s" gewijzigd. Verzoek "%s" verwijderd. Verzoek ID '%s' wordt NIET ververst. Verzoek ID '%s' wordt ververst. Verzoek ID '%s': Vernieuwing werd aangevraagd, maar er is geen serienummer aangeboden Vereiste argumenten: "%s" opnieuw indienen bij "%s". "%s" opnieuw indienen. Uitvoeren met UID 0. Serverfout. Toestand %s, vast: %s. De -K optie niet met de -k of the -t optie gebruikt worden. De -k optie kan niet met de -K optie gebruikt worden. De -t optie kan niet met de -K optie gebruikt worden. De IPA backend vereist het gebruik van de -K optie (principal naam) als de -N optie (onderwerpnaam) gebruikt wordt. Er is geen toegang tot de locatie "%s" wegens onvoldoende rechten.De locatie "%s" moet een map zijn.De locatie "%s" moet een bestand zijn.De locatie "%s" moet een absoluut pad zijn.Er is geen toegang tot de ouder van locatie "%s" wegens onvoldoende rechten.De ouder van locatie "%s" moet een geldige map zijn.Er is al een CA met de bijnaam "%s".Er is al een verzoek met de bijnaam "%s".Kan geen contact krijgen met een IPA LDAP server. Kan basis DN niet vaststellen uit domeininformatie van IPA server. Kan de hostnaam van CA niet bepalen. Kan locatie van IPA LDAP server niet vaststellen. Kan principal naam voor de aanvraag ondertekening niet bepalen. Kan ondetekeningverzoek niet lezen. Niet herkende keyUsage "%s". Onbekende parameter of verkeerde type waarde.Onbekende eigenschap naam.Gebruik: %s commando [opties] Gebruik: %s list [opties] Gebruik: %s list-cas [opties] Gebruik: %s refresh [opties] Gebruik: %s refresh-ca [opties] Gebruik: %s request [opties] Gebruik: %s resubmit [opties] Gebruik: %s start-tracking [opties] Gebruik: %s status [opties] Gebruik: %s stop-tracking [opties] begin met het monitoren van een reeds uitgegeven certificaat controleer de status van een inschrijvingsverzoek in uitvoering controleer de status van een certificaat dat gemonitord wordt of aangevraagd is toon gemonitorde en aangevraagde certificaten ververs de cache met alle informatie verkregen van een CA vraag een nieuw certificaat aan van een CA dien een inschrijvingsverzoek in uitvoering opnieuw in, of begin met een nieuw stop met het monitoren van een certificaat onbekendcertmonger-0.78.6/po/ne.gmo0000664000175000017500000000101112645513300012420 00000000000000Þ•$,8Ï9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Nepali (http://www.transifex.com/projects/p/certmonger/language/ne/) Language: ne MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/nds.gmo0000664000175000017500000000101712645513300012610 00000000000000Þ•$,8Õ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Low German (http://www.transifex.com/projects/p/certmonger/language/nds/) Language: nds MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/nb.gmo0000664000175000017500000000205012645513300012421 00000000000000Þ•\ œÈ É Óá$. Sùtn w%„ªÇ$Ù)þError %s Error %s: %s Error parsing server response. Error setting up for XMLRPC. Server error. Unable to determine hostname of CA. Unable to read signing request. Project-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Norwegian BokmÃ¥l (http://www.transifex.com/projects/p/certmonger/language/nb/) Language: nb MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 Feil %s Feil %s: %s Feil ved tolking av svar fra tjener. Feil ved oppsett av XMLRPC. Feil med tjener. Kan ikke bestemme vertsnavn for CA. Kan ikke lese forespørsel om signering. certmonger-0.78.6/po/my.gmo0000664000175000017500000000100312645513300012444 00000000000000Þ•$,8É9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Burmese (http://www.transifex.com/projects/p/certmonger/language/my/) Language: my MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/ms_MY.gmo0000664000175000017500000000101612645513300013047 00000000000000Þ•$,8Ô9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Malay (Malaysia) (http://www.transifex.com/projects/p/fedora/language/ms_MY/) Language: ms_MY MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/ms.gmo0000664000175000017500000000100112645513300012434 00000000000000Þ•$,8Ç9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Malay (http://www.transifex.com/projects/p/certmonger/language/ms/) Language: ms MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/mr.gmo0000664000175000017500000000101212645513300012435 00000000000000Þ•$,8Ð9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Marathi (http://www.transifex.com/projects/p/certmonger/language/mr/) Language: mr MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/mn.gmo0000664000175000017500000000101412645513300012433 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Mongolian (http://www.transifex.com/projects/p/certmonger/language/mn/) Language: mn MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ml.gmo0000664000175000017500000000101412645513300012431 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Malayalam (http://www.transifex.com/projects/p/certmonger/language/ml/) Language: ml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/mk.gmo0000664000175000017500000000105312645513300012433 00000000000000Þ•$,8ñ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Macedonian (http://www.transifex.com/projects/p/certmonger/language/mk/) Language: mk MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n % 10 == 1 && n % 100 != 11) ? 0 : 1; certmonger-0.78.6/po/mg.gmo0000664000175000017500000000101212645513300012422 00000000000000Þ•$,8Ð9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Malagasy (http://www.transifex.com/projects/p/certmonger/language/mg/) Language: mg MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); certmonger-0.78.6/po/mai.gmo0000664000175000017500000000101512645513300012570 00000000000000Þ•$,8Ó9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Maithili (http://www.transifex.com/projects/p/certmonger/language/mai/) Language: mai MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/lv.gmo0000664000175000017500000000105512645513300012447 00000000000000Þ•$,8ó9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Latvian (http://www.transifex.com/projects/p/certmonger/language/lv/) Language: lv MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n != 0 ? 1 : 2); certmonger-0.78.6/po/lt.gmo0000664000175000017500000004763712645513300012465 00000000000000Þ•À &!%Hn(Š-³á"&$Khq‚ ‘#ŸÃÊÑ Úè þ &6Le}” ¦ ³ ¿ Í2Ù1 )>$h,'º3â,/C,s' >ÈC:_9šSÔ8(3a:•6Ð:=B'€B¨#ë8?HEˆ(Î3÷#+>O?Ž.ÎGý6E;|:¸6óI*,t"¡(Äí( 2L\!v˜¬Æ$æ# (/X0w¨6º&ñ' 6 DP pKz%Æ#ì+,<'i‘8¯;è$ @ ` j )x !¢ %Ä )ê !0+!\!!|!ž!2¼! ï!#ú!-"6L"(ƒ"¬"<Ì"C #M##i#$#²# ·#(Ø#!$)#$M$/j$4š$Ï$6é$) %*J%&u% œ%M¨%Gö%7>&v&‹&›&!º&aÜ&;>'z'<Š'<Ç'?(/D($t(#™(½(Õ(ì(þ()/)C)CR)2–)2É)nü)&k*!’*+´*6à*-+2E+$x+8+ Ö+÷++,@,Z,x,•,#³,"×,ú,1-(4//]/)/;·/4ó/(0D0+`0'Œ0 ´0¾0Ý0î0$þ0#1*111@1R1k1 z1›1#²1Ö1ô12.2 J2X2h2 x22†2-¹21ç2.36H363.¶35å304?L4>Œ4JË45>+5Bj5A­5Zï5<J6C‡63Ë64ÿ6@47Ju71À7Zò7!M83o8S£88÷8(097Y9'‘9F¹9R:/S:Iƒ:<Í:@ ;?K;7‹;ZÃ;:</Y<+‰<&µ<0Ü< ='=%C=#i==£=#À=!ä=(>//>"_>4‚>·>6Ë>%? (?4?F? Z?h?}?RŒ?'ß?"@%*@0P@&@"¨@=Ë@@ AJA"iA ŒA—A.¦A"ÕA,øA1%BWB@sB$´B(ÙBCAC ^C5jC3 C@ÔC/D#EDEiDN¯DþD!E,>EkE/qE1¡E+ÓE,ÿE!,F7NF9†FÀF?àF- G-NG$|G¡GQ³GQH0WHˆHŸH!³H*ÕH[IF\I£I,¹I4æIBJ6^J*•J)ÀJêJK(KAK+VK‚K¢K7´K/ìK/L‚LL$ÏL!ôL-M,DM#qM)•M!¿MCáM-%N!SN3uN!©N%ËN&ñN%O+>O*jO •OÀ p‘hJ³’\“sŠ¹˜c{¢™ƒSCœN—g–°Œ U¸¥a¼ªF·d&?¤w²'YbvºL•|H"Ž€EOž+zy)›$š;‹WGr­}Z½V~¶7x0#„[‰4noµ‚«Q(…¾2t:*=9 ®¨iR,^j!`3¿uX¦ k”.‡A´e>PmB8I5D6T±¯/¡l ] ©§M 1ˆqKŸ<†¬f»_%-£@ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known-issuer-names: next-serial-number: %s post-save command: %s pre-save command: %s principal name: status: %s stuck: %s subject: %s track: %s -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Lithuanian (http://www.transifex.com/projects/p/certmonger/language/lt/) Language: lt MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n%100<10 || n%100>=20) ? 1 : 2); X-Generator: Zanata 3.6.2 -B nenaudoti neveiksnumo laiko -F priverstinÄ— NSS į FIPS veiksenÄ… -S naudoti sistemos magistralÄ™ -b LAIKAS aktyvuojant per magistralÄ™, neveiksnumo laikas -d LYGIS nustatyti derinimo lygį (įtraukia -n) -f netapti demonu -n netapti demonu -p FAILAS įraÅ¡yti tarnybos PID failÄ… -s naudoti seanso magistralÄ™ LÄ®: %s automatinis atnaujinimas: %s lį-klaida: %s lį tipas: %s liudijimas: tipas=%s,vieta=„%s“ dns: eku: el. paÅ¡tas: galioja iki: %s pagalbininko vieta: %s iÅ¡davÄ—: %s raktų poros saugykla: tipas=%s rakto naudojimas: %s žinomų iÅ¡davÄ—jų pavadinimai: kitas serijinis numeris: %s komanda po įraÅ¡ymo: %s komanda prieÅ¡ įraÅ¡ant: %s direktoriaus pavadinimas: bÅ«sena: %s užstrigo: %s subjektas: %s sekimas: %s -B komanda, vykdoma prieÅ¡ įraÅ¡ant liudijimÄ… -C komanda, vykdoma po liudijimo įraÅ¡ymo -D DNSPAV perraÅ¡yti praÅ¡omÄ… DNS pavadinimÄ… -D DNSPAV nustatyti praÅ¡omÄ… DNS pavadinimÄ… -E ELPAÅ AS perraÅ¡yti praÅ¡omÄ… el. paÅ¡to adresÄ… -E ELPAÅ TAS nustatyti praÅ¡omÄ… el. paÅ¡to adresÄ… -I PAV naujas slapyvardis sekimo užklausai -I PAVADINIMAS užklausai priskiriamas slapyvardis -I PAVADINIMAS slapyvardis sekamai užklausai -K PAVADINIMAS perraÅ¡yti praÅ¡omÄ… direktoriaus pavadinimÄ… -K PAVADINIMAS nustatyti praÅ¡omÄ… direktoriaus pavadinimÄ… -N PAVADINIMAS nustatyti subjekto pavadinimÄ… (numatyta: CN=) -P PIN PIN vertÄ— -R nebandyti atnaujinti liudijimo, kai baigiasi galiojimas -S prisijungti prie certmonger tarnybos sistemos magistralÄ—je -S prisijungti prie certmonger tarnybos sistemos magistralÄ—je -T PROFILIS praÅ¡yti LÄ® apdoroti užklausÄ… naudojant pavadintÄ… profilį ar Å¡ablonÄ… -U IÅ PLNAUD perraÅ¡yti iÅ¡plÄ—stinio rakto naudojimo OID -U IÅ PLNAUD nustatyti praÅ¡omÄ… iÅ¡plÄ—stinį rakto naudojimo OID -c LÄ® naudoti nurodytÄ… LÄ® vietoj dabartinÄ—s -c LÄ® naudoti nurodytÄ… LÄ® vietoj numatytosios -c LÄ® pateikti tik informacijÄ… apie LÄ® su Å¡iuo pavadinimu -c LÄ® iÅ¡vardinti tik užklausas ir liudijimus, susijusius su Å¡ia LÄ® -d DIR NSS duomenų bazÄ— raktui ir liudijimui -d DIR iÅ¡vardinti tik užklausas ir liudijimus, kurie naudoja Å¡iÄ… NSS duomenų bazÄ™ -f FAILAS liudijimo PEM failas -f FAILAS liudijimo PEM failas (tinka tik su -k) -f FAILAS iÅ¡vardinti tik užklausas ir liudijimu, įraÅ¡ytus į šį PEM failÄ… -g DYDIS generuojamo rakto dydis, jei rakto dar nÄ—ra -i PAV slapyvardis sekamai užklausai -i PAVADINIMAS esamos sekamos užklausos slapyvardis -k FAILAS privataus rakto PEM failas -n PAVADINIMAS slapyvardis NSS pagrindo saugyklai (tinka tik su -d) -n PAV iÅ¡vardinti tik užklausas ir liudijimus, kurie naudoja šį slapyvardį -p FAILAS failas, kuris saugo Å¡ifravimo PIN -r bandymas atnaujinti liudijimÄ…, kai baigiasi galiojimas (numatyta) -r pateikti tik informacijÄ… apie neįvykdytas užklausas -s prisijungti prie certmonger tarnybos seanso magistralÄ—je -s prisijungti prie certmonger tarnybos seanso magistralÄ—je -t pateikti tik informacijÄ… apie sekamus liudijimus -t PAVADINIMAS nebÅ«tinas leksemos pavadinimas NSS pagrindo saugyklai (tinka tik su -d) -u RAKTONAUD nustatyti praÅ¡omÄ… rakto naudojimo vertÄ™ -v praneÅ¡ti visÄ… informacijÄ… apie klaidas %s - kliento liudijimo įtraukimo įrankis %s: netinkamas parametras -- „%c“ %s: parametras reikalauja argumento -- „%c“ %s: neatpažinta komanda * MagistralÄ—s parametrai: * Pagal užklausos identifikatorių: * Liudijimo apdorojimo nustatymai: * Bendri parametrai: * Jei raktai yra Å¡ifruoti: * Jei raktai turi bÅ«ti Å¡ifruoti: * Jei keiÄiama esama užklausa: * Jei pasirenkama specifinÄ— užklausa: * Jei naudojama NSS duomenų bazÄ— saugojimui: * Jei saugyklai naudojami failai: * Naujos parametrų vertÄ—s pasiraÅ¡ymo užklausai: * Kiti parametrai: * Parametrai pasiraÅ¡ymo užklausai atnaujinimo metu: * Parametrai pasiraÅ¡ymo užklausai: ,vieta='%s',slapyvardis='%s',pinfailas=„%s“,leksema='%s'Kilo vidinÄ— klaida.LÄ® „%s“: Liudijimas toje paÄioje vietoje jau naudojamas užklausos slapyvardžiu „%s“.Liudijimų įstaiga „%s“ nežinoma.Nenurodytas liudijimo slapyvardis.Nenurodyta liudijimo saugojimo vieta.Liudijimo saugyklos tipas „%s“ nepalaikomas.Nenurodytas liudijimo saugyklos tipas.Nepavyko įvertinti OID „%s“. Nurodyti abu: duomenų bazÄ—s katalogas ir liudijimo failas. Duomenų bazÄ—s vieta arba slapyvardis nurodyti be vienas kito. Klaida %d jungiantis prie %s. Klaida %d jungiantis prie %s: %s. Klaida %s Klaida %s: %s Klaida bandant pateikti „%s“ į „%s“. Klaida bandant pateikti „%s“. Klaida kuriant DBus užklausos praneÅ¡imÄ…. Klaida inicializuojant Kerberos bibliotekÄ…: %s. Klaida keiÄiant „%s“. Klaida skaitant Kerberos direktoriaus pavadinimÄ… „%s“: %s. Klaida skaitant serverio atsakymÄ…. Klaida nustatant užklausos argumentus. Klaida nustatant XMLRPC. Klaida atstatant Kerberos direktoriaus pavadinimÄ… „%s“: %s. Klaida: %s Klaida: nenaudojamas papildomas argumentas „%s“. Klaida: pateikti nenaudojami papildomi argumentai. Nepakanka prieigos. Bandykite atlikti veiksmÄ… root naudotoju. VidinÄ— klaida: nÄ—ra atsakymo į „%s?%s“. VidinÄ— klaida: nežinoma bÅ«sena. Raktas ir liudijimas negali bÅ«ti abu įraÅ¡yti į tÄ… patį failÄ…. Raktas toje paÄioje vietoje jau naudojamas užklausos slapyvardžiu „%s“.Nenurodyta rakto slapyvardis.Nenurodyta rakto saugyklos vieta.Rakto saugyklos tipas „%s“ nepalaikomas.NÄ–RANauja pasiraÅ¡ymo užklausa „%s“ pridÄ—ta. Negalima pridÄ—ti naujos pasiraÅ¡ymo užklausos. PridÄ—tas nauja sekimo užklausa „%s“. Negalima pridÄ—ti naujos sekimo užklausos. Nerasta LÄ® pavadinimu „%s“. Nepateiktas agento URL (-A) ir nežinomas numatytasis. Nepateikta pabaigos esybÄ— (-E) ir nežinoma numatytoji. Nerastas atitinkamas įraÅ¡as. Nepateiktas profilis/Å¡ablonas (-T) ir nežinomas numatytasis. Nerasta užklausa, kuri atitinka argumentus. Nerasta užklausa su nurodytu slapyvardžiu. Negautas atsakymas iÅ¡ %s tarnybos. NÄ—ra tokios LÄ®.Nenurodytas nei duomenų bazÄ—s katalogas bei slapyvardis, nei liudijimo failas. Nenurodytas nei duomenų bazÄ—s katalogas bei slapyvardis, nei liudijimo failas. Sekamų liudijimų ir užklausų skaiÄius: %d. NebÅ«tini argumentai: BaigÄ—si atmintis. Kelias „%s“ nÄ—ra katalogas. Kelias „%s“ nÄ—ra įprastinis failas. Kelias „%s“ nÄ—ra absoliutus ir kilo klaida nustatant dabartinio katalogo pavadinimÄ…. Kelias „%s“ nÄ—ra absoliutus, vietoj to bandoma naudoti „%s“. Kelias „%s“: %s. Patikrinkite, ar certmonger tarnyba veikia. Patikrinkite, ar certmonger tarnyba vis dar veikia. Patikrinkite, ar praneÅ¡imų magistralÄ—s (D-Bus) tarnyba veikia. Gautas klaidos praneÅ¡imas iÅ¡ vietinÄ—s %s tarnybos. Užklausa „%s“ negali bÅ«ti pakeista. Užklausos „%s“ nepavyko paÅ¡alinti. Užklausa „%s“ pakeista. Užklausa „%s“ paÅ¡alinta. Užklausos ID „%s“: BÅ«tini argumentai: IÅ¡ naujo pateikiama „%s“ į „%s“. IÅ¡ naujo pateikiama „%s“. Serverio klaida. -K parametro negalima naudoti su -k arba -t parametru. -k parametro negalima naudoti su parametru -K. -t patametro negalima naudoti su -K parametru. IPA realizacija reikalauja naudoti parametrÄ… -K (direktoriaus pavadinimas), kai naudojamas parametras -N (subjekto pavadinimas). Vieta „%s“ turi bÅ«ti katalogas.Vieta „%s“ turi bÅ«ti failas.Vieta „%s“ turi bÅ«ti absoliuÄiu kelius.Vietos „%s“ tÄ—vas turi bÅ«ti katalogas.Jau yra LÄ® slapyvardžiu „%s“.Jau yra užklausa slapyvardžiu „%s“.Nepavyko nustatyti LÄ® serverio. Nepavyko nustatyti pasiraÅ¡ymo užklausos direktoriaus pavadinimo. Nepavyko perskaityti pasiraÅ¡ymo užklausos. Neatpažintas keyUsage „%s“. Neatpažintas parametras arba blogas vertÄ—s tipas.Naudojimas: %s list [parametrai] Naudojimas: %s list-cas [parametrai] Naudojimas: %s užklausa [parametrai] Naudojimas: %s resubmit [parametrai] Naudojimas: %s start-tracking [parametrai] Naudojimas: %s stop-tracking [parametrai] nežinomacertmonger-0.78.6/po/lo.gmo0000664000175000017500000000077712645513300012452 00000000000000Þ•$,8Å9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Lao (http://www.transifex.com/projects/p/certmonger/language/lo/) Language: lo MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/la.gmo0000664000175000017500000000101012645513300012411 00000000000000Þ•$,8Î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Latin (http://www.transifex.com/projects/p/certmonger/language/la/) Language: la MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ky.gmo0000664000175000017500000000100212645513300012441 00000000000000Þ•$,8È9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Kirgyz (http://www.transifex.com/projects/p/certmonger/language/ky/) Language: ky MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/ku.gmo0000664000175000017500000000101212645513300012436 00000000000000Þ•$,8Ð9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Kurdish (http://www.transifex.com/projects/p/certmonger/language/ku/) Language: ku MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ks.gmo0000664000175000017500000000101312645513300012435 00000000000000Þ•$,8Ñ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Kashmiri (http://www.transifex.com/projects/p/certmonger/language/ks/) Language: ks MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ko.gmo0000664000175000017500000000100212645513300012427 00000000000000Þ•$,8È9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Korean (http://www.transifex.com/projects/p/certmonger/language/ko/) Language: ko MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/kn.gmo0000664000175000017500000000100312645513300012427 00000000000000Þ•$,8É9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Kannada (http://www.transifex.com/projects/p/certmonger/language/kn/) Language: kn MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/km.gmo0000664000175000017500000000100112645513300012424 00000000000000Þ•$,8Ç9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Khmer (http://www.transifex.com/projects/p/certmonger/language/km/) Language: km MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/kk.gmo0000664000175000017500000000100212645513300012423 00000000000000Þ•$,8È9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Kazakh (http://www.transifex.com/projects/p/certmonger/language/kk/) Language: kk MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/ka.gmo0000664000175000017500000000100412645513300012413 00000000000000Þ•$,8Ê9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Georgian (http://www.transifex.com/projects/p/certmonger/language/ka/) Language: ka MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/ja_JP.gmo0000664000175000017500000000101612645513300013006 00000000000000Þ•$,8Ô9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Japanese (Japan) (http://www.transifex.com/projects/p/fedora/language/ja_JP/) Language: ja_JP MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/ja.gmo0000664000175000017500000006125612645513300012431 00000000000000Þ•Êl ¼ ð&ñ%>(Z-ƒ±"Ñ&ô8AR a#o“š¡ ª¸ ÎÛö5Md v ƒ  2©1Ü)$8,]'ŠE²3ø,,/Y,‰'¶>ÞC1:u9°Sê8>3w:«6æ:=X'–B¾#8%?^Ež(ä3 #A>e?¤.äG6[;’:Î6 I@,Š"·(Ú(Hbr!Œ®ÂÜ$ü#!(En0¾6Ð&.= L Zf †K%Ü# +& ,R ' § 8Å ;þ :! D!)R!!|!%ž!)Ä!î!0"6"!V"Ex"B¾"O#LQ#+ž#Ê#2è# $#&$-J$6x$(¯$Ø$<ø$C5%y%#•%$¹%Þ%÷% ü%(&!F&)h&’&/¯&4ß&'6.')e'*'&º' á'%í'(M1(G(7Ç(ÿ()$)!C)ae);Ç)*%*<9*<v*?³*/ó*$#+#H+l+„+›+­+Â+Þ+ò+C,2E,2x,n«,H-&c-!Š-+¬-RØ-6+.-b.2.$Ã.8è. !/B/+_/‹/¥/Ã/à/#þ/""0E0éM0=729u2(¯2=Ø2:3"Q3(t3?3+Ý3 44%474!I4k4r4 ‹4™4¬4È4%Ø4þ45$5C5_5{5 ”5¡5´5 Í5<Ú5<61T6 †6=§67å6J7Gh7>°7>ï7;.88j8]£89@9@`9?¡9á9Sq:9Å:Hÿ:BH;L‹;[Ø;?4<“t<1=X:=—“=P+>>|>>»>@ú>w;?³?EC@W‰@;á@CABaA>¤AˆãABlB-¯B0ÝB%C94C#nC’C¯C%ÏCõC.D1DD4vD=«DBéD=,ECjE®ECÎE1FDFSF bF pF'|F ¤F{®F<*G?gGB§GNêGB9H4|Hg±HjI „I’I@¤I7åIMJQkJ7½JHõJF>KJ…K—ÐK hL¥ M«¯MN[N8ªNMãN1O5@OAvOd¸O;P$YP[~PxÚP<SQBQKÓQ7RWR@^R=ŸR@ÝR=S7\Sh”StýS7rTwªT@"U^cU7ÂU-úU6(V3_V“V‚!W<¤WáWóW= X:HXžƒXa"Y„Y)–YQÀYWZZjZPÅZ1[1H[1z[1¬[Þ[ø[$ \/\K\Zk\MÆ\M]žb]E^EG^<^<Ê^]_ie_FÏ_H`._`RŽ`:á`*a]Ga%¥a)Ëa(õa)b/Hb.xb§b=R‹f@•d&3º†„sr(¹¡’.”u£6h‰ ˆ}˜)«^¢—¤BÅcÆš³­JI n `Q‘jx¯¬v“ÇDÂ{1l/Am¿–©;>y ®V,XawÀƒSɨ?Yª¾:CL9Ht €Ä¦°+]5\±WŠ~ŒNže7|§Ž%O z¥g20´*‚_kÈ…oUK4»'·½G¼Ei"#Z qb-8¸Êp<ÇTŸœÁP›F²[$¶™!µM -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known-issuer-names: next-serial-number: %s post-save command: %s pre-save command: %s principal name: status: %s stuck: %s subject: %s track: %s -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Japanese (http://www.transifex.com/projects/p/certmonger/language/ja/) Language: ja MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; X-Generator: Zanata 3.6.2 -B アイドルタイムアウトを使用ã—ãªã„ -F 強制的㫠NSS ã‚’ FIPS モードã«ã™ã‚‹ -S システムãƒã‚¹ã‚’使用 -b TIMEOUT ãƒã‚¹æœ‰åŠ¹åŒ–ã€æœªä½¿ç”¨ã§ã‚¿ã‚¤ãƒ ã‚¢ã‚¦ãƒˆ -d LEVEL デãƒãƒƒã‚°ãƒ¬ãƒ™ãƒ«ã‚’設定 (-n ã‚’å«ã‚€) -f デーモンã«ãªã‚‹ -n デーモンã«ãªã‚‰ãªã„ -p FILE サービス㮠PID をファイルã«æ›¸ã込む -s セッションãƒã‚¹ã‚’使用 CA: %s 自動更新: %s CAエラー: %s CAã®ç¨®é¡ž: %s 証明書: type=%s,location='%s' DNS: 拡張キー使用法: Eメール: 有効期é™: %s ヘルパーã®å ´æ‰€: %s 発行者: %s キーペアストレージ: type=%s キー使用法: %s 発行者å: 次ã®ã‚·ãƒªã‚¢ãƒ«ç•ªå·: %s ä¿å­˜å¾Œã‚³ãƒžãƒ³ãƒ‰: %s ä¿å­˜å‰ã‚³ãƒžãƒ³ãƒ‰: %s プリンシパルå: 状態: %s スタック: %s サブジェクト: %s 追跡: %s -B 証明書をä¿å­˜ã™ã‚‹å‰ã«å®Ÿè¡Œã™ã‚‹ã‚³ãƒžãƒ³ãƒ‰ -C 証明書をä¿å­˜ã—ãŸå¾Œã«å®Ÿè¡Œã™ã‚‹ã‚³ãƒžãƒ³ãƒ‰ -D DNSNAME è¦æ±‚ã•ã‚ŒãŸ DNS åを上書ã -D DNSNAME 設定ã™ã‚‹DNSå -E EMAIL è¦æ±‚ã•ã‚ŒãŸEメールアドレスを上書ã -E EMAIL è¦æ±‚ã—ãŸEメールアドレスを設定 -G TYPE キーãŒå­˜åœ¨ã—ãªã„å ´åˆã«ç”Ÿæˆã•ã‚Œã‚‹ã‚­ãƒ¼ã®å½¢å¼ -I NAME 追跡リクエストã«æ–°ã—ã„ニックãƒãƒ¼ãƒ ã‚’付与 -I NAME リクエストã«å‰²ã‚Šå½“ã¦ã‚‹ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  -I NAME 追跡リクエストã«ä¸Žãˆã‚‹ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  -K NAME è¦æ±‚ã•ã‚ŒãŸãƒ—リンシパルåを上書ã -K NAME è¦æ±‚ã•ã‚ŒãŸãƒ—リンシパルåを設定 -N NAME è¦æ±‚ã•ã‚ŒãŸã‚µãƒ–ジェクトåを設定 (デフォルト: CN=<ホストå>) -P PIN PIN コードã®å€¤ -R 有効期é™ãŒè¿‘ã¥ã„ã¦ã‚‚証明書を更新ã—ãªã„ -S システムãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š -S システムãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š -T PROFILE åå‰ã¤ãプロファイルã¾ãŸã¯ãƒ†ãƒ³ãƒ—レートを使用ã—ã¦ã€CA ãŒãƒªã‚¯ã‚¨ã‚¹ãƒˆã‚’処ç†ã™ã‚‹ã‹ç¢ºèªã—ã¾ã™ -U EXTUSAGE 指定ã•ã‚ŒãŸã‚­ãƒ¼ã®OIDã§æ‹¡å¼µã‚­ãƒ¼ä½¿ç”¨æ³•(EKU)を上書ã -U EXTUSAGE 拡張キー使用法(EKU)ã®OIDを設定 -c CA 指定ã•ã‚ŒãŸCAã§ã¯ãªãã€ç¾åœ¨ã®ã„ãšã‚Œã‹ã‚’使用 -c CA 指定ã•ã‚ŒãŸCAã§ã¯ãªãã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã‚’使用 -c CA 指定ã•ã‚ŒãŸåå‰ã® CA ã«ã¤ã„ã¦ã®æƒ…報一覧ã®ã¿è¡¨ç¤º -c CA ã“ã® CA ã«é–¢é€£ä»˜ã‘られã¦ã„るリクエストã¨è¨¼æ˜Žæ›¸ã®ä¸€è¦§ã®ã¿ -d DIR キーã¨è¨¼æ˜Žæ›¸ã®ãŸã‚ã® NSS データベース -d DIR»ã“ã® NSS データベースを使用ã™ã‚‹ãƒªã‚¯ã‚¨ã‚¹ãƒˆã¨è¨¼æ˜Žæ›¸ã®ã¿ã‚’表示 -f FILE 証明書ã®ãŸã‚ã® PEM ファイル -f FILE 証明書ã®ãŸã‚ã® PEM ファイル (-k を指定ã—ãŸå ´åˆã®ã¿æœ‰åŠ¹) -f FILE»ã“ã® PEM ファイルã«ä¿å­˜ã•ã‚Œã¦ã„るリクエストã¨è¨¼æ˜Žæ›¸ã®ã¿ã‚’表示 -g SIZE キーãŒå­˜åœ¨ã—ãªã„å ´åˆã«ç”Ÿæˆã•ã‚Œã‚‹ã‚­ãƒ¼ã®ãƒ“ット長 -i NAME 追跡リクエストã®ãŸã‚ã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  -i NAME 既存ã®è¿½è·¡ãƒªã‚¯ã‚¨ã‚¹ãƒˆã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  -k FILE プライベートキーã®ãŸã‚ã® PEM ファイル -n NAME NSS ベースストレージã®ãŸã‚ã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ (-d オプションを指定ã—ãŸæ™‚ã®ã¿æœ‰åŠ¹) -n NAME»ã“ã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã‚’使用ã™ã‚‹ãƒªã‚¯ã‚¨ã‚¹ãƒˆã¨è¨¼æ˜Žæ›¸ã®ã¿ã‚’表示 -p FILE æš—å·åŒ–ã•ã‚ŒãŸPIN コードãŒå«ã¾ã‚Œã‚‹ãƒ•ã‚¡ã‚¤ãƒ« -r 有効期é™ãŒè¿‘ã¥ã„ã¦ã„る時ã«è¨¼æ˜Žæ›¸ã‚’æ›´æ–°ã™ã‚‹(デフォルト) -r 未処ç†ã®è¦æ±‚ã«ã¤ã„ã¦ã®æƒ…å ±ã®ä¸€è¦§ã®ã¿ -s セッションãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š -s セッションãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š -t 追跡済ã¿è¨¼æ˜Žæ›¸ã«ã¤ã„ã¦ã®æƒ…å ±ã®ä¸€è¦§ã®ã¿ -t åå‰ NSS ベースã®è¨˜æ†¶é ˜åŸŸã®ãŸã‚ã®ã‚ªãƒ—ションã®ãƒˆãƒ¼ã‚¯ãƒ³å(-d オプションを指定ã—ãŸæ™‚ã®ã¿æœ‰åŠ¹) -u KEYUSAGE è¦æ±‚ã•ã‚ŒãŸã‚­ãƒ¼ä½¿ç”¨æ³•ã®å€¤ã‚’設定ã™ã‚‹ -v 詳細ãªã™ã¹ã¦ã®ã‚¨ãƒ©ãƒ¼ã‚’報告 %s - クライアント証明書登録ツール %s: 無効ãªã‚ªãƒ—ション -- '%c' %s: オプションã«ã¯å¼•æ•°ãŒå¿…è¦ã§ã™ã€‚-- '%c' %s: èªè­˜ã§ããªã„コマンド * ãƒã‚¹ã®ã‚ªãƒ—ション: * リクエストã®è­˜åˆ¥å­: * 証明書ã®å‡¦ç†æ–¹æ³•ã®è¨­å®š: * 一般的ãªã‚ªãƒ—ション: * ã‚‚ã—キーãŒæš—å·åŒ–ã•ã‚Œã¦ã„ãŸæ™‚: * ã‚‚ã—キーãŒæš—å·åŒ–ã•ã‚Œã¦ã„ãŸå ´åˆ: * ã‚‚ã—既存ã®ãƒªã‚¯ã‚¨ã‚¹ãƒˆã‚’変更ã™ã‚‹æ™‚: * ã‚‚ã—も特定ã®ãƒªã‚¯ã‚¨ã‚¹ãƒˆãŒé¸æŠžã•ã‚ŒãŸå ´åˆ: * ã‚‚ã—ストレージ㫠NSS データベースを使ã†å ´åˆ: * ã‚‚ã—ストレージã®ãŸã‚ã«ãƒ•ã‚¡ã‚¤ãƒ«ã‚’使ã†æ™‚: * ç½²åリクエストã®ãŸã‚ã®æ–°ã—ã„パラメーター値: * ãã®ä»–ã®ã‚ªãƒ—ション: * 更新時ã«ç½²åリクエストã®ãŸã‚ã®ãƒ‘ラメーター: * ç½²å中リクエストã®ãƒ‘ラメーター: ,location='%s',nickname='%s',pinfile='%s',token='%s'内部エラーãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚CA '%s': åŒã˜å ´æ‰€ã«ã‚る証明書ã¯ã€ã™ã§ã«ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  "%s" ã‚’æŒã¤ãƒªã‚¯ã‚¨ã‚¹ãƒˆã§ä½¿ç”¨ã•ã‚Œã¦ã„ã¾ã™ã€‚èªè¨¼å±€ "%s" ã¯èªçŸ¥ã•ã‚Œã¦ã„ãªã„証明局ã§ã™ã€‚証明書ã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。証明書ストレージã®å ´æ‰€ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。証明書ストレージã®ç¨®é¡ž "%s" ã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¦ã„ã¾ã›ã‚“。証明書ストレージã®ç¨®é¡žãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。OID "%s" を評価ã™ã‚‹ã“ã¨ãŒã§ãã¾ã›ã‚“。 データベースディレクトリーã¨è¨¼æ˜Žæ›¸ãƒ•ã‚¡ã‚¤ãƒ«ã®ä¸¡æ–¹ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã™ã€‚ データベースã®å ´æ‰€ã‚‚ã—ãã¯ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã®ã©ã¡ã‚‰ã‹ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。 エラー %s エラー %s: %s "%s" ã‚’ "%s" ã¸é€ä¿¡ä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ "%s" ã‚’é€ä¿¡ä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ D-Bus è¦æ±‚メッセージを作æˆä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ Kerberos ライブラリーをåˆæœŸåŒ–中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s. "%s" を変更中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ Kerberos ã®ãƒ—リンシパルå "%s" をパース中ã«ã‚¨ãƒ©ãƒ¼: %s. サーãƒãƒ¼ã®å¿œç­”を解æžä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ リクエストã®å¼•æ•°ã‚’設定中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ デフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ルを使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ "%s" ã® ccache セットアップ中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。 "%s" ã® ccache をデフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ル "%s" を使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ã‚»ãƒƒãƒˆã‚¢ãƒƒãƒ—中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。 デフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ルを使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ "host" サービス㮠ccache セットアップ中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。 デフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ル "%s" を使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ "host" サービス㮠ccache セットアップ中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。 クライアント㧠XMLRPC ã®è¨­å®šä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ XMLRPC ã®è¨­å®šä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ Kerberos ã®ãƒ—リンシパルå "%s" をアンパース中ã«ã‚¨ãƒ©ãƒ¼: %s エラー: %s エラー: 使用ã•ã‚Œãªã„余計ãªå¼•æ•° "%s"。 エラー:余分ãªãƒ‘ラメーターãŒæŒ‡å®šã•ã‚Œã¾ã—ãŸã€‚ å分ãªã‚¢ã‚¯ã‚»ã‚¹æ¨©ãŒã‚ã‚Šã¾ã›ã‚“。æ“作を root ã¨ã—ã¦å†å®Ÿè¡Œã—ã¦ãã ã•ã„。 内部エラー: "%s?%s" ã¸ã®å¿œç­”ãŒã‚ã‚Šã¾ã›ã‚“。 内部エラー: 未知ã®çŠ¶æ…‹ã€‚ キーã¨è¨¼æ˜Žæ›¸ã®ä¸¡æ–¹ã‚’åŒã˜ãƒ•ã‚¡ã‚¤ãƒ«ã«ä¿å­˜ã™ã‚‹ã“ã¨ãŒã§ãã¾ã›ã‚“。 åŒã˜å ´æ‰€ã«ã‚るキーã¯ã€ã™ã§ã«ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  "%s" ã‚’æŒã¤ãƒªã‚¯ã‚¨ã‚¹ãƒˆã§ä½¿ç”¨ã•ã‚Œã¦ã„ã¾ã™ã€‚キーã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。キー・ストレージã®å ´æ‰€ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。キー・ストレージã®ç¨®é¡ž "%s" ã¯ã‚µãƒãƒ¼ãƒˆã—ã¦ã„ã¾ã›ã‚“。利用ã§ãるキー形å¼ã¯ä»¥ä¸‹ã®ã¨ãŠã‚Šã§ã™:ãªã—æ–°ã—ã„ç½²åリクエスト "%s" ãŒè¿½åŠ ã•ã‚Œã¾ã—ãŸã€‚ æ–°ã—ã„ç½²åリクエストã®è¿½åŠ ãŒã§ãã¾ã›ã‚“。 æ–°ã—ã„追跡リクエスト "%s" ãŒè¿½åŠ ã•ã‚Œã¾ã—ãŸã€‚ æ–°ã—ã„追跡リクエストã®è¿½åŠ ãŒã§ãã¾ã›ã‚“。 "%s" ã¨ã„ã†åå‰ã® CA ãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“。 エージェント URL (-A) ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆãŒä¸æ˜Žã§ã™ã€‚ エンド・エンティティ URL (-E) ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆãŒä¸æ˜Žã§ã™ã€‚ 該当ã™ã‚‹ã‚¨ãƒ³ãƒˆãƒªãƒ¼ãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“。 プロファイル/テンプレート (-T) ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆãŒä¸æ˜Žã§ã™ã€‚ 引数ã«è©²å½“ã—ãŸãƒªã‚¯ã‚¨ã‚¹ãƒˆãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“。 指定ã•ã‚ŒãŸãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã‚’æŒã¤ãƒªã‚¯ã‚¨ã‚¹ãƒˆãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“ã§ã—ãŸã€‚ %s サービスã‹ã‚‰å¿œç­”ãŒå—ã‘å–ã‚Œã¾ã›ã‚“。 ãã®ã‚ˆã†ãªè¨¼æ˜Žå±€ã¯ã‚ã‚Šã¾ã›ã‚“。"%s" キーã®ç”Ÿæˆã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¾ã›ã‚“。 ã‚­ãƒ¼å½¢å¼ "%s" ã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¾ã›ã‚“。IDã¾ãŸã¯ãƒ‡ãƒ¼ã‚¿ãƒ™ãƒ¼ã‚¹ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã€ã‚‚ã—ãã¯ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã€è¨¼æ˜Žæ›¸ãƒ•ã‚¡ã‚¤ãƒ«ã®æŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。 データベースディレクトリーã¨ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã€ã‚‚ã—ãã¯è¨¼æ˜Žæ›¸ãƒ•ã‚¡ã‚¤ãƒ«ã®æŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。 追跡ã•ã‚Œã¦ã„る証明書ã¨ãƒªã‚¯ã‚¨ã‚¹ãƒˆã®æ•°ï¼š%d ä»»æ„ã®å¼•æ•°: メモリーãŒä¸è¶³ パス "%s" ã¯ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã§ã¯ã‚ã‚Šã¾ã›ã‚“。 パス "%s" ã¯ä¸€èˆ¬ãƒ•ã‚¡ã‚¤ãƒ«ã§ã¯ã‚ã‚Šã¾ã›ã‚“。 パス "%s" ãŒçµ¶å¯¾ãƒ‘スã§ã¯ã‚ã‚Šã¾ã›ã‚“。ã¾ãŸã€ã‚«ãƒ¬ãƒ³ãƒˆãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã®åå‰ã‚’判断ã™ã‚‹éš›ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚ パス "%s" ãŒçµ¶å¯¾ãƒ‘スã§ã¯ã‚ã‚Šã¾ã›ã‚“。代ã‚ã‚Šã« "%s" ã§è©¦è¡Œã—ã¦ã„ã¾ã™ã€‚ パス "%s": %s. パス "%s": 権é™ãŒã‚ã‚Šã¾ã›ã‚“。 certmonger サービスãŒé–‹å§‹ã—ã¦ã„ã‚‹ã“ã¨ã‚’確èªã—ã¦ãã ã•ã„。 certmonger サービスãŒã¾ã å®Ÿè¡Œä¸­ã§ã‚ã‚‹ã“ã¨ã‚’確èªã—ã¦ãã ã•ã„。 message bus (D-Bus) サービスãŒç¨¼åƒä¸­ã§ã‚ã‚‹ã“ã¨ã‚’確èªã—ã¦ãã ã•ã„。 ローカル㮠%s サービスã‹ã‚‰ã‚¨ãƒ©ãƒ¼å¿œç­”ã‚’å—ã‘å–ã‚Šã¾ã—ãŸã€‚ リクエスト "%s" ã¯å¤‰æ›´ã§ãã¾ã›ã‚“。 リクエスト "%s" ã¯å‰Šé™¤ã§ãã¾ã›ã‚“。 リクエスト "%s" ã¯å¤‰æ›´ã•ã‚Œã¾ã—ãŸã€‚ リクエスト "%s" ã¯å‰Šé™¤ã•ã‚Œã¾ã—ãŸã€‚ リクエスト ID '%s': å¿…é ˆã®å¼•æ•°: "%s" ã‚’ "%s" ã¸å†é€ä¸­ã§ã™ã€‚ "%s" ã‚’å†é€ä¸­ã§ã™ã€‚ サーãƒãƒ¼ã‚¨ãƒ©ãƒ¼ã§ã™ã€‚ -K オプション㯠-k ã¾ãŸã¯ -t オプションã¨åŒæ™‚ã«ä½¿ç”¨ã§ãã¾ã›ã‚“。 -k オプション㯠-K オプションã¨åŒæ™‚ã«ä½¿ç”¨ã§ãã¾ã›ã‚“。 -t オプション㯠-K オプションã¨åŒæ™‚ã«ä½¿ç”¨ã§ãã¾ã›ã‚“。 IPA ãƒãƒƒã‚¯ã‚¨ãƒ³ãƒ‰ã¯ -N オプション(サブジェクトå) を使用ã—ãŸå ´åˆã€-K オプション(プリンシパルå)ã‚’å¿…è¦ã¨ã—ã¾ã™ã€‚ 権é™ãŒç„¡ã„ãŸã‚ "%s" ã«ã‚¢ã‚¯ã‚»ã‚¹ã§ãã¾ã›ã‚“ã§ã—ãŸã€‚場所 "%s" ã¯ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。場所 "%s" ã¯ãƒ•ã‚¡ã‚¤ãƒ«ã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。場所 "%s" ã¯çµ¶å¯¾ãƒ‘スã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。権é™ãŒç„¡ã„ãŸã‚ "%s" ã®è¦ªãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªã«ã‚¢ã‚¯ã‚»ã‚¹ã§ãã¾ã›ã‚“ã§ã—ãŸã€‚場所 "%s" ã®è¦ªãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã¯æœ‰åŠ¹ãªãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。ニックãƒãƒ¼ãƒ  "%s" ã¯ã€ã™ã§ã« CA ã§ä½¿ã‚ã‚Œã¦ã„ã¾ã™ã€‚ニックãƒãƒ¼ãƒ  "%s" ã®ãƒªã‚¯ã‚¨ã‚¹ãƒˆã¯ã€ã™ã§ã«ã‚ã‚Šã¾ã™ã€‚CA ã®ãƒ›ã‚¹ãƒˆåを解釈ã§ãã¾ã›ã‚“。 ç½²åリクエストã®ãŸã‚ã®ãƒ—リンシパルåを解釈ã§ãã¾ã›ã‚“。 ç½²åリクエストを読むã“ã¨ãŒã§ãã¾ã›ã‚“。 èªè­˜ã§ããªã„キー使用法 "%s"。 èªè­˜ã•ã‚Œã¦ã„ãªã„パラメーターã‹ã€ã‚‚ã—ãã¯ä¸é©åˆ‡ãªãƒ‡ãƒ¼ã‚¿åž‹ã§ã™ã€‚使ã„æ–¹: %s list [オプション] 使ã„æ–¹: %s list-cas [オプション] 使ã„æ–¹: %s request [オプション] 使ã„æ–¹: %s resubmit [オプション] 使ã„æ–¹: %s start-tracking [オプション] 使ã„æ–¹: %s stop-tracking [オプション] ä¸æ˜Žcertmonger-0.78.6/po/it_IT.gmo0000664000175000017500000000102412645513300013032 00000000000000Þ•$,8Ú9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Italian (Italy) (http://www.transifex.com/projects/p/fedora/language/it_IT/) Language: it_IT MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/it.gmo0000664000175000017500000004411612645513300012447 00000000000000Þ•­„éì &‘¸(Ô-ý+"K&n•²»Ì Û#é  $2 HUp†Ÿ ± ¾ Ê Ø)ä$,3'`3ˆ,¼/é,'F>n­CÁ:9@8z3³:ç6":Y=”'ÒBú#=8a?šEÚ( 3I#}>¡?à. GO6—;Î: 6EI|"Æ(é(.Wq!›½Ñë$ #0(T}0œÍ6ß&=L [ iu •KŸ%ë#+5,a'Ž¶8Ô;  I S)a!‹%­)Óý0E!e‡2¥ Ø#ã-<5Cr¶#Ò$ö (A !j )Œ ¶ Ó )í *!&B! i!Mu!GÃ!7 "C"X"h"!‡"a©"; #G#?W#/—#$Ç##ì#$($?$Q$f$‚$–$C¥$2é$2%nO%&¾%!å%+&63&-j&2˜&$Ë&8ð& )'+J'v''®'Ë'#é'" (0(ï8(((*Q*.q*9 *Ú* ÷*.+ G+h+q+‚+ ’+$ +Å+Ì+Ó+Û+ê+,",6,M,i, {, ‡,“, ¢,/°,+à,3 -/@-<p-/­-6Ý-3./H.Dx.½.MÒ.< /;]/E™/Aß/7!0<Y0:–0HÑ0/1QJ1&œ1;Ã1Uÿ1LU20¢2=Ó2)3F;3N‚33Ñ3U4=[4=™4<×4;5NP5+Ÿ53Ë5ÿ5,6L6j6$z6(Ÿ6È6Ý6&û6-"7+P71|7(®77×78>!8&`8‡8—8 ¦8 ´8#À8 ä8Wî8*F9)q9:›93Ö9/ : ::E[:8¡: Ú:å:2ö:+);6U;:Œ;Ç;;ç;-#<4Q<$†<9«< å<(ñ<0=SK=TŸ=#ô=6>+O>{>+ƒ>5¯>/å>:?.P?3?E³?Dù?+>@ j@ov@Uæ@@9/[gdh&Rq!£~’ƒov`¡ E< A0«I|sš¢rŒOQ NFHmu™p—©yM%8:'t–c jPn¬….¨B“˜ª^ž2 \f‚+#Š-¥Vz]{‰@*„Tb_7GK‹?WYwaŸ -B don't use an idle timeout -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s known-issuer-names: next-serial-number: %s principal name: status: %s stuck: %s subject: %s track: %s -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No matching entry found. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Italian (http://www.transifex.com/projects/p/certmonger/language/it/) Language: it MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B non usa un timeout inattivo -s usa bus di sistema -b TIMEOUT attivato da bus, timeout inattivo -d LEVEL imposta il livello di debugging (implica -n) -n rende un demone -n non rende un demone -p FILE scrive il PID di servizio su file -s usa bus di sessione CA: %s auto-renew: %s errore-ca: %s tipo-ca: %s certificato: tipo=%s,posizione='%s' dns: eku: email: scadenza: %s posizione-aiutante: %s emittente: %s coppia chiavi di storage: tipo=%s nomi-emittente-noti: prossimo-numero-serie: %s nome principale: stato: %s stuck: %s soggetto: %s traccia: %s -D NOMEDNS sovrascrive il nome DNS richiesto -D NOMEDNS imposta il nome DNS richiesto -E EMAIL sovrascrive l'indirizzo email richiesto -E EMAIL imposta l'indirizzo email richiesto -I NAME nuovo nickname da dare alla richiesta di tracking -I NOME nickname da assegnare alla richiesta -I NOME nickname da dare alla richiesta di tracking -K NOME sovrascrive il nome principale richiesto -K NOME imposta il nome principale richiesto -N NOME imposta il nome del soggetto (predefinito: CN=) -P PIN valore PIN -r non tentare di rinnovare il certificato quando si avvicina la scadenza -S connessione al servizio certmonger sul bus di sistema -S connettersi al servizio certmonger sul bus di sistema -U USOEXT Sovrascrive l'utilizzo OID della chiave estesa richiesta -U USOEXT imposta l'utilizzo OID della chiave estesa richiesta -c CA usa il CA specificato piuttosto che l'attuale -c CA usa il CA specificato piuttosto che il predefinito -c CA elenca solo informazioni sulla CA con questo nome -c CA elenca solo le richieste ed i certificati associati a questo CA -d DIR Database NSS per chiave e certificato -d DIR elenca solo le richieste ed i certificati che usano questo database NSS -f FILE file PEM per il certificato -f FILE file PEM per il certificato (valido solo con -k) -f FILE elenca solo le richieste ed i certificati immagazzinati in questo file PEM -g DIM dimensione della chiave da generare se non ne è già presente una -i NOME nickname di una richiesta di tracking -i NOME nickname di una richiesta di tracking preesistente -k FILE file PEM per la chiave privata -n NOME nickname per gli storage basati su NSS (valido solo con -d) -n NOME elenca solo le richieste ed i certificati che usano questo nickname -p FILE il file che contiene il PIN di cifratura -r tenta di rinnovare il certificato quando si avvicina la scadenza (predefinito) -r elenca solo le informazioni sulle richieste eccezionali -S connessione al servizio certmonger sul bus di sessione -s connettersi al servizio certmonger sul bus di sessione -t elenca solo le informazioni sui certificati tracciati -t NOME nome token opzionale per storage basato su NSS (valido solo con -d) -v riporta tutti i dettagli degli errori %s - strumento di registrazione certificato client %s: opzione non valida -- '%c' %s: l'opzione richiede un argomento -- '%c' %s: comando non riconosciuto * Opzioni bus: * Per richieste di identificazione: * Impostazioni di gestione certificato: * Opzioni generali: * Se le chiavi sono cifrate: * Se le chiavi devono essere cifrate: * Se si modifica una richiesta preesistente: * Se si seleziona una richiesta specifica: * Se si utilizza un database NSS per lo storage: * Se si utilizzano file per lo storage: * Nuovi valori di parametro per le richieste segnanti: * Altre opzioni: * Parametri per la richiesta segnante al momento del rinnovo: * Parametri per la richiesta segnata: ,posizione='%s',nickname='%s',pinfile='%s',token='%s'Si è verificato un errore interno.CA '%s': Il certificato con questa posizione è già usato dalla richiesta con il nickname "%s".Autorità di certificato "%s" sconosciuta.Nickname del certificato non specificato.La posizione di storage di certificato non è specificata.Tipo di storage di certificato "%s" non supportato.Tipo di storage di certificato non specificato.Impossibile valutare OID: "%s". Cartella database e file certificato specificati contemporaneamente. Posizione database o nickname specificato senza ordine. Errore %s Errore "%s": %s Errore nel tentativo di sottomettere "%s" a "%s". Errore nel tentativo di sottomettere "%s". Errore nella creazione di messaggi di richiesta DBus. Errore nell'inizializzazione della libreria Kerberos: %s. Errore nella modifica di "%s". Errore nell'analisi del nome principale Kerberos "%s": %s. Errore di analisi della risposta del server. Errore nell'impostazione degli argomenti richiesti. Errore nell'impostazione di XMLRPC. Errore non analizzato nome principale Kerberos "%s": %s. Errore: %s Errore: argomento extra "%s" non usato. Errore: argomenti extra non usati dove forniti. La chiave ed il certificato non possono essere salvati entrambi nello stesso file. La chiave con questa posizione eÌ€ giaÌ€ usata dalla richiesta con il nickname "%s".Nickname di chiave non specificata.La posizione di storage di chiave non eÌ€ specificata.Tipo chiave di storage "%s" non supportata.NESSUNOAggiunta una nuova richiesta segnata "%s". La nuova richiesta segnata non può essere aggiunta. Aggiunta una nuova richiesta di tracking "%s". La nuova richiesta di tracking non puoÌ€ essere aggiunta. Non è stato trovato nessun CA con nome "%s". Non eÌ€ stata trovata nessuna voce corrispondente. Non è stata trovata nessuna richiesta con argomenti corrispondenti. Non è stata trovata nessuna richiesta con il nickname specificato. Nessuna risposta ricevuta dal servizio %s. Nessuna CA.Non è stato specificato nessuno tra l'ID oppure la cartella di database ed il nickname oppure il certificato. Non è stata specificata nessuna cartella di database e nickname o file certificato. Il numero di certificati e di richieste sotto tracciamento: %d. Argomenti aggiuntivi: Memoria esaurita. Il percorso "%s" non è una cartella. Il percorso "%s" non è un file regolare. Il percorso "%s" non è assoluto, e si è verificato un errore nella determinazione del nome della cartella attuale. Il percorso "%s" non è assoluto, tentativo di usare "%s" al suo posto. Percorso "%s": %s. Verificare che il servizio bus messaggi (D-bus) è in esecuzione. Ricevuta una risposta di errore dal servizio locale %s. La richiesta "%s" non può essere modificata. La richiesta "%s" non puoÌ€ essere rimossa. Richiesta "%s" modificata. Richiesta "%s" rimossa. ID richiesto '%s': Argomenti richiesti: Re-invio di "%s" a "%s". Re-invio di "%s". Errore server. L'opzione -K non puoÌ€ essere usata ne con l'opzione -k che con l'opzione -t . L'opzione -k non puoÌ€ essere usata con l'opzione -K . L'opzione -t non può essere usata con l'opzione -K . Il backend IPA richiede l'uso dell'opzione -K (nome principale) quando si usa l'opzione -N (nome soggetto). La posizione "%s" deve essere una cartella.La posizione "%s" deve essere un file.La posizione "%s" deve essere un percorso assoluto.La directory superiore della posizione "%s" deve essere una cartella valida.E' già presente una CA con il nickname "%s".E' giaÌ€ presente una richiesta con il nickname "%s".Impossibile determinare l'hostname di CA. Impossibile determinare il nome principale per la richiesta di firma. Impossibile leggere la richiesta di firma. Parametro non riconosciuto o tipo di valore errato.Utilizzo: %s list [opzioni] Utilizzo: %s list-cas [opzioni] Utilizzo: %s request [opzioni] Utilizzo: %s resubmit [opzioni] Utilizzo: %s start-tracking [opzioni] Utilizzo: %s stop-tracking [opzioni] sconosciutocertmonger-0.78.6/po/is.gmo0000664000175000017500000000101412645513300012434 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Icelandic (http://www.transifex.com/projects/p/certmonger/language/is/) Language: is MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ilo.gmo0000664000175000017500000000101212645513300012602 00000000000000Þ•$,8Ð9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Iloko (http://www.transifex.com/projects/p/certmonger/language/ilo/) Language: ilo MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/id.gmo0000664000175000017500000003161012645513300012422 00000000000000Þ•­ À Á Ê Û ê ø ÿ    3 @ V o Ž š ¨ $´ 'Ù 3 ,5 /b '’ >º Cù := 9x 3² :æ 6!:X=“'Ñ#ù8EV(œ3Å#ù>.\G‹6Ó; :F6I¸(+EU!o‘¥$¿(ä 0,&]„ ¤%®#Ô+ø,$'Qy8—;Ð  )$!N%p)–À0×!(J2h ›<¦ã#ÿ$# H(i!’)´Þû)&? fMrGÀa/$¯#Ôø'9Nj~n&ü!#+E6q2¨$Û8 9+Z† ¾Û#ù"@ëH4=N ]kry ‚ ¦³Éâ ô   #' %K Aq 2³ 4æ "!@>!J!5Ê!3":4"2o"4¢"6×"?#.N#$}#<¢#aß#,A$5n$'¤$EÌ$.%RA%5”%8Ê%7&4;&Pp&&Á&è&'$' ;'\'m')Œ'0¶',ç'5(0J(${(  ()ª('Ô(+ü(1())Z)"„)<§)=ä) "* ,*+:*!f*'ˆ**°*Û*4ò*)'+2Q+„+:¤+ ß+Kê+"6,&Y,,€,.­,7Ü,--/B-(r-*›-8Æ-'ÿ-'.T8.T.â.Pü.,M/*z/'¥/Í/ì/00 >0_0x0v‹0#1 &1%G19m16§1*Þ1C 2&M2/t2¤2!Ã2å2!3''3'O3w3U< 50}wT>]q1 :H+y~9; )@/2fe_iKV r*'" u&`Qs?G,-BhLPv!$aZx#XbAJzdEMnW=3c7[IYl t.N%DFSOo\m^j8{R(C|p4k6g CA: %s auto-renew: %s ca-error: %s ca-type: %s dns: eku: email: expires: %s helper-location: %s issuer: %s known-issuer-names: next-serial-number: %s principal name: status: %s stuck: %s subject: %s track: %s -D DNSNAME set requested DNS name -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) %s - client certificate enrollment tool %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If modifying an existing request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Parameters for the signing request: An internal error has occurred.CA '%s': Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Key and certificate can not both be saved to the same file. Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.New signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No matching entry found. No request found that matched arguments. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Optional arguments: Path "%s" is not absolute, and there was an error determining the name of the current directory. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Indonesian (http://www.transifex.com/projects/p/certmonger/language/id/) Language: id MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; X-Generator: Zanata 3.6.2 CA: %s auto-renew: %s ca-error: %s ca-type: %s dns: eku: email: expires: %s helper-location: %s issuer: %s known-issuer-names: next-serial-number: %s principal name: status: %s stuck: %s subject: %s track: %s -D DNSNAME set permintaan nama DNS -E EMAIL set permintaan alamat email -I NAME new nama panggilan untuk memberikan mengikuti permintaan -I NAME nickname untuk menandai sebuah permintaan -I NAME nickname untuk memberi mengikuti permintaan -K NAME set permintaan nama utama -N NAME set permintaan nama subjek (kegagalan: CN=) -R don't usaha untuk memperbarui sertifikat ketika mendekati akhir waktu -S connect untuk layanan pemastian dalam sistem bus -S connect untuk layanan pemastian pada sistem bus -U EXTUSAGE set memperluas permintaan pemakaian kunci OID -c CA use CA khusus lebih baik daripada saat ini -c CA use CA khusus lebih baik daripada kegagalan -c CA list hanya informasi tentang CA dengan nama ini -c CA list hanya permintaan dan pemastian kolega dengan CA ini -d DIR NSS database untuk kunci dan pemastian -f FILE PEM berkas untuk sertifikat -f FILE PEM berkas untuk sertifikat (hanya valid dengan -k) -g SIZE size sebuah kunci untuk menghasilkan jika salah satu telah tidak berada di dalam tempat -i NAME nickname untuk mengikuti permintaan -i NAME nickname permintaan mengikuti jalan yang ada -k FILE PEM berkas untuk kunci privasi -n NAME nickname untuk dasar penyimpanan NSS (hanya valid dengan -d) -p FILE file yang memegang enkripsi suatu PIN -r attempt untuk memperbarui sertifikat ketika mendekati akhir waktu (kegagalan) -r list hanya informasi tentang permintaan terkemuka -s connect untuk layanan pemastian pada pembahasan bus -s connect untuk layanan pemastian pada pembahasan bus -t list hanya informasi tentang jalannya sertifikat -t NAME optional tanda nama untuk dasar penyimpanan NSS (hanya valid dengan -d) %s - sertifikat pendaftaran pelanggan %s: tidak mengenali perintah * Pilihan Bus: * Dengan memperkenalkan permintaan: * Keadaan menangani sertifikat: * Pilihan umum: * Jika kunci adalah enkripsi: * Jika memodifikasi permintaan yang ada: *Jika menggunakan database NSS untuk menyimpan: *Jika menggunakan berkas untuk penyimpanan: * Parameter baru bernilai untuk menandai permintaan: * Beberapa parameter untuk menandai permintaan: Eror pada bagian dalam telah terjadiAC '%s': Wewenang sertifikat "%s" tidak diketahui.nama panggilan sertifikat tidak khusus.Lokasi penyimpanan sertifikat tidak khusus.Tipe penyimpanan sertifikat "%s" tidak mendukung.Tipe penyimpanan sertifikat tidak khusus.Tidak dapat mengevaluasi OID"%s". Direktori database dan sertifikat file kedua secara khusus. Lokasi database atau nama panggilan khusus tanpa yang lain. Error %s Error %s: %s Usaha eror untuk di ajukan "%s"untuk "%s". Usaha eror untuk di ajukan "%s". permintaan pesan Eror penciptaan DBus. Menginisialisasi Kesalahan Kerberos : %s. Modifikasi eror "%s". Kesalahan menguraikan nama utama Kerberos "%s": %s. merespon pelayanan penguraian kesalahan. Pengaturan kesalahan permintaan beberapa argumen. Setting kesalahan untuk XMLRPC Kesalahan tanpa menguraikan nama utama Kerberos "%s": %s. Error: %s Kunci dan sertifikat tidak dapat di simpan seluruhnya pada file yang sama. kunci nama panggilan tidak khusus.lokasi kunci penyimpanan tidak khusus.Tipe kunci penyimpanan "%s" tidak mendukung.Menandai permintaan baru "%s" yang di tambah. Menandai permintaan baru yang tidak dapat ditambahkan. Permintaan pelacakan di tambahkan "%s"added. Permintaan pelacakan tidak dapat di tambahkan. Tidak ada CA dengan nama "%s"menemukan. Tidak menemukan catatan masuk yang cocok. Tidak menemukan permintaan mengenai argumen yang cocok. Tidak menerima respon dari %s layanan. CA tidak serupa.ID kosong atau direktori database dan nama panggilan atau sertifikat berkas khusus. Tidak ada dari direktori database dan nama panggilan atau sertifikat berkas khusus. Pilihan argumen-argumen: Path "%s"tidak mutlak, dan ada eror yang menentukan nama dari sebuah direktori. Menerima respon eror dari lokal %s layanan. Permintaan "%s" tidak dapat dimodifikasi. Permintaan "%s" tidak dapat menghapus. Permintaan "%s" memodifikasi. Permintaan "%s" menghapus. ID de solicitud '%s': Argumentasi yang di butuhkan: Pengajuan kembali "%s" to "%s". Pengajuan kembali "%s". Kesalahan server. IPA kembali memerlukan kegunaan dari pilihan -K (nama utama) di mana ketika pilihan -N (nama subjek) telah digunakan. Lokasi "%s" harus berupa direktori.Lokasi "%s" harus berupa berkas.Lokasi "%s" harus analisa yang tepat.induk dari lokasi "%s" harus sebuah direktori yang valid.Permintaan telah dilakukan dengan nama panggilan "%s".tidak dapat menentukan nama host dari CA. Tidak dapat untuk menentukan nama utama untuk menandai permintaan. Tidak dapat membaca tanda permintaan. Tidak mengenal parameter atau salah tipe nilai.Pemakaian: %s list [options] Pemakaian: %s list-cas [options] Pemakaian: %s request[options] Pemakaian: %s resubmit [options] Pemakaian: %s start-tracking [options] Pemakaian: %s stop-tracking [options] Tidak diketauhuicertmonger-0.78.6/po/ia.gmo0000664000175000017500000000101612645513300012414 00000000000000Þ•$,8Ô9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Interlingua (http://www.transifex.com/projects/p/certmonger/language/ia/) Language: ia MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/hy.gmo0000664000175000017500000000101312645513300012440 00000000000000Þ•$,8Ñ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Armenian (http://www.transifex.com/projects/p/certmonger/language/hy/) Language: hy MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/hu.gmo0000664000175000017500000005302012645513300012441 00000000000000Þ•À &!%Hn(Š-³á"&$Khq‚ ‘#ŸÃÊÑ Úè þ &6Le}” ¦ ³ ¿ Í2Ù1 )>$h,'º3â,/C,s' >ÈC:_9šSÔ8(3a:•6Ð:=B'€B¨#ë8?HEˆ(Î3÷#+>O?Ž.ÎGý6E;|:¸6óI*,t"¡(Äí( 2L\!v˜¬Æ$æ# (/X0w¨6º&ñ' 6 DP pKz%Æ#ì+,<'i‘8¯;è$ @ ` j )x !¢ %Ä )ê !0+!\!!|!ž!2¼! ï!#ú!-"6L"(ƒ"¬"<Ì"C #M##i#$#²# ·#(Ø#!$)#$M$/j$4š$Ï$6é$) %*J%&u% œ%M¨%Gö%7>&v&‹&›&!º&aÜ&;>'z'<Š'<Ç'?(/D($t(#™(½(Õ(ì(þ()/)C)CR)2–)2É)nü)&k*!’*+´*6à*-+2E+$x+8+ Ö+÷++,@,Z,x,•,#³,"×,ú,î-*ñ.,/&I/2p/C£/'ç/*05:0(p0;™0QÕ0A'1Bi1%¬19Ò19 2;F2G‚2GÊ2?3R3r3Nˆ3Q×3)4D4D^4?£4Aã4@%5>f55¥54Û5+6-<6-j6,˜6;Å6B73D71x72ª7VÝ748YK8=¥8Eã8M)9Iw9MÁ97:FG:WŽ:læ:mS;nÁ;&0<FW<wž<M=3d=3˜='Ì=ô=lv>4ã>i?H‚?DË?E@>V@]•@=ó@(1A+ZA †A7§AßAøA"B/4BdB|B)œB*ÆB,ñB2C+QC7}CµC;ÈC-D 2D>DOD ^DiD €DOŠD/ÚD- E68E5oE/¥EÕE>óEI2F|F#œF ÀF ÊF*×FG< G6]G(”G;½G*ùG!$H6FH?}H½H-ÆHKôHV@I+—I"ÃIBæIF)J$pJ#•J*¹JäJ*êJ-K,CK/pK! KFÂKN LXLKsL=¿L2ýL40MeMjuM`àM9AN{N,–N2ÃN-öN`$OR…OØOEôOG:PL‚P0ÏP!Q$"QGQ`Q}Q‘Q¬QÌQâQ<ñQ6.R6eRoœR# S0S3OS:ƒS+¾S.êS.TFHT/T'¿T0çT&U#?U"cU)†U+°U(ÜU VÀ p‘hJ³’\“sŠ¹˜c{¢™ƒSCœN—g–°Œ U¸¥a¼ªF·d&?¤w²'YbvºL•|H"Ž€EOž+zy)›$š;‹WGr­}Z½V~¶7x0#„[‰4noµ‚«Q(…¾2t:*=9 ®¨iR,^j!`3¿uX¦ k”.‡A´e>PmB8I5D6T±¯/¡l ] ©§M 1ˆqKŸ<†¬f»_%-£@ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known-issuer-names: next-serial-number: %s post-save command: %s pre-save command: %s principal name: status: %s stuck: %s subject: %s track: %s -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2015-02-22 02:25-0500 Last-Translator: Porcsin László Language-Team: Hungarian (http://www.transifex.com/projects/p/certmonger/language/hu/) Language: hu MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B várakozási idÅ‘ elhagyása -F eröltesse az NSS-t FIPS módba -S rendszerbusz használata -b TIMEOUT busz-vezérelt, várakozási idÅ‘vel -d LEVEL hibakeresési szint beállítása (ez azt jelenti: -n) -f művelet váljon daemonná -n művelet ne váljon daemonná -p FILE szolgáltatás PID rögzítése fájlba -s szálvezérlés használata »CA: %s »automatikus megújítás: %s »ca-error: %s »ca-típus: %s tanusítvány: típusa=%s,helye='%s'»dns: »eku: »email: »lejárati idÅ‘: %s »segítÅ‘-helye: %s »issuer: %s kulcspár tároló: típusa=%s kulcshasználat: %s »ismert kibocsátó nevek: »következÅ‘ sorozatszám: %s post-mentés parancs: %s pre-mentés parancs: %s »megbízó neve: »status: %s »beragadt: %s »subject: %s »track: %s -B command futtatás elÅ‘tt a tanúsítványt menti -C command futtatás után a tanúsítványt menti -D DNSNAME felülírja a kért DNS nevet - D DNSNAME igényelt DNS név beállítása -E EMAIL felülírja a kért email címet -E MAIL igényelt email cím beállítása -I NAME új név megadása a nyomonkövetési kéréshez -I NAME elnevezés amelyet hozzárendelhetünk az igényléshez -I NAME elnevezés a nyomonkövetési kéréshez -K NAME felülírja a kért elsÅ‘dleges nevet -K NAME igényelt elsÅ‘dleges név beállítása -N NAME igényelt tárgy nevének beállítása (alapértelmezett: CN=) -P PIN PIN értéke -R ne kísérelje meg a bizonyítvány megújítását ha a lejárati idÅ‘ közeledik -S connect certmonger szolgáltatásnál a rendszer buszon -S kapcsolja össze a certmonger szolgáltatást a rendszer bus-al -T PROFILE ask CA számítás a kért felhasznált profil név vagy sablon -U EXTUSAGE felülírja a kért kibÅ‘vített kulcs használat OID-jét -U EXTUSAGE igényelt kibÅ‘vített kulcs használatának beállítása OID -c CA alkalmazza a megadott CA-t jelenlegi helyett -c CA inkább alkalmazza a megadott CA mint az alapértelmezettet -c CA csak az ezzel a névvel rendelkezÅ‘ CA tanúsítvány információit listázza -c CA csak azokat a kéréseket és bizonytványokat listázza amelyek ezzel a CA-val vannak kapcsolatban -d DIR»NSS adatbázis a kulcshoz és a tanusítványhoz -d DIR csak olyan igényléseket és bizonyítványokat listáz amelyek ezt az NSS adatbázist használják -f FILE PEM fájl az aláírásért -f FILE PEM fájl az aláíráshoz (csak a -k opcióval érvényes) -f FILE csak olyan igényléseket és bizonyítványokat listáz amelyek tárolásra kerültek ebben a PEM fájlban -g SIZE az előállítandó kulcs mérete ha egy már nem lenne a helyén -i NAME elnevezés a nyomonkövetési kéréshez -i NAME nickname of an existing tracking request -k FILE PEM fájl a privát kulcshoz -n NAME»elnevezés az NSS-alapú tárolóhoz (csak -d opcióval érvényes) -n NAME csak olyan igényléseket és bizonyítványokat listáz amelyek ezt az elnevezést használják -p FILE fájl ami a titkosító PIN-t tartalmazza -r megkísérlés a bizonyítvány megújítására ha a lejárati idÅ‘ közeledik (alapértelmezett) -r csak a kiemelkedÅ‘ kérésekrÅ‘l szóló információkat listázza -s connect certmonger szolgáltatásnál a szál vezérélésnél -s kapcsolja össze a certmonger szolgáltatást a session bus-al -t csak a nyomonkövetett bizonytványok adatait listázza -t NAME opcionális token név az NSS-alapú tárolókhoz (csak a -d opcióval érvényes) -u KEYUSAGE beállítja a kért kulcshasználati értéket -v jelentse az összes hibarészletet %s - kliens tanusítvány felvevÅ‘ eszköz %s: érvénytelen opció --'%c' %s: az opcióhoz szükséges egy paraméter is -- '%c' %s: ismeretlen parancs * Adatcsatorna opciók: * Kérés azonosítója alapján: * Aláírás ezeket a beállításokat kezeli: * Ãltalános opciók: * Ha a kulcsok titkosítottak: * Ha a kulcsok titkosításra kerülnek: * Ha módosítanak egy létezÅ‘ kérést: * Ha kiválaszt egy specifikus igénylést: * Ha egy NSS adatbázist használ a tárolóhoz: * Ha a fájlokat a tárolásra használja: * Új paraméter értékek az aláírási kérelemhez: * Egyéb opciók: * Paraméterek az aláírási kéréshez megújításkor: * Paraméterek az aláírási igényléshez: ,helye='%s',elnevezés='%s',pinfájl='%s',jegy='%s'BelsÅ‘ hiba történt.CA '%s': Tanúsítvány ugyanazt a helyet használja amit a becenévnél igényelt "%s"."%s" nevű tanúsítvány hatóság nem ismert.Bizonyítvány elnevezése nincs definiálva.Bizonyítványok tárolási helye nincs meghatározva."%s" típusú bizonyítványtároló enm támogatott.Bizonyítvány tároló típusa nem definiált.Nem értelmezhetÅ‘ OID "%s". Adatbázis könyvtára és az aláírás fájl meghatározva. Adatbázis helye vagy elnevezése egymás nélkül vannak meghatározva. Hiba: %d csatlakozik ide - %s. Hiba: %d csatlakozik ide - %s: %s. Hiba %s Hiba %s: %s Nem sikerült "%s" beküldése ide: "%s". "%s" beküldése sikertelen. Hiba történt a a DBus kérési üzenet elkészítésekor. Hiba történt a Kerberos modul beállításakor: %s. "%s" módosításakor hiba lépett fel. Hiba a Kerberos megbízói név értelmezésekor "%s": %s. Hiba a szerver válasz értelmezésében. Hiba a paraméterek kérésekor. Hiba történt a XMLRPC-re történÅ‘ beállításkor Hiba a Kerberos megbízói név visszafordításakor "%s": %s. Hiba %s HIba: kihasználatlan extra paraméter "%s". Hiba: használaton kívüli extra paraméterek is alkalmazásra kerültek. Elégtelen hozzáférési jog. Kérem ismételje meg a műveletet rendszergazdaként. BelsÅ‘ hiba: nincs válasz erre - "%s?%s". BelsÅ‘ hiba: ismeretlen állapot. A kulcs és az aláírás nem menthetÅ‘ el egy ugyanazon fájlba. Kulcs ugyanazt a helyet használja amit a becenévnél igényelt "%s".Kulcs elnevezés nem meghatározott.Kulcstároló helye nem definiált."%s" kulcstároló típus nem támogatott.NINCSÚj aláírási kérelem "%s" hozzáadva. Új aláírási kérelem nem adható hozzá. Új nyomkövetési kérés "%s" hozzáadva. Új nyomkövetési kérés nem adható hozzá. Nincs elérhetÅ‘ CA "%s" néven. Nincs ágens URL megadva (-A), és nincs ismert alapértelmezett sem. Nincs végentitású URL megadva (-E), és nincs ismert alapértelmezett sem. Nincs egyezÅ‘ bejegyzés. Nincs profil / sablon megadva (-T), és nincs ismert alapértelmezett sem. Olyan kérés nem található ami egyezne a paraméterekkel. Nem található kérés a megadott elnevezéssel. Nincs válasz a következÅ‘ szolgáltatástól: %s. Nincs ilyen CA.Sem az ID vagy adatbázis könyvtára és az elnevezése, vagy az aláírás fájl sincsen meghatározva. Sem az adatbázis könyvtára és az elnevezése, vagy az aláírás fájl nincs meghatározva. A nyomonkövetett kérések és aláírások száma: %d. Opcionális paraméterek: Elfogyott a rendelkezésre álló memória. "%s" elérési út nem egy szabályos könyvtár. "%s" elérési út nem egy szabályos fájl. "%s" elérési út nem abszolút, és hiba történt a jelenlegi könyvtár meghatározásakor. "%s" elérési út nem abszolút, próbaként "%s" kerül alkalmazásra helyette. "%s" elérési útja: %s. Kérem ellenÅ‘rizze, hogy a certmonger szolgáltatás már elindult. Kérem ellenÅ‘rizze, hogy a certmonger szolgáltatás még mindig fut. Kérem ellenÅ‘rizze, hogy az üzenet busz (D-Bus) szolgáltatás működik. Hiba érkezett egy helyi %s szolgáltatástól. "%s" kérés nem módosítható. "%s" kérés nem távolítható el. "%s" kérés módosult. "%s" kérés eltávolítva. ID kérése: '%s': Szükséges paraméterek: "%s" újraküldése ide: "%s". Újraküldés: "%s". Szerver hiba. A -K opció nem használható a -k vagy a -t opcióval sem. A -k opció nem használható a -K opcióval együtt. A -t opció nem használható a _K opcióval együtt. Az IPA backend-nek szükséges a -K opció (megbízói név) ha az -N opció (tárgy név) alkalmazásban van. "%s" egy könyvtárnak kell lennie."%s" egy fájlnak kell lennie.A hely "%s" abszolút elérési útnak kell lennie."%s" szülÅ‘ könyvtárnak létezÅ‘ mappának kell lennie.Már szerepel egy CA ezzel a névvel: "%s".Már van egy igénylés ezzel a névvel: "%s".CA hosztnevének meghatározása meghiúsult. Meghatározhatatlan az elsÅ‘dleges neve az aláírási igénylésnek. Bejelentkezési kérés olvasása meghiúsult. Felismerhetetlen kulcshasználat "%s". Ismeretlen paraméter, vagy rossz értéktípus.Használata: %s listázása [opciók] Alkalmazás: %s list-cas [opciók] Használata: %s kérés [opciók] Használata: %s újraküldése [opciók] Használata: %s nyomon követés [opciók] Használata: %s stop-tracking [opciók] ismeretlencertmonger-0.78.6/po/hr_HR.gmo0000664000175000017500000000113712645513300013031 00000000000000Þ•$,8%9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Croatian (Croatia) (http://www.transifex.com/projects/p/fedora/language/hr_HR/) Language: hr_HR MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2; certmonger-0.78.6/po/hr.gmo0000664000175000017500000000112312645513300012433 00000000000000Þ•$,89Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Croatian (http://www.transifex.com/projects/p/certmonger/language/hr/) Language: hr MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2; certmonger-0.78.6/po/hi.gmo0000664000175000017500000000101012645513300012415 00000000000000Þ•$,8Î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Hindi (http://www.transifex.com/projects/p/certmonger/language/hi/) Language: hi MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/he.gmo0000664000175000017500000000101112645513300012412 00000000000000Þ•$,8Ï9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Hebrew (http://www.transifex.com/projects/p/certmonger/language/he/) Language: he MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/gu.gmo0000664000175000017500000000720412645513300012443 00000000000000Þ•",/<øù   & 4@Tdx ˜#¢+Æ,ò' G Q_ }ˆ#¤$Èí ?_t&ƒ!ª$Ìñ ð +DWm ‹/¬0Ü Y lq jÞ oI ¹ Ç OÙ ) A8 Tz RÏ :" *] ˜ˆ !! C O_ @¯ fð Wq    "  ! CA: %s dns: eku: email: status: %s subject: %s track: %s -P PIN PIN value * Bus options: * General options: An internal error has occurred.CA '%s': Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Error %s Error %s: %s Error setting up for XMLRPC. Error: %s Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.No CA with name "%s" found. Optional arguments: Please verify that the message bus (D-Bus) service is running. Required arguments: Server error. The location "%s" must be a directory.The location "%s" must be a file.Unable to determine hostname of CA. Usage: %s list [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Gujarati (http://www.transifex.com/projects/p/certmonger/language/gu/) Language: gu MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 CA: %s dns: eku: ઇમેલ: સà«àª¥àª¿àª¤àª¿: %s વિષય: %s ટà«àª°à«‡àª•: %s -P PIN PIN કિંમત * બસ વિકલà«àªªà«‹: * સામાનà«àª¯ વિકલà«àªªà«‹: આંતરિક ભૂલ ઉદà«àª­àªµà«€.CA '%s': પà«àª°àª®àª¾àª£àªªàª¤à«àª° ઉપનામ સà«àªªàª·à«àªŸ થયેલ નથી.પà«àª°àª®àª¾àª£àªªàª¤à«àª° સંગà«àª°àª¹ સà«àª¥àª¾àª¨ સà«àªªàª·à«àªŸ થયેલ નથી.પà«àª°àª®àª¾àª£àªªàª¤à«àª° સંગà«àª°àª¹ પà«àª°àª•àª¾àª° "%s" આધારભૂત નથી.પà«àª°àª®àª¾àª£àªªàª¤à«àª° સંગà«àª°àª¹ પà«àª°àª•àª¾àª° સà«àªªàª·à«àªŸ થયેલ નથી.ભૂલ %s ભૂલ %s: %s XMLRPC માટે સà«àª¯à«‹àªœàª¿àª¤ કરતી વખતે ભૂલ. ભૂલ: %s કી ઉપનામ સà«àªªàª·à«àªŸ થયેલ નથી.કી સંગà«àª°àª¹ સà«àª¥àª¾àª¨ સà«àªªàª·à«àªŸ થયેલ નથી.કી સંગà«àª°àª¹ પà«àª°àª•àª¾àª° "%s" આધારભૂત નથી.નામ "%s" સાથે CA મળà«àª¯à« નથી. વૈકલà«àªªàª¿àª• દલીલો: મહેરબાની કરીને ખાતરી કરો કે સંદેશા બસ (D-Bus) સેવા ચાલી રહી છે. જરૂરી દલીલો: સરà«àªµàª° ભૂલ. સà«àª¥àª¾àª¨ "%s" ડિરેકà«àªŸàª°à«€ હોવી જ જોઇàª.સà«àª¥àª¾àª¨ "%s" ફાઇલ હોવી જ જોઇàª.CA નાં યજમાનનામને નકà«àª•à«€ કરવાનà«àª‚ અસમરà«àª¥. Usage: %s list [options] અજà«àªžàª¾àª¤certmonger-0.78.6/po/gl.gmo0000664000175000017500000000101312645513300012422 00000000000000Þ•$,8Ñ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Galician (http://www.transifex.com/projects/p/certmonger/language/gl/) Language: gl MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ga.gmo0000664000175000017500000000105612645513300012416 00000000000000Þ•$,8ô9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Irish (http://www.transifex.com/projects/p/certmonger/language/ga/) Language: ga MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=5; plural=(n==1 ? 0 : n==2 ? 1 : n<7 ? 2 : n<11 ? 3 : 4); certmonger-0.78.6/po/fr.gmo0000664000175000017500000006316212645513300012444 00000000000000Þ•æL3|H&I%p–(²-Û ")&Ls ™§¸ Ç#Õ'ù!(/8 Sa w„Ÿ%¯Õë($--R)€ªÂÙ'ë#7 P ] i w+ƒ&¯2Ö1 );$e,Š'·2ßE3X,Œ/¹,é'>>}C‘:Õ9SJ8ž3×: :F6:¸=ó81'jB’#Õ8ù?2Er(¸3á#>9?x.¸Gç6/ ;f :¢ 6Ý I!,^!"‹!(®!×!ó!("7"Q"a"!{""±"Ë"$ë"##(4#]#0|#­#6¿#&ö#$,$ ;$ I$U$ u$K$%Ë$#ñ$+%,A%'n%–%8´%;í%)&E& e& o&)}&!§&%É&)ï&'00'a'z'!š'E¼'B(OE(L•(+â(),)2F) y)#„)-¨)6Ö)( *6*<V*C“*×*#ó*$+<+U+ Z+({+!¤+)Æ+ð+/ ,4=,r,6Œ,)Ã,*í,&- ?-%K-q-M-GÝ-7%.].r.‚.!¡.aÃ.;%/a/%q/<—/<Ô/?0/Q0$0#¦0Ê0â0ù02 1>1S1o1ƒ1’1C¨12ì122nR2HÁ2& 3!13+S3R36Ò3- 4274Aj4$¬41Ñ485 <5]5+z5¦5Â5Ü5ú5676#U6y6"•6¸6íÀ64®8'ã8( 9:49=o9­9,Ì9:ù9*4:!_:::«:¼:8Ë:9;>;F; N;5Y;;¡;¿;0Ð;<1<#L<"p<:“<1Î<A=8B="{="ž=Á=:Ó=1>'@> h>u> „> ‘>/Ÿ>-Ï>;ý>?9?+y?)¥?1Ï?.@/0@>`@6Ÿ@(Ö@.ÿ@..A,]AKŠAÖANëA9:B8tBb­BKCJ\CA§CNéCY8D_’DeòD2XEE‹EZÑE,,FCYFSFMñF$?G.dG/“GFÃGJ H=UHT“H;èH;$I:`I:›IUÖI>,J,kJ.˜J%ÇJíJ0 K=KUKiK)ˆK²K!ËK"íK,L4=L?rL.²L?áL!MH5M,~M«MÄMÕMîM"N&$NJKN1–N!ÈN5êN8 O.YO$ˆOY­OJP&RP,yP ¦P±P5ÁP)÷P3!QCUQ,™QBÆQ' R,1R&^Ro…RoõRyeSnßS9NT+ˆT ´TJÕT U?-UGmUHµU4þU!3VdUVDºVÿV/W<NW%‹W±W4·W<ìW-)X8WX?XJÐXSY!oYN‘Y,àY0 Z>Z"^Z@Z8ÂZ[ûZ]W[Cµ[ù[\-%\3S\s‡\Vû\R]0l]@]IÞ]U(^7~^-¶^,ä^_._K_:h_£_-·_!å_``C5`:y`:´`qï`Saa1µa-ça3b]IbB§bEêb20cXccJ¼c=dHEd/Žd.¾d0íde :e$[e'€e#¨e$Ìe*ñe#f)@fjfI‹²/Õ“sTÈRÅÉE´;ÞLÓ˜œ t·ÒmÝáAÙÚJ­X‡Q}oOk[•Â¦:ÎV.>SrzUÌ’)Š@¯B»ƒ5ƸäfŒ8¤£cÀhÊp¬"™Ô—^µ³Ä±1‘W]ËDæ¥'«Önªl6Щ…¹° =¨š&¼ã+MZK F$!(›ßÇC‰åâ¡¢–q wÁ€ued†<½y#¾ iN¶Y3P\?ž Í2à0”ŽÑ×xa_G%Ü{,‚~7j§ˆ„¿®g`|-º4Øß*9bHÏÛ v -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. State %s, stuck: %s. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s refresh-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s status [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: French (http://www.transifex.com/projects/p/certmonger/language/fr/) Language: fr MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); X-Generator: Zanata 3.6.2 -B ne pas utiliser un délai d'inactivité -F impose le mode FIPS à NSS -S utiliser le bus du système -b délai d'attente du bus activé, durée d'inactivité -d NIVEAU définir le niveau de débogage (nécessite -n) -f devenir un démon -n ne pas se transformer en démon -p FICHIER écrire le PID du service dans un fichier -s utiliser le bus de la session Autorité de certification : %s Adresse IP : auto-renouvellement : %s erreur-ac : %s type-ac : %s certificat : modèle = « %s », emplacement = « %s » profils/modèles/types de certificats par défaut : %s dns : eku : e-mail : erreur lors du rafraîchissement des données du CA expiration : %s emplacement-de-l'-aide : %s émetteur : %s paire de clés de stockage : modèle = « %s » usage de la clé : %s profils/modèles/types de certificats connus : noms-des-problèmes-identifiés : prochain-numéros-de-série : %s autres certificats enregistrés sur bases de données : autres certificats enregistrés sur fichiers : autres certificats racine enregistrés sur bases de données : autres certificats racine enregistrés sur fichiers : commande de post-sauvegarde : %s commande de pré-sauvegarde : %s nom principal : certificats racine enregistrés sur bases de données : certificats racine enregistrés sur fichiers : auto-identification en tant que : %s état : %s bloqué : %s sujet : %s chemin : %s -A ADRESSE outrepasse l'adresse IP demandée -A ADRESSE définit l'adresse IP demandée -B commande à lancer avant de sauvegarder le certificat -C commande à lancer après avoir sauvegardé le certificat -D NOMDNS outrepasse le nom DNS demandé -D NOMDNS définit le nom DNS demandé -E EMAIL outrepasse l'adresse e-mail demandée -E EMAIL définit l'adresse e-mail demandé -F fichier de stockage des certificats de CA -G TYPE type de la clé à créer si aucune n'existe déjà -I NOM nouveau nom à donner à la demande de suivi -I NOM nom à attribuer à la demande -I NOM nom à donner à la demande de suivi -K NOM outrepasse le nom principal demandé -K NOM définit le nom principal demandé -N NOM définit le nom du sujet demandé (par défaut: CN=) -P PIN valeur PIN -R ne pas tenter de renouveler le certificat lorsque l'expiration approche -S connecte le service certmonger sur le bus système -S connecte le service certmonger sur le bus système -T PROFIL interroger le CA pour traiter la requête en utilisant le profil nommé ou le modèle -U EXTUSAGE outrepasse la requête d'utilisation d'une clé OID étendue -U EXTUSAGE définit l'étendu de l'utilisation d'une clé OID demandé -a base de données NSS d'enregistrement des certificats de CA -c AC utilise l'autorité de certification spécifié plutôt que l'actuel -c AC utiliser l'autorité de certification spécifié, plutôt que celui par défaut -c AC liste seulement les informations à propos de l'autorité de certification avec ce nom -c AC liste seulement les requêtes et les certificats associés à une autorité de certification -c CA rafraîchir l'information du CA de ce nom -d RÉPERTOIRES NSS base de données pour les clés et certificats -d DIR n'afficher que les requêtes et certificats utilisant cette base de données NSS -f FICHIER fichier PEM pour le certificat -f FICHIER PEM fichier du certificat (valide uniquement avec -k) -f FILE n'afficher que les requêtes et certificats stockés dans ce fichier PEM -g TAILLE taille de la clé à générer si elle n'est pas déjà en place -i NOM nom pour suivre la demande -i NOM nom d'une demande de suivi existante -k FICHIER PEM fichier pour une clé privée -n NOM surnom pour le stockage NSS-base (valide uniquement avec -d) -n NAME n'afficher que les requêtes et certificats utilisant ce pseudo -p FICHIER fichier qui contient le code PIN de chiffrement -r tente de renouveler le certificat lorsque l'expiration approche (par défaut) -r liste seulement l'information des demandes en attente -s connecte le service certmonger sur le bus de session -s connecte le service certmonger sur le bus de session -t liste seulement l'information des certificats suivis -t NOM nom de jeton optionel pour le stockage NSS-base (valide uniquement avec -d) -u USAGECLÉ configure la valeur requise d'usage de la clé -v rapporte tous les détails des erreurs %s - outil d'inscription du certificat client %s : -- '%c' est une option invalide %s : valeur invalide -- '%s' %s : cette option requiert un argument -- '%c' %s : commande inconnue * Options du Bus : * En identifiant la demande : * Paramètres de gestion du certificat : * Options générales : * Si les clés sont chiffrées : * Si les clés sont à chiffrer : * Si vous modifiez une requête existante : * Si vous sélectionnez une requête spécifique : * Si vous utilisez une base de données NSS pour le stockage : * Si vous utilisez des fichiers de stockage : * Nouvelle valeur du paramètre pour la demande de signature : * Autres options : * Paramètres de la requête de signature au moment du renouvellement : * Paramètres de la requête de signature : , emplacement = « %s », nom = « %s », fichier pin = « %s », jeton = « %s »Une erreur interne s'est produite.Autorité de certification « %s » : Le certificat est déjà utilisé par une requête avec le nom « %s ».L'autorité de certification « %s » non connue.Nom du certificat non spécifié.Emplacement de stockage de certificat non spécifié.Le type de certificat « %s » n'est pas pris en charge.Type de stockage de certificat non spécifié.Impossible d'évaluer OID « %s ». Le répertoire de la base de données et le fichier de certificat ont été spécifiés. Un élément est manquant entre le nom de la base de données ou son nom. Erreur %d lors de la connexion à %s. Erreur %d lors de la connexion à %s : %s. Erreur %s Erreur %s : %s Erreur en tentant de soumettre « %s » à « %s ». Erreur en tentant de soumettre « %s ». Erreur de création du message de demande de DBus. Erreur lors de l'initialisation de la bibliothèque Kerberos : %s. Erreur lors de la modification de « %s ». Erreur lors de l'analyse du nom principal Kerberos « %s » : %s. Erreur lors de l'analyse des arguments.Erreur d'analyse de la réponse du serveur. Erreur de paramétrage des arguments. Erreur de mise en place du ccache pour « %s » sur le client en utilisant le jeu de clés par défaut : %s. Erreur de mise en place du ccache pour « %s » sur le client en utilisant le jeu de clés « %s » : %s. Erreur de mise en place du ccache pour le service « hôte » sur le client utilisant le jeu declés par défaut : %s. Erreur de mise en place du ccache pour le service « hôte » en utilisant le jeu de clés « %s » : %s. Erreur lors de la configuration de XMLRPC sur le client. Erreur lors de la configuration de XMLRPC. Erreur lors de l'arrêt de NSS. Erreur lors de la récupération du nom principal Kerberos « %s » : %s. Erreur : %s Erreur : l'argument supplémentaire « %s » est inutilisé. Erreur : des arguments supplémentaires inutilisés ont été fournis. Accès insuffisant. Merci de recommencer l'opération en tant que root. Erreur interne : pas de réponse à « %s?%s ». Erreur interne : état inconnu. Les clés et les certificats ne peuvent être tous les deux enregistrés dans le même répertoire. La clé est déjà utilisé par une requête avec le nom « %s ».Nom de la clé non spécifié.Emplacement de stockage de clé non spécifié.Stockage de clés de type « %s » n'est pas pris en charge.Les types de clés connus incluent :AucunNouvelle demande de signature de « %s » ajoutée. La nouvelle demande de signature n'a pas pu être ajoutée. Nouvelle demande de suivi « %s » ajoutée. La nouvelle demande de suivi n'a pas pu être ajoutée. Pas d'autorité de certification avec le nom « %s » trouvé. Aucune URL d'agent spécifiée (-A), et aucune valeur par défaut connue. Aucune URL d'entité finale spécifiée (-E), et aucune valeur par défaut connue. Aucune correspondance trouvées. Aucune profil ou patron spécifié (-T), et aucune valeur par défaut connue. Aucune demande ne correspond aux arguments. Aucune demande trouvée avec le nom spécifié. Pas de réponse du service %s. Aucune autorité de certification.Absence de prise en charge de la création de clés « %s ». Absence de prise en charge des clés de type « %s ».Aucun ID ou répertoire de base de données ni de nom ou fichier de certificat spécifié. Aucun répertoire de base de données, nom ou fichier de certificat n'ont été spécifiés. Le numéro des certificats et les demandes qui seront suivis : %d. Arguments optionnels : Mémoire saturée. Le chemin « %s » n'est pas un répertoire. Le chemin « %s » n'est pas un fichier régulier. Le chemin d'accès « %s » n'est pas absolu, et il y a une erreur pour déterminer le nom du répertoire courant. Le chemin « %s » n'est pas absolu, tentative d'utilisation de « %s » à la place. Chemin « %s » : %s. Chemin « %s » : permissions insuffisantes. Merci de vérifier que le service certmonger a été démarré. Merci de vérifier que le service certmonger est en cours d'exécution. Veuillez vérifier que le service bus de messages (D-Bus) est en cours d'exécution. Un message d'erreur a été reçu du service local %s. La demande « %s » ne peux être modifiée. Demande « %s » n'a pas pu être enlevée. Demande « %s » modifiée. Demande « %s » suprimée. ID de la demande « %s » : Renouvellement demandé, mais numéro de série manquant. Arguments requis : Nouvelle soumission de « %s » à « %s ». Nouvelle soumission de « %s ». Erreur du serveur. État %s, bloqué : %s. L'option -K ne peut pas être utilisée avec les options -k ni -t. L'option -k ne peut pas être utilisée avec l'option -K. L'option -t ne peut pas être utilisée avec l'option -K. Le backend IPA requiert l'utilisation de l'option -K (nom principal) si l'option -N (nom d'objet) est utilisée. L'emplacement « %s » n'est pas accessible du fait de permissions insuffisantes.L'emplacement « %s » doit être un répertoire.L'emplacement « %s » doit être un fichier.L'emplacement « %s » doit être un chemin absolu.L'emplacement parent de « %s » n'est pas accessible du fait de permissions insuffisantes.L'emplacement principal « %s » doit être un répertoire valide.Il existe déjà une autorité de certification avec le nom « %s ».Il existe déjà une demande avec le nom « %s ».Impossible de déterminer le DN de base des informations de domaine sur le serveur IPA. Impossible de déterminer le nom d'hôte de l'autorité de certification. Impossible de déterminer l'emplacement du serveur LDAP IPA. Impossible de déterminer le nom principal pour la signature demandée. Impossible de lire la signature de la demande. Utilisation de la clé « %s » inconnue.\n Paramètre inconnu ou type de valeur incorrecte.Nom de propriété inconnu.Utilisation : %s list [options] Utilisation : %s list-cas [options] Utilisation : %s refresh-ca [options] Utilisation : %s request [options] Utilisation : %s resubmit [options] Utilisation : %s start-tracking [options] Utilisation : %s status [options] Utilisation : %s stop-tracking [options] inconnucertmonger-0.78.6/po/fi.gmo0000664000175000017500000000101212645513300012415 00000000000000Þ•$,8Ð9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Finnish (http://www.transifex.com/projects/p/certmonger/language/fi/) Language: fi MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/fa_IR.gmo0000664000175000017500000000101412645513300013001 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Persian (Iran) (http://www.transifex.com/projects/p/fedora/language/fa_IR/) Language: fa_IR MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/fa.gmo0000664000175000017500000000100312645513300012405 00000000000000Þ•$,8É9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Persian (http://www.transifex.com/projects/p/certmonger/language/fa/) Language: fa MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/eu_ES.gmo0000664000175000017500000000102312645513300013021 00000000000000Þ•$,8Ù9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Basque (Spain) (http://www.transifex.com/projects/p/fedora/language/eu_ES/) Language: eu_ES MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/eu.gmo0000664000175000017500000000201512645513300012434 00000000000000Þ• l ¼ðñ  ! /:Odsî{j ‘ ­ºÑê  * General options: * Other options: Error %s Error %s: %s Error: %s Optional arguments: Required arguments: Server error. unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Basque (http://www.transifex.com/projects/p/certmonger/language/eu/) Language: eu MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 * Aukera orokorrak: * Beste aukerak: Errorea %s Errorea %s: %s Errorea: %s Hautazko argumentuak: Beharrezko argumentuak: Zerbitzariaren errorea. ezezagunacertmonger-0.78.6/po/et.gmo0000664000175000017500000000101312645513300012430 00000000000000Þ•$,8Ñ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Estonian (http://www.transifex.com/projects/p/certmonger/language/et/) Language: et MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/es_ES.gmo0000664000175000017500000000102412645513300013020 00000000000000Þ•$,8Ú9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Spanish (Spain) (http://www.transifex.com/projects/p/fedora/language/es_ES/) Language: es_ES MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/es.gmo0000664000175000017500000006647412645513300012455 00000000000000Þ•÷ÔKŒ¸&¹%à("-Ky"™&¼ã ( 7#E'i‘˜Ÿ¨ ÃÑ çô%E[(t$-Â)ð2I'[#ƒ§ À Í Ù ç+ó&2F1y)«$Õ,ú''2OE‚3È,ü/),Y'†>®íC:E9€Sº83G:{:¶6ñ:(=c8¡'ÚB<E#‚8¦?ß9 EY (Ÿ 3È #ü > !?_!:Ÿ!.Ú!G "6Q";ˆ":Ä"6ÿ"I6#,€#"­#2Ð#($,$H$(c$Œ$¦$¶$!Ð$ò$% %$@%#e%(‰%²%0Ñ%&6&&K& r&*“& ¾&ß&î& ý& '' 7'KA'%'#³'+×',('0(X("v(%™(8¿(;ø(4)P) p) z))ˆ)!²)Ô)%ð))*@*0W*ˆ*¡*!Á*Eã*B)+Ol+L¼++ ,5,S,2m,  ,#«,-Ï,6ý,(4-]-<}-Cº-þ-#.$>.c..|.«.+°. Ü.(ý.!&/)H/r///4¿/ô/60)E0*o0&š0 Á0%Í0ó01M)1Gw17¿1÷1 22!;2a]2;¿2û2% 3<13<n3?«3/ë3$4#@4d4|4%“4!¹4Û42í4 555Q5e5x5‡5C52á526nG6H¶6&ÿ6!&7+H7Rt76Ç7-þ72,8A_8$¡81Æ88ø8 19R9+o9›9·9Ñ9ï9 :,:I:#g:‹:"§:Ê:ïÒ:.Â<%ñ<=24=9g=$¡='Æ=.î=>;>D>V>m>|>XŽ>&ç>???3? S?`??T?ä?$@#&@ J@5k@/¡@;Ñ@5 A%CA"iAŒA5¤A/ÚA B &B 3B ?B LB5XB2ŽB8ÁB8úB13C-eCF“CBÚC4DERD<˜D.ÕD6E4;E4pEZ¥EFYF<rF?¯F\ïFKLGR˜G:ëG5&H=\HIšHLäH@1I:rIƒ­IH1J&zJA¡J†ãJGjKG²K/úKD*L+oLK›LzçL:bM1MnÏMA>N;€NA¼NDþNaCO>¥O_äO6DP;{P·PÖP*óPQ9Q"MQ6pQ§Q(¾Q çQ3R'l^?«^.ë^6_.Q_9€_Bº_-ý_?+`@k`7¬`6ä`a),a#Va-zac¨ah bGub½bÕb(åb,c\;cE˜cÞc#îcBdIUdYŸdAùd(;e)deŽeªe.Åe+ôe f@7fxffªf¼fÔfèfTg>Xg>—g•ÖgHlh*µh'àh.iT7i@Œi"Íi*ðiHj5dj=šjWØj40kek2ƒk"¶k"Ùk%ük"l@l&_l,†l0³läl0ÿl 0móIÜ?w”™OйîË<éŒcL Ñß*–&8AxØ€½ÚÕ¤m†ˆÍ ²v,°'±y"˜ƒð3rND9hŠW¬+{!Ÿu…‚ÞV1«^³ÁUïâY›ö“Ý’ª‘ê)ëdέ„sKM.kÙ®ç© P¯ ‹ÖÇœR¥#—-EÉ:Jµá$]•CÏ[´BäæHÃñ`lÒ £Åì;ò\4‡a×2tÔXšõ¢À¶Žif>¡È6bå¾àʸ(Z»¼ºgžÌÆ_¿ô=~p|TF÷z·on5Gj0S%q}íeÄãÛ‰@Ó7§¦/ èQ¨ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -d DIR return status for the request in this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -f FILE return status for cert stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -n NAME return status for cert which uses this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors -w try to wait for the certificate to be issued %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: * Selecting a specific request: * When using an NSS database for storage: * When using files for storage: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Data for CA '%s' being refreshed. Data for unnamed CA being refreshed. Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error connecting to D-Bus. Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:Launching temporary dedicated service daemon. NONENeither CA nickname nor -a flag specified. New signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".No system bus running. None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s' NOT being refreshed. Request ID '%s' being refreshed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Running as UID 0. Server error. State %s, stuck: %s. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s refresh [options] Usage: %s refresh-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s status [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Spanish (http://www.transifex.com/projects/p/certmonger/language/es/) Language: es MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B no usar un tiempo de inactividad -F forzar NSS en modo FIPS -S usar system bus -b TIMEOUT bus-activated, tiempo de inactividad -d LEVEL establecer nivel de depuración (implica -n) -f conviértase en demonio -n no se convierta en demonio -p FILE escribir servicio PID al archivo -s usar session bus CA: %s ⇥Dirección IP: auto renovación: %s ca-error: %s tipo de tca: %s »certificado: tipo=%s,ubicación='%s'default profile/template/certtype: %s dns: eku: correo electrónico: error refrescando los datos CA expira: %s ubicación del asistente: %s generador: %s »par de clave almacenada: tipo=%s utilización de clave: %s known profiles/templates/certtypes: nombres de generadores conocidos: número de serie siguiente: %s ⇥otros certificados guardados en la base de datos: ⇥otros certificados guardados en un archivo: ⇥otros certificados raíz guardados en la base de datos: ⇥otros certificados raíz guardados en un archivo: comando de almacenado posterior: %s comando de almacenado previo: %s nombre del principal: ⇥certificados raíz guardados en la base de datos: ⇥certificados raíz guardados en un archivo: auto-identificado como: %s estado: %s stuck: %s asunto: %s track: %s -A ADDRESS⇥remplazar la dirección IP solicitada -A ADDRESS⇥define la dirección IP solicitada -B comando a ejecutar antes de guardar el certificado -C comando a ejecutar luego de guardar el certificado -D DNSNAME reemplazar el nombre DNS solicitado -D DNSNAME define el nombre DNS solicitado -E EMAIL reemplazar la dirección de correo electrónico solicitada -E EMAIL define la dirección de correo electrónico solicitada -F archivo en el cual almacenar los certificados CA -G TYPE⇥tipo de llave a ser generada si no hay alguna en su lugar -I NAME nuevo apodo a darle a la petición de seguimiento -I NAME apodo a ser asignado a la petición -I NAME apodo a darle a la petición de seguimiento -K NAME reemplazar el nombre principal solicitado -K NAME define el nombre del principal solicitado -N NAME define el nombre del asunto solicitado (predeterminado: CN=) -P PIN valor del PIN -R no intentar renovar el certificado cuando el momento de expiración esté próximo -S conectar al servicio certmonger en el bus del sistema -S conectar con el servicio certmonger en el bus del sistema -T PROFILE pide a CA el proceso de la solicitud utilizando el perfil o el modelo invocado -U EXTUSAGE reemplazar la utilización de llave extendida OID solicitada -U EXTUSAGE define la utilización OID de la extensión de la llave solicitada -a base de datos en la cual almacenar los certificados CA -c CA utilizar el CA indicado en lugar del actual -c CA utilizar el CA indicado en lugar del predeterminado -c CA lista sólo la información de este nombre relacionada con el CA -c CA lista sólo las peticiones y los certificados asociados con este CA -c CA refresca la información acerca de los CA con este nombre -d DIR base de datos NSS para la llave y el certificado -d DIR» sólo lista los pedidos y certificados que usa esta base de datos NSS -d DIR devuelve el estado para las peticiones en esta base de datos NSS -f FILE archivo PEM del certificado -f FILE archivo PEM para el certificado (sólo válido con -k) -f ARCHIVO »sólo lista los pedidos y certificados guardados en este archivo PEM -f ARCHIVO devuelve el estado para cert almacenado en este archivo PEM -g SIZE tamaño de la llave a ser generada si aún no existe ninguna -i NAME apodo de la petición de seguimiento -i NAME nombre de apodo de una petición de seguimiento existente -k FILE archivoPEM para la llave privada -n NAME apodo para el almacenamiento basado en NSS (sólo valido con -d) -n NOMBRE»sólo lista los pedidos y certificados que usan este apodo -n NOMBRE devuelve el estado para cert que usa este apodo -p FILE archivo que contiene el PIN de cifrado -r intento de renovación del certificado cuando el momento de expiración esté próximo (predeterminado) -r lista sólo la información acerca de peticiones destacadas -s conectar al servicio certmonger en el bus de sesión -s conectar con el servicio certmonger en el bus de la sesión -t lista sólo información acerca de certificados en seguimiento -t NAME nombre opcional de la ficha para el almacenamiento basado en NSS (sólo valido con -d) -u KEYUSAGE fijado el valor de utilzación de clave pedido -v»informar todos los detalles de errores -w intenta esperar que los certificados sean emitidos %s . herramienta de inscripción de certificado de cliente %s: opción no valida -- '%c' %s: valor inválido -- '%s' %s: opción requiere un argumento -- '%c' %s: comando no reconocido * Opciones de Bus: * Por identificador de petición: * Configuración de la manipulación del certificado: * Opciones generales: * Si las llaves se encuentran cifradas: * si la llaves serán cifradas: * Si se está modificando una petición existente: * Si selecciona un pedido específico: * si se está utilizando para el almacenamiento una base de datos NSS: * si se están utilizando archivos para el almacenamiento: * Nuevos valores de los parámetros de la petición de identificación: * Otras opciones: * Parámetros para la solicitud de firma en el momento de la renovación: * Parámetros para la petición de identificación: * Seleccione una petición específica * cuando se usa una base de datos NSS para almacenamiento * cuando se usan archivos para almacenamiento: ,ubicación='%s',usuario='%s',archivopin='%s',token='%s'Ha ocurrido un error interno.CA '%s': Un certificado en la misma ubicación ya está siendo utilizado por la petición hecha con el alias "%s".No se conoce la autoridad "%s" del certifiicado. No ha sido especificado un apodo de certificado.No ha sido indicada una ubicación del certificado de almacenamiento.No existe soporte para el tipo "%s" de certificado de almacenamiento.No ha sido especificado el tipo de certificado de almacenamiento.No se pudo evaluar OID "%s". Datos para CA '%s' se están refrescando. Datos para CA innombrados están refrescándose. Han sido especificados el directorio de la base de datos y el archivo de certificado. La ubicación de la base de datos, o el apodo, han sido indicados el uno sin el otro. Error %d conectando a %s. Error %d conectando a %s: %s. Error %s Error %s: %s Error intentando enviar "%s" hacia "%s". Error intentando enviar "%s". Error conectándose a D-Bus. Error creando mensaje de petición DBus. Erro al inicializar la biblioteca Kerberos: %s. Error modificando "%s". Error analizando el nombre "%s"del principal de Kerberos: %s. Error analizando argumentos.Error analizando la respuesta del servidor. Error al definir los argumentos de la petición. Error definiendo ccache para "%s" en el cliente utilizando el keytab predeterminado: %s. Error definiendo ccache para "%s" en el cliente utilizando el keytab "%s": %s. Error definiendo ccache para el servicio del "equipo" utilizando el keytab predeterminado: %s. Error definiendo ccache para el servicio del "equipo" en el cliente utilizando el keytab "%s": %s Error configurando para XMLRPC en el cliente Error al definir XMLRPC. Error al apagar NSS Error al dejar de analizar el nombre "%s" del principal de Kerberos: %s. Error: %s Error: argumento extra no utilizado "%s". Error: se enviaron argumentos extra no usados. Acceso insuficiente. Por favor reintente la operanción como root. Error interno: no hay respuesta para "%s?%s". Error interno: estado desconocido. La llave y el certificado no pueden ambos ser guardados en un mismo archivo. Una llave en la misma ubicación ya está siendo utilizada por la petición hecha con el alias "%s".No ha sido especificado un apodo de llave.No ha sido especificada una ubicación de la llave.No existe soporte para el tipo "%s" de llave de almacenamiento.Los tipos de llaves conocidos incluyen:Iniciando temporalmente un demonio de servicio dedicado. NINGUNONingún apodo CA y ningúna bandera -a especificada. Ha sido agregada una nueva petición "%s" de identificación. Ha se ha podido agregar la nueva petición de identificación. Nueva solicitud de seguimiento "%s" agregada. Nueva solicitud de seguimiento no puede ser agregada. No se ha encontrado un CA con el nombre "%s". Sin URL agente (-A) dada, y no hay conocido por defecto Sin URL de entidad final (-E) dada, y no hay conocida por defecto No se ha encontrado una entrada coincidente. Sin pérfil/plantilla (-T) dado, y no hay conocido por defecto No se encontraron solicitudes que coincidan con los argumentos. No han sido halladas peticiones con el alias indicado. No se ha recibido una respuesta desde el servicio %s. No existe el CA.Sin soporte para generar las llaves "%s" Sin soporte para tipo de llave %s".Ningún bus del sistema se está ejecutando. No se ha especificado ningún ID, o directorio de base de datos y apodo, o archivo de certificado. No han sido especificados ni el directorio de la base de datos, ni el apodo del archivo de certificado. Cantidad de peticiones y certificados que están siendo rastrados: %d. Argumentos opcionales: Falta memoria. La dirección "%s" no es un directorio. La dirección "%s" no es un archivo común. La ruta "%s" no es absoluta, y hubo un error al determinar el nombre del directorio actual. La dirección "%s" no es absoluta, intentando usar "%s" en su lugar. Ruta "%s": %s. Ruta "%s": permisos insuficientes. Por favor verifique que el servicio certmonger ha sido arrancado. Por favor verifique que el servicio certmonger está todavía corriendo. Por favor verifique que el servicio de bus de mensajes (D-Bus) se encuentre funcionando. Se ha recibido una respuesta de erro desde el servicio %s local. Solicitud "%s" no puede ser modificada. La solicitud "%s" no pudo ser eliminada. Solicitud "%s" modificada. Solicitud "%s" eliminada. Petición de ID '%s' NO se está refrescando. Petición de ID '%s' se está refrescando. ID de solicitud '%s': Se solicitó renovación, pero no se indicó númerio de serie. Argumentos requeridos: Reenviando "%s" to "%s". Reenviando "%s". Ejecutando como UID 0. Error de servidor. Estado %s, pendiente: %s. La opción -K no puede ser utilizada junto con la opción -k, ni con la opción -t. La opción -k no puede ser utilizada junto con la opción -K. La opción -t no puede ser utilizada junto con la opción -K. El motor de IPA necesita la utilización de la opción -K (el nombre del principal) cuando se esté utilizando la opción -N (el nombre del asunto). La ubicación "%s" no pudo ser accesada debido a permisos insuficientes.La ubicación "%s" debe ser un directorio.La ubicación "%s" debe ser un archivo.La ubicación "%s" debe ser una ruta absoluta.El padre de la ubicación "%s" no pudo ser accesado debido a permisos insuficientes.El paterno de la ubicación "%s" debe ser un directorio válido.Ya existe un CA con el apodo "%s".Ya existe una petición con el apodo "%s".No es posible determinar la base DN de el dominio de en el servidor IPA No es posible determinar el nombre del equipo de CA. No es posible determinar la ubicación del servidor IPA LDAP No es posible determinar el nombre del principal para la petición de identificación. No es posible leer la petición de identificación. keyUsage "%s" no reconocido. Parámetro irreconocible o tipo de valor erróneo.Nombre de propiedad no reconocido.Utilización: %s lista [opciones] Utilización: %s list-cas [opciones] Uso: %s refrescar [opciones] Uso: %s refresh-ca [opciones] Utilización: petición %s [opciones] Utilización: %s volver a enviar [opciones] Utilización: %s iniciar seguimiento [opciones] Uso: %s estado [opciones] Utilziación: %s detener seguimiento [opciones] desconocidocertmonger-0.78.6/po/eo.gmo0000664000175000017500000000101412645513300012424 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Esperanto (http://www.transifex.com/projects/p/certmonger/language/eo/) Language: eo MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/en_GB.gmo0000664000175000017500000000104112645513300012773 00000000000000Þ•$,8ç9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/certmonger/language/en_GB/) Language: en_GB MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/el.gmo0000664000175000017500000000101012645513300012415 00000000000000Þ•$,8Î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Greek (http://www.transifex.com/projects/p/certmonger/language/el/) Language: el MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/dz.gmo0000664000175000017500000000100412645513277012452 00000000000000Þ•$,8Ê9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Dzongkha (http://www.transifex.com/projects/p/certmonger/language/dz/) Language: dz MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/de_CH.gmo0000664000175000017500000000103512645513277013003 00000000000000Þ•$,8ã9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: German (Switzerland) (http://www.transifex.com/projects/p/certmonger/language/de_CH/) Language: de_CH MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/de.gmo0000664000175000017500000005102212645513277012432 00000000000000Þ•À &!%Hn(Š-³á"&$Khq‚ ‘#ŸÃÊÑ Úè þ &6Le}” ¦ ³ ¿ Í2Ù1 )>$h,'º3â,/C,s' >ÈC:_9šSÔ8(3a:•6Ð:=B'€B¨#ë8?HEˆ(Î3÷#+>O?Ž.ÎGý6E;|:¸6óI*,t"¡(Äí( 2L\!v˜¬Æ$æ# (/X0w¨6º&ñ' 6 DP pKz%Æ#ì+,<'i‘8¯;è$ @ ` j )x !¢ %Ä )ê !0+!\!!|!ž!2¼! ï!#ú!-"6L"(ƒ"¬"<Ì"C #M##i#$#²# ·#(Ø#!$)#$M$/j$4š$Ï$6é$) %*J%&u% œ%M¨%Gö%7>&v&‹&›&!º&aÜ&;>'z'<Š'<Ç'?(/D($t(#™(½(Õ(ì(þ()/)C)CR)2–)2É)nü)&k*!’*+´*6à*-+2E+$x+8+ Ö+÷++,@,Z,x,•,#³,"×,ú,î-4ñ.)&/!P/4r/4§/"Ü/(ÿ/*(0#S0w0€0”0 ¤0±0Ñ0Ø0 ß0 é0ö01 #1D1^1z1 –1·1×1 é1ö1 2 2>(2>g22¦2-Ù243/<37l3-¤37Ò34 40?4Gp4¸4MË4>5=X5o–5Q6LX6H¥6Gî6K67]‚76à7Q8%i8:8\Ê8W'9-9:­9.è9F:N^:<­:Gê:52;@h;?©;>é;S(<I|<!Æ<(è< =/2=b={=‹=.¤=Ó=(ë=1>2F>,y>1¦>0Ø>0 ?:?CO?&“? º?Æ?×? é?$÷? @[(@+„@)°@0Ú@; A2GA*zAH¥A2îA!B$>B cBnB6}B,´B0áB<C#OCBsC(¶C)ßC# DD-D rD7~D?¶DHöD+?E%kER‘E[äE)@F2jF6FÔF0ÛF7 G5DG<zG;·G;óG@/H!pH@’H=ÓH2I&DI#kIHIKØI6$J[JqJ"ˆJ'«JnÓJIBKŒKBžKKáK4-L.bL.‘L-ÀL îLM/MGM%^M„M MI°MFúMFANvˆN$ÿN$$O,IOEvO8¼O6õOJ,PCwP-»P'éP0QBQ^Q~QQ%½Q$ãQ RÀ p‘hJ³’\“sŠ¹˜c{¢™ƒSCœN—g–°Œ U¸¥a¼ªF·d&?¤w²'YbvºL•|H"Ž€EOž+zy)›$š;‹WGr­}Z½V~¶7x0#„[‰4noµ‚«Q(…¾2t:*=9 ®¨iR,^j!`3¿uX¦ k”.‡A´e>PmB8I5D6T±¯/¡l ] ©§M 1ˆqKŸ<†¬f»_%-£@ -B don't use an idle timeout -F force NSS into FIPS mode -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known-issuer-names: next-serial-number: %s post-save command: %s pre-save command: %s principal name: status: %s stuck: %s subject: %s track: %s -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: German (http://www.transifex.com/projects/p/certmonger/language/de/) Language: de MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B kein Timeout der Leerlaufzeit verwenden -F NSS in FIPS-Modus ausführen -S System-Bus verwenden -b TIMEOUT bus-aktiviert, Timeout der Leerlaufzeit -d LEVEL Debugging-Stufen setzen (impliziert -n) -f als Dämon ausführen -n nicht als Dämon ausführen -p FILE Dienst-PID in Datei schreiben -s Sitzungs-Bus verwenden CA: %s Auto-Erneuern: %s CA-Fehler: %s CA-Typ: %s Zertifikat: Typ=%s, Ort=»%s« DNS: EKU: E-Mail: Ablauf: %s Helper-Speicherort: %s Ausgabestelle: %s Schlüsselpaar-Speicher: Typ=%sSchlüsselbenutzung: %s Bekannte Ausstellernamen: Nächste Seriennummer: %s »Befehl nach dem Speichern: %s »Befehl vor dem Speichern: %s Principal-Name: Status: %s stecken geblieben: %s Subjekt: %s Track: %s -B»Auszuführender Befehl vor dem Speichern des Zertifikats -C Auszuführender Befehl nach dem Speichern des Zertifikats -D DNSNAME angefragten DNS-Namen überschreiben -D DNSNAME Angefragten DNS-Namen festlegen -E EMAIL angefragte E-Mail-Adresse überschreiben -E EMAIL Angefragte E-Mail-Adresse festlegen -I NAME Neuer Kurzname für die Ãœberwachungsanfrage -I NAME der Anfrage zuzuordnender Kurzname -I NAME Neuer Kurzname für die Ãœberwachungsanfrage -K NAME angefragten Principal-Name überschreiben -K NAME Angefragten Principal-Namen festlegen -N NAME Angefragten Subjektnamen festlegen (Standard: CN=) -P PIN PIN-Wert -r nicht versuchen, kurz vor Ablauf das Zertifikat zu erneuern (Standard) -S mit dem Certmonger-Dienst über den Systembus verbinden -S mit dem Certmonger-Dienst über den Systembus verbinden -T PROFILE Anfrage an CA, um den Antrag unter Verwendung des benannten Profils oder der Vorlage auszuführen -U EXTUSAGE Angefragte OID für erweiterte Schlüsselverwendung überschreiben -U EXTUSAGE Angefragte OID für erweiterte Schlüsselverwendung festlegen -c CA Angegebene Zertifizierungsstelle statt der aktuellen verwenden -c CA Angegebene Zertifizierungsstelle statt der aktuellen verwenden -c CA Nr Informationen zu Zertifizierungsstellen dieses Namens auflisten -c CA Nur die dieser Zertifizierungsstelle zugeordneten Anfragen und Zertifikate auflisten -d DIR NSS-Datenbank für Schlüssel und Zertifikat -d VERZ nur Anfragen und Zertifikate auflisten, die diese NSS-Datenbank nutzen -f DATEI PEM-Datei des Zertifikats -f DATEI PEM-Datei für Zertifikat (nur gültig mit -k) -f DATEI nur Anfragen und Zertifikate auflisten, die in dieser PEM-Datei gespeichert sind -g GRÖSSE Größe des zu generierenden Schlüssels, falls noch keiner vorhanden ist -i NAME Kurzname für Ãœberwachungsanfrage -i NAME Kurzname für existierende Ãœberwachungsanfrage -k DATEI PEM-Datei für geheimen Schlüssel -n NAME Kurzname für NSS-basierte Speicherung (nur gültig mit -d) -n NAME nur Anfragen und Zertifikate auflisten, die diesen Kurznamen nutzen -p DATEI Datei, welche die Verschlüsselungs-PIN enthält -r versuchen, kurz vor Ablauf das Zertifikat zu erneuern (Standard) -r Nur Informationen zu offenen Anfragen auflisten -S mit dem Certmonger-Dienst über den Sitzungsbus verbinden -S mit dem Certmonger-Dienst über den Sitzungsbus verbinden -t Nur Informationen zu überwachten Zertifikaten auflisten -t NAME optionaler Token-Name für NSS-basierte Speicherung (nur gültig mit -d) -u SCHLÃœSSELNUTZUNG Gewünschter Wert für SchlüsselBenutzung setzen -v Alle Fehlerdetails ausgeben %s - Tool z. Client-Zertifikatanmeldung %s: ungültige Option -- »%c« %s: Option erfordert einen Parameter -- »%c« %s: Unbekannter Befehl. * Busoptionen: * Nach Anfrage-Kennung: * Einstellungen für Umgang mit Zertifikaten: * Allgemeine Optionen: * Falls Schlüssel verschlüsselt sind: * Falls Schlüssel verschlüsselt werden sollen: * Falls eine existierende Anfrage geändert wird: * Falls bestimmte Anfrage ausgewählt wird: * Falls in einer NSS-Datenbank gespeichert wird: * Falls Dateien zum Speichern verwendet werden: * Neue Parameterwerte für die Signaturanfrage: * Weitere Optionen: * Parameter für die Signaturanfrage zum Zeitpunkt der Erneuerung: * Parameter für die Signaturanfrage: ,Ort=»%s«,Kurzname=»%s«,PIN-Datei=»%s«,Token=»%s«Ein interner Fehler ist aufgetreten.CA »%s«: Zertifikat am gleichen Speicherort wird bereits von Anfrage mit Kurznamen »%s« verwendet.Zertifizierungsstelle »%s« ist unbekannt.Kurzname des Zertifikats nicht angegeben.Speicherort für Zertifikat ist nicht angegeben.Speichertyp »%s« des Zertifikats wird nicht unterstützt.Speichertyp des Zertifikats wurde nicht angegeben.OID »%s« konnte nicht ermittelt werden. Sowohl Datenbankordner als auch Zertifikatdatei wurden nicht angegeben. Ort der Datenbank oder Kurzname allein angegeben. Fehler %d connecting to %s. %d-Fehler beim Verbinden zu %s: %s. Fehler %s Fehler %s: %s Fehler beim Versuch, »%s« an »%s« zu übertragen. Fehler beim Versuch, »%s« zu übertragen. Fehler beim Erstellen der D-Bus-Anfragemeldung. Fehler bei der Initialisierung der Kerberos-Bibliothek: %s. Fehler beim Bearbeiten von »%s«. Fehler beim Parsen des Principal-Namens »%s« für Kerberos: %s. Fehler beim Abfragen der Serverantwort. Fehler beim Setzen der Anfrageparameter. Fehler beim Einrichten von XMLRPC. Fehler beim Unparsen des Principal-Namens »%s« für Kerberos: %s. Fehler: %s Fehler: unbenötigter, zusätzlicher Parameter »%s«. Fehler: unbenötigte, zusätzliche Parameter wurden angegeben. Unzureichende Berechtigung. Bitte führen Sie die Aktion als Root aus. Interner Fehler: Keine Antwort an "%s?%s". Interner Fehler: Unbekannter Status. Schlüssel und Zertifikat können nicht in der gleichen Datei gespeichert werden. Schlüssel am gleichen Speicherort wird bereits von Anfrage mit Kurznamen »%s« verwendet.Kurzname des Schlüssels nicht angegeben.Speicherort des Schlüssels wurde nicht angegeben.Speichertyp »%s« für Schlüssel nicht unterstützt.NICHTSNeue Signaturanfrage »%s« wurde hinzugefügt. Neue Signaturanfrage konnte nicht hinzugefügt werden. Neue Ãœberwachungsanfrage »%s« wurde hinzugefügt. Neue Ãœberwachungsanfrage konnte nicht hinzugefügt werden. Keine Zertifizierungsstelle mit dem Namen »%s« gefunden. Keine Agent-URL (-T) angegeben, Standarwert nicht gesetzt. Keine End-Entity-URL (-T) angegeben, Standarwert nicht gesetzt. Kein passender Eintrag gefunden. Kein Profil/ Vorlage (-T) angegeben, Standarwert nicht gesetzt. Keine mit den Parametern übereinstimmende Anfrage gefunden. Keine Anfrage mit angegebenem Kurznamen gefunden. Keine Antwort vom %s-Dienst erhalten. Keine solche Zertifizierungsstelle.Kennung, Datenbankordner, Kurzname und Zertifikatdatei nicht angegeben. Weder Datenbankordner noch Kurzname oder Zertifikatdatei wurden angegeben. Anzahl der Zertifikate und überwachten Anfragen: %d. Optionale Parameter: Ungenügend Speicher. Pfad »%s« ist kein Verzeichnis. Pfad »%s« ist keine reguläre Datei. Pfad »%s« ist nicht absolut. Außerdem trat beim Ermitteln des Namens des aktuellen Ordners ein Fehler auf. Pfad »%s« ist nicht absolut, versuche stattdessen »%s« zu verwenden. Pfad »%s«: %s. Bitte überprüfen Sie, ob der Certmonger-Dienst gestartet wurde. Bitte vergewissern Sie sich, dass der Certmonger-Dienst immer noch läuft. Bitte überprüfen Sie, ob der D-Bus-Dienst läuft. Fehlermeldung erhalten vom lokalen Dienst %s. Anfrage »%s« konnte nicht geändert werden. Anfrage »%s« konnte nicht entfernt werden. Anfrage »%s« wurde geändert. Anfrage »%s« wurde entfernt. Anfragekennung »%s«: Benötigte Parameter: »%s« erneut an »%s« übertragen. »%s« erneut übertragen. Server-Fehler. Die -K Option kann weder mit der -k noch der -t Option verwendet werden. Die -k Option kann nicht zusammen mit der -K Option verwendet werden. Die -t Option kann nicht zusammen mit der -K Option verwendet werden. Das IPA-Backend benötigt die Option -K (Name des Principals), wenn die Option -N (Name des Subjekts) verwendet wird. Der Ort »%s« muss ein Ordner sein.Der Ort »%s« muss eine Datei sein.Der Ort »%s« muss ein absoluter Pfad sein.Ãœbergeordnete Ebene des Ortes »%s« muss ein gültiger Ordner sein.Es gibt bereits ein Zertifikat mit dem Kurznamen »%s«.Es gibt bereits eine Anfrage mit dem Kurznamen »%s«.Rechnername der Zertifizierungsstelle (CA) konnte nicht ermittelt werden. Principal-Name für Signaturanfrage konnte nicht ermittelt werden. Signaturanfrage konnte nicht gelesen werden. Unbekannte SchlüsselBenutzung »%s«. Nicht erkannter Parameter oder falscher Werttyp.Aufruf: %s list [Optionen] Aufruf: %s list-cas [Optionen] Aufruf: %s request [Optionen] Aufruf: %s resubmit [Optionen] Aufruf: %s start-tracking [Optionen] Aufruf: %s stop-tracking [Optionen] unbekanntcertmonger-0.78.6/po/da.gmo0000664000175000017500000003740112645513277012433 00000000000000Þ•›ôÓÌ   " 3 B #P t { ‚ ‹ ™ ¯ ¼ × í   % 1 ?)K$u,š'Ç3ï,#/P,€'­>ÕC(:l9§8á3:N6‰:À=û'9Ba#¤8È?EA(‡3°#ä>?G.‡G¶6þ;5:q6¬Iã"-(Py“£!½ßó $-#R(vŸ0¾ï6&8_n } ‹— ·%Á#ç+ ,7'dŒ8ª;ã  ))7!a%ƒ)©Ó0ê!;]2{ ®-¹<ç$#@$d‰ Ž(¯!Ø)ú$A)[&… ¬M¸G7N†›«!Êaì;N?Š/Ê$ú# C [ r „ ™ µ É nØ &G!!n!+!6¼!-ó!2!"$T"8y" ²"+Ó"ÿ"#7#T##r#"–#¹#îÁ#°%¹% Ê% Ø%Væ%=&D& K&U&d&|&R‹&Þ&ö& ' ')' 8' C'+N''z'0¢',Ó'8(09(4j()Ÿ(%É(@ï(0)DE)6Š)5Á)9÷)51*9g*5¡*4×*F +1S+…+ ,4(,~],\Ü,,9-9f-# -@Ä-}..ƒ.J².5ý.83/7l/0¤/IÕ/Z0.z0©0¾0%Ó0+ù0%1;1Y10y1*ª1/Õ1!28'2`2Ar2)´2Þ2î2 þ2 33 33(=3!f3-ˆ33¶3(ê34124:d4Ÿ4 ¨4.µ4%ä48 57C5{55™5&Ï54ö5!+64M6 ‚6.Œ6:»6 ö6(7.@7o7+u71¡7)Ó7/ý7!-8 O85p8&¦8Í8HÞ8?'9;g9£9¸9Õ9&ó9h:=ƒ::Á:*ü:'';'O;w;“;°;É;â;ü; <]<%x<#ž<+Â<1î<+ =6L=(ƒ=;¬=*è=0>D>\>!x>š>!·> Ù>ú>=bLOP-)|–/_Ats+N‚]q#67„H4[.I*…Vld˜}$E‘x!š,SBˆ2‡\Tfi ;a oy”3?~( %&X‰<hCeg›K8™Œƒ —GŽ^z‹0Y15>†•@"`’Jr9pUQ“€jWZw{FŠDcnm' kMRv:u CA: %s auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s known-issuer-names: next-serial-number: %s principal name: status: %s stuck: %s subject: %s track: %s -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -v report all details of errors %s - client certificate enrollment tool %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra arguments were supplied. Key and certificate can not both be saved to the same file. Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No matching entry found. No request found that matched arguments. No response received from %s service. No such CA.None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s': Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 05:00-0500 Last-Translator: Nalin Dahyabhai Language-Team: Danish (http://www.transifex.com/projects/p/certmonger/language/da/) Language: da MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 CA: %s auto-forny: %s ca-fejl: %s ca-type: %s »certifikat: type=%s,placering='%s' dns: eku: e-post: udløber: %s hjælperplacering: %s udsteder: %s »lagring for nøglepar: type=%s kendte udstedernavne: næste serienummer: %s hovednavn: status: %s sat fast: %s emne: %s spor: %s -D DNSNAVN overskriv forespurgt DNS-navn -D DNSNAVN angiv forespurgt DNS-navn -E E-POST overskriv forespurgt e-post-adresse -E E-POST angiv forespurgt e-post-adresse -I NAVN nyt kaldenavn at give til fulgt forespørgsel -I NAVN kaldenavn at tillægge forespørgslen -I NAVN kaldenavn at give til fulgt forespørgsel -K NAVN overskriv forespurgt hovednavn -K NAVN angiv forespurgt hovednavn -N NAVN angiv forespurgt emnenavn (standard: CN=) -P PIN PIN-værdi -R forsøg ikke at forny certifikatet nÃ¥r udløbsdatoen er nær -S forbind til certmonger-tjenesten i systembussen -S forbind til tjenesten certmonger i systembussen -U EXTBRUG overskriv forespurgt udvidet nøglebrug OID -U EXTBRUG angiv forespurgt udvidet nøglebrug OID -c CA brug den angivne CA i stedet for den nuværende -c CA brug den angivne CA i stedet for standarden -c CA vis kun information om CA'et med dette navn -c CA vis kun forespørgsler og certifikater forbundet med denne CA -d MAPPE NSS-database for nøgle og certifikat -d MAPPE»oplister kun forespørgsler og certs som bruger denne NSS-database -f FIL PEM-fil til certifikat -f FIL PEM-fil til certifikat (kun gyldig med -k) -f FIL»oplister kun forespørgsler og certs, som er gemt i denne PEM-fil -g STØRRELSE størrelsen pÃ¥ nøglen som skal genereres hvis der ikke allerede findes en -i NAVN kaldenavn for fulgt forespørgsel -i NAVN kaldenavn for eksisterende fulgt forespørgsel -k FIL PEM-fil til privat nøgle -n NAVN kaldenavn for NSS-baseret lagring (kun gyldig med -d) -n NAVN»oplister kun forespørgsler og certs som bruger dette kaldenavn -p FIL filen som indeholder krypterings-PIN -r forsøg at forny certifikatet nÃ¥r udløbsdatoen er nær (standard) -r vis kun information om specielle forespørgsler -s forbind til certmonger-tjenesten i sessionsbussen -s forbind til tjenesten certmonger i sessionsbussen -t vis kun information om fulgte certifikater -t NAVN valgfri symbolnavn til NSS-baseret lagring (kun gyldig med -d) -v»rapportér alle deltaljer om fejl %s - udrulningsværktøj for klientcertifikat %s: ukendt kommando * Busindstillinger: * Efter forespørgselsidentifikator: * Indstillinger for certifikathÃ¥ndtering: * Generelle tilvalg: * Hvis nøgler er krypteret: * Hvis nøgler skal krypteres: * Hvis en eksisterende forespørgsel redigeres: * Hvis en specifik forespørgsel vælges: * Hvis der bruges en NSS-database til lagring: * Hvis filer bruges til lagring: * Nye parameterværdier til signering af forespørgsel: * Andre tilvalg: * Parametre til signeringsforespørgsel ved fornyelsestidspunkt: * Parametre til signeringsforespørgsel: ,placering='%s',kaldenavn='%s',pinfil='%s',symbol='%s'Der opstod en intern fejl.CA "%s": Certifikatsautoritet "%s" er ikke kendt.Certifikatkaldenavn ikke angivet.Certifikatslagringsplacering er ikke angivet.Certifikatslagringstype "%s" er ikke understøttet.Certifikatslagringstype er ikke angivet.Kunne ikke evaluere OID "%s". Databasemappe og certifikatfil er begge angivet. Databaseplacering eller kaldenavn angivet uden den anden. Fejl %s Fejl %s: %s Fejl under forsøg pÃ¥ sending "%s" til "%s". Fejl under forsøg pÃ¥ sending "%s". Fejl under oprettelse af forespørgselsbesked for DBus. Fejl under initialisering af Kerberos-biblioteket: %s. Fejl under ændring af "%s". Kunne ikke fortolke hovednavn for Kerberos "%s": %s. Fejl under fortolkning af serversvar. Fejl under indstilling af forespørgselsargumenter. Fejl under opsætning af XMLRPC. Kunne ikke aftolke hovednavn for Kerberos "%s": %s. Fejl: %s Fejl: ubrugte ekstra-argumenter blev angivet. Nøgle og certifikat kan ikke blive gemt i den samme fil. Nøglekaldenavn er ikke angivet.Nøglelagringsplacering er ikke angivet.Nøglelagringstype "%s" er ikke understøttet.INGENNy signeringsforespørgsel "%s" tilføjet. Ny signeringsforespørgsel kunne ikke tilføjes. Ny sporingsforespørgsel "%s" tilføjet. Ny sporingsforespørgsel kunne ikke tilføjes. Ingen CA med navnet "%s" fundet. Intet matchende element fundet. Ingen forespørgsel fundet, som matchede argumenter. Intet svar modtaget fra tjenesten %s. Ingen sÃ¥dan CA.Intet ID eller databasemappe og -kaldenavn eller certifikatfil angivet. Ingen databasemappe og kaldenavn eller certifikat-fil angivet. Antallet af certifikater og forespørgsler som spores: %d. Valgfri argumenter: Løbet tør for hukommelse. Stien "%s" er ikke en mappe. Stien "%s" er ikke en almindelig fil. Stien "%s" er ikke absolut, og der opstod en fejl under bestemmelse af navnet pÃ¥ den nuværende mappe. Stien "%s" er ikke absolut, forsøger at bruge "%s" istedet. Kontrollér at tjenesten for beskedbussen (D-Bus) kører. Modtog fejlrespons fra lokal tjeneste %s. Forespørgsel "%s" kunne ikke ændres. Forespørgsel "%s" kunne ikke fjernes. Forspørgsel "%s" ændret. Forespørgsel "%s" fjernet. Forespørgsels-id "%s": PÃ¥krævede argumenter: Gensender "%s" til "%s". Gensender "%s". Serverfejl. IPA-motoren kræver brug af tilvalget -K (hovednavn), nÃ¥r tilvalget -N (emnenavn) er brugt. Placeringen "%s" skal være en mappe.Placeringen "%s" skal være en fil.Placeringen "%s" skal være en absolut sti.Placeringen over "%s" skal være en gyldig mappe.Der er allerede en CA med kaldenavnet "%s".Der er allerede en forespørgsel med kaldenavnet "%s".Kunne ikke bestemme værtsnavnet af CA. Kunne ikke bestemme hovednavn for signeringsforespørgsel. Kunne ikke læse signeringsforespørgsel. Ikke opdaget parameter eller forkert værditype.Brug %s list [tilvalg] Brug: %s vis-cas [tilvalg] Brug: %s forespørgsel [tilvalg] Brug: %s resubmit [tilvalg] Brug: %s start-sporing [tilvalg] Brug: %s stop-sporing [tilvalg] ukendtcertmonger-0.78.6/po/cy.gmo0000664000175000017500000000106512645513277012457 00000000000000Þ•$,8û9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Welsh (http://www.transifex.com/projects/p/certmonger/language/cy/) Language: cy MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=4; plural=(n==1) ? 0 : (n==2) ? 1 : (n != 8 && n != 11) ? 2 : 3; certmonger-0.78.6/po/cs_CZ.gmo0000664000175000017500000000220512645513277013042 00000000000000Þ• l ¼ðñø   ' GRaüi9f; AÜ  ()6 `k {   dns: email: expires: %s Error %s Error %s: %s Error parsing server response. Error: %s Server error. unknownProject-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Czech (Czech Republic) (http://www.transifex.com/projects/p/fedora/language/cs_CZ/) Language: cs_CZ MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2; »dns: »email: »vyprší: %s Chyba %s Chyba %s: %s Chyba pÅ™i pasování odpovÄ›di serveru. Chyba: %s Chyba serveru. neznámýcertmonger-0.78.6/po/cs.gmo0000664000175000017500000000104312645513277012445 00000000000000Þ•$,8é9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Czech (http://www.transifex.com/projects/p/certmonger/language/cs/) Language: cs MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2; certmonger-0.78.6/po/ca.gmo0000664000175000017500000013054212645513277012432 00000000000000Þ•šì #¼H"&I"%p"2–"3É"ý"(#0B#-s#¡#/Á#"ñ#&$;$X$ a$*o$+š$Æ$ß$ð$ ÿ$" %#0%'T%|%ƒ%Š%“% ®%¼% Ò%ß%ú%% &0&F&(_&$ˆ&-­&)Û&''4''F'#n'’'&«''Ò' ú' ( ( !(+-(&Y(2€(1³()å($),4)'a)2‰)E¼)**@-*3n*,¢*/Ï*,ÿ*',+3T+>ˆ+Ç+CÛ++,:K,9†,SÀ,8-3M-:--¼-8ê-*#.6N.:….6À.:÷.=2//p/8 /'Ù/B0<D060>¸0#÷081?T19”1EÎ1*2?2(W23€2#´2:Ø2>3?R3:’3.Í3Gü36D4+{4;§4:ã465IU5,Ÿ5!Ì5"î526(D6m6‰6(¤6Í6ç6÷6!737G7a7$7#¦7(Ê7ó708C86U8&Œ8 ³8*Ô8 ÿ8 9/9 >9 L9X9`9€9…9˜9 ª9´9Ï9!é9 ::5:K=:%‰:#¯:+Ó:,ÿ:',;T; r;"|;%Ÿ;8Å;;þ;:<V< v< €<)Ž<!¸<Ú<ø<%=):=d=0{=¬=Å=å=!>E%>Bk>O®>Lþ>+K?w?•?2¯? â?#í?-@?@H@!Q@s@6v@(­@Ö@<ö@C3AwA#“A$·AÜAõA.úA)B.B3B8B4VB‹B+’B¾BÒB îB(C!8C)ZC„C.¡C/ÐC6D67D4nD£D6½D)ôD*E&IE pE%|E¢EÀEQØEM*FGxF7ÀFøF GG&G-?GmG-†G ´G¾G!ÝGaÿG;aHH%­H<ÓH<I?MI8I/ÆI$öI#J?JWJ%nJ!”J¶J2ÈJûJK,K@KSK[KcKrK7ˆKCÀK2L27LnjLHÙL&"M!IM+kMR—M6êM-!N2ON‚N†N&›NAÂN$O1)O8[O ”OµO+ÒOþOP 6PWPtPŽP¬PËPèPQ#QBQ_Q#}Q¡Q"½QàQøQ$RE;R@R/ÂRòR9S?HS+ˆS,´S4áS3TJT<]TšT°T ÊT ëT5 U,BU oU U5±U/çUV50V,fV0“VÄV0âV0WBDW(‡W°W5ÈWþW(X3BXvX&”X»X ÛX!üX,Y$KY%pY>–YÕYñY Z)0Z"ZZ!}Z!ŸZ!ÁZãZ4þZ'3[2[[=Ž[JÌ[\$2\?W\—\ ²\Ó\ê\]$]D]b]3]:³]î]&^#5^"Y^|^,›^:È^_#_4+_`_p_>_:¾_ù_¹`=Ía$ b;0b5lb(¢b>Ëb= c;Hc'„c0¬c,Ýc1 d*ºxBùxb?|1~|C°|ô|P}2X},‹}@¸}3ù}-~A~P~ a~n~v~•~š~´~ Î~Ø~ø~2J)`Šb,ó/ €HP€?™€<Ù€ 52?7rXªV‚/Z‚3Š‚ ¾‚ È‚:Ö‚3ƒAEƒ/‡ƒB·ƒGúƒ*B„_m„BÍ„N…<_…Eœ…qâ…gT†{¼†q8‡Fª‡6ñ‡&(ˆ^Oˆ ®ˆ,¹ˆ<æˆ #‰ -‰':‰b‰Af‰9¨‰1â‰DŠ]YŠ+·ŠDãŠ9(‹&b‹‰‹8‹É‹΋Ò‹/Ö‹CŒJŒ>RŒ‘Œ"¯Œ5ÒŒ95B9x(²AÛRŽNpŽZ¿Ž[-vT¤Cù9=*w¢4´'é*‘r<‘r¯‘]"’C€’Ä’Ú’ë’ô’9“ K“=l“ ª“#´“(Ø“p”Nr”Á”#Ò”@ö”L7•V„•HÛ•5$–.Z–.‰–&¸–%ß–9—6?—v—V”—ë—)˜"+˜N˜n˜u˜~˜“˜Lª˜D÷˜1<™1n™p ™Kš-]š*‹š1¶šPèš?9›%y›/Ÿ›Ï›Ó›.ç›Sœ1jœ=œœNÚœ/)Y0yªÊäžž4žPžmžˆž¦ž¿žÜž÷ž!Ÿ5Ÿ OŸ"pŸ'“Ÿ+»ŸZçŸIB 7Œ 1Ä :ö K1¡0}¡-®¡8Ü¡6¢L¢?g¢§¢0Ç¢)ø¢*"£GM£8•£%Σ)ô£@¤4_¤”¤9¬¤7æ¤A¥.`¥?¥<Ï¥l ¦5y¦¯¦5Ϧ#§3)§I]§+§§/Ó§$¨$(¨%M¨0s¨/¤¨.Ô¨X©"\©%©8¥©8Þ©(ª,@ª,mª0šª"˪Cîª.2«>a«E «jæ«"Q¬+t¬Q ¬)ò¬.­!K­$m­7’­7Ê­'®+*®LV®>£®â®'¯")¯#L¯)p¯+š¯?Ư° &°D1°v°”°B°°Kó°"?±lXØåÁm‡›­{GrÊÞpÝrYJ‘O͇¦Â÷1U‹…=§ /Rqnþˆÿ ?‚çJ OÖ@ô¨St˜.écÒv¯’pí0¸ëÐ=t+\ÜŒ®”Lu'3«[ì“FW·šf:žÇ˹o;©°–7—w»)à&_ƒfB*W¶10D)d !bKcî%oœ+^èM]gS(añMÀD9/ãK?V5]“”‰ykÙ¬$$7d3‚–¡Šøz8Ô¤Nl8#nµ'~ƒN€ÉH(.u  ‰•|B6òzŽ&@’q # üªõ!`‘†½}ý„;ä4€PßkÏ™4{ïs×E¢±xŒ9yŸ¿™XQ2ÓŽæÃÎ GThðIsù,áR Ú ó<êI,²ö">ûbLmeiCúC¾}¥5º`H^Z³Y~š˜£ZQFU%†vâ_>g‹w2x<j aÕE6VÌÈA ÄP-Æ„*A\[TÑ"eŠiˆ|Û…•hj¼Å—´-: -B don't use an idle timeout -F force NSS into FIPS mode -L only use a dedicated listening socket -P PATH specify the dedicated listening socket -S use system bus -b TIMEOUT bus-activated, idle timeout -c COMMAND start COMMAND and exit when it does -d LEVEL set debugging level (implies -n) -f do become a daemon -l start a dedicated listening socket -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: SCEP CA certificate thumbprint (MD5): %s SCEP CA certificate thumbprint (SHA1): %s SCEP CA identifier: %s auto-renew: %s ca-error: %s ca-type: %s certificate template/profile: %s certificate: type=%s,location='%s' default profile/template/certtype: %s dns: eku: email: error refreshing CA data expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known profiles/templates/certtypes: known-issuer-names: next-serial-number: %s other certificates saved to databases: other certificates saved to files: other root certificates saved to databases: other root certificates saved to files: post-save command: %s pre-save command: %s principal name: root certificates saved to databases: root certificates saved to files: self-identifies as: %s signing request thumbprint (MD5): %s signing request thumbprint (SHA1): %s status: %s stuck: %s subject: %s track: %s -A ADDRESS override requested IP address -A ADDRESS set requested IP address -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -F file in which to store the CA's certificates -G TYPE type of key to be generated if one is not already in place -G TYPE type of new key to be generated -I FILE file containing certificates in RA's certifying chain -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -L PASSWORD an optional challenge password value -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -R FILE file containing CA's certificate -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -a NSS database in which to store the CA's certificates -a refresh information about all known CAs -a refresh information about all outstanding requests -c CA nickname of the CA configuration -c CA nickname to give to the new CA configuration -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -c CA nickname of CA configuration to remove -c CA refresh information about the CA with this name -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -d DIR return status for the request in this NSS database -e CMD helper command to run to communicate with CA -e CMD updated helper command to run to communicate with CA -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -f FILE return status for cert stored in this PEM file -g SIZE size of key to be generated if one is not already in place -g SIZE size of new key to be generated -i ID CA identifier -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -l FILE file which holds an optional challenge password -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -n NAME return status for cert which uses this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -r FILE file containing RA's certificate -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -u URL location of SCEP server -v report all details of errors -w try to wait for the certificate to be issued %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: * Selecting a specific request: * When using an NSS database for storage: * When using files for storage: ,location='%s',nickname='%s',pinfile='%s',token='%s'ADDRESSAn internal error has occurred.BITSCA "%s" modified. CA "%s" removed. CA '%s': CA could not be modified. CA could not be removed. CA helper command not specified. CA identifierCA nickname not specified. COMMANDCertificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". DIRECTORYData for CA '%s' being refreshed. Data for unnamed CA being refreshed. Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error building command line. Error connecting to D-Bus. Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing arguments.Error parsing server response. Error setting CA identifier. Error setting request arguments. Error setting up ccache for "%s" on client using default keytab: %s. Error setting up ccache for "%s" on client using keytab "%s": %s. Error setting up ccache for "host" service on client using default keytab: %s. Error setting up ccache for "host" service on client using keytab "%s": %s. Error setting up for XMLRPC on the client. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. FILENAMEHOSTNAMEHTTPS requires a CA certificate. IDInsufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:LISTLaunching temporary dedicated service daemon. MODENAMENONENSS database for key and certNSS database in which to store the CA's certificatesNUMBERNeither CA nickname nor -a flag specified. New CA "%s" added. New CA could not be added. New signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No IPA domain configured, and none specified. No agent URL (-A) given, and no default known. No agent credentials (-n) given, but they are needed. No agent credentials specified, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. No support for key type "%s".No system bus running. None of ID or database directory and and nickname or certificate file specified. None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. PATHNAMEPEM file for certificatePEM file for certificate (only valid with -k)PEM file for private keyPEM file for private key (only valid with -f)PRINCIPALPath "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Path "%s": insufficient permissions. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Profile params (-O) must be in the form of param=value. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s' NOT being refreshed. Request ID '%s' being refreshed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Running as UID 0. SECONDSSUBJECTServer error. State %s, stuck: %s. Submit params (-o) must be in the form of param=value. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" could not be accessed due to insufficient permissions.The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" could not be accessed due to insufficient permissions.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".URLUSERNAME[:GROUPNAME]Unable to contact an IPA LDAP server. Unable to determine base DN of domain information on IPA server. Unable to determine hostname of CA. Unable to determine location of IPA LDAP server. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Unrecognized property name.Usage: %s add-ca [options] Usage: %s add-scep-ca [options] Usage: %s command [options] Usage: %s list [options] Usage: %s list-cas [options] Usage: %s modify-ca [options] Usage: %s refresh [options] Usage: %s refresh-ca [options] Usage: %s rekey [options] Usage: %s remove-ca [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s status [options] Usage: %s stop-tracking [options] add a CA configuration add an SCEP CA configuration an optional challenge password valueask the CA to process the request using the named profile or templateattempt to renew the certificate when expiration nears (default)begin monitoring an already-issued certificate bus-activated, idle timeoutcheck on the status of an in-progress enrollment request check the status of a certificate being monitored or requested command to run after saving the certificatecommand to run before saving the certificateconnect to the certmonger service on the session busconnect to the certmonger service on the system busdo become a daemondon't attempt to renew the certificate when expiration nearsdon't become a daemondon't use an idle timeoutfile containing CA's certificatefile containing RA's certificatefile containing certificates in RA's certifying chainfile in which to store the CA's certificatesfile permissions for certificatefile permissions for private keyfile which holds an optional challenge password valuefile which holds the private key encryption PINforce NSS into FIPS modegenerate a new private key and replace a certificate helper command to run to communicate with CAlist certificates being monitored and requested list known CA configurations list only information about outstanding requestslist only information about tracked certificateslist only requests and certs associated with this CA configurationlist only the specified CA configurationlocation of SCEP servermaximum time to wait for the certificate to be issuedmodify a CA configuration new nickname to give to tracking requestnickname for NSS-based storage (only valid with -d)nickname for tracking requestnickname of CA configuration to removenickname of an existing requestnickname of the CA configurationnickname to assign to the requestnickname to give to the new CA configurationnickname to give to tracking requestonly use a dedicated listening socketoptional token name for NSS-based storage (only valid with -d)override requested DNS nameoverride requested IP addressoverride requested email addressoverride requested extended key usage OIDoverride requested key usage valueoverride requested principal nameowner information for certificateowner information for private keyprivate key encryption PINrefresh cache of all information obtained from a CA refresh information about all known CAsrefresh information about all outstanding requestsrefresh information about the CA configuration with this namerefresh information only for requests using the specified CA configurationremove a CA configuration request a new certificate from a CA resubmit an in-progress enrollment request, or start a new one server URL not specified. set debugging level (implies -n)set requested DNS nameset requested IP addressset requested email addressset requested extended key usage OIDset requested key usage valueset requested principal nameset requested subject name (default: CN=)size of key to be generated if one is not already in placesize of new key to be generatedspecify the dedicated listening socketstart COMMAND and exit when it doesstart a dedicated listening socketstop monitoring a certificate try to wait for the certificate to be issuedtype of key to be generated if one is not already in placetype of new key to be generatedunknownupdated helper command to run to communicate with CAuse session bususe system bususe the specified CA configuration rather than the current oneuse the specified CA configuration rather than the defaultwrite service PID to fileProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2015-05-14 04:58-0400 Last-Translator: Robert Antoni Buj Gelonch Language-Team: Catalan Language: ca MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Generator: Zanata 3.6.2 Plural-Forms: nplurals=2; plural=(n != 1) -B no utilitzis un temps d'expiració d'inactivitat -F força NSS al mode FIPS -L tan sols utilitza el socket dedicat a escoltar -P CAMà especifica el socket dedicat a escoltar -S utilitza el bus del sistema -b TIMEOUT activat per bus, temps d'expiració d'inactivitat -c ORDRE inicia l'ORDRE i surt quan també ho faci l'ordre. -d NIVELL estableix el nivell d depuració (implica -n) -f converteix-te en un dimoni -l inicia un socket dedicat a escoltar -n no et converteixis en un dimoni -p FITXER escriu el PID del servei al fitxer -s utilitza el bus de la sessió AC: %s adreça IP: Empremta del certificat de l'AC SCEP (MD5): %s Empremta del certificat de l'AC SCEP (SHA1): %s Identificador de l'AC SCEP: %s auto-renova: %s error-ac: %s tipus-ac: %s plantilla de certificat/perfil: %s certificat: tipus=%s,localització='%s' perfil/plantilla/tipus-certificat per defecte: %s dns: eku: correu electrònic: s'ha produït un error en refrescar les dades de l'AC venç: %s localització-ajudant: %s emissor: %s emgatgatzematge parell clau: tipus=%s ús de la clau: %s perfil/plantilla/tipus-certificat coneguts: noms d'emissors coneguts: següent número de sèrie: %s els altres certificats s'han desat a les bases de dades: els altres certificats s'han desat als fitxers: els altres certificats arrel s'han desat a les bases de dades: els altres certificats arrel s'han desat als fitxers: ordre després de desar: %s ordre abans de desar: %s nom del principal: els certificats arrel s'han desat a les bases de dades: els certificats arrel s'han desat als fitxers: auto-identifica com: %s empremta de sol·licitud de signatura (MD5): %s empremta de sol·licitud de signatura (SHA1): %s estat: %s branca: %s subjecte: %s pista: %s -A ADREÇA reemplaça l'adreça IP sol·licitada -A ADREÇA estableix l'adreça IP sol·licitada -B ordre a executar abans que es desi el certificat -C ordre a executar un cop es desi el certificat -D NOMDNS reemplaça el nom DNS sol·licitat -D NOMDNS estableix el nom DNS sol·licitat -E CORREU reemplaça l'adreça de correu electrònic sol·licitada -E CORREU estableix l'adreça de correu electrònic sol·licitada -F fitxer on s'emmagatzemen els certificats de l'AC -G TIPUS tipus de clau que es generarà si encara no n'hi ha cap ja al seu lloc -G TIPUS tipus de la nova clau a generar -I FITXER fitxer que conté els certificats a la cadena de certificació de la RA -I NOM nou sobrenom a donar a la sol·licitud de seguiment -I NOM sobrenom a assignar a la sol·licitud -I NOM sobrenom a donar a la sol·licitud de seguiment -K NOM reemplaça el nom del principal sol·licitat -K NOM estableix el nom del principal sol·licitat -L CONTRASENYA contrasenya d'un repte opcional -N NOM estableix el nom del subjecte sol·licitat (per defecte: CN=) -P PIN valor del PIN -R no intentis de renovar el certificat quan s'apropi el venciment -R FITXER fitxer que conté el certificat de l'AC -S connecta al servei certmonger sobre el bus del sistema -S connecta al servei certmonger sobre el bus del sistema -T PERFIL pregunta a l'AC per processar la sol·licitud mitjançant el perfil o la plantilla amb nom -U ÚSEXT reemplaça l'OID de l'ús estès de la clau sol·licitat -U ÚSEXT estableix l'OID de l'ús estès de la clau sol·licitat -a base de dades NSS on s'emmagatzemen els certificats de l'AC -a refresca la informació sobre totes les AC conegudes -a refresca la informació sobre totes les sol·licituds pendents -c AC sobrenom de la configuració de l'AC -c AC sobrenom a donar a la nova configuració de l'AC -c AC utilitza l'AC especificada en lloc de l'actual -c AC utilitza l'AC especificada en lloc de la predeterminada -c AC tan sols llista la informació sobre l'AC amb aquest nom -c AC tan sols llista les sol·licituds i els certificats que estiguin associats amb aquesta AC -c AC sobrenom de la configuració de l'AC a eliminar -c AC refresca la informació sobre l'AC amb aquest nom -d DIR base de dades NSS per a la clau i el certificat -d DIR tan sols llista les sol·licituds i els certificats que utilitzin aquesta base de dades NSS -d DIR retorna l'estat per a la sol·licitud en aquesta base de dades NSS -e ORDRE ordre de l'ajudant a executar per comunicar-se amb l'AC -e ORDRE ordre de l'ajudant actualitzat a executar per comunicar-se amb l'AC -f FITXER fitxer PEM per al certificat -f FITXER fitxer PEM per al certificat (tan sols és vàlid amb -k) -f FITXER tan sols llista les sol·licituds i els certificats emmagatzemats en aquest fitxer PEM -f FITXER retorna l'estat per al certificat emmagatzemat en aquest fitxer PEM -g MIDA mida de la clau que es generarà si encara no n'hi ha cap ja al seu lloc -g MIDA mida de la nova clau a generar -i ID identificador de l'AC -I NOM sobrenom per seguir a la sol·licitud -i NOM sobrenom d'una sol·licitud de seguiment existent -k FITXER fitxer PEM per a la clau privada -l FITXER fitxer que conté la contrasenya d'un repte opcional -n NOM sobrenom per a l'emmagatzematge basat en NSS (tan sols és vàlid amb -d) -n NOM tan sols llista les sol·licituds i els certificats que utilitzin aquest sobrenom -n NOM retorna l'estat del certificat que utilitzi aquest sobrenom -p FILE fitxer que conté el PIN de xifratge -r intenta de renovar el certificat quan s'apropi el venciment (per defecte) -r tan sols llista la informació sobre les sol·licituds pendents -r FITXER fitxer que conté el certificat de la RA -s connecta al servei certmonger sobre el bus de la sessió -s connecta al servei certmonger sobre el bus de la sessió -t tan sols llista la informació sobre els certificats seguits -t NOM nom de mostra opcional per a l'emmagatzematge basat amb NSS (tan sols és vàlid amb -d) -u ÚSCLAU estableix l'ús de la clau sol·licitat -u URL localització del servidor SCEP -v informa de tots els detalls dels errors -w prova d'esperar l'expedició del certificat %s - eina d'inscripció de certificats de client %s: l'opció no és vàlida -- '%c' %s: el valor no és vàlid -- '%s' %s: l'opció requereix un argument -- '%c' %s: no s'ha reconegut l'ordre * Opcions del bus: * Per a l'identificador sol·licitat: * Ajustos del tractament del certificat: * Opcions generals: * Si les claus estan xifrades: * Si s'han de xifrar les claus: * Si es modifica una sol·licitud existent: * Si es selecciona una sol·licitud específica: * Si s'utilitza una base de dades NSS per a l'emmagatzematge: * Si s'utilitzen fitxers per a l'emmagatzematge: * Nous valors dels paràmetres per a la sol·licitud de signatura: * Altres opcions: * Paràmetres per a la sol·licitud de signatura en el moment de la renovació: * Paràmetres per a la sol·licitud de signatura: * Selecció d'una sol·licitud específica: * Quan s'utilitzi una base de dades NSS per a l'emmagatzematge: * Quan s'utilitzin fitxers per a l'emmagatzematge: ,localització='%s',sobrenom='%s',fitxer-pin='%s',mostra='%s'ADREÇAS'ha produït un error intern.BITSS'ha modificat l'AC"%s". S'ha eliminat l'AC "%s". AC '%s': No es va poder modificar l'AC. No es va poder eliminar l'AC. No s'ha especificat l'ordre de l'ajudant de l'AC. Identificador de l'ACNo s'ha especificat el sobrenom de l'AC, ORDREEl certificat a la mateixa localització ja està utilitzat per la sol·licitud amb sobrenom "%s".Autoritat de certificació "%s" no coneguda.No s'ha especificat el sobrenom del certificat.No s'ha especificat la localització de l'emmagatzematge del certificat.El tipus d'emmagatzematge de certificat "%s" no està suportat.No s'ha especificat el tipus d'emmagatzematge de certificat,No es pot avaluar l'OID "%s". DIRECTORILes dades per a l'AC '%s' que s'estan refrescant. Les dades per a l'AC sense nom que s'estan refrescant. S'han especificat ambdós, el directori de la base de dades i el fitxer del certificat. La localització de la base de dades o el sobrenom s'ha especificat un sense l'altre. S'ha produït l'error %d en connectar-se a %s. S'ha produït l'error %d en connectar-se a %s: %s. Error %s Error %s: %s S'ha produït un error en intentar presentar "%s" a "%s". S'ha produït un error en intentar presentar "%s". S'ha produït un error en la construcció de la línia d'ordres. S'ha produït un error en connectar amb D-Bus. S'ha produït un error en crear el missatge de sol·licitud DBUS. S'ha produït un error en inicialitzar la biblioteca del Kerberos: %s. S'ha produït un error en modificar "%s". S'ha produït un error en analitzar sintàcticament el nom del principal de Kerberos "%s": %s. S'ha produït un error en analitzar sintàcticament els arguments.S'ha produït un error en analitzar sintàcticament la resposta del servidor. S'ha produït un error en establir l'identificador de l'AC. S'ha produït un error en establir els arguments de la sol·licitud. S'ha produït un error en preparar ccache per a "%s" al client mitjançant la taula de claus predeterminada: %s. S'ha produït un error en preparar ccache per a "%s" al client mitjançant la taula de claus "%s": %s. S'ha produït un error en preparar ccache per al servei "host" al client mitjançant la taula de claus predeterminada: %s. S'ha produït un error en preparar ccache per al servei "host" al client mitjançant la taula de claus "%s": %s. S'ha produït un error en preparar-se per a l'XMLRPC sobre el client. S'ha produït un error en preparar-se per a l'XMLRPC. S'ha produït un error en aturar NSS. S'ha produït un error en composar sintàcticament el nom del principal de Kerberos "%s": %s. Error: %s Error: argument extra "%s" sense utilitzar. Error: Es van subministrar arguments extra sense utilitzar. NOMFITXERNOMAMFITRIÓHTTPS requereix un certificat de l'AC. ID.Accés insuficient. Si us plau, torneu a repetir-ho com a root. S'ha produït un error intern: sense resposta a "%s?%s". S'ha produït un error intern: estat desconegut. La clau i el certificat no poden desar-se ambdós al mateix fitxer. La clau a la mateixa localització ja està utilitzada per la sol·licitud amb sobrenom "%s".No s'ha especificat el sobrenom de la clau.No s'ha especificat la localització de l'emmagatzematge de la clau.El tipus d'emmagatzematge de clau "%s" no està suportat.Els tipus de claus conegudes inclouen:LLISTAS'està llançant el dimoni de servei dedicat temporal. MODENOMCAPbase de dades NSS per a la clau i el certificatbase de dades NSS en el qual s'emmagatzemen els certificats de l'ACNÚMERONo s'ha especificat ni el sobrenom de l'AC ni el marcador -a. S'ha afegit la nova AC "%s". No es va poder afegir la nova AC. Es va afegir la nova sol·licitud de signatura "%s". No es va poder afegir la nova sol·licitud de signatura. Es va afegir la nova sol·licitud de seguiment "%s". No es va poder afegir la nova sol·licitud de seguiment. No es va trobar cap AC amb el nom "%s". No hi ha cap domini IPA configurat i no se n'ha especificat cap. No s'ha indicat cap URL de l'agent (-A), i no n'hi ha cap de conegut per defecte. No s'han especificat les credencials de l'agent (-n) però són necessàries. No s'han especificat les credencials de l'agent, i no n'hi ha cap de conegut per defecte. No s'ha indicat cap URL de l'entitat final (-E), i no n'hi ha cap de coneguda per defecte. No s'han trobat cap entrada que coincideixi. No s'ha indicat cap perfil/plantilla (-T), i no n'hi ha cap de conegut per defecte. No s'ha trobat cap sol·licitud que coincideixi amb els arguments. No s'ha trobat cap sol·licitud amb el sobrenom indicat. No s'ha rebut cap resposta del servei %s. No existeix l'AC.Sense suport per a la generació de les claus "%s". Sense suport per al tipus de clau "%s".No hi ha cap bus de sistema executant-se. No s'ha especificat cap Id. ni tampoc cap directori de la base de dades i el sobrenom o cap fitxer de certificat. No s'ha especificat cap Id. ni tampoc cap directori de la base de dades i el sobrenom o cap fitxer de certificat. No s'ha especificat cap directori de la base de dades i sobrenom o cap fitxer de certificat. Número de certificats i de sol·licituds que s'estan seguint: %d. Arguments opcionals: Sense memòria. NOMCAMÃfitxer PEM per al certificatfitxer PEM per al certificat (tan sols és vàlid amb -k)fitxer PEM per a la clau privadafitxer PEM per a la clau privada (tan sols és vàlid amb -f)PRINCIPALEl camí "%s" no és un directori. El camí "%s" no és un fitxer regular. El camí "%s" no és absolut i a més d’això hi va haver un error en determinar el nom del directori actual. El camí "%s" no és absolut, s'està intentant d'utilitzar "%s" en lloc seu. Camí "%s": %s. Camí "%s": permisos insuficients. Si us plau, verifiqueu que s'hagi iniciat el servei certmonger. Si us plau, verifiqueu que encara s'estigui executant el servei certmonger. Si us plau, comproveu que s'estigui executant el servei del bus de missatges (D-Bus). Els paràmetres del perfil (-O) han de tenir la forma paràmetre=valor. S'ha rebut una resposta d'error del servei local %s. No es va poder modificar la sol·licitud "%s. No es va poder eliminar la sol·licitud "%s". Es va modificar la sol·licitud "%s". Es va eliminar la sol·licitud "%s". L'Id. de la sol·licitud '%s' que NO s'està refrescant. L'Id. de la sol·licitud '%s' que s'està refrescant. Id. de la sol·licitud '%s': Es va sol·licitar una renovació, però no es va proporcionar cap número de sèrie. Arguments requerits: S'està tornant a presentar "%s" a "%s". S'està tornant a presentar "%s". S'està executant com a UID 0. SEGONSASSUMPTEError del servidor. Estat %s, branca: %s. Els paràmetres de l'enviament (-o) tan de tenir la forma paràmetre=valor. L'opció -K no pot utilitzar-se amb l'opció -k ni amb l'opció -t. L'opció -k no pot utilitzar-se amb l'opció -K. L'opció -t no pot utilitzar-se amb l'opció -K. El motor IPA requereix l'ús de l'opció -K (nom del principal) quan s'utilitza l'opció -N (nom del subjecte). No es pot accedir a la localització "%s" a causa de permisos insuficients.La localització "%s" ha de ser un directori.La localització "%s" ha de ser un fitxer.La localització "%s" ha de ser un camí absolut.No es pot accedir a la localització pare "%s" a causa de permisos insuficients.El pare de la localització "%s" ha de ser un directori vàlid.Ja hi ha una AC amb el sobrenom "%s".Ja hi ha una sol·licitud amb el sobrenom "%s".URLNOMUSUARI[:NOMGRUP]No es pot contactar amb el servidor LDAP IPA. No es pot determinar el DN base de la informació de domini sobre el servidor IPA. No es pot determinar el nom d'amfitrió de l'AC. No es pot determinar la localització del servidor LDAP IPA. No es pot determinar el nom del principal per a la sol·licitud de signatura. No es pot llegir la sol·licitud de signatura. Ús de clau no reconegut "%s". Paràmetre no reconegut o tipus de valor erroni.Nom de propietat no reconeguda.Ús: %s add-ca [opcions] Ús: %s add-scep-ca [opcions] Ús: %s ordre [opcions] Ús: %s list [opcions] Ús: %s list-cas [opcions] Ús: %s modify-ca [opcions] Ús: %s refresh [opcions] Ús: %s refresh-ca [opcions] Ús: %s rekey [opcions] Ús: %s remove-ca [opcions] Ús: %s request [opcions] Ús: %s resubmit [opcions] Ús: %s start-tracking [opcions] Ús: %s status [opcions] Ús: %s stop-tracking [opcions] afegeix la configuració d'una AC afegeix la configuració d'una AC SCEP valor de la contrasenya d'un repte opcionalpregunta a l'AC per processar la sol·licitud mitjançant el perfil o la plantilla amb nomintenta de renovar el certificat quan s'apropi el venciment (per defecte)comença la monitorització d'un certificat ja expedit activat per bus, temps d'expiració d'inactivitatcomprova l'estat d'una sol·licitud d'inscripció en curs comprova l'estat d'un certificat que s'està monitoritzant o sol·licitant ordre a executar després de desar el certificatordre a executar abans de desar el certificatconnecta al servei certmonger sobre el bus de la sessióconnecta al servei certmonger sobre el bus del sistemaconverteix-te en un dimonino intentis de renovar el certificat quan s'apropi el vencimentno te converteixis en un dimonino utilitzis un temps d'expiració d'inactivitatfitxer que conté els certificats de l'ACfitxer que conté els certificats de la RAfitxer que conté els certificats a la cadena de certificació de la RAfitxer en el qual s'emmagatzemen els certificats de l'ACpermisos del fitxer per al certificatpermisos del fitxer per a la clau privadafitxer que conté el valor de la contrasenya d'un repte opcionalfitxer que té el PIN de xifratge de la clau privadaforça NSS al mode FIPSgenera una nova clau privada i substitueix un certificat ordre de l'ajudant a executar per comunicar-se amb l'ACllista els certificats que s'estan monitoritzant i sol·licitant llista les configuracions de les AC conegudes tan sols llista la informació sobre les sol·licituds pendentstan sols llista la informació sobre els certificats seguitstan sols llista les sol·licituds i els certificats que estiguin associats amb aquesta configuració de l'ACllista tan sols la configuració de l'AC especificadalocalització del servidor SCEPtemps màxim d'espera per l'expedició del certificatmodifica la configuració d'una AC nou sobrenom a donar a la sol·licitud de seguimentsobrenom per a l'emmagatzematge basat en NSS (tan sols és vàlid amb -d)sobrenom per a la sol·licitud de seguimentsobrenom de la configuració de l'AC a eliminarsobrenom d'una sol·licitud existentsobrenom de la configuració de l'ACsobrenom a assignar a la sol·licitudsobrenom a donar a la nova configuració de l'ACsobrenom a donar a la sol·licitud de seguimenttan sols utilitza el socket dedicat a escoltarnom de mostra opcional per a l'emmagatzematge basat amb NSS (tan sols és vàlid amb -d)reemplaça el nom DNS sol·licitatreemplaça l'adreça IP sol·licitadareemplaça l'adreça sol·licitada de correu electrònicreemplaça l'OID de l'ús estès de la clau sol·licitatreemplaça l'ús de la clau sol·licitatreemplaça el nom sol·licitat del principalinformació del propietari per al certificatinformació del propietari per a la clau privadaPIN de xifratge de la clau privadarefresca la memòria cau de tota la informació obtinguda d'una AC refresca la informació sobre les AC conegudesrefresca la informació sobre totes les sol·licituds pendentsrefresca la informació sobre la configuració de l'AC amb aquest nomrefresca la informació tan sols per a les sol·licituds mitjançant la configuració especificada de l'ACelimina la configuració d'una AC sol·licita un nou certificat des d'una AC tornar a presentar una sol·licitud d'inscripció en curs, o n'inicia un de nova no s'ha especificat la URL del servidor. estableix el nivell de depuració (implica -n)estableix el nom DNS sol·licitatestableix l'adreça IP sol·licitadaestableix l'adreça de correu electrònic sol·licitadaestableix l'OID de l'ús estès de la clau sol·licitatestableix l'ús de la clau sol·licitatestableix el nom del principal sol·licitatestableix el nom del subjecte sol·licitat (per defecte: CN=)mida de clau que es generarà si no n'hi ha ja cap al seu llocmida de la nova clau a generarespecifica el socket dedicat a escoltarinicia l'ORDRE i surt quan ho faciinicia un socket dedicat a escoltaratura la monitorització d'un certificat prova d'esperar l'expedició del certificattipus de clau que es generarà si no n'hi ha ja cap al seu lloctipus de la nova clau a generardesconegutordre actualitzada de l'ajudant a executar per comunicar-se amb l'ACutilitza el bus de la sessióutilitza el bus del sistemautilitza la configuració especificada de l'AC en lloc de l'actualutilitza la configuració especificada de l'AC en lloc de la predeterminadaescriu el PID del servei al fitxercertmonger-0.78.6/po/bs.gmo0000664000175000017500000000112412645513277012444 00000000000000Þ•$,89Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Bosnian (http://www.transifex.com/projects/p/certmonger/language/bs/) Language: bs MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); certmonger-0.78.6/po/brx.gmo0000664000175000017500000000101112645513277012626 00000000000000Þ•$,8Ï9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Bodo (http://www.transifex.com/projects/p/certmonger/language/brx/) Language: brx MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/br.gmo0000664000175000017500000000101012645513277012435 00000000000000Þ•$,8Î9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Breton (http://www.transifex.com/projects/p/certmonger/language/br/) Language: br MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); certmonger-0.78.6/po/bo.gmo0000664000175000017500000000100312645513277012434 00000000000000Þ•$,8É9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Tibetan (http://www.transifex.com/projects/p/certmonger/language/bo/) Language: bo MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=1; plural=0; certmonger-0.78.6/po/bn_IN.gmo0000664000175000017500000000103012645513277013021 00000000000000Þ•$,8Þ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Bengali (India) (http://www.transifex.com/projects/p/certmonger/language/bn_IN/) Language: bn_IN MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/bn.gmo0000664000175000017500000000101212645513277012433 00000000000000Þ•$,8Ð9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Bengali (http://www.transifex.com/projects/p/certmonger/language/bn/) Language: bn MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/bg.gmo0000664000175000017500000006445212645513277012445 00000000000000Þ•È\ œ Ð&Ñø(-=k"‹&®Õò û  )#7[bi r€ –£¾Îäý, > K W e2q1¤)Ö$,%'R3z,®/Û, '8>`ŸC³:÷92Sl8À3ù:-6h:Ÿ=Ú'B@#ƒ8§?àE (f3#Ã>ç?&.fG•6Ý;:P6‹IÂ, "9(\…¡(¼åÿ!)K_y$™#¾(â 0*[6m&¤ËÚ é ÷ #K-%y#Ÿ+Ã,ï' D 8b ;› × ó ! !)+!!U!w!%“!)¹!ã!0ú!+"!K"m"‹"2¥" Ø"#ã"-#65#(l#•#<µ#Cò#6$#R$$v$›$´$ ¹$(Ú$!%)%%O%/l%4œ%Ñ%6ë%)"&*L&&w& ž&%ª&MÐ&G'7f'ž'³'Ã'!â'a(;f(¢(<²(<ï(?,)/l)$œ)#Á)å)ý)%*!:*\*2n*¡*¶*Ò*æ*Cõ*29+2l+nŸ+&,!5,+W,6ƒ,-º,2è,$-8@- y-š-+·-ã-ý-.8.#V."z..é¥.10=Á0?ÿ0??1"1)¢1HÌ1;2Q2a2r2ƒ2  2I®2ø2ÿ233.3D3F`3§39·3-ñ34>4\4t4”4°4 È4bÔ4`75:˜52Ó5:6CA6…6g7zo7=ê75(8…^8-ä8“9l¦9f:Œz:b;Zj;\Å;n"<Y‘<}ë<Oi= ¹=:Z>X•>”î>ƒ?S@hg@9Ð@q A›|AMB­fBhCj}CdèCxMD†ÆDGMEU•E_ëE'KF0sF;¤F&àF G9(GNbG±G7ÏGOHDWH=œHPÚHI+IbuIØIvòIFiJ"°JÓJìJ K/ K =K„GKCÌKNLv_L[ÖLZ2M5M{ÃMƒ?N5ÃN9ùN3ODOLYO@¦O9çOR!P]tP)ÒPXüPGUQSQ6ñQ7(Rb`RÃRYÕRv/Sq¦SETF^T}¥Tw#UB›UnÞUSMV@¡VâVJëVb6WO™W]éW*GXarXfÔX:;YhvY_ßYH?Z@ˆZÉZTáZ®6[£å[W‰\1á\"].6]5e] ›]X<^•^[ª^^_ee_XË_F$`Hk`3´`5è`1a,Pa}a_™a)ùa;#b/_bb`¯bhcbycÇÜcP¤dDõdU:ewe0f:9fHtfv½fS4g&ˆg[¯g' h+3h*_h+Šh1¶h0èhi<RŠf?”Žd&t2¹…ƒ[u'¸ŸN¬‘“x¡5hˆž‡—(€¨«^ –¢Acļv³ª›IH p `Qj¯©y’Á†CÀ0l.@m½•¦:=È ­V+X az¾‚S-¥>Y§9BK8Gw n£°*]4\oW‰}‹±Mœe6{¤%O Ãg1®/´)|_kÆ„qUJ3¶»FºDi"~#ZŒsb,7·r;ÅTš¿P™E²$ǘ!µL -B don't use an idle timeout -S use system bus -b TIMEOUT bus-activated, idle timeout -d LEVEL set debugging level (implies -n) -f do become a daemon -n don't become a daemon -p FILE write service PID to file -s use session bus CA: %s IP address: auto-renew: %s ca-error: %s ca-type: %s certificate: type=%s,location='%s' dns: eku: email: expires: %s helper-location: %s issuer: %s key pair storage: type=%s key usage: %s known-issuer-names: next-serial-number: %s post-save command: %s pre-save command: %s principal name: status: %s stuck: %s subject: %s track: %s -B command to run before saving the certificate -C command to run after saving the certificate -D DNSNAME override requested DNS name -D DNSNAME set requested DNS name -E EMAIL override requested email address -E EMAIL set requested email address -I NAME new nickname to give to tracking request -I NAME nickname to assign to the request -I NAME nickname to give to tracking request -K NAME override requested principal name -K NAME set requested principal name -N NAME set requested subject name (default: CN=) -P PIN PIN value -R don't attempt to renew the certificate when expiration nears -S connect to the certmonger service on the system bus -S connect to the certmonger service on the system bus -T PROFILE ask the CA to process the request using the named profile or template -U EXTUSAGE override requested extended key usage OID -U EXTUSAGE set requested extended key usage OID -c CA use the specified CA rather than the current one -c CA use the specified CA rather than the default -c CA list only information about the CA with this name -c CA list only requests and certs associated with this CA -d DIR NSS database for key and cert -d DIR only list requests and certs which use this NSS database -f FILE PEM file for certificate -f FILE PEM file for certificate (only valid with -k) -f FILE only list requests and certs stored in this PEM file -g SIZE size of key to be generated if one is not already in place -i NAME nickname for tracking request -i NAME nickname of an existing tracking request -k FILE PEM file for private key -n NAME nickname for NSS-based storage (only valid with -d) -n NAME only list requests and certs which use this nickname -p FILE file which holds the encryption PIN -r attempt to renew the certificate when expiration nears (default) -r list only information about outstanding requests -s connect to the certmonger service on the session bus -s connect to the certmonger service on the session bus -t list only information about tracked certificates -t NAME optional token name for NSS-based storage (only valid with -d) -u KEYUSAGE set requested key usage value -v report all details of errors %s - client certificate enrollment tool %s: invalid option -- '%c' %s: invalid value -- '%s' %s: option requires an argument -- '%c' %s: unrecognized command * Bus options: * By request identifier: * Certificate handling settings: * General options: * If keys are encrypted: * If keys are to be encrypted: * If modifying an existing request: * If selecting a specific request: * If using an NSS database for storage: * If using files for storage: * New parameter values for the signing request: * Other options: * Parameters for the signing request at renewal time: * Parameters for the signing request: ,location='%s',nickname='%s',pinfile='%s',token='%s'An internal error has occurred.CA '%s': Certificate at same location is already used by request with nickname "%s".Certificate authority "%s" not known.Certificate nickname not specified.Certificate storage location not specified.Certificate storage type "%s" not supported.Certificate storage type not specified.Could not evaluate OID "%s". Database directory and certificate file both specified. Database location or nickname specified without the other. Error %d connecting to %s. Error %d connecting to %s: %s. Error %s Error %s: %s Error attempting to submit "%s" to "%s". Error attempting to submit "%s". Error connecting to D-Bus. Error creating DBus request message. Error initializing Kerberos library: %s. Error modifying "%s". Error parsing Kerberos principal name "%s": %s. Error parsing server response. Error setting request arguments. Error setting up for XMLRPC. Error shutting down NSS. Error unparsing Kerberos principal name "%s": %s. Error: %s Error: unused extra argument "%s". Error: unused extra arguments were supplied. Insufficient access. Please retry operation as root. Internal error: no response to "%s?%s". Internal error: unknown state. Key and certificate can not both be saved to the same file. Key at same location is already used by request with nickname "%s".Key nickname not specified.Key storage location not specified.Key storage type "%s" not supported.Known key types include:NONENew signing request "%s" added. New signing request could not be added. New tracking request "%s" added. New tracking request could not be added. No CA with name "%s" found. No agent URL (-A) given, and no default known. No end-entity URL (-E) given, and no default known. No matching entry found. No profile/template (-T) given, and no default known. No request found that matched arguments. No request found with specified nickname. No response received from %s service. No such CA.No support for generating "%s" keys. None of ID or database directory and nickname or certificate file specified. None of database directory and nickname or certificate file specified. Number of certificates and requests being tracked: %d. Optional arguments: Out of memory. Path "%s" is not a directory. Path "%s" is not a regular file. Path "%s" is not absolute, and there was an error determining the name of the current directory. Path "%s" is not absolute, attempting to use "%s" instead. Path "%s": %s. Please verify that the certmonger service has been started. Please verify that the certmonger service is still running. Please verify that the message bus (D-Bus) service is running. Received error response from local %s service. Request "%s" could not be modified. Request "%s" could not be removed. Request "%s" modified. Request "%s" removed. Request ID '%s' NOT being refreshed. Request ID '%s' being refreshed. Request ID '%s': Requested renewal, but no serial number provided. Required arguments: Resubmitting "%s" to "%s". Resubmitting "%s". Server error. The -K option can not be used with either the -k or the -t option. The -k option can not be used with the -K option. The -t option can not be used with the -K option. The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used. The location "%s" must be a directory.The location "%s" must be a file.The location "%s" must be an absolute path.The parent of location "%s" must be a valid directory.There is already a CA with the nickname "%s".There is already a request with the nickname "%s".Unable to determine hostname of CA. Unable to determine principal name for signing request. Unable to read signing request. Unrecognized keyUsage "%s". Unrecognized parameter or wrong value type.Usage: %s list [options] Usage: %s list-cas [options] Usage: %s request [options] Usage: %s resubmit [options] Usage: %s start-tracking [options] Usage: %s stop-tracking [options] unknownProject-Id-Version: certmonger 0.78 Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2015-04-14 04:13-0400 Last-Translator: Valentin Laskov Language-Team: Bulgarian (http://www.transifex.com/projects/p/certmonger/language/bg/) Language: bg MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); X-Generator: Zanata 3.6.2 -B не използвай idle timeout -S използвай ÑиÑтемната шина -b TIMEOUT активиран от шината, idle timeout -d LEVEL задава ниво за дебъг (implies -n) -f Ñтани демон -n не Ñтавай демон -p FILE запиши PID на уÑлугата във файл FILE -s използвай ÑеÑийната шина CA: %s IP адреÑ: auto-renew: %s CA-грешка: %s ca-type: %s Ñертификат: тип=%s,меÑтоположение='%s' dns: eku: email: изтича на: %s helper-location: %s издател: %s хранилище на ключови двойки: тип=%s key usage: %s познати-имена-на-издатели: »Ñледващ-Ñериен-номер: %s post-save команда: %s pre-save команда: %s »главно име: ÑÑŠÑтоÑние: %s оÑтанал: %s обект: %s track: %s -B команда за изпълнение преди запиÑа на Ñертификата -C команда за изпълнение Ñлед запиÑа на Ñертификата -D DNSNAME замеÑтва иÑканото DNS име -D DNSNAME задава иÑкано DNS име -E EMAIL»ÑмÑна на иÑÐºÐ°Ð½Ð¸Ñ email Ð°Ð´Ñ€ÐµÑ -E EMAIL задава заÑÐ²ÐµÐ½Ð¸Ñ Ð¸Ð¼ÐµÐ¹Ð» Ð°Ð´Ñ€ÐµÑ -I NAME нов пÑевдоним, който да бъде даден към проÑледÑваната заÑвка -I NAME пÑевдоним, който да бъде приÑвоен към заÑвката -I NAME пÑевдоним, който да бъде даден към проÑледÑваната заÑвка -K NAME замеÑтва иÑканото principal име -K NAME задава иÑкано principal име -N NAME задава заÑвеното име на обекта (по подразбиране: CN=<име на хоÑÑ‚>) -P PIN ÑтойноÑÑ‚ на ПИР-R не опитвай подновÑване на Ñертификата, когато изтичането му наближава -S Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑиÑтемната шина -S Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑиÑтемната шина -T PROFILE иÑка CA да обработи заÑвката, използвайки профил или шаблон Ñ Ñ‚Ð¾Ð²Ð° име -U EXTUSAGE замеÑтва иÑÐºÐ°Ð½Ð¸Ñ Ñ€Ð°Ð·ÑˆÐ¸Ñ€ÐµÐ½ OID ключ за употреба -U EXTUSAGE задава иÑкан разширен OID ключ за употреба -c CA използвай Ð·Ð°Ð´Ð°Ð´ÐµÐ½Ð¸Ñ CA вмеÑто Ñ‚ÐµÐºÑƒÑ‰Ð¸Ñ -c CA използвай Ð·Ð°Ð´Ð°Ð´ÐµÐ½Ð¸Ñ CA вмеÑто този по подразбиране -c CA Ñамо показва Ð¸Ð½Ñ„Ð¾Ñ€Ð¼Ð°Ñ†Ð¸Ñ Ð·Ð° CA Ñ Ñ‚Ð¾Ð²Ð° име -c CA Ñамо показва заÑвките и Ñертификатите, аÑоциирани Ñ Ñ‚Ð¾Ð²Ð° CA -d DIR NSS база данни за ключ и Ñертификат -d DIR Ñамо показва ÑпиÑък на заÑвките и Ñертификатите, използващи тази NSS база данни -f FILE PEM файл за Ñертификата -f FILE PEM файл за Ñертификат (валидно Ñамо Ñ -k) -f FILE Ñамо показва ÑпиÑък на заÑвките и Ñертификатите, запиÑани в този PEM файл -g SIZE»големина на ключ, който да бъде генериран ако нÑма вече Ñъздаден такъв⎠-i NAME пÑевдоним за проÑледÑваната заÑвка -i NAME пÑевдоним от ÑъщеÑтвуваща проÑледÑвана заÑвка -k FILE PEM файл за чаÑтен ключ -n NAME пÑевдоним за NSS-базирано хранилище (валидно Ñамо Ñ -d) -n NAME Ñамо показва ÑпиÑък на заÑвките и Ñертификатите, използващи този пÑевдоним -p FILE файл, Ñъдържащ ПИРза криптиране -r опит за подновÑване на Ñертификата, когато изтичането му наближава (по подразбиране) -r Ñамо показва Ð¸Ð½Ñ„Ð¾Ñ€Ð¼Ð°Ñ†Ð¸Ñ Ð·Ð° неуредените заÑвки -s Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑеÑийната шина -s Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑеÑийната шина -t Ñамо показва Ð¸Ð½Ñ„Ð¾Ñ€Ð¼Ð°Ñ†Ð¸Ñ Ð·Ð° проÑледÑваните Ñертификати -t NAME незадължително token name за NSS-базирано хранилище (валидно Ñамо Ñ -d) -u KEYUSAGE задава иÑканата key usage ÑтойноÑÑ‚ -v показва вÑички подробноÑти за грешките %s - инÑтрумент за запиÑване на клиентÑки Ñертификат %s: грешна Ð¾Ð¿Ñ†Ð¸Ñ -- '%c'⎠%s: невалидна ÑтойноÑÑ‚ -- '%s' %s: опциÑта изиÑква аргумент -- '%c' %s: непозната команда * Опции на шината: * По идентификатор на заÑвката: * ÐаÑтройки на обработката на Ñертификата: * ОÑновни опции: * Ðко ключовете Ñа криптирани: * Ðко ключовете Ñ‚Ñ€Ñбва да бъдат криптирани: * Ðко Ñе Ð¿Ñ€Ð¾Ð¼ÐµÐ½Ñ ÑъщеÑтвуваща заÑвка: * Ðко изберете Ñпецифична заÑвка: * Ðко за хранилище Ñе използва NSS база данни: * Ðко за хранилище Ñе използват файлове: * Ðови ÑтойноÑти на параметри за подпиÑваната заÑвка: * Други опции: * Параметри за заÑвката за подпиÑване по време на подновÑването: * Параметри за подпиÑване на заÑвките: ,меÑтоположение='%s',пÑевдоним='%s',пинфайл='%s',token='%s'Възникна вътрешна грешка.CA '%s': Сертификатът на зададеното мÑÑто вече Ñе използва от друг пÑевдоним "%s".СертифициращиÑÑ‚ орган "%s" е непознат.ПÑевдонимът на Ñертификата не е определен.МеÑтоположението на хранилището на Ñертификати не е определено.Ðе Ñе поддържа хранилище на Ñертификати от тип "%s".Ðе е определен тип на хранилището на Ñертификати.Ðе може да Ñе преÑметне OID "%s". Определени Ñа и Ð´Ð¸Ñ€ÐµÐºÑ‚Ð¾Ñ€Ð¸Ñ Ð½Ð° базата данни, и файл ÑÑŠÑ Ñертификата. МеÑтоположение на базата данни или пÑевдоним е определено без другото. Грешка %d при Ñвързване към %s. Грешка %d при Ñвързване към %s: %s. Грешка %s Грешка %s: %s Грешка при опит за изпращане на "%s" към "%s". Грешка при опит за изпращане на "%s". Грешка при Ñвързването към D-Bus. Грешка при Ñъздаване на DBus Ñъобщение-заÑвка. Грешка при инициализиране на Kerberos библиотеката: %s. Грешка при промÑна "%s". Грешка при разбора на главното име на Kerberos "%s": %s. Грешка при анализ отговора от Ñървъра. Грешка при задаване аргументите на заÑвката. Грешка при подготовка за XMLRPC. Грешка при изключването на NSS. Грешка при ÑглобÑването на главното име на Kerberos "%s": %s. Грешка: %s Грешка: неизползван допълнителен аргумент "%s".⎠Грешка: бÑха предоÑтавени неизползвани допълнителни аргументи. Ðепозволен доÑтъп. МолÑ, опитайте операциÑта отново, като root. Вътрешна грешка: нÑма отговор до "%s?%s". Вътрешна грешка: непознато ÑÑŠÑтоÑние. Ðе може и ключът, и Ñертификатът, да бъдат запиÑани в един и Ñъщ файл. Ключът на зададеното мÑÑто вече Ñе използва от друг пÑевдоним "%s".ПÑевдонимът на ключа не е определен.МеÑтоположението на хранилището на ключове не е определено.Ðе Ñе поддържа хранилище на ключове от тип "%s".Познатите типове ключове включват:ÐИЩОДобавена е нова заÑвка за подпиÑване "%s". Ðовата заÑвка за подпиÑване не можа да бъде добавена. Беше добавена нова проÑледÑвана заÑвка "%s". Ðе може да бъде добавена нова проÑледÑвана заÑвка. Ðе е намерен CA Ñ Ð¸Ð¼Ðµ "%s". ÐÑма зададен agent URL (-A), а нÑма и такъв по подразбиране. ÐÑма зададен end-entity URL (-E), а нÑма и такъв по подразбиране. Ðе бÑха намерени такива запиÑи. ÐÑма зададен profile/template (-T), а нÑма и такъв по подразбиране. Ðе беше намерена заÑвка, отговарÑща на аргументите. Ðе е намерено иÑкане за този пÑевдоним. Ðе е получен отговор от уÑлугата %s. ÐÑма такъв CA.ЛипÑва поддръжка за генериране на "%s" ключове. Ðикое от ID, или Ð´Ð¸Ñ€ÐµÐºÑ‚Ð¾Ñ€Ð¸Ñ Ð½Ð° базата данни и пÑевдоним, или файл ÑÑŠÑ Ñертификат не е определено. Ðикое от Ð´Ð¸Ñ€ÐµÐºÑ‚Ð¾Ñ€Ð¸Ñ Ð½Ð° базата данни и пÑевдоним, или файл ÑÑŠÑ Ñертификат не е определено. Брой на проÑледÑваните Ñертификати и заÑвки: %d. Ðезадължителни аргументи: ÐедоÑтиг на памет. ПътÑÑ‚ "%s" не е директориÑ. ПътÑÑ‚ "%s" не е обикновен файл. ПътÑÑ‚ "%s" не е абÑолютен и Ñе получи грешка при определÑне името на текущата директориÑ. ПътÑÑ‚ "%s" не е абÑолютен, вмеÑто него, пробвам "%s". Път "%s": %s.⎠МолÑ, проверете дали уÑлугата certmonger е Ñтартирала. МолÑ, проверете дали уÑлугата certmonger вÑе още работи. МолÑ, проверете дали уÑлугата за ÑÑŠÐ¾Ð±Ñ‰ÐµÐ½Ð¸Ñ (D-Bus) работи. Получен е отговор за грешка от локална %s уÑлуга. Ðе можа да бъде променена заÑвката "%s". Ðе можа да бъде премахната заÑвката "%s". Беше променена заÑвката "%s". Беше премахната заÑвката "%s". ЗаÑвка ID '%s' ÐЕ Ñе обновÑва. ЗаÑвка ID '%s' Ñе обновÑва. ID на заÑвка '%s': ПоиÑкано е обновÑване, но не е зададен Ñериен номер. Ðеобходими аргументи: Повторно изпращане на "%s" към "%s". Повторно изпращане на "%s". Сървърна грешка. ОпциÑта -К не може да бъде използвана Ñ -k или -t опции. ОпциÑтата -к не може да бъде използвана заедно Ñ -К опциÑ. ОпциÑта -t не може да бъде използвана заедно Ñ -K опциÑ. ЗадниÑÑ‚ Ñлой на IPA изиÑква използването на -K Ð¾Ð¿Ñ†Ð¸Ñ (главно име), когато -N опциÑта (име на обекта) Ñе използва.⎠МеÑтоположението "%s" Ñ‚Ñ€Ñбва да е директориÑ.МеÑтоположението "%s" Ñ‚Ñ€Ñбва да е файл.МеÑтоположението "%s" Ñ‚Ñ€Ñбва да е абÑолютен път.ЧаÑтта преди меÑтоположението "%s" Ñ‚Ñ€Ñбва да е валидна директориÑ.Вече има CA Ñ Ð¿Ñевдонима "%s".Вече има заÑвка Ñ Ð¿Ñевдонима "%s".Ðе може да Ñе определи името на CA хоÑта. Ðе може да бъде уÑтановено главно име за заÑвката за подпиÑване. Ðе може да Ñе прочете заÑвката за подпиÑване. Ðеразпознат keyUsage "%s". Ðеразпознат параметър или грешен тип на ÑтойноÑÑ‚.Употреба: %s list [опции] Употреба: %s list-cas [опции] Употреба: %s request [опции] Употреба: %s resubmit [опции] Употреба: %s start-tracking [опции] Употреба: %s stop-tracking [опции] непознатcertmonger-0.78.6/po/be.gmo0000664000175000017500000000112712645513277012431 00000000000000Þ•$,89Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Belarusian (http://www.transifex.com/projects/p/certmonger/language/be/) Language: be MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=4; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2); certmonger-0.78.6/po/bal.gmo0000664000175000017500000000101412645513277012574 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Balochi (http://www.transifex.com/projects/p/certmonger/language/bal/) Language: bal MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/az.gmo0000664000175000017500000000101612645513277012452 00000000000000Þ•$,8Ô9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Azerbaijani (http://www.transifex.com/projects/p/certmonger/language/az/) Language: az MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ast.gmo0000664000175000017500000000101512645513277012626 00000000000000Þ•$,8Ó9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Asturian (http://www.transifex.com/projects/p/certmonger/language/ast/) Language: ast MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/as.gmo0000664000175000017500000000101312645513277012440 00000000000000Þ•$,8Ñ9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Assamese (http://www.transifex.com/projects/p/certmonger/language/as/) Language: as MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ar.gmo0000664000175000017500000000113412645513277012443 00000000000000Þ•$,8"9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Arabic (http://www.transifex.com/projects/p/certmonger/language/ar/) Language: ar MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 && n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5; certmonger-0.78.6/po/am.gmo0000664000175000017500000000101112645513277012430 00000000000000Þ•$,8Ï9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Amharic (http://www.transifex.com/projects/p/certmonger/language/am/) Language: am MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); certmonger-0.78.6/po/aln.gmo0000664000175000017500000000102212645513277012607 00000000000000Þ•$,8Ø9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Albanian Gheg (http://www.transifex.com/projects/p/certmonger/language/aln/) Language: aln MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/af_ZA.gmo0000664000175000017500000000103512645513277013021 00000000000000Þ•$,8ã9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-03-24 16:29+0000 Last-Translator: Nalin Dahyabhai Language-Team: Afrikaans (South Africa) (http://www.transifex.com/projects/p/fedora/language/af_ZA/) Language: af_ZA MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/af.gmo0000664000175000017500000000101412645513277012424 00000000000000Þ•$,8Ò9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Afrikaans (http://www.transifex.com/projects/p/certmonger/language/af/) Language: af MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n != 1); certmonger-0.78.6/po/ach.gmo0000664000175000017500000000101112645513277012566 00000000000000Þ•$,8Ï9Project-Id-Version: certmonger Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org POT-Creation-Date: 2016-01-13 13:26-0500 PO-Revision-Date: 2014-11-11 10:00+0000 Last-Translator: Nalin Dahyabhai Language-Team: Acoli (http://www.transifex.com/projects/p/certmonger/language/ach/) Language: ach MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Plural-Forms: nplurals=2; plural=(n > 1); certmonger-0.78.6/po/zu.po0000664000175000017500000012645112645513277012345 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Zulu (http://www.transifex.com/projects/p/certmonger/language/" "zu/)\n" "Language: zu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/zh_TW.po0000664000175000017500000013537512645513277012747 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Cheng-Chia Tseng , 2011 # Walter Cheuk , 2012 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Chinese (Taiwan) (http://www.transifex.com/projects/p/" "certmonger/language/zh_TW/)\n" "Language: zh-TW\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "無法判斷 CA 的主機å稱。\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "無法讀å–簽署請求。\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "設置 XMLRPC 時發生錯誤。\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "解æžä¼ºæœå™¨å›žæ‡‰æ™‚發生錯誤。\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "伺æœå™¨éŒ¯èª¤ã€‚\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" "記憶體ä¸è¶³ã€‚\n" "\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "\"%s\" 並éžçµ•å°è·¯å¾‘,改為使用 \"%s\"。\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "路徑「%sã€éžçµ•å°è·¯å¾‘,並且在判斷目å‰ç›®éŒ„çš„å稱時發生錯誤。\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "\"%s\" 路徑並éžç›®éŒ„。\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "路徑 \"%s\":%s。\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "\"%s\" 路徑並éžæ™®é€šæª”案。\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "請驗證訊æ¯åŒ¯æµæŽ’ (D-Bus) æœå‹™æ˜¯å¦æ­£åœ¨åŸ·è¡Œã€‚\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "建立 DBus 請求訊æ¯æ™‚發生錯誤。\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "錯誤 %s:%s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "錯誤 %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "錯誤:%s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "從本地 %s æœå‹™æŽ¥æ”¶åˆ°éŒ¯èª¤å›žæ‡‰ã€‚\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "沒有從 %s æœå‹™æŽ¥æ”¶åˆ°å›žæ‡‰ã€‚\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "åˆå§‹åŒ– Kerberos 函å¼åº«æ™‚發生錯誤:%s。\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "無法評估 OID 「%sã€ã€‚\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s:é¸é …必需引數 -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s:é¸é …無效 -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "找ä¸åˆ°å稱為「%sã€çš„ CA。\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "設定請求åƒæ•¸æ™‚發生錯誤。\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "已加入新增的簽署請求「%sã€ã€‚\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "無法加入新增的簽署請求。\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "已加入新增的追蹤請求「%sã€ã€‚\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "無法加入新增的追蹤請求。\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "找ä¸åˆ°æŒ‡å®šæš±ç¨±çš„請求。\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "請求 ID「%sã€ï¼š\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\t狀態:%s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tca-錯誤:%s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "ç„¡" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "ã€ä½ç½®='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "ã€æš±ç¨±='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "ã€token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "ã€pin檔案='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\t憑證:類型=%sã€ä½ç½®='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA:%s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\t失效日期:%s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "未知" #: src/getcert.c:3577 msgid "\temail: " msgstr "\t電郵:" #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns:" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tprincipal å稱:" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku:" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\ttrack:%s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\t自動更新:%s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA「%sã€ï¼š\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tca-類型:%s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\thelper-ä½ç½®ï¼š%s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\t下個åºè™Ÿï¼š%s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tknown-issuer-names:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - 客戶端憑證註冊工具\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "用法:%s 請求 [é¸é …]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "請求的åƒæ•¸ï¼š\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* 如以 NSS 資料庫作為儲存:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d 目錄\t金鑰åŠæ†‘證的 NSS 資料庫\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr " -n å稱\t基於 NSS 的儲存è£ç½®çš„暱稱 (åªæœ‰èˆ‡ -d 一起用æ‰æœ‰æ•ˆ)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t å稱\t基於 NSS 的儲存è£ç½®çš„ token å稱 (å¯æœ‰å¯ç„¡ï¼›åªæœ‰èˆ‡ -d 一起用æ‰æœ‰" "效)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* 如以檔案作為儲存:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k 檔案\tç§é‘°çš„ PEM 檔案\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f 檔案\t憑證的 PEM 檔案 (åªæœ‰èˆ‡ -k 一起用æ‰æœ‰æ•ˆ)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* 如金鑰è¦åŠ å¯†ï¼š\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p 檔案\t儲存加密 PIN 的檔案\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN 值\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "å¯æœ‰å¯ç„¡çš„引數:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* 憑證處ç†è¨­å®šï¼š\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* 匯æµæŽ’é¸é …:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* 其他é¸é …:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\t報告錯誤的所有詳情\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "用法:%s start-tracking [é¸é …]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* 如金鑰已加密:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "用法:%s stop-tracking [é¸é …]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "用法:%s resubmit [é¸é …]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f 檔案\t憑證的 PEM 檔案\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "用法:%s list [é¸é …]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* 一般é¸é …:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr " -c CA\tåªåˆ—出與此 CA 有關的請求與憑證\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr " -d 目錄\tåªåˆ—出使用此 NSS 資料庫的請求åŠæ†‘è­‰\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr " -n å稱\tåªåˆ—出使用此暱稱的請求åŠæ†‘è­‰\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr " -f 檔案\tåªåˆ—出儲存於此 PEM 檔案的請求åŠæ†‘è­‰\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "用法:%s list-cas [é¸é …]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s:指令無法辨識\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "é¸é … -t ä¸èƒ½èˆ‡ -K 一起使用。\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "é¸é … -k ä¸èƒ½èˆ‡ -K 一起使用。\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "é¸é … -K ä¸èƒ½èˆ‡ -k 或 -t 一起使用。\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S 使用系統匯æµæŽ’\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d 等級 設定除錯等級 (等於åŒæ™‚指定 -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "發生內部錯誤。" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "已有暱稱為 \"%s\" çš„ CA。" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "未指定憑證儲存類型。" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "ä¸æ”¯æ´æ†‘證儲存類型 \"%s\"。" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "\"%s\" ä½ç½®é ˆç‚ºçµ•å°è·¯å¾‘。" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "未指定憑證儲存ä½ç½®ã€‚" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "\"%s\" 的上層須為有效目錄。" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "\"%s\" ä½ç½®é ˆç‚ºæª”案。" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "\"%s\" ä½ç½®é ˆç‚ºç›®éŒ„。" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "未指定憑證暱稱。" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "已有暱稱為 \"%s\" 的請求。" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "ä¸æ”¯æ´é‡‘鑰儲存類型 \"%s\"。" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "未指定金鑰儲存ä½ç½®ã€‚" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "未指定金鑰暱稱。" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "沒有這樣的 CA。" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "未知的憑證授權機構「%sã€ã€‚" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "無法辨識的åƒæ•¸æˆ–錯誤的值類型。" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/zh_TW.Big5.po0000664000175000017500000012650612645513277013530 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Chinese (Taiwan) (Big5) (http://www.transifex.com/projects/p/" "certmonger/language/zh_TW.Big5/)\n" "Language: zh_TW.Big5\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/zh_HK.po0000664000175000017500000012646712645513277012721 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Chinese (Hong Kong) (http://www.transifex.com/projects/p/" "certmonger/language/zh_HK/)\n" "Language: zh_HK\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/zh_CN.po0000664000175000017500000014566012645513277012713 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # alanzheng , 2011 # Huan Chen , 2011 # Tommy He , 2011, 2012 # Ma Kai , 2011 # Tiansworld , 2013 # Tommy He , 2013 # Wei Liu , 2012 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Chinese (China) (http://www.transifex.com/projects/p/" "certmonger/language/zh_CN/)\n" "Language: zh-CN\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "无法确定CA的主机å。\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "无法读å–ç­¾å请求。\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "设置 xmlrpc 时出错。\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "分æžæœåŠ¡å™¨å“应时出错。\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "æœåŠ¡å™¨å‡ºé”™ã€‚\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "内存ä¸è¶³ã€‚\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "æœªæŒ‡å®šä¸­é—´ä»£ç† URL (-A),且无已知默认值。\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "未指定结尾æ¡ç›® URL (-E),且无已知默认值。\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "æœªæŒ‡å®šä¸­é—´ä»£ç† URL (-A),且无已知默认值。\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "未指定预置文件/æ¨¡æ¿ (-T),且无已知默认值。\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "内部错误: 未知的状æ€ã€‚\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "错误 %d 连接至 %s: %s。\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "错误 %d 连接至 %s。\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "内部错误: \"%s?%s\" 没有å“应。\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "路径 \"%s\" 并éžç»å¯¹è·¯å¾„,å°è¯•ä½¿ç”¨ \"%s\" 替代。\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "路径 %s ä¸æ˜¯ç»å¯¹è·¯å¾„,并且确定当å‰ç›®å½•æ—¶å‡ºé”™ã€‚\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "路径 \"%s\" 并ä¸æ˜¯ä¸€ä¸ªç›®å½•ã€‚\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "路径 \"%s\": %s。\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "路径 \"%s\" 并ä¸æ˜¯ä¸€ä¸ªæ™®é€šæ–‡ä»¶ã€‚\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "请检验信æ¯æ€»çº¿ï¼ˆD-Bus)æœåŠ¡æ˜¯å¦æ­£åœ¨è¿è¡Œã€‚\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "创建 DBus 请求消æ¯æ—¶å‡ºé”™ã€‚\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "错误 %s:%s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "错误 %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "错误: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "从本地 %s æœåŠ¡æ”¶åˆ°é”™è¯¯å“应。\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "没有从 %s æœåŠ¡æ”¶åˆ°å“应。\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "åˆå§‹åŒ– Kerberos 库时出错:%s\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "未识别的 keyUsage \"%s\"。\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "无法估计 OID“%sâ€ã€‚\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "è§£æž Kerberos 实体å“%sâ€æ—¶å‡ºé”™ï¼š%s。\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "åè§£æž Kerberos 主机å “%sâ€æ—¶å‡ºé”™ï¼š%s。\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: æ“作需è¦ä¸€ä¸ªå‚æ•° -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: 无效的选项 -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "错误:未使用的é¢å¤–å‚æ•° \"%s\"。\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "错误:输入了é¢å¤–未使用的å‚数。\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "æ•°æ®åº“ä½ç½®æˆ–别å缺一ä¸å¯ã€‚\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "æ•°æ®åº“目录和è¯ä¹¦æ–‡ä»¶éƒ½å·²æŒ‡å®šã€‚\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "没有指定数æ®åº“目录和别å,或è¯ä¹¦æ–‡ä»¶ã€‚\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "密钥和è¯ä¹¦ä¸èƒ½ä¿å­˜åˆ°åŒä¸€ä¸ªæ–‡ä»¶ã€‚\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "当使用 -N 选项(主题å)时,IPA åŽç«¯è¦æ±‚使用 -K 选项(实体å)。\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "没有找到具有å称“%sâ€çš„ CA.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "设定请求å‚数时出错。\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "æ–°çš„ç­¾å请求“%sâ€å·²æ·»åŠ ã€‚\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "æ–°çš„ç­¾å请求无法添加。\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "新的跟踪请求“%sâ€å·²æ·»åŠ ã€‚\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "新的跟踪请求无法添加。\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "没有指定 ID ã€æ•°æ®åº“目录和别å,或è¯ä¹¦æ–‡ä»¶ã€‚\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "请求 “%sâ€å·²ä¿®æ”¹ã€‚\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "请求“%sâ€æ— æ³•ä¿®æ”¹ã€‚\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "未找到包å«æŒ‡å®šæ˜µç§°çš„请求。\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "没有找到匹é…å‚数的请求。\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "请求“%sâ€å·²ç§»é™¤ã€‚\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "请求“%sâ€æ— æ³•ç§»é™¤ã€‚\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "修改“%sâ€æ—¶å‡ºé”™ã€‚\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "正在é‡æ–°æ交“%sâ€åˆ°â€œ%sâ€ã€‚\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "正在é‡æ–°æ交“%sâ€ã€‚\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "试图æ交“%sâ€åˆ°â€œ%sâ€æ—¶å‡ºé”™ã€‚\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "试图æ交“%sâ€æ—¶å‡ºé”™ã€‚\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "正在跟踪的è¯ä¹¦å’Œè¯·æ±‚æ•°é‡ï¼š%d\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "请求 ID '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr " 状æ€ï¼š%s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr " CA 错误:%s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr " 死机:%s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr " 密钥对存储:type=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "æ— " #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",location='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",nickname='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinfile='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "è¯ä¹¦ï¼štype=%s,location='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr " CA:%s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr " å‘行者:%s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr " 主题:%s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr " 到期时间:%s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "未知" #: src/getcert.c:3577 msgid "\temail: " msgstr " 电å­é‚®ä»¶ï¼š " #: src/getcert.c:3583 msgid "\tdns: " msgstr " DNS: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr " 实体å: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\t密钥用法: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr " EKU:" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tä¿å­˜å‰å‘½ä»¤: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tä¿å­˜åŽå‘½ä»¤: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr " 跟踪:%s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr " 自动更新:%s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr " CA 类型:%s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr " helper ä½ç½®ï¼š%s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr " 下个åºåˆ—å·ï¼š%s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr " 已知å‘行者å称:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - 客户端è¯ä¹¦ç™»è®°å·¥å…·\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "用法:%s request [options]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "所需å‚数:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* 如果使用 NSS æ•°æ®åº“作为存储:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR 密钥和è¯ä¹¦çš„NSS æ•°æ®åº“\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr " -n NAME 基于 NSS 的存储的别å(åªåœ¨åŒæ—¶ä½¿ç”¨ -d 时有效)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "-t NAME 基于 NSS 的存储的å¯é€‰ä»¤ç‰Œå(åªåœ¨åŒæ—¶ä½¿ç”¨ -d 时有效)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* 如果使用文件作为存储:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FILE ç§é’¥çš„PEM 文件\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FILE è¯ä¹¦çš„ PEM 文件(åªåœ¨åŒæ—¶ä½¿ç”¨ -k 时有效)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* 如果密钥è¦è¢«åŠ å¯†ï¼š\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE ä¿å­˜åŠ å¯† PIN 的文件\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN PIN 值\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "å¯é€‰å‚数:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* è¯ä¹¦å¤„ç†è®¾ç½®ï¼š\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" " -I NAME è¦åˆ†é…给请求的别å\n" "\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr " -g SIZE è¦ç”Ÿæˆçš„密钥大å°ï¼Œå¦‚果密钥ä¸å­˜åœ¨\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr " -r 在临近到期时试图更新è¯ä¹¦ï¼ˆé»˜è®¤ï¼‰\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr " -R ä¸åœ¨ä¸´è¿‘到期时试图更新è¯ä¹¦\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA 使用指定的 CA 而ä¸æ˜¯é»˜è®¤ CA\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr " -T 预置文件\tè¦æ±‚ CA 使用指å的预置文件或模æ¿å¤„ç†è¯·æ±‚\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* ç­¾å请求的å‚数:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr " -N NAME 设定所需的主题å(默认:CN=<主机å>)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTUSAGE 设定所需的扩展密钥使用 OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u KEYUSAGE\t设定请求的密钥用法值\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAME 设定所需实体å\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAME 设定所需的 DNS å\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL 设定所需的电å­é‚®ä»¶åœ°å€\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* 总线选项:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S 在系统总线上连接到的 certmonger æœåŠ¡\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s 在会è¯æ€»çº¿ä¸Šè¿žæŽ¥åˆ°çš„ certmonger æœåŠ¡\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* 其他选项:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\t在ä¿å­˜è¯ä¹¦å‰è¿è¡Œçš„命令\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\t在ä¿å­˜è¯ä¹¦åŽè¿è¡Œçš„命令\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v 报告所有错误细节\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "用法:%s start-tracking [options]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* 如果修改现存请求:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAME 现存跟踪请求的别å\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* 如果密钥已加密:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAME è¦æŒ‡å®šäºŽè·Ÿè¸ªè¯·æ±‚的别å\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* ç­¾å请求在更新时的å‚数:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTUSAGE 覆盖所需的扩展密钥使用 OID\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAME 覆盖所需的实体å\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAME 覆盖所需的 DNS å\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL 覆盖所需的电å­é‚®ä»¶åœ°å€\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "用法:%s stop-tracking [选项]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* 由请求标识符:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAME 跟踪请求的别å\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "用法:%s resubmit [选项]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FILE è¯ä¹¦çš„ PEM 文件\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* ç­¾å请求的新å‚数值:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAME è¦æŒ‡å®šäºŽè·Ÿè¸ªè¯·æ±‚的新别å\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA 使用指定的 CA 而ä¸æ˜¯å½“å‰çš„\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "用法:%s list [选项]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* 一般选项:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr " -c CA åªåˆ—出与此 CA å…³è”的请求和è¯ä¹¦\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r åªåˆ—出未解决请求的相关信æ¯\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t åªåˆ—出被跟踪è¯ä¹¦çš„相关信æ¯\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* 如果选择一个特定的需求:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d 目录»仅列出使用该 " "NSS æ•°æ®åº“的请求和认è¯\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n å称»仅显示使用该" "å称的请求和认è¯\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f 文件»仅列出ä¿å­˜åœ¨" "æ­¤ PEM 文件中的请求和认è¯\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S 在系统总线上连接 certmonger æœåŠ¡\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s 在会è¯æ€»çº¿ä¸Šè¿žæŽ¥ certmonger æœåŠ¡\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "用法:%s list-cas [选项]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA åªåˆ—出具有此å称的 CA 的相关信æ¯\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s:未识别命令\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" "选项 -t ä¸å¯è·Ÿé€‰é¡¹ -K å…±åŒä½¿ç”¨ã€‚\n" "\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "选项 -k ä¸å¯è·Ÿé€‰é¡¹ -K å…±åŒä½¿ç”¨ã€‚\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "选项 -K ä¸å¯è·Ÿé€‰é¡¹ -k 或选项 -t å…±åŒä½¿ç”¨ã€‚\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "无法确定签å请求的实体å。\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s 使用和会è¯æ€»çº¿\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S 使用系统总线\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n ä¸æˆä¸ºå®ˆæŠ¤è¿›ç¨‹\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f æˆä¸ºå®ˆæŠ¤è¿›ç¨‹\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT 使用总线激活, idle 超时\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B ä¸ä½¿ç”¨ idle 超时\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL 设定调试级别 (使用 -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" "\t-p FILE 在文件中写入æœåŠ¡ PID\n" "\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F 强制 NSS 进入 FIPS 模å¼\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "å‘生一个内部错误。" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "没有找到匹é…çš„æ¡ç›®ã€‚\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "具有别å“%sâ€çš„ CA å·²ç»å­˜åœ¨ã€‚" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "è¯ä¹¦å­˜å‚¨ç±»åž‹æ²¡æœ‰æŒ‡å®šã€‚" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "è¯ä¹¦å­˜å‚¨ç±»åž‹â€œ%sâ€ä¸æ”¯æŒã€‚" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "ä½ç½®â€œ%sâ€å¿…须是ç»å¯¹è·¯å¾„。" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "è¯ä¹¦å­˜å‚¨ä½ç½®æ²¡æœ‰æŒ‡å®šã€‚" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "ä½ç½®â€œ%sâ€çš„上一层必须是有效目录。" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "ä½ç½®â€œ%sâ€å¿…须是文件。" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "ä½ç½®â€œ%sâ€å¿…须是目录。" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "è¯ä¹¦åˆ«å没有指定。" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "具有别å“%sâ€çš„请求已ç»å­˜åœ¨ã€‚" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "在相åŒä½ç½®çš„认è¯å·²ç»è¢«åŒ…å«æ˜µç§° \"%s\" 的请求使用。" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "密钥存储类型“%sâ€ä¸æ”¯æŒã€‚" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "密钥存储ä½ç½®æ²¡æœ‰æŒ‡å®šã€‚" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "密钥别å没有指定。" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "在相åŒä½ç½®çš„键已ç»è¢«åŒ…å«æ˜µç§° \"%s\" 的请求使用。" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "没有该 CA。" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "è¯ä¹¦è®¤è¯ä¸­å¿ƒâ€œ%sâ€æœªçŸ¥ã€‚" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "未识别的å‚数或错误的值类型。" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "访问æƒé™ä¸è¶³ã€‚请以根用户é‡è¯•æ“作。\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "请检验 certmonger æœåŠ¡æ˜¯å¦å·²å¯åŠ¨ã€‚\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "请检验 certmonger æœåŠ¡æ˜¯å¦ä»åœ¨è¿è¡Œã€‚\n" certmonger-0.78.6/po/zh_CN.GB2312.po0000664000175000017500000012651212645513277013505 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Chinese (China) (GB2312) (http://www.transifex.com/projects/p/" "certmonger/language/zh_CN.GB2312/)\n" "Language: zh_CN.GB2312\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/xh.po0000664000175000017500000012645212645513277012327 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Xhosa (http://www.transifex.com/projects/p/certmonger/" "language/xh/)\n" "Language: xh\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/wo.po0000664000175000017500000012644312645513277012335 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Wolof (http://www.transifex.com/projects/p/certmonger/" "language/wo/)\n" "Language: wo\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/vi.po0000664000175000017500000012645012645513277012324 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Vietnamese (http://www.transifex.com/projects/p/certmonger/" "language/vi/)\n" "Language: vi\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/uz.po0000664000175000017500000012644312645513277012346 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Uzbek (http://www.transifex.com/projects/p/certmonger/" "language/uz/)\n" "Language: uz\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ur.po0000664000175000017500000012645112645513277012335 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Urdu (http://www.transifex.com/projects/p/certmonger/language/" "ur/)\n" "Language: ur\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/uk_UA.po0000664000175000017500000012660712645513277012716 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Ukrainian (Ukraine) (http://www.transifex.com/projects/p/" "fedora/language/uk_UA/)\n" "Language: uk_UA\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/uk.po0000664000175000017500000017727212645513277012335 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Nalin Dahyabhai , 2011 # Yuri Chornoivan , 2011-2014 # Yuri Chornoivan , 2013 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Ukrainian (http://www.transifex.com/projects/p/certmonger/" "language/uk/)\n" "Language: uk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ назву вузла Ñлужби Ñертифікації (CA).\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Ðе вдалоÑÑ Ð¿Ñ€Ð¾Ñ‡Ð¸Ñ‚Ð°Ñ‚Ð¸ запит щодо підпиÑу.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Помилка обробки відповіді Ñервера.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Помилка Ñервера.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Ðе виÑтачає пам'ÑÑ‚Ñ–.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" "Ðе вказано адреÑи агента (-A), типове Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð°Ð´Ñ€ÐµÑи також невідоме.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "ÐадіÑлано запит щодо поновленнÑ, але не надано Ñерійного номера.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" "Ðе вказано завершального запиÑу адреÑи (-E), типове Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð·Ð°Ð¿Ð¸Ñу також " "невідоме.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" "Ðе вказано адреÑи агента (-A), типове Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð°Ð´Ñ€ÐµÑи також невідоме.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Ðе вказано профілю або шаблону (-T), типове Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ñ‚Ð°ÐºÐ¾Ð¶ невідоме.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "Помилка під Ñ‡Ð°Ñ Ñпроби Ð·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ Ñ€Ð¾Ð±Ð¾Ñ‚Ð¸ NSS.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Ð’Ð½ÑƒÑ‚Ñ€Ñ–ÑˆÐ½Ñ Ð¿Ð¾Ð¼Ð¸Ð»ÐºÐ°: невідомий Ñтан.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Помилка %d під Ñ‡Ð°Ñ Ñпроби вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ Ð·â€™Ñ”Ð´Ð½Ð°Ð½Ð½Ñ Ð· %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Помилка %d під Ñ‡Ð°Ñ Ñпроби з’єднатиÑÑ Ð· %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Ð’Ð½ÑƒÑ‚Ñ€Ñ–ÑˆÐ½Ñ Ð¿Ð¾Ð¼Ð¸Ð»ÐºÐ°: немає відповіді на «%s?%s».\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "ШлÑÑ… «%s» не Ñ” абÑолютним, Ñпробуємо заміÑÑ‚ÑŒ нього ÑкориÑтатиÑÑ Â«%s».\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "ШлÑÑ… «%s» не Ñ” абÑолютним, Ñпроба Ð²Ð¸Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð½Ð°Ð·Ð²Ð¸ поточного каталогу також " "зазнала невдачі.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "ШлÑÑ… «%s»: недоÑтатні права доÑтупу.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "ШлÑÑ… «%s» не вказує на каталог.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "ШлÑÑ… «%s»: %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "ШлÑÑ… «%s» не вказує на звичайний файл.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Будь лаÑка, перевірте, чи працює Ñлужба каналу повідомлень (D-Bus).\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Помилка під Ñ‡Ð°Ñ Ñпроби ÑÑ‚Ð²Ð¾Ñ€ÐµÐ½Ð½Ñ Ð¿Ð¾Ð²Ñ–Ð´Ð¾Ð¼Ð»ÐµÐ½Ð½Ñ Ð·Ð°Ð¿Ð¸Ñ‚Ñƒ до DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Помилка %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Помилка %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Помилка: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Отримано Ð¿Ð¾Ð²Ñ–Ð´Ð¾Ð¼Ð»ÐµÐ½Ð½Ñ Ð¿Ñ€Ð¾ помилку від локальної Ñлужби %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Ðе отримано відповіді від Ñлужби %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "Стан %s, прив’Ñзка: %s.\n" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Помилка під Ñ‡Ð°Ñ Ñ–Ð½Ñ–Ñ†Ñ–Ð°Ð»Ñ–Ð·Ð°Ñ†Ñ–Ñ— бібліотеки Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Підтримки ÑÑ‚Ð²Ð¾Ñ€ÐµÐ½Ð½Ñ ÐºÐ»ÑŽÑ‡Ñ–Ð² «%s» не передбачено.\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Серед відомих типів ключів такі:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Ðерозпізнане Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð²Ð¸ÐºÐ¾Ñ€Ð¸ÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð° «%s».\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ OID «%s».\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Помилка під Ñ‡Ð°Ñ Ð¾Ð±Ñ€Ð¾Ð±ÐºÐ¸ реєÑтраційного запиÑу Kerberos «%s»: %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Помилка під Ñ‡Ð°Ñ Ð¿Ð°ÐºÑƒÐ²Ð°Ð½Ð½Ñ Ñ€ÐµÑ”Ñтраційного запиÑу Kerberos «%s»: %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s: некоректне Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ â€” «%s»\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: разом з параметром Ñлід вказати аргумент -- «%c»\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: некоректний параметр — «%c»\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Помилка: зайвий аргумент «%s».\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Помилка: було вказано невикориÑтовувані зайві аргументи.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" "Вказано адреÑу бази даних або пÑевдонім без Ð²Ð¸Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ñ–Ð½ÑˆÐ¾Ð³Ð¾ необхідного " "елемента.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "ОдночаÑно вказано каталог бази даних Ñ– файл Ñертифіката.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Ðе вказано ні каталогу бази даних з пÑевдонімом, ні файла Ñертифіката.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "Ключ Ñ– Ñертифікат не можна зберігати у одному файлі.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "Сервер IPA потребує викориÑÑ‚Ð°Ð½Ð½Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ð° -K (назви реєÑтраційного запиÑу), " "Ñкщо викориÑтано параметр -N (призначеннÑ).\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Ðе виÑвлено Ñлужби Ñертифікації (CA) з назвою «%s».\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Помилка під Ñ‡Ð°Ñ Ñпроби вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ñ–Ð² запиту.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Додано новий запит «%s» щодо підпиÑуваннÑ.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Ðе вдалоÑÑ Ð´Ð¾Ð´Ð°Ñ‚Ð¸ новий запит щодо підпиÑуваннÑ.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Додано новий запит «%s» щодо ÑтеженнÑ.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Ðе вдалоÑÑ Ð´Ð¾Ð´Ð°Ñ‚Ð¸ новий запит щодо ÑтеженнÑ.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Ðе вказано ні ідентифікатора, ні каталогу бази даних з пÑевдонімом, ні файла " "Ñертифіката.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Змінено запит «%s».\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Ðе вдалоÑÑ Ð·Ð¼Ñ–Ð½Ð¸Ñ‚Ð¸ запит «%s».\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Ðе виÑвлено запиту з вказаним пÑевдонімом.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Запиту, що відповідає аргументам, не виÑвлено.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Запит «%s» вилучено.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Ðе вдалоÑÑ Ð²Ð¸Ð»ÑƒÑ‡Ð¸Ñ‚Ð¸ запит «%s».\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Помилка під Ñ‡Ð°Ñ Ñпроби змінити «%s».\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Повторне надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s» до «%s».\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Повторне надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s».\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Помилка під Ñ‡Ð°Ñ Ñпроби надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s» до «%s».\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Помилка під Ñ‡Ð°Ñ Ñпроби надÑÐ¸Ð»Ð°Ð½Ð½Ñ Â«%s».\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "Оновлюємо ідентифікатор запиту «%s».\n" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "Ðе оновлюємо ідентифікатор запиту «%s».\n" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "КількіÑÑ‚ÑŒ Ñертифікатів та запитів, за Ñкими ведетьÑÑ ÑтеженнÑ: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Ідентифікатор запиту «%s»:\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tÑтан: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tca-помилка: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tприв’Ñзка: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tÑховище пар ключів: тип=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "Ðемає" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",розташуваннÑ=«%s»" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",пÑевдонім=«%s»" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",ключ=«%s»" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",пін-файл=«%s»" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tÑертифікат: тип=%s,розташуваннÑ=«%s»" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\tвидавець: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tпризначеннÑ: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\tÐ·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ Ð´Ñ–Ñ—: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "невідоме" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tел. пошта: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tреєÑтраційний запиÑ: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tIP-адреÑа: " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tвикориÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð°: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "\tкореневі Ñертифікати, збережені до файлів:\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "\tінші кореневі Ñертифікати, збережені до файлів:\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "\tінші Ñертифікати, збережені до файлів:\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "\tкореневі Ñертифікати, збережені до баз даних:\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "\tінше кореневі файли, збережені до баз даних:\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "\tінші Ñертифікати, збережені до баз даних:\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tкоманда до збереженнÑ: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tкоманда піÑÐ»Ñ Ð·Ð±ÐµÑ€ÐµÐ¶ÐµÐ½Ð½Ñ: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tÑтеженнÑ: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tавтооновленнÑ: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "Служба Ñертифікації «%s»:\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "\tÑамоідентифікаціÑ: %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tca-тип: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tадреÑа допоміжної програми: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tнаÑтупний Ñерійний номер: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tвідомі назви видавцÑ:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "\tвідомі профілі, шаблони, типи Ñертифікатів:\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "\tтиповий профіль, шаблон або тип Ñертифіката: %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "Ðе вказано ні пÑевдоніма CA, ні Ð¿Ñ€Ð°Ð¿Ð¾Ñ€Ñ†Ñ -a.\n" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "Оновлюємо дані Ð´Ð»Ñ CA «%s».\n" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "Оновлюємо дані Ð´Ð»Ñ CA без назви.\n" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "\tпомилка під Ñ‡Ð°Ñ Ñпроби Ð¾Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ… CA\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s — інÑтрумент реєÑтрації клієнтÑьких Ñертифікатів\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "ВикориÑтаннÑ: %s request [параметри]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Обов’Ñзкові аргументи:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Якщо Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ… викориÑтовуєтьÑÑ Ð±Ð°Ð·Ð° даних NSS:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d КÐТÐЛОГ\tБаза даних ключів Ñ– Ñертифікатів NSS\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n ÐÐЗВÐ\tпÑевдонім Ñховища на оÑнові NSS (працюватиме, лише Ñкщо вказано -" "d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t ÐÐЗВÐ\tдодаткова назва ключа до заÑнованого на NSS Ñховища " "(працюватиме, лише Ñкщо вказано -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Якщо Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ… викориÑтовуютьÑÑ Ñ„Ð°Ð¹Ð»Ð¸:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k ФÐЙЛ\tФайл PEM закритого ключа\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f ФÐЙЛ\tФайл PEM Ñертифіката (працюватиме, лише Ñкщо вказано -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Якщо ключі Ñлід зашифрувати:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p ФÐЙЛ\tФайл, у Ñкому зберігаєтьÑÑ PIN-код шифруваннÑ\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tÐ—Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ PIN-коду шифруваннÑ\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Ðеобов’Ñзкові аргументи:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Параметри обробки Ñертифікатів:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I ÐÐЗВÐ\tпÑевдонім, Ñкий Ñлід пов’Ñзати з запитом\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" " -G ТИП\tтип ключа, Ñкий Ñлід Ñтворити, Ñкщо не буде виÑвлено готового\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g РОЗМІР\tрозмір ключа, Ñкий Ñлід Ñтворити, Ñкщо не буде виÑвлено " "готового, у бітах\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tСпробувати оновити Ñертифікат, Ñкщо наближаєтьÑÑ Ð·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ Ñтроку " "дії (типова поведінка)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tÐе намагатиÑÑ Ð¾Ð½Ð¾Ð²Ð¸Ñ‚Ð¸ Ñертифікат, Ñкщо наближаєтьÑÑ Ð·Ð°Ð²ÐµÑ€ÑˆÐµÐ½Ð½Ñ " "Ñтроку дії\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" " -c CA\t\tвикориÑтовувати вказану Ñлужбу Ñертифікації (CA), а не типову\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T ПРОФІЛЬ\tпопроÑити CA обробити запит з викориÑтаннÑм вказаного профілю " "або шаблона\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Параметри запиту щодо підпиÑуваннÑ:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr " -N ÐÐЗВÐ\tÐ’Ñтановити бажане Ð¿Ñ€Ð¸Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ (Типово: CN=<назва вузла>)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" " -U ДОД.ВИКОР.\tÐ’Ñтановити додаткове викориÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð° за допомогою OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u ВИКОРИСТÐÐÐЯ вÑтановити вказане Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð²Ð¸ÐºÐ¾Ñ€Ð¸ÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð°\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K ÐÐЗВÐ\tÐ’Ñтановити вказану назву реєÑтраційного запиÑу\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D ÐÐЗВÐ-DNS\tвÑтановити вказану назву за DNS\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E ЕЛ.ПОШТÐ\tвÑтановити вказану адреÑу електронної пошти\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr " -A ÐДРЕСÐ\tвÑтановити вказану IP-адреÑу\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Параметри каналу зв’Ñзку:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" " -S\t\tÐ’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою ÑиÑтемного " "каналу\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" " -s\t\tÐ’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою каналу ÑеанÑу\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Інші параметри:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tкоманда, Ñку Ñлід виконати до Ð·Ð±ÐµÑ€ÐµÐ¶ÐµÐ½Ð½Ñ Ñертифіката\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tкоманда, Ñку Ñлід виконати піÑÐ»Ñ Ð·Ð±ÐµÑ€ÐµÐ¶ÐµÐ½Ð½Ñ Ñертифіката\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr " -F\tфайл, у Ñкому Ñлід зберігати Ñертифікати CA\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr " -a\tбаза даних NSS, у Ñкій Ñлід зберігати Ñертифікати CA\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr " -w\tÑпробувати зачекати на момент випуÑку Ñертифіката\n" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\tповідомлÑти про вÑÑ– дані щодо помилок\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "ВикориÑтаннÑ: %s start-tracking [параметри]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* У разі зміни Ñ–Ñнуючого запиту:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i ÐÐЗВÐ\tПÑевдонім Ñ–Ñнуючого запиту щодо ÑтеженнÑ\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Якщо ключі зашифровано:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I ÐÐЗВÐ\tПÑевдонім, Ñкий Ñлід пов’Ñзати з запитом щодо ÑтеженнÑ\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Параметри запиту щодо підпиÑÑƒÐ²Ð°Ð½Ð½Ñ Ð¿Ñ–Ð´ Ñ‡Ð°Ñ Ð¾Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" " -U ДОД.ВИКОР.\tПеревизначити додаткове викориÑÑ‚Ð°Ð½Ð½Ñ ÐºÐ»ÑŽÑ‡Ð° за допомогою " "OID\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K ÐÐЗВÐ\tПеревизначити вказану назву реєÑтраційного запиÑу\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D ÐÐЗВÐ-DNS\tПеревизначити вказану назву за DNS\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E ЕЛ.ПОШТÐ\tПеревизначити вказану адреÑу електронної пошти\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr " -A ÐДРЕСÐ\tперевизначити вказану IP-адреÑу\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "ВикориÑтаннÑ: %s stop-tracking [параметри]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* За ідентифікатором запиту:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i ÐÐЗВÐ\tПÑевдонім запиту щодо ÑтеженнÑ\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "ВикориÑтаннÑ: %s resubmit [параметри]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f ФÐЙЛ\tФайл PEM Ñертифіката\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Ðові Ð·Ð½Ð°Ñ‡ÐµÐ½Ð½Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ñ–Ð² запиту щодо підпиÑуваннÑ:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" " -I ÐÐЗВÐ\tÐовий пÑевдонім, Ñкий Ñлід пов’Ñзати з запитом щодо ÑтеженнÑ\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" " -c CA\t\tВикориÑтовувати вказану Ñлужбу Ñертифікації (CA), а не поточну\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "ВикориÑтаннÑ: %s list [параметри]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Загальні параметри:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\tПоказати ÑпиÑок лише тих запитів та Ñертифікатів, Ñкі пов’Ñзано з " "вказаною Ñлужбою Ñертифікації (CA)\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tПоказати лише відомоÑÑ‚Ñ– щодо нетипових запитів\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" " -t\tПоказати лише відомоÑÑ‚Ñ– щодо Ñертифікатів, за Ñкими ведетьÑÑ ÑтеженнÑ\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* У разі вибору певного запиту:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d КÐТÐЛОГ\tпоказувати ÑпиÑок лише тих запитів Ñ– Ñертифікатів, Ñкі " "викориÑтовують цю базу даних NSS\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -d ÐÐЗВÐ\tпоказувати ÑпиÑок лише тих запитів Ñ– Ñертифікатів, Ñкі " "викориÑтовують цю назву\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f ФÐЙЛ\tпоказувати ÑпиÑок лише тих запитів Ñ– Ñертифікатів, Ñкі " "зберігаютьÑÑ Ñƒ цьому файлі PEM\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" " -S\tÐ’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою ÑиÑтемного " "каналу\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" " -s\tÐ’Ñтановити зв’Ñзок зі Ñлужбою certmonger за допомогою каналу ÑеанÑу\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "КориÑтуваннÑ: %s refresh [параметри]\n" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "КориÑтуваннÑ: %s status [параметри]\n" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "* Вибір певного запиту:\n" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "* Якщо викориÑтовуємо базу даних NSS Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ:\n" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr " -d КÐТ\tповернути Ñтан Ð´Ð»Ñ Ð·Ð°Ð¿Ð¸Ñ‚Ñƒ у вказаній базі даних NSS\n" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" " -n ÐÐЗВÐ\tповернути Ñтан Ð´Ð»Ñ Ñертифіката, Ñкий викориÑтовує вказаний " "пÑевдонім\n" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "* Якщо викориÑтовуємо файли Ð´Ð»Ñ Ð·Ð±ÐµÑ€Ñ–Ð³Ð°Ð½Ð½Ñ Ð´Ð°Ð½Ð¸Ñ…:\n" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" " -f ФÐЙЛ\tповернути Ñтан Ð´Ð»Ñ Ñертифіката, що зберігаєтьÑÑ Ñƒ вказаному файлі " "PEM\n" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "ВикориÑтаннÑ: %s list-cas [параметри]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" " -c CA\tПоказати лише відомоÑÑ‚Ñ– щодо Ñлужби Ñертифікації (CA) з вказаною " "назвою\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "КориÑтуваннÑ: %s refresh-ca [параметри]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr " -c CA\tоновити дані щодо CA із вказаною назвою\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: невідома команда\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ Ñ€Ð¾Ð·Ñ‚Ð°ÑˆÑƒÐ²Ð°Ð½Ð½Ñ Ñервера LDAP IPA.\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ базовий DN даних щодо домену на Ñервері IPA.\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ XMLRPC на боці клієнта.\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "Параметр -t не можна викориÑтовувати разом з параметром -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "Параметр -k не можна викориÑтовувати разом з параметром -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "Параметр -K не можна викориÑтовувати разом з параметрами -k Ñ– -t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" "Ðе вдалоÑÑ Ð²Ð¸Ð·Ð½Ð°Ñ‡Ð¸Ñ‚Ð¸ назву реєÑтраційного запиÑу запиту щодо підпиÑуваннÑ.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Ñлужби «host» на боці клієнта за допомогою " "типового Ñховища ключів: %s.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Â«%s» на боці клієнта за допомогою типової " "таблиці ключів: %s.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Ñлужби «host» на боці клієнта за допомогою " "Ñховища ключів «%s»: %s.\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "Помилка вÑÑ‚Ð°Ð½Ð¾Ð²Ð»ÐµÐ½Ð½Ñ ccache Ð´Ð»Ñ Â«%s» на боці клієнта за допомогою Ñховища " "ключів «%s»: %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s викориÑтовувати канал даних ÑеанÑу\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S викориÑтовувати канал даних ÑиÑтеми\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n не запуÑкати у режимі фонової Ñлужби\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f запуÑтити у режимі фонової Ñлужби\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" "\t-b ЧÐС_ОЧІКУВÐÐÐЯ задіÑÐ½Ð½Ñ ÐºÐ°Ð½Ð°Ð»Ñƒ даних, Ñ‡Ð°Ñ Ð¾Ñ‡Ñ–ÐºÑƒÐ²Ð°Ð½Ð½Ñ Ñƒ Ñтані " "бездіÑльноÑÑ‚Ñ–\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B не викориÑтовувати Ñ‡Ð°Ñ Ð¾Ñ‡Ñ–ÐºÑƒÐ²Ð°Ð½Ð½Ñ Ñƒ Ñтані бездіÑльноÑÑ‚Ñ–\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d РІВЕÐЬ вÑтановити рівень діагноÑтики (викориÑтовуєтьÑÑ -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p ФÐЙЛ запиÑати PID Ñлужби до файла\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F примуÑово перевеÑти NSS у режим FIPS\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "СталаÑÑ Ð²Ð½ÑƒÑ‚Ñ€Ñ–ÑˆÐ½Ñ Ð¿Ð¾Ð¼Ð¸Ð»ÐºÐ°." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Відповідного запиÑу не знайдено.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Служба Ñертифікації (CA) з пÑевдонімом «%s» вже Ñ–Ñнує." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Тип Ñховища Ñертифікатів не вказано." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Підтримки типу Ñховищ Ñертифікатів «%s» не передбачено." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "ÐдреÑою «%s» має бути абÑолютний шлÑÑ…." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "ÐдреÑу Ñховища Ñертифікатів не вказано." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "БатьківÑька тека адреÑи «%s» недоÑтупна через недоÑтатні права доÑтупу." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "БатьківÑьким каталогом адреÑи «%s» має бути коректний каталог." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "ÐдреÑою «%s» має бути файл." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "ÐдреÑа «%s» недоÑтупна через недоÑтатні права доÑтупу." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "ÐдреÑою «%s» має бути каталог." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "ПÑевдонім Ñертифіката не вказано." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Запит з пÑевдонімом «%s» вже Ñ–Ñнує." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Сертифікат з цією адреÑою вже викориÑтовуєтьÑÑ Ð·Ð° запитом з пÑевдонімом «%s»." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Підтримки типу Ñховищ ключів «%s» не передбачено." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "ÐдреÑу Ñховища ключів не вказано." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "ПÑевдонім ключа не вказано." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Ключ з цією адреÑою вже викориÑтовуєтьÑÑ Ð·Ð° запитом з пÑевдонімом «%s»." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Підтримки ключів типу «%s» не передбачено." #: src/tdbush.c:1400 msgid "No such CA." msgstr "Такої Ñлужби Ñертифікації (CA) не виÑвлено." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Ðевідома Ñлужба Ñертифікації «%s»." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Ðевідомий параметр або помилковий тип значеннÑ." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "Помилка під Ñ‡Ð°Ñ Ñпроби обробити аргументи." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Ðерозпізнана назва влаÑтивоÑÑ‚Ñ–." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" "ÐедоÑтатні права доÑтупу. Будь лаÑка, повторіть дію від імені кориÑтувача " "root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Будь лаÑка, перевірте, чи запущено фонову Ñлужбу certmonger.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "Будь лаÑка, перевірте, чи працює ще фонова Ñлужба certmonger\n" certmonger-0.78.6/po/tr.po0000664000175000017500000012750712645513277012337 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Hasan Alp Ä°NAN , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Turkish (http://www.transifex.com/projects/p/certmonger/" "language/tr/)\n" "Language: tr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Sunucu hatası.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Hata %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Hata %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Hata: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "»durum: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "»ca-hatası: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "»CA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "»eposta: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "»dns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "»ca-tipi: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/tl.po0000664000175000017500000012645312645513277012330 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Tagalog (http://www.transifex.com/projects/p/certmonger/" "language/tl/)\n" "Language: tl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/th.po0000664000175000017500000012644212645513277012322 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Thai (http://www.transifex.com/projects/p/certmonger/language/" "th/)\n" "Language: th\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/tg.po0000664000175000017500000012645212645513277012322 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Tajik (http://www.transifex.com/projects/p/certmonger/" "language/tg/)\n" "Language: tg\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/te.po0000664000175000017500000012645312645513277012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Telugu (http://www.transifex.com/projects/p/certmonger/" "language/te/)\n" "Language: te\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ta_IN.po0000664000175000017500000012646412645513277012705 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Tamil (India) (http://www.transifex.com/projects/p/fedora/" "language/ta_IN/)\n" "Language: ta_IN\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ta.po0000664000175000017500000012666212645513277012317 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Felix I , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Tamil (http://www.transifex.com/projects/p/certmonger/" "language/ta/)\n" "Language: ta\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "»CA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/sv.po0000664000175000017500000015361412645513277012340 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Göran Uddeborg , 2011-2013 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Swedish (http://www.transifex.com/projects/p/certmonger/" "language/sv/)\n" "Language: sv\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Det gÃ¥r inte att avgöra värdnamnet för CA:n.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Kan inte läsa signeringsbegäran.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Fel vid inställning av XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Fel vid tolkning av svar frÃ¥n servern.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Serverfel.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Slut pÃ¥ minne.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "Ingen agent-URL (-A) angiven, och inget standardvärde är känt.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "Förnyelse begärd, men inget serienummer angivet.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "Ingen slutposts-URL (-E) angiven, och inget standardvärde är känt.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "Ingen agent-URL (-A) angiven, och inget standardvärde är känt.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Ingen profil/mall (-T) angiven, och inget standardvärde är känt.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "Fel när NSS stängdes av.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Internt fel: okänt tillstÃ¥nd.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Fel %d vid anslutning till %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Fel %d vid anslutning till %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Internt fel: inget svar pÃ¥ â€%s?%sâ€.\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "Sökvägen â€%s†är inte absolut, försöker använda â€%s†istället.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Sökvägen â€%s†är inte absolut, och det uppstod ett fel när namnet pÃ¥ den " "aktuella katalogen skulle bestämmas.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "Sökvägen â€%sâ€: otillräckliga rättigheter.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Sökvägen â€%s†är inte en katalog.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Sökväg â€%sâ€: %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" "Sökvägen â€%s†är inte normal fil.\n" "\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Kontrollera att tjänsten meddelandebuss (D-Bus) kör.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Fel när DBus-meddelandet med begäran skapades.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Fel %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Fel %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Fel: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Mottog felsvar frÃ¥n den lokala tjänsten %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Inget svar mottaget frÃ¥n tjänsten %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "TillstÃ¥ndet %s, fast: %s.\n" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Fel vid initiering av Kerberos bibliotek: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Inget stöd för att generera â€%sâ€-nycklar.\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Kända nyckeltyper inkluderar:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Okänd nyckelanvändning â€%sâ€.\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Det gick inte att beräkna OID â€%sâ€.\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Fel vid tolkning av Kerberos-huvudnamn â€%sâ€: %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Fel vid avtolkning av Kerberos-huvudnamn â€%sâ€: %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s: ogiltigt värde -- â€%sâ€\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: flaggan kräver ett argument -- â€%câ€\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: felaktig flagga -- â€%câ€\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Fel: oanvänt extra argument â€%sâ€.\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Fel: oanvända extra argument gavs.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Databasplats eller smeknamn angivet utan den andra.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Databaskatalog och certifikatfil bÃ¥da angivna.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "Ingen av databaskatalog och smeknamn eller certifikatfil angiven.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "Nyckeln och certifikatet kan inte bÃ¥da sparas i samma fil.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "IPA-backänden kräver användning av -K-flaggan (huvudnamn) när -N-flaggan " "(ämnesnamn) används.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Ingen CA med namnet â€%s†hittades.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Fel vid inställning av argument till begäran.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Nya begäran om signering â€%s†tillagd.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Nya begäran om signering kunde inte läggas till.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Ny spÃ¥rningsbegäran â€%s†tilllagd.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Nya spÃ¥rningsbegäran kunde inte läggas till.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Ingen av ID eller databaskatalog och smeknamn eller certifikatfil filen " "angiven.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Begäran â€%s†ändrad.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Begäran â€%s†kunde inte ändras.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Ingen begäran hittades med angivet smeknamn.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Ingen begäran hittades som matchade argumenten.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Begäran â€%s†borttagen.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Begäran â€%s†kunde inte tas bort.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Fel när â€%s†ändrades.\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Skickar om â€%s†till â€%sâ€.\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Skickar om â€%sâ€.\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Fel vid försök att skicka â€%s†till â€%sâ€.\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Fel vid försök att skicka â€%sâ€.\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "Begärans-ID â€%s†uppdateras.\n" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "Begärans-ID â€%s†uppdateras INTE.\n" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Antalet certifikat och spÃ¥rade begäran: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Begärans-id â€%sâ€:\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tstatus: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tca-fel: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tfastnat: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tnyckelparslagring: typ=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "INGEN" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",plats=â€%sâ€" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",smeknamn=â€%sâ€" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",symbol=â€%sâ€" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pin-fil=â€%sâ€" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tcertifikat: typ=%s,plats=â€%sâ€" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\tutgivare: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tämne: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\tlöper ut: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "okänt" #: src/getcert.c:3577 msgid "\temail: " msgstr "\te-post: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\thuvudnamn: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tIP-adress: " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tnyckelanvändning: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "\trotcertifikat sparades i filer:\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "\tandra rotcertifikat sparades i filer:\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "\tandra certifikat sparades i filer:\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "\trotcertifikat sparades i databaser:\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "\tandra rotcertifikat sparades i databaser:\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "\tandra certifikat sparades i databaser:\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tkommando före det sparas: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tkommando efter det sparas: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tspÃ¥r: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-förnyelse: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA â€%sâ€:\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "\tsjälvidentifierar som: %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tca-typ: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\thjälparplats: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tnästa-serienummer: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tkänt utfärdarnamn:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "\tkända profiler/mallar/certifikattyper:\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "\tstandardprofil/-mall/-certifikattyp: %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "Varken CA-smeknamn eller -a-flaggan angavs.\n" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "Data för CA â€%s†uppdateras.\n" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "Data för namnlös CA uppdateras.\n" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "\tfel vid uppdatering av CA-data\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - registreringsverktyg för klientcertifikat\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Användning: %s request [flaggor]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Obligatoriska argument:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Om du använder en NSS-databas för lagring:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d KAT\tNSS-databas för nyckel och cert\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr " -n NAMN\tsmeknamn för NSS-baserad lagring (endast giltigt med -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAMN\tfrivilligt symbolnamn för NSS-baserad lagring (endast giltig med -" "d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Om du använder filer för lagring:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FIL\tPEM-fil för privat nyckel\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FIL\tPEM-fil för certifikat (endast giltigt med -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Om nycklar skall krypteras:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FIL\tfil som hÃ¥ller PIN för kryptering\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN-värde\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Valfria argument:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Inställningar för certifikathantering:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAMN\tsmeknamn att tilldela till begäran\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr " -G TYPE\ttyp av nyckel att genereras om det inte redan finns en\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g STORLEK\tstorlek pÃ¥ nyckel som skall genereras om det inte redan finns " "en\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tförsök att förnya certifikatet när utgÃ¥ngsdatumet närmar sig " "(standard)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tförsök inte förnya certifikatet när utgÃ¥ngsdatumet närmar sig\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tanvänd angiven CA istället för standard\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFIL\tbe CA:n att bearbeta begäran med användning av den angivna " "profilen eller mallen\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parametrar för signeringsbegäran:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr " -N NAMN\tställ in begärt ämnesnamn (standard: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTANV\tställ in begärd förlängd nyckelanvändning-OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u NYCELANVÄNDNING\tsätt angivet värde pÃ¥ nyckelanvändning\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAMN\tställ in begärt huvudnamn\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNS-NAMN\tställ in begärt DNS-namn\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EPOST\tställ in begärd e-postadress\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr " -A ADRESS\tange begärd IP-adress\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Bussflaggor:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tanslut till tjänsten certmonger pÃ¥ systembussen\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tanslut till tjänsten certmonger pÃ¥ sessionsbussen\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Andra flaggor:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tkommando att köra före certifikatet sparas\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tkommando att köra efter certifikatet sparas\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr " -F\tfil i vilken CA:ns certifikat skall lagras\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr " -a\tNSS-databas i vilken CA:ns certifikat skall lagras\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr " -w\tförsök att vänta pÃ¥ att certifikatet ges ut\n" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\trapportera alla detaljer om fel\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Användning: %s start-tracking [flaggor]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Om du ändrar en befintlig begäran:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAMN\tsmeknamn pÃ¥ en befintlig spÃ¥rningsbegäran\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Om nycklarna är krypterade:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAMN\tsmeknamn att ge pÃ¥ spÃ¥rningbegäran\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parametrar för signeringsbegäran vid förnyelsetidpunkten:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTANV\tÃ¥sidosätt begärd förlängd nyckelanvändning-OID\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAMN\tÃ¥sidosätt begärt huvudnamn\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNS-NAMN\tÃ¥sidosätt begärt DNS-namn\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL\tÃ¥sidosätt begärd e-postadress\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr " -A ADRESS\tÃ¥sidosätt begärd IP-adress\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Användning: %s stop-tracking [flaggor]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Enligt identifierare för begäran:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAMN\tsmeknamn för spÃ¥rningsbegäran\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Användning: %s resubmit [flaggor]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FIL\tPEM-fil för certifikat\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Nya parametervärden för signeringsbegäran:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAMN\tnytt smeknamn för att ge till spÃ¥rningsbegäran\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\tanvänd den angivna CA:n istället för den nuvarande\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Användning: %s list [flaggor]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Allmänna flaggor:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\tlista endast begäran och certifikat associerade med denna CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tlista endast information om utestÃ¥ende begäran\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tlista endast information om spÃ¥rade certifikat\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Om du väljer en viss begäran:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d KAT\tlista endast begäran och certifikat som använder denna NSS-" "databas\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAMN\tlista endast begäran och certifikat som använder detta smeknamn\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FIL\tlista endast begäran och certifikat lagrade i denna PEM-fil\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tanslut till tjänsten certmonger pÃ¥ systembussen\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tanslut till tjänsten certmonger pÃ¥ sessionsbussen\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "Användning: %s refresh [flaggor]\n" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "Användning: %s status [flaggor]\n" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "* Väljer en viss begäran:\n" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "* När en NSS-databas används för lagring:\n" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr " -d KAT\treturnera status för begäran i denna NSS-databas\n" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" " -n NAMN\treturnera status för certifikatet som använder detta smeknamn\n" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "* När filer används för lagring:\n" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr " -f FIL\treturnera status för certifikatet lagrat i denna PEM-fil\n" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Användning: %s list-cas [flaggor]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA\tlista endast information om CA:n med detta namn\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "Användning: %s refresh-ca [flaggor]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr " -c CA\tuppdatera information om CA:n med detta namn\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: okänt kommando\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "Kan inte avgöra platsen för IPA LDAP-servern.\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "Kan inte avgöra bas-DN för domäninformation pÃ¥ IPA-servern.\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "Fel när det sattes upp för XMLRPC pÃ¥ klienten.\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "Flaggan -t kan inte användas med flaggan -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "Flaggan -k kan inte användas med flaggan -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "Flaggan -K kan inte användas med vare sig flaggan -k eller -t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Det gÃ¥r inte att avgöra huvudnamn för signeringsbegäran.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "Fel när ccache sattes upp för tjänsten â€host†pÃ¥ klienten med " "standardnyckeltabell: %s.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "Fel när ccache sattes upp för â€%s†pÃ¥ klienten med standardnyckeltabell: " "%s.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "Fel när ccache sattes upp för tjänsten â€host†pÃ¥ klienten med användning av " "nyckeltabellen â€%sâ€: %s.\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "Fel när ccache sattes upp för â€%s†pÃ¥ klienten med nyckeltabellen â€%sâ€: %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s använd sessionsbussen\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S använd systembussen\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n bli inte en demon\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f bli en demon\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIDSGRÄNS bussaktiverad, tidsgräns vid inaktivitet\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B använd inte en tidsgräns vid inaktivitet\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d NIVÃ… sätt felsökningsnivÃ¥n (medför -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FIL skriv tjänstens PID till filen\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F tvinga in NSS i FIPS-läge\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Ett internt fel har uppstÃ¥tt." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Inga matchande post funnen.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Det finns redan en CA med smeknamnet â€%sâ€." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Lagringstyp för certifikat inte angiven." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Lagringstyp â€%s†för certifikat stödjs inte." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "Platsen â€%s†mÃ¥ste vara en absolut sökväg." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Lagringsplats för certifikat inte angiven." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "Föräldern till platsen â€%s†kunde inte nÃ¥s pÃ¥ grund av otillräckliga " "rättigheter." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "Förälder till platsen â€%s†mÃ¥ste vara en giltig katalog." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "Platsen â€%s†mÃ¥ste vara en fil." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "Platsen â€%s†kunde inte nÃ¥s pÃ¥ grund av otillräckliga rättigheter." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "Platsen â€%s†mÃ¥ste vara en katalog." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Certifikatsmeknamn inte angivet." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Det finns redan en begäran med smeknamnet â€%sâ€." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Certifikat pÃ¥ samma plats används redan av av begäran med smeknamnet â€%sâ€." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Nyckellagringstypen â€%s†stödjs inte." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Nyckellagringsplats inte angiven." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nyckelsmeknamn inte angivet." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "Nyckel pÃ¥ samma plats används redan av begäran med smeknamnet â€%sâ€." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Inget stöd för nyckeltypen â€%sâ€." #: src/tdbush.c:1400 msgid "No such CA." msgstr "Ingen sÃ¥dan CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Certifikatmyndighet â€%s†inte känd." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Okända parameter eller fel värdetyp." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "Fel vid argumenttolkning." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Okänt egenskapsnamn." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "Otillräckliga rättigheter. Försök Ã¥tgärden igen som root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Kontrollera att tjänsten certmonger har startats.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "Kontrollera att tjänsten certmonger fortfarande kör.\n" certmonger-0.78.6/po/sr@latin.po0000664000175000017500000012661512645513277013465 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Serbian (Latin) (http://www.transifex.com/projects/p/" "certmonger/language/sr@latin/)\n" "Language: sr@latin\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/sr.po0000664000175000017500000012657112645513277012336 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Serbian (http://www.transifex.com/projects/p/certmonger/" "language/sr/)\n" "Language: sr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/sq.po0000664000175000017500000012645512645513277012336 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Albanian (http://www.transifex.com/projects/p/certmonger/" "language/sq/)\n" "Language: sq\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/sl.po0000664000175000017500000012654512645513277012331 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Slovenian (http://www.transifex.com/projects/p/certmonger/" "language/sl/)\n" "Language: sl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=(n%100==1 ? 0 : n%100==2 ? 1 : n%100==3 || n" "%100==4 ? 2 : 3);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/sk.po0000664000175000017500000012650612645513277012325 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Slovak (http://www.transifex.com/projects/p/certmonger/" "language/sk/)\n" "Language: sk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/si.po0000664000175000017500000012645412645513277012325 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Sinhala (http://www.transifex.com/projects/p/certmonger/" "language/si/)\n" "Language: si\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ru_RU.po0000664000175000017500000012661012645513277012740 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Russian (Russia) (http://www.transifex.com/projects/p/" "certmonger/language/ru_RU/)\n" "Language: ru_RU\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ru.po0000664000175000017500000013461212645513277012333 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Stanislav Darchinov , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Russian (http://www.transifex.com/projects/p/certmonger/" "language/ru/)\n" "Language: ru\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Ðевозможно определить Ð¸Ð¼Ñ CA\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Ðевозможно прочеÑÑ‚ÑŒ Ð·Ð°Ð¿Ñ€Ð¾Ñ Ð½Ð° подпиÑание.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Ошибка Ñервера.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Путь \"%s\" не ÑвлÑетÑÑ Ð°Ð±Ñолютным, определение имени текущего каталога было " "выполнено Ñ Ð¾ÑˆÐ¸Ð±ÐºÐ°Ð¼Ð¸.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" "ПожалуйÑта, проверьте, что Ñлужба шины Ñообщений (D-Bus) выполнÑетÑÑ.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Ошибка при Ñоздании запроÑа к DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Ошибка %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Ошибка %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Ошибка: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Получен ошибочный ответ от Ñлужбы %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "От Ñлужбы %s не был получен ответ.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Ошибка инициализации библиотеки Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Ðе определены каталог базы данных и файл Ñертификата.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Ðе определены ни каталог базы данных, ни никнейм или файл Ñертификата.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "Ключи и Ñертификат не могут быть Ñохранены в один файл.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "CA Ñ Ð¸Ð¼ÐµÐ½ÐµÐ¼ \"%s\" не найден.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Ошибка уÑтановки аргументов запроÑа.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Ðовый Ð·Ð°Ð¿Ñ€Ð¾Ñ Ð½Ð° подпиÑание \"%s\" добавлен.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Ðовый Ð·Ð°Ð¿Ñ€Ð¾Ñ Ð½Ð° подпиÑание не может быть добавлен.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Ðе были опрделены ни ID базы данных, ни никнейм или файл Ñертификата.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Ð—Ð°Ð¿Ñ€Ð¾Ñ \"%s\" изменен.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Ð—Ð°Ð¿Ñ€Ð¾Ñ \"%s\" не может быть изменен.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Ð—Ð°Ð¿Ñ€Ð¾Ñ \"%s\" удален.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Ð—Ð°Ð¿Ñ€Ð¾Ñ \"%s\" не может быть удален.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Ошибка Ð¸Ð·Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Ð—Ð°Ð¿Ñ€Ð¾Ñ ID '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "»ÑтатуÑ: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "»ca-ошибка: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "»CA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "»тема: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "»иÑтекает: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "неизвеÑтный" #: src/getcert.c:3577 msgid "\temail: " msgstr "»email: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "»dns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "»ca-тип: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Ðеобходимый аргументы:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Ð’ Ñлучае иÑÐ¿Ð¾Ð»ÑŒÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ð´Ð»Ñ Ñ…Ñ€Ð°Ð½ÐµÐ½Ð¸Ñ Ð±Ð°Ð·Ñ‹ данных NSS:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Ð’ Ñлучае иÑÐ¿Ð¾Ð»ÑŒÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ñ„Ð°Ð¹Ð»Ð¾Ð² Ð´Ð»Ñ Ñ…Ñ€Ð°Ð½ÐµÐ½Ð¸Ñ:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Ð’ Ñлучае, еÑли ключи шифруютÑÑ:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "ÐеобÑзательный аргументы:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Ðовые Ð·Ð½Ð°Ñ‡ÐµÐ½Ð¸Ñ Ð¿Ð°Ñ€Ð°Ð¼ÐµÑ‚Ñ€Ð¾Ð² запроÑа на подпиÑание:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* ОÑновные опции:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: неизвеÑÑ‚Ð½Ð°Ñ ÐºÐ¾Ð¼Ð°Ð½Ð´Ð°\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Произошла внутреннÑÑ Ð¾ÑˆÐ¸Ð±ÐºÐ°." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "CA Ñ Ð¸Ð¼ÐµÐ½ÐµÐ¼ \"%s\" уже ÑущеÑтвует." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ro.po0000664000175000017500000012653112645513277012326 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Romanian (http://www.transifex.com/projects/p/certmonger/" "language/ro/)\n" "Language: ro\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1?0:(((n%100>19)||((n%100==0)&&(n!=0)))?" "2:1));\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/pt_BR.po0000664000175000017500000015464612645513277012724 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Cleiton Lima , 2011 # Fábio Olivé Leite , 2013 # leandro , 2011 # Marcelo Barbosa , 2014 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Portuguese (Brazil) (http://www.transifex.com/projects/p/" "certmonger/language/pt_BR/)\n" "Language: pt-BR\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Não foi possível determinar nome da máquina do CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Não foi possível ler pedido de assinatura.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Erro de criação para XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Erro ao analisar resposta do servidor.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Erro no Servidor.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Sem memória.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "Nenhum agente de URL (-A) dado e nenhum padrão conhecido.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "Renovação solicitada, mas não prove número serial.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "Nenhuma URL de entidade final (-E) dada e nenhum padrão conhecido\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "Nenhum agente de URL (-A) dado e nenhum padrão conhecido.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Nenhum perfil/modelo (-T) dada e nenhum padrão conhecido.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "Erro ao desligar NSS.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Erro interno: estado desconhecido.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Erro %d ao conectar em %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Erro %d ao conectar em %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Erro interno: nenhuma resposta para \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "Caminho \"%s\" não é absoluto, tente usar o \"%s\" em vez disso.\n" "\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Caminho \"%s\" não é absoluto, e houve um erro ao determinar o nome do " "diretório atual.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "Caminho \"%s\": permissões insuficiêntes.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Caminho \"%s\" não é um diretório.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Caminho \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Caminho \"%s\" não é um arquivo normal.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" "Por favor verifique se o serviço de barramento de mensagens (D-Bus) está em " "execução.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Erro ao criar mensagem de pedido DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Erro %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" "Erro %s\n" "\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Erro: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Recebida reposta com erro do serviço local %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Nenhuma resposta recebida do serviço %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Erro ao inicializar biblioteca Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Sem suporte para geração \"%s\" chaves.\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Conhece tipos de chaves incluídas:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Não reconhecido keyUsage \"%s\".\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Não foi possível avaliar OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Erro ao analisar nome principal do Kerberos \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Erro a não analisar o nome principal do Kerberos \"%s\":%s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: opção requer um argumento -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: opção inválida -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Erro: argumento extra não utilizado \"%s\".\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Erro: Argumentos extras não utilizados foram fornecidos.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Localização do banco de dados ou login especificado sem o outro\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" "Diretório do banco de dados e arquivo de certificado, ambos especificados\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Nenhum diretório e login de banco de dados ou arquivo de certificado " "especificado.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "A chave e o certificado não podem ser salvos no mesmo arquivo.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "O backend IPA requer o uso da opção -K (nome do principal) quando a opção -N " "(nome do subject) é usada.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Nenhum CA com o nome \"%s\" encontrado.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Erro ao configurar argumentos do pedido.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Novo pedido de assinatura \"%s\" adicionado.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "O novo pedido de assinatura não pôde ser adicionado.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Nova requisição de rastreamento \"%s\" adicionada.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" "Nova requisição de rastreamento não foi adicionada.\n" "\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Nenhum ID, diretório da base de dados e nome de usuário ou arquivo de " "certificados especificados.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Pedido \"%s\" modificado.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Requisição \"%s\" não podia ser modificada.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Nenhum pedido encontrado com apelido especificado.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Nenhuma requisição encontrada que tenha argumentos correspondentes.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Pedido \"%s\" removido.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Pedido \"%s\" não pôde ser removido.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Erro ao modificar \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Reenviando \"%s\" para \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Reenviando \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Erro ao tentar enviar \"%s\" para \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Erro ao tentar enviar \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Números de certificados e pedidos sendo rastreados: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID do Pedido '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\"status:%s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\"ca-error:%s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\ttravado: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tarmazenamento do par de chave: tipo=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "NADA" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",localização='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",apelido='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinfile='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tcertificado: tipo=%s,localização='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\temitente: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tsubject: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\texpiração: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "desconhecido" #: src/getcert.c:3577 msgid "\temail: " msgstr "\temail: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tnome do principal: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tEndereço IP: " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tuso da key: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "\troot certificados salvo para os arquivos:\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "\toutro root certificados salvos para os arquivos:\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "\toutros certificados salvos para os arquivos:\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "\troot certificados salvos para o banco de dados:\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "\toutro root certificados salvos para os bancos de dados:\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "\toutros certificados salvos para os bancos de dados:\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tpre-salva comando: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tpost-salva comando: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tfaixa: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-renovar: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "\tself-identifies como: %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tca-tipo: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tajuda-localização: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tpróximo-serial-número: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tnomes-conhecidos-emitente:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "\tconhecidos perfis/modelos/certificados:\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "\tpadrão perfil/modelo/certificadotipo: %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" "\terro ao atualizar o dado de CA\n" "\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - ferramenta de inscrição de certificado cliente\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Uso: %s pedido [opções]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Argumentos necessários:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "Se estiver utilizando uma base de dados NSS para armazenamento:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tBanco de dados NSS para chave e certificado\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NOME \tapelido para NSS-based armazenamento (válido somente com -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NOME\tnome de token opcional para NSS-based armazenamento (válido " "somente com -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Se estiver utilizando arquivos para armazenamento:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k ARQUIVO\tPEM arquivo para chave privada\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f ARQUIVO\tPEM arquivo para certificado (válido somente com -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Se as chaves devem ser criptografadas:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p ARQUIVO\tarquivo que mantém a criptografia PIN\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN valor\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Argumentos opcionais:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Configurações de manejo de certificado:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NOME\tapelido para atribuir ao pedido\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr " -G TIPO\ttipo de chave para a gerada se um já não esta no local\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g TAMANHO\ttamanho da chave a ser gerada se um já não está neste lugar\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\ttentativa de renovar o certificado quando o vencimento se aproximar " "(padrão)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tnão tente renovar o certificado quando se aproxima da expiração\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tuse o CA especificado ao invés do padrão\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PERFIL\tperguntar o CA processar a requisição usando o modelo ou perfil " "nomeado\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parâmetros para a solicitação de assinatura:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NOME\tnome do assunto solicitado em conjunto (padrão: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTUSAGE conjunto solicitado prolongado uso de chave OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u KEYUSAGE\tdefine requisição o valor de uso da chave\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" " -K NOME\tconjunto solicitado para o nome principal\n" "\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" " -D DNSNAME\tconjunto solicitado para o nome do DNS \n" "\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" " -E EMAIL\tconjunto solicitado para o endereço de email\n" "\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" " -A ENDEREÇO\tdefinido requisição de endereço IP\n" "\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" "* Bus opções:\n" "\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" " -S\t\tconnectado para o serviço de certmonger sobre o barramento do " "sistema\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" " -s\t\tconnectado para o serviço de certmonger sobre o barramento da " "sessão\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Outras opções:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" " -B\tcomando para rodar antes de salvar o certificado\n" "\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" " -C\tcomando para rodar após salvar o certificado\n" "\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr " -F\tarquivo para armazenar certificados CA's\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" " -a\tNSS banco de dados para armazenar certificados CA's\n" "\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" " -v\treportar todos os detalhes de erros\n" "\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" "Use: %s start-tracking [opções]\n" "\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Se estiver modificando um pedido existente:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NOME\tapelido de uma solicitação de rastreamento existente\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Se as chaves são criptografadas:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NOME\tapelido para dar à solicitação de rastreamento\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parâmetros para a solicitação de assinatura em tempo de renovação:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTUSAGE\tsubstituir requisição extendida para uso de chave OID\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NOME\tsubstituir o nome principal requerido\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" " -D DNSNAME\tsubstituir requisição do nome do DNS\n" "\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" " -E EMAIL\tsubstituir requisição do endereço de email\n" "\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" " -A ENDEREÇO\tsobreescreve requisição de endereço IP\n" "\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Use: %s stop-tracking [opções]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Por identificador de requisição:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" " -i NOME\tapelido para rastreamento de requisição\n" "\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Uso: %s reenvio [opções]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" " -f ARQUIVO\tPEM arquivo para o certificado\n" "\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Novos valores de parâmentro para o pedido de assinatura:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NOME\tnovo apelido para dar a solicitação de rastreamento\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\tuse o CA especificado ao invés do atual\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Uso: %s lista [opções]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Opções gerais:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\tlistar somente solicitações e certificados associados com esta CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tlistar somente informações sobre solicitações pendentes\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tlistar somente informações sobre certificados rastreados\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Se selecionado um pedido específico:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIRETÓRIO\tsomente lista as requisições e os certificados que usam este " "NSS como banco de dados\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NOME\tsomente lista requisições e certificados que usem este apelido\n" "\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f ARQUIVO\tsomente lista as requisições e os certificados armazenadas " "neste arquivo PEM\n" "\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" " -S\tconectado para o serviço de certmonger sob o barramento do sistema\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" " -s\tconectado para o serviço de certmonger sob a sessão do barramento\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Use: %s list-cas [opções]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA\tlista informações somente sobre o CA com este nome\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "Uso: %s refresh-ca [opções]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" " -c CA\tatualizar informação sobre a CA com este nome\n" "\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: comando não reconhecido\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" "Não foi possível determinar a localização do servidor IPA LDAP server.\n" "\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "Não foi possível determinar a base DN do domínio no servidor IPA.\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" "Erro definido para XMLRPC no cliente.\n" "\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "A opção -t não pode ser usada com a opção -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "A opção -k não pode ser usada com a opção -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "A opção -K não pode ser usada com a opção -k ou com a opção -t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" "Não é possível determinar o nome principal para solicitação de assinatura.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "Erro definido ccache para serviço de \"host\" no cliente usando o padrão " "keytab: %s.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "Erro definido ccache para \"%s\" no cliente usando o padrão keytab: %s.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "Erro definido ccache para \"host\" no cliente usando keytab \"%s\": %s.\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "Erro definido ccache para \"%s\" no cliente usando keytab \"%s\": %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" "\t-s use a sessão do barramento\n" "\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" "\t-S use o sistema do barramento\n" "\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" "\t-n não se torna um daemon\n" "\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" "\t-f torna-se um daemon\n" "\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT bus-activated, idle timeout\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" "\t-B não use um timeout oscioso\n" "\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" "\t-d NIVEL define depuração de nível(implica -n)\n" "\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p ARQUIVO escreve serviço para o arquivo PID\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F força NSS no FIPS modo\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Um erro interno ocorreu." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Nenhuma entrada compatível encontrada.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Já existe um CA com o apelido de \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Tipo de armazenamento de certificado não especificado." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Tipo de armazenamento de certificado \"%s\" não suportado." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "O local de \"%s\" deve ser um caminho absoluto." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Localização do armazenamento de certificado não especificada." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "O pai da localização \"%s\" não pode ser acessado devido a permissões " "insuficientes." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "O parente de localização \"%s\" deve ser um diretório válido." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "A localização \"%s\" deve ser um arquivo." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" "A localização \"%s\" não pode ser acessada devido a permissões insuficientes." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "A localização \"%s\" deve ser um diretório." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Nome de usuário do certificado não especificado." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Já existe um pedido com o nome de usuário \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Certificado no mesmo local já é utilizado por requisição com o apelido de " "\"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Tipo de armazenamento de chave \"%s\" não suportado." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "A localização de armazenamento da chave não foi especificada." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nome de usuário da chave não foi especificado." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Chave no mesmo local já é utilizado por solicitação com o apelido de \"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Sem suporte para tipo de chave \"%s\"." #: src/tdbush.c:1400 msgid "No such CA." msgstr "Não há tal CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Autoridade do certificado \"%s\" não conhecida." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Parâmetro não reconhecido ou tipo de valor errado." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "Erro ao analisar argumentos." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Nome da propriedade não é reconhecida." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "Permissões insuficientes. Por favor tente novamente como root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Por favor verifique se o serviço certmonger foi iniciado.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "Por favor verifique se o serviço certmonger ainda está rodando.\n" certmonger-0.78.6/po/pt.po0000664000175000017500000014630412645513277012331 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Manuela Silva , 2014 # Miguel Sousa , 2012 # nmartins , 2011 # Rui Gouveia , 2011, 2012 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Portuguese (http://www.transifex.com/projects/p/certmonger/" "language/pt/)\n" "Language: pt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Não foi possível determinar o nome do servidor do CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Incapaz de ler o pedido de assinatura.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Erro ao configurar para XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Erro a analisar a resposta do servidor.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Erro do servidor.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Memória esgotada.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "O caminho \"%s\" não é absoluto, a tentar utilizar \"%s\" em alternativa.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "O caminho \"%s\" não é absoluto, e houve um erro ao determinar o nome do " "directório actual.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "O caminho \"%s\" não é um directório.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Caminho \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "O caminho \"%s\" não é um ficheiro regular.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Verifique se o serviço do bus de mensagens (D-Bus) está a correr.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Erro ao criar a mensagem de pedido DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Erro %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Erro %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Erro: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Recebida resposta de erro do serviço local %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Não foi recebida uma resposta do serviço %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Erro a inicializar a biblioteca Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Não foi possível avaliar o OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Erro ao analisar o nome Kerberos principal \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Erro ao analisar novamente o nome Kerberos principal \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: opção requer um argumento -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: opção inválida -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Erro: argumento extra não utilizado \"%s\".\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Erro: foram fornecidos argumentos extra não utilizados.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Localização da base de dados ou nome especificado sem o outro.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" "Directório da base de dados e do ficheiro do certificado ambos " "especificados.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Não foi especificada uma directoria de base de dados e nome ou um ficheiro " "de certificado.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "Não é possível gravar a chave e o certicifado no mesmo ficheiro.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "O IPA backend necessita o uso da opção -K (nome principal) quando a opção -N " "(nome do assunto) é usada.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Não foi encontrado um CA com o nome \"%s\".\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Erro a definir os argumentos pedidos.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Novo pedido de contratação \"%s\" adicionado.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "O novo pedido de contratação não pode ser adicionado.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Novo pedido de monitorização \"%s\" adicionado.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "O novo pedido de monitorização não pode ser adicionado.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Nenhum ID, directoria da base de dados e nome ou ficheiro do certificado " "especificados.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Pedido \"%s\" modificado.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Pedido \"%s\" não pode ser modificado.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Não foi encontrado pedido com a alcunha especificada.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Nenhum pedido encontrado que corresponda aos argumentos.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Pedido \"%s\" removido.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Pedido \"%s\" não pode ser removido.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Erro a modificar \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Reenviar \"%s\" para \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Reenviar \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Erro a tentar enviar \"%s\" para \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Erro a tentar enviar \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Número de certificados e pedidos a serem monitorizados: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID do pedido '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\testado: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\terro-ca: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tpreso: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tarmazenamento par de chaves: tipo=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "NONE" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",localização='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",alcunha='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",ficheiro pin='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tcertificado: tipo=%s,localização='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\temissor: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tassunto: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\texpira: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "desconhecido" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tcorreio electrónico: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tnome principal: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tcomando pré-guardado: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\ttraçagem: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\trenovação automática: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\ttipo-ca: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tlocalização-ajuda: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tpróximo-número-série: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tnomes-emissores-conhecidos:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - ferramenta de registo do certificado do cliente\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Uso: %s pedido [opções]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Argumentos requeridos:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Se usar uma base de dados NSS para armazenamento:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tBase de dados NSS para a chave e certificado\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NAME\tnome para o armazenamento NSS (apenas válido com a opção -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAME\tnome de testemunho opcional para o armazenamento NSS (apenas " "válido com a opção -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Se usar ficheiros para armazenamento:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FILE\tFicheiro PEM para a chave privada\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" " -f FILE\tFicheiro PEM para o certificado (apenas válido com a opção -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Se as chaves são para serem encriptadas:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE\tficheiro que contém o PIN de encriptação\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tvalor do PIN\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Argumentos opcionais:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Certificado das configurações:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAME\tnome a atribuir ao pedido\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g SIZE\ttamanho da chave a ser gerada se uma já não estiver em uso\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\ttentativa de renovação do certificado quando a expiração se aproxima " "(por defeito)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tnão tentar renovar o certificado quando a expiração se aproxima\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tusar o CA especificado em vez do por defeito\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parâmetros para o pedido de assinatura:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAME\tdefine o nome do assunto pretendido (omissão: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTUSAGE\tdefinir a utilização de chave estendida OID pedida\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAME\tdefinir nome principal solicitado\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAME\tdefinir o nome de DNS solicitado\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL\tdefinir o endereço de correio electrónico solicitado\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Opções Bus:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tliga ao serviço certmonger no sistema bus\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tliga ao serviço certmonger no bus de sessão\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Outras opções:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\treportar todos os detalhes de erros\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Uso: %s start-tracking [opções]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Se a modificar um pedido existente:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAME\tnome de um pedido de monitorização existente\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Se as chaves forem encriptadas:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAME\tnome a dar ao pedido de monitorização\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parâmetros para o pedido de assinatura no tempo de renovação:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\tsobrescreve a utilização de chave estendida OID pedida\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAME\tsobrescreve nome principal pedido\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAME\tsobrescreve nome DNS pedido\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL\tsobrescreve endereço de e-mail pedido\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Uso: %s stop-tracking [options]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Pelo identificador do pedido:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAME\tnome para o pedido de monitorização\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Uso: %s resubmit [opções]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FILE\tficheiro PEM para certificado\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Novos valores do parâmetro para o pedido de assinatura:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAME\tnovo nome a dar ao pedido de monitorização\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\tusar o CA especificado em vez do actual\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Uso: %s list [opções]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Opções gerais:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr " -c CA\tlistar apenas pedidos e certificados associados a este CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tlista apenas informações sobre pedidos pendentes\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tlistar apenas informação sobre certificados monitorozados\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Se a selecionar um pedido especifico:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR\tlistar apenas pedidos e certificados que utilizem esta base de " "dados NSS\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAME\tlistar apenas pedidos e certificados que utilizem esta alcunha\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FILE\tlistar apenas pedidos e certificados armazenados neste ficheiro " "PEM\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tliga ao serviço certmonger no sistema bus\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tliga ao serviço certmonger no bus de sessão\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Uso: %s list-cas [opções]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA\tlistar apenas informação sobre o CA com este nome\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: comando não reconhecido\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "A opção -t não pode ser utilizada com a opção -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "A opção -k não pode ser utilizada com a opção -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "A opção -K não pode ser utilizada com as opções -k ou -t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Incapaz de determinar o nome principal para o pedido de assinatura.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s utilizar barramento da sessão\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S utilizar barramento do sistema\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n não converter em daemon\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f converter em daemon\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" "\t-b TEMPORIZADOR activado-por-barramento, temporizador de inactividade\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B não utilizar um temporizador de inactividade\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d NÃVEL definir nível de depuração (pressupõe -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FIC escrever PID do serviço para ficheiro\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Ocorreu um erro interno." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Nenhuma entrada correspondente encontrada.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Já existe um CA com nome de utilizador \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Tipo de armazenamento do certificado não especificado." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Tipo de armazenamento do certificado \"%s\" não suportado." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "A localização \"%s\" tem de ser um caminho absoluto." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Localização de armazenamento do certificado não especificado." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "O pai da localização \"%s\" tem de ser uma directoria válida." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "A localização \"%s\" tem de ser um ficheiro." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "A localização \"%s\" tem de ser uma directoria." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Nome do certificado não especificado." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Já existe um pedido com o nome \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Certificado na mesma localização já é utilizado para pedidos com alcunha \"%s" "\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Tipo de armazenamento da chave \"%s\" não suportado." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Localização de armazenamento da chave não especificado." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nome da chave não especificado." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Chave na mesma localização já é utilizada para pedidos com alcunha \"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "CA desconhecido." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Autoridade de certificação \"%s\" desconhecida." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Parâmetro desconhecido ou tipo de valor incorrecto." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/pl.po0000664000175000017500000015777012645513277012332 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Nalin Dahyabhai , 2011 # Piotr DrÄ…g , 2011-2014 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-14 08:29-0500\n" "Last-Translator: Piotr DrÄ…g \n" "Language-Team: Polish (http://www.transifex.com/projects/p/certmonger/" "language/pl/)\n" "Language: pl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 " "|| n%100>=20) ? 1 : 2);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Nie można okreÅ›lić nazwy komputera CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Nie można odczytać żądania podpisania.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "BÅ‚Ä…d podczas ustawiania dla XML-RPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "BÅ‚Ä…d podczas przetwarzania odpowiedzi serwera.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "BÅ‚Ä…d serwera.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Brak pamiÄ™ci.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "Nie podano adresu URL agenta (-A), a nie ma wartoÅ›ci domyÅ›lnej.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "Zażądano odnowienia, ale nie podano numeru seryjnego.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" "Nie podano adresu URL koÅ„cowej jednostki (-E), a nie ma wartoÅ›ci domyÅ›lnej.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "Nie podano adresu URL agenta (-A), a nie ma wartoÅ›ci domyÅ›lnej.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Nie podano profilu/szablonu (-T), a nie ma wartoÅ›ci domyÅ›lnej.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "BÅ‚Ä…d podczas wyÅ‚Ä…czania NSS.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "WewnÄ™trzny bÅ‚Ä…d: nieznany stan.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" "Nie podano żadnych danych uwierzytelniajÄ…cych agenta (-n), które sÄ… " "wymagane.\n" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "BÅ‚Ä…d %d podczas Å‚Ä…czenia z %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "BÅ‚Ä…d %d podczas Å‚Ä…czenia z %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "WewnÄ™trzny bÅ‚Ä…d: brak odpowiedzi na \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "Åšcieżka \"%s\" nie jest bezwzglÄ™dna, próbowanie użycia \"%s\" zamiast niej.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Åšcieżka \"%s\" nie jest bezwzglÄ™dna i wystÄ…piÅ‚ bÅ‚Ä…d podczas okreÅ›lania nazwy " "bieżącego katalogu.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "Åšcieżka \"%s\": niewystarczajÄ…ce uprawnienia.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Åšcieżka \"%s\" nie jest katalogiem.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Åšcieżka \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Åšcieżka \"%s\" nie jest zwykÅ‚ym plikiem.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "Magistrala systemowa nie jest uruchomiona.\n" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "Uruchamianie jako UID 0.\n" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "Uruchamianie tymczasowego dedykowanego demona usÅ‚ugi.\n" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "BÅ‚Ä…d podczas Å‚Ä…czenia z usÅ‚ugÄ… D-Bus.\n" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" "ProszÄ™ sprawdzić, czy usÅ‚uga magistrali komunikatów (D-Bus) jest " "uruchomiona.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "BÅ‚Ä…d podczas tworzenia komunikatu żądania D-Bus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "BÅ‚Ä…d %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "BÅ‚Ä…d %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "BÅ‚Ä…d: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Otrzymano bÅ‚Ä™dnÄ… odpowiedź z lokalnej usÅ‚ugi %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Nie otrzymano odpowiedzi z usÅ‚ugi %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "Stan %s, zatkanie: %s.\n" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "BÅ‚Ä…d podczas inicjowania biblioteki Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Brak obsÅ‚ugi tworzenia kluczy \"%s\".\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Znane typy kluczy:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Nierozpoznane użycie klucza \"%s\".\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Nie można obliczyć OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "BÅ‚Ä…d podczas przetwarzania nazwy naczelnika Kerberosa \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" "BÅ‚Ä…d podczas odwracania przetworzenia nazwy naczelnika Kerberosa \"%s\": " "%s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s: nieprawidÅ‚owa wartość - \"%s\"\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: opcja wymaga parametru - \"%c\"\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: nieprawidÅ‚owa opcja - \"%c\"\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "BÅ‚Ä…d: nieużywany dodatkowy parametr \"%s\".\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "BÅ‚Ä…d: podano nieużywane dodatkowe parametry.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Podano poÅ‚ożenie bazy danych lub pseudonim bez drugiego parametru.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "OkreÅ›lono zarówno katalog bazy danych, jak i plik certyfikatu.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "Nie podano katalogu bazy danych i pseudonimu lub pliku certyfikatu.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "Nie można zapisać klucza i certyfikatu do tego samego pliku.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "Zaplecze IPA wymaga użycia opcji -K (nazwy naczelnika), kiedy używana jest " "opcja -N (nazwa tematu).\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Nie odnaleziono CA o nazwie \"%s\".\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "BÅ‚Ä…d podczas ustawiania parametrów żądania.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Dodano nowe żądanie podpisania \"%s\".\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Nie można dodać nowego żądania podpisania.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Dodano nowe żądanie Å›ledzenia \"%s\".\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Nie można dodać nowego żądania Å›ledzenia.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Nie podano identyfikatora, albo katalogu bazy danych i pseudonimu, albo " "pliku certyfikatu.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Zmodyfikowano żądanie \"%s\".\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Nie można zmodyfikować żądania \"%s\".\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Nie odnaleziono żądania dla podanego pseudonimu.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Nie odnaleziono żądania pasujÄ…cego do parametrów.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "UsuniÄ™to żądanie \"%s\".\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Nie można usunąć żądania \"%s\".\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "BÅ‚Ä…d podczas modyfikowania \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Ponowne wysyÅ‚anie \"%s\" do \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Ponowne wysyÅ‚anie \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "BÅ‚Ä…d podczas próby wysÅ‚ania \"%s\" do \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "BÅ‚Ä…d podczas próby wysÅ‚ania \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "Identyfikator żądania \"%s\" jest odÅ›wieżany.\n" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "Identyfikator żądania \"%s\" NIE jest odÅ›wieżany.\n" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Liczba Å›ledzonych certyfikatów i żądaÅ„: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Identyfikator żądania \"%s\":\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tstan: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tbÅ‚Ä…d-ca: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tzatkanie: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tpamięć masowa pary kluczy: typ=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "BRAK" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",poÅ‚ożenie=\"%s\"" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",pseudonim=\"%s\"" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token=\"%s\"" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",plik-pinu=\"%s\"" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tcertyfikat: typ=%s,poÅ‚ożenie=\"%s\"" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\twystawca: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\ttemat: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\twygasa: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "nieznane" #: src/getcert.c:3577 msgid "\temail: " msgstr "\te-mail: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tnazwa naczelnika: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tAdres IP: " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tużycie klucza: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "\tcertyfikaty roota zapisane do plików:\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "\tinne certyfikaty roota zapisane do plików:\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "\tinne certyfikaty zapisane do plików:\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "\tcertyfikaty roota zapisane w bazach danych:\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "\tinne certyfikaty roota zapisane w bazach danych:\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "\tinne certyfikaty zapisane w bazach danych:\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tpolecenie pre-save: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tpolecenie post-save: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tÅ›cieżka: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tautomatyczne-odnawianie: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" "Nie podano identyfikatora, albo katalogu bazy danych i pseudonimu, albo " "pliku certyfikatu.\n" "\n" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA \"%s\":\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "\tidentyfikuje siÄ™ jako: %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\ttyp-ca: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tpoÅ‚ożenie-pomocnika: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tnastÄ™pny-numer-seryjny: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tnazwy-znanych-wystawców: \n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "\tznane profile/szablony/typy certyfikatów:\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "\tdomyÅ›lny profil/szablon/typ certyfikatu: %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "Nie podano pseudonimu CA ani flagi -a.\n" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "Dane dla CA \"%s\" sÄ… odÅ›wieżane.\n" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "Dane dla nienazwanego CA sÄ… odÅ›wieżane.\n" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "\tbÅ‚Ä…d podczas odÅ›wieżania danych CA\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - narzÄ™dzie kwalifikowania certyfikatów klientów\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Użycie: %s request [opcje]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Wymagane parametry:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Podczas używania bazy NSS do przechowywania danych:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d KAT\tbaza danych NSS dla klucza i certyfikatu\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NAZWA\tpseudonim dla przechowywania danych opartego na NSS (prawidÅ‚owe " "tylko z opcjÄ… -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAZWA\topcjonalna nazwa tokenu dla przechowywania opartego na NSS " "(prawidÅ‚owe tylko z opcjÄ… -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Podczas używania plików do przechowywania:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k PLIK\tplik PEM dla klucza prywatnego\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f PLIK\tplik PEM dla certyfikatu (prawidÅ‚owe tylko z opcjÄ… -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* JeÅ›li klucze majÄ… zostać zaszyfrowane:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p PLIK\tplik przechowujÄ…cy kod PIN szyfrowania\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\twartość kodu PIN\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Opcjonalne parametry:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Ustawienia obsÅ‚ugiwania certyfikatów:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAZWA\tpseudonim do przydzielenia żądaniu\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr " -G TYP\ttyp klucza do utworzenia, jeÅ›li jeszcze nie ma żadnego\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g ROZMIAR\trozmiar klucza do utworzenia, jeÅ›li jeszcze nie ma żadnego\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tpróbuje odnowić certyfikat, kiedy zbliża siÄ™ jego wygaszenie " "(domyÅ›lnie)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tnie próbuje odnowić certyfikatu, kiedy zbliża siÄ™ jego wygaszenie\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tużywa podanego CA zamiast domyÅ›lnego\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFIL\t\tprosi CAo przetworzenie żądania używajÄ…c nazwanego profilu " "lub szablonu\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parametry do żądania podpisania:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAZWA\tustawia żądanÄ… nazwÄ™ tematu (domyÅ›lnie: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" " -U UÅ»YCIE-ZEWNĘTRZNE\tustawia żądany OID użycia rozszerzonego klucza\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u UÅ»YCIE-KLUCZA\tustawia żądanÄ… wartość użycia klucza\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAZWA\tustawia żądanÄ… nazwÄ™ naczelnika\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D NAZWA-DNS\tustawia żądanÄ… nazwÄ™ DNS\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E E-MAIL\tustawia żądany adres e-mail\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr " -A ADRES\tustawia żądany adres IP\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Opcje magistrali:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tÅ‚Ä…czy siÄ™ z usÅ‚ugÄ… certmonger przez magistralÄ™ systemowÄ…\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tÅ‚Ä…czy siÄ™ z usÅ‚ugÄ… certmonger przez magistralÄ™ sesji\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Inne opcje:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tpolecenie do wykonania przed zapisaniem certyfikatu\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tpolecenie do wykonania po zapisaniu certyfikatu\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr " -F\tplik, w którym przechowywać certyfikaty CA\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr " -a\tbaza danych NSS, w której przechowywać certyfikaty CA\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr " -w\tpróbuje czekać na wydanie certyfikatu\n" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\tzgÅ‚asza wszystkie informacje o bÅ‚Ä™dach\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Użycie: %s start-tracking [opcje]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Podczas modyfikowania istniejÄ…cego żądania:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAZWA\tpseudonim istniejÄ…cego żądania Å›ledzenia\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* JeÅ›li klucze sÄ… zaszyfrowane:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAZWA\tpseudonim do nadania Å›ledzonemu żądaniu\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parametry do żądania podpisania w czasie odnowienia:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" " -U UÅ»YCIE-ZEWNĘTRZNE\tzastÄ™puje żądany OID użycia rozszerzonego klucza\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAZWA\tzastÄ™puje żądanÄ… nazwÄ™ naczelnika\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D NAZWA-DNS\tzastÄ™puje żądanÄ… nazwÄ™ DNS\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E E-MAIL\tzastÄ™puje żądany adres e-mail\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr " -A ADRES\tzastÄ™puje żądany adres IP\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Użycie: %s stop-tracking [opcje]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* WedÅ‚ug identyfikatora żądania:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAZWA\tpseudonim dla Å›ledzonego żądania\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Użycie: %s resubmit [opcje]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f PLIK\tplik PEM dla certyfikatu\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* WartoÅ›ci nowych parametrów dla żądania podpisania:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAZWA\tnowy pseudonim przyznany Å›ledzonemu żądaniu\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\tużywa podanego CA zamiast bieżącego\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Użycie: %s list [opcje]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Ogólne opcje:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr " -c CA\twyÅ›wietla tylko żądania i certyfikaty powiÄ…zane z tym CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\twyÅ›wietla informacje tylko o oczekujÄ…cych żądaniach\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\twyÅ›wietla informacje tylko o Å›ledzonych certyfikatach\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* JeÅ›li wybrano konkretne żądanie:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d KATALOG\twyÅ›wietla tylko żądania i certyfikaty, które używajÄ… tej bazy " "danych NSS\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAZWA\twyÅ›wietla tylko żądania i certyfikaty, które używajÄ… tego " "pseudonimu\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f PLIK\twyÅ›wietla tylko żądania i certyfikaty przechowywane w tym pliku " "PEM\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tÅ‚Ä…czy siÄ™ z uslugÄ… certmonger przez magistralÄ™ systemowÄ…\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tÅ‚Ä…czy siÄ™ z usÅ‚ugÄ… certmonger przez magistralÄ™ sesji\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "Użycie: %s refresh [opcje]\n" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "Użycie: %s status [opcje]\n" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "* Wybieranie konkretnego żądania:\n" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "* Podczas używania bazy NSS do przechowywania danych:\n" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr " -d KATALOG\twyÅ›wietla stan żądania w bazie danych NSS\n" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr " -n NAZWA\twyÅ›wietla stan certyfikatu, który używa tego pseudonimu\n" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "* Podczas używania plików do przechowywania:\n" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" " -f PLIK\twyÅ›wietla stan certyfikatu przechowywanego w tym pliku PEM\n" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Użycie: %s list-cas [opcje]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA\twyÅ›wietla informacje tylko o CA o tej nazwie\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "Użycie: %s refresh-ca [opcje]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr " -c CA\todÅ›wieża informacje o CA o tej nazwie\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "Użycie: %s polecenie [opcje]\n" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "żąda nowego certyfikatu z CA\n" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "rozpoczyna monitorowanie już wydanego certyfikatu\n" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "zatrzymuje monitorowanie certyfikatu\n" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "ponownie wysyÅ‚a trwajÄ…ce żądanie kwalifikacji, lub rozpoczyna nowe\n" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "sprawdza stan trwajÄ…cego żądania kwalifikacji\n" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "wyÅ›wietla listÄ™ monitorowanych i żądanych certyfikatów\n" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "sprawdza stan monitorowanego lub żądanego certyfikatu\n" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "odÅ›wieża pamięć podrÄ™cznÄ… wszystkich informacji uzyskanych z CA\n" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: nierozpoznane polecenie\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "Nie można ustalić poÅ‚ożenia serwera LDAP IPA.\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "Nie można skontaktować siÄ™ z serwerem IPA LDAP.\n" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "Nie można ustalić podstawowego DN informacji domeny na serwerze IPA.\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "BÅ‚Ä…d podczas ustawiania dla XML-RPC na kliencie.\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "Opcja -t nie może być używana z opcjÄ… -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "Opcja -k nie może być używana z opcjÄ… -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "Opcja -K nie może być używana z opcjÄ… -k lub -t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Nie można okreÅ›lić nazwy naczelnika dla żądania podpisania.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "BÅ‚Ä…d podczas ustawiania ccache dla usÅ‚ugi \"gospodarza\" na kliencie " "używajÄ…c domyÅ›lnej tablicy kluczy: %s.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "BÅ‚Ä…d podczas ustawiania ccache dla \"%s\" na kliencie używajÄ…c domyÅ›lnej " "tablicy kluczy: %s.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "BÅ‚Ä…d podczas ustawiania ccache dla usÅ‚ugi \"gospodarza\" na kliencie " "używajÄ…c domyÅ›lnej tablicy kluczy \"%s\": %s.\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "BÅ‚Ä…d podczas ustawiania ccache dla \"%s\" na kliencie używajÄ…c domyÅ›lnej " "tablicy kluczy \"%s\": %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s używa magistrali sesji\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S używa magistrali systemowej\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "\t-l rozpoczyna dedykowane gniazdo nasÅ‚uchiwania\n" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "\t-L używa tylko dedykowanego gniazda nasÅ‚uchiwania\n" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "\t-P ÅšCIEÅ»KA podaje dedykowane gniazdo nasÅ‚uchiwania\n" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n bez zmiany na demona\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f zmiana na demona\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" "\t-b CZAS aktywacja przez magistralÄ™, czas oczekiwania na bezczynność\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B bez użycia czasu oczekiwania na bezczynność\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d POZIOM ustawia poziom debugowania (wymusza opcjÄ™ -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" "\t-c POLECENIE rozpoczyna POLECENIE i koÅ„czy dziaÅ‚anie po jego ukoÅ„czeniu\n" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p PLIK zapisuje PID usÅ‚ugi do pliku\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F wymusza przejÅ›cie NSS do trybu FIPS\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "WystÄ…piÅ‚ wewnÄ™trzny bÅ‚Ä…d." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Nie odnaleziono pasujÄ…cego wpisu.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Istnieje już CA o pseudonimie \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Nie podano typu przechowywania certyfikatu." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Typ przechowywania certyfikatu \"%s\" nie jest obsÅ‚ugiwany." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "PoÅ‚ożenie \"%s\" musi być Å›cieżkÄ… bezwzglÄ™dnÄ…." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Nie podano poÅ‚ożenia przechowywania certyfikatu." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "Nie można uzyskać dostÄ™pu do poÅ‚ożenia nadrzÄ™dnego dla \"%s\" z powodu " "niewystarczajÄ…cych uprawnieÅ„." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "NadrzÄ™dne poÅ‚ożenie \"%s\" musi być prawidÅ‚owym katalogiem." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "PoÅ‚ożenie \"%s\" musi być plikiem." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" "Nie można uzyskać dostÄ™pu do poÅ‚ożenia \"%s\" z powodu niewystarczajÄ…cych " "uprawnieÅ„." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "PoÅ‚ożenie \"%s\" musi być katalogiem." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Nie podano pseudonimu certyfikatu." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Istnieje już żądanie o pseudonimie \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Certyfikat w tym samym poÅ‚ożeniu jest już używany przez żądanie o " "pseudonimie \"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Typ przechowywania klucza \"%s\" nie jest obsÅ‚ugiwany." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Nie podano poÅ‚ożenia przechowywania klucza." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nie podano pseudonimu klucza." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Klucz w tym samym poÅ‚ożeniu jest już używany przez żądanie o pseudonimie \"%s" "\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Brak obsÅ‚ugi dla typu klucza \"%s\"." #: src/tdbush.c:1400 msgid "No such CA." msgstr "Nie ma takiego CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Nieznane CA \"%s\"" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Nierozpoznany parametr lub bÅ‚Ä™dny typ wartoÅ›ci." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "BÅ‚Ä…d podczas przetwarzania parametrów." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Nierozpoznana nazwa wÅ‚aÅ›ciwoÅ›ci." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "NiewystarczajÄ…cy dostÄ™p. ProszÄ™ ponowić dziaÅ‚anie jako root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "ProszÄ™ sprawdzić, czy usÅ‚uga certmonger zostaÅ‚a uruchomiona.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "ProszÄ™ sprawdzić, czy usÅ‚uga certmonger jest ciÄ…gle uruchomiona.\n" certmonger-0.78.6/po/pa.po0000664000175000017500000012646612645513277012315 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Panjabi (Punjabi) (http://www.transifex.com/projects/p/" "certmonger/language/pa/)\n" "Language: pa\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/or.po0000664000175000017500000012645212645513277012330 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Oriya (http://www.transifex.com/projects/p/certmonger/" "language/or/)\n" "Language: or\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/nso.po0000664000175000017500000012646412645513277012512 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Northern Sotho (http://www.transifex.com/projects/p/" "certmonger/language/nso/)\n" "Language: nso\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/no.po0000664000175000017500000012645612645513277012330 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Norwegian (http://www.transifex.com/projects/p/certmonger/" "language/no/)\n" "Language: no\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/nn.po0000664000175000017500000012646612645513277012330 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Norwegian Nynorsk (http://www.transifex.com/projects/p/" "certmonger/language/nn/)\n" "Language: nn\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/nl.po0000664000175000017500000015643512645513277012325 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Geert Warrink , 2011-2014 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-12 06:06-0500\n" "Last-Translator: Geert Warrink \n" "Language-Team: Dutch (http://www.transifex.com/projects/p/certmonger/" "language/nl/)\n" "Language: nl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Kan de hostnaam van CA niet bepalen.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Kan ondetekeningverzoek niet lezen.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Fout bij het opzetten van XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Fout bij het ontleden van antwoord van de server.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Serverfout.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Geen geheugen beschikbaar.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "Geen agent URL (-A) gegeven en er is geen standaard bekend.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "Vernieuwing werd aangevraagd, maar er is geen serienummer aangeboden\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "Geen eind-entity URL (-E) opgegeven en er is geen standaard bekend.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "Geen agent URL (-A) gegeven en er is geen standaard bekend.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Geen profiel/template (-T) gegeven en er is geen standaard bekend.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "Fout bij het afsluiten van NSS.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Interne fout: onbekende toestand.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "Er is geen agent legitimatie (-n) opgeven, maar dit is wel nodig.\n" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Fout %d bij het verbinden met %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Fout %d bij het verbinden met %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Interne fout: geen antwoord op \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "Pad \"%s\" is niet absoluut, in plaats daarvan wordt geprobeerd om \"%s\" te " "gebruiken.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Pad \"%s\" is niet absoluut en er was een fout bij het bepalen van de naam " "van de huidige map.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "Pad \"%s\": onvoldoende rechten.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Pad \"%s\" is geen map.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Pad \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Pad \"%s\" is geen gewoon bestand.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "Er draait geen systeembus.\n" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "Uitvoeren met UID 0.\n" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "Er wordt een tijdelijk specifieke service daemon opgestart.\n" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "Fout bij het verbinden met D-Bus.\n" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Verifieer of de berichtenbus (D-Bus) service draait.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Fout bij het aanmaken van DBus verzoekbericht.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Fout %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Fout %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Fout: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Fout ontvangen van de lokale %s service.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Geen reactie ontvangen van %s service.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "Toestand %s, vast: %s.\n" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Fout bij het initialiseren van Kerberos bibliotheek: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Er is geen ondersteuning voor het aanmaken van \"%s\" sleutels.\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Bekende sleuteltypen zijn:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Niet herkende keyUsage \"%s\".\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Kon OID \"%s\" niet evalueren.\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Fout bij het ontleden van Kerberos principal naam \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Fout bij unparsing van Kerberos principal naam \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s: ongeldige waarde -- '%s'\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: optie vereist een argument -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: ongeldige optie -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Fout: niet gebruikt extra argument \"%s\".\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" "Fout: er zijn niet gebruikte extra argumenten opgegeven.\n" " \n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Database locatie of bijnaam opgegeven zonder de andere.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Database map en certificaatbestand beide gespecificeerd.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "Zowel database map als bijnaam of certificaat niet opgegeven.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" "Sleutel en certificaat kunnen niet beide in hetzelfde bestand opgeslagen " "worden.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "De IPA backend vereist het gebruik van de -K optie (principal naam) als de -" "N optie (onderwerpnaam) gebruikt wordt.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Geen CA met de naam \"%s\" gevonden.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Fout bij instellen verzoek argumenten.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Nieuw ondertekeningverzoek \"%s\" toegevoegd.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Nieuw ondertekeningverzoek kon niet toegevoegd worden.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Nieuwe track verzoek \"%s\" toegevoegd.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Nieuw track verzoek kon niet toegevoegd worden.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "Zowel ID als database map en bijnaam of certificaat niet opgegeven.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Verzoek \"%s\" gewijzigd.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Verzoek \"%s\" kan niet gewijzigd worden.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Geen aanvraag gevonden met de gespecificeerde bijnaam.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Geen verzoek gevonden dat overeenkomt met argumenten.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Verzoek \"%s\" verwijderd.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Verzoek \"%s\" kon niet verwijderd worden.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Fout bij het wijzigen van \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "\"%s\" opnieuw indienen bij \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "\"%s\" opnieuw indienen.\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Fout bij het indienen van \"%s\" bij \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Fout bij het indienen van \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "Verzoek ID '%s' wordt ververst.\n" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "Verzoek ID '%s' wordt NIET ververst.\n" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Aantal certificaten en verzoeken dat bijgehouden wordt:%d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Verzoek ID '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "»status: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "»ca-fout: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "»vast: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "»sleutelpaar opslag: type=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "GEEN" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",locatie='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",bijnaam='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinbestand='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "»certificaat: type=%s,locatie='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "»CA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "»uitgever: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "»onderwerp: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "»verloopt: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "onbekend" #: src/getcert.c:3577 msgid "\temail: " msgstr "»email: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "»dns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "»principal naam: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tIP adres: " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tkey usage: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "»eku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "\troot certificaten opgeslagen in bestanden:\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "\tandere root certificaten opgeslagen in bestanden:\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "\tandere certificaten opgeslagen in bestanden:\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "\troot certificaten opgeslagen in databases:\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "\tandere root certificaten opgeslagen in databases:\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "\tandere certificaten opgeslagen in databases:\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tpre-save command: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tpost-save command: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "»track: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "»auto-renew: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" "Zowel ID als database map en bijnaam of certificaat zijn niet opgegeven.\n" "\n" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "\tzelf-identificatie: %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "»ca-type: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "»helper-locatie %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "»next-serial-nummer: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "»bekende-uitgever-namen:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "\tbekende profielen/templates/certtypes:\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "\tstandaard profiel/template/certtype: %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "Noch CA bijnaam noch -a vlag gespecificeerd.\n" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "Data voor CA '%s' wordt ververst.\n" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "Data voor naamloze CA wordt ververst.\n" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "\tfout bij verversen van CA data\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - cliënt certificaat uitgeef gereedschap\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Gebruik: %s request [opties]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Vereiste argumenten:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Als een NSS database voor opslag gebruikt wordt:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d MAP»NSS database voor sleutel en cert\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NAAM»bijnaam voor op NSS gebaseerde opslag (alleen geldig met -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAAM»optionele token naam voor op NSS gebaseerde opslag (alleen geldig " "met -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Als bestanden voor opslag gebruikt worden:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k BESTAND»PEM bestand voor prive sleutel\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f BESTAND»PEM bestand voor certificaat (alleen geldig met -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Als sleutels gecodeerd moeten worden:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p BESTAND»bestand welke de codering PIN bevat\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN»PIN waarde\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Optionele argumenten:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Certificaat afhandel instellingen:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAAM»bijnaam toegekend aan het verzoek\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" " -G TYPE\tsleuteltype dat aangemaakt wordt als er nog geen aanwezig is\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g GROOTTE»grootte van de te genereren sleutel als er nog geen aanwezig " "is\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r»»probeer het certificaat te vernieuwen als de verloopdatum nadert " "(standaard)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R»»probeer het certificaat niet te vernieuwen als de verloopdatum nadert\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA»»gebruik de gespecificeerde CA in plaats van de standaard\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFILE\tvraag de CA om het verzoek de verwerken met het opgegeven " "profiel of template\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parameters voor het ondertekening verzoek:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAAM»stel de gevraagde subject naam in (standaard: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTUSAGE»stel het gevraagde uitgebreide sleutel gebruik OID in\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u KEYUSAGE\tstel aangevraagde sleutel gebruik waarde in\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAAM»stel de gevraagde principal naam in\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAAM»stel de gevraagde DNS naam in\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL»stel het gevraagde email adres in\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr " -A ADRES\tstel vereiste IP adres in\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Bus opties:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S»»verbind met de certmonger service op de systeem bus\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s»»verbind met de certmonger service op de sessie bus\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Andere opties:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tcommando uit te voeren voor het opslaan van het certificaat\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tcommando uit te voeren na het opslaan van het certificaat\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr " -F\tbestand waarin de certificaten van de CA opgeslagen worden\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" " -a\tNSS database waarin de certificaten van de CA opgeslagen worden\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr " -w\tprobeer te wachten totdat het certificaat afgegeven is\n" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v»rapporteer alle foutdetails\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Gebruik: %s start-tracking [opties]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Als een bestaande aanvraag veranderd wordt:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAAM»bijnaam van een bestaand track verzoek\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Als sleutels gecodeerd zijn:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAAM»bijnaam te geven aan track verzoek\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parameters voor het ondertekeningverzoek bij het vernieuwen:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTUSAGE»overschrijf gevraagde uitgebreide sleutel gebruik OID\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAAM»overschrijf gevraagde principal naame\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAAM»overschrijf gevraagde DNS naam\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL»overschrijf gevraagde email adres\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr " -A ADRES\toverschrijf gevraagde IP adres\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Gebruik: %s stop-tracking [opties]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Op verzoek id:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAAM»bijnaam voor track verzoek\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Gebruik: %s resubmit [opties]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f BESTAND»PEM bestand voor certificaat\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Nieuwe parameterwaarden voor de ondertekening verzoek:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAAM»nieuwe bijnaam om aan track verzoek te geven\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA»»gebruik de gespecificeerde CA in plaats van de huidige\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Gebruik: %s list [opties]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Algemene opties:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr " -c CA»laat allen verzoeken certificaten zien die bij deze CA horen\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r»laat alleen informatie zien over uitstaande verzoeken\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t»laat alleen informatie zien over gevolgde certificaten\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Als een specifiek verzoek geselecteerd wordt:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d MAP»toon alleen verzoeken en certificaten die deze NSS database " "gebruiken\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAAM» toon alleen verzoeken en certificaten die deze bijnaam gebruiken\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f BESTAND»toon alleen verzoeken en certificaten die in dit PEM bestand " "opgeslagen zijn\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S»verbind met de certmonger service op de systeem bus\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s»verbind met de certmonger service op de sessie bus\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "Gebruik: %s refresh [opties]\n" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "Gebruik: %s status [opties]\n" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "* Selecteer een specifieke aanvraag:\n" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "* Als een NSS database gebruikt wordt voor opslag:\n" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr " -d MAP\tgeef status voor het verzoek terug in deze NSS database\n" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr " -n NAAM\tgeef status voor cert die deze bijnaam gebruikt\n" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "* Als bestanden gebruikt worden voor opslag:\n" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" " -f BESTAND\tgeef status terug voor cert opgeslagen in dit PEM bestand\n" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Gebruik: %s list-cas [opties]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA»laat alleen informatie zien over de CA met deze naam\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "Gebruik: %s refresh-ca [opties]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr " -c CA\tververs informatie over de CA met deze naam\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "Gebruik: %s commando [opties]\n" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "vraag een nieuw certificaat aan van een CA\n" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "begin met het monitoren van een reeds uitgegeven certificaat\n" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "stop met het monitoren van een certificaat\n" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" "dien een inschrijvingsverzoek in uitvoering opnieuw in, of begin met een " "nieuw\n" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "controleer de status van een inschrijvingsverzoek in uitvoering\n" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "toon gemonitorde en aangevraagde certificaten\n" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" "controleer de status van een certificaat dat gemonitord wordt of aangevraagd " "is\n" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "ververs de cache met alle informatie verkregen van een CA\n" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: onbekend commando\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "Kan locatie van IPA LDAP server niet vaststellen.\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "Kan geen contact krijgen met een IPA LDAP server.\n" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "Kan basis DN niet vaststellen uit domeininformatie van IPA server.\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "Fout bij het instellen van XMLRPC op de cliënt.\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "De -t optie kan niet met de -K optie gebruikt worden.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "De -k optie kan niet met de -K optie gebruikt worden.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "De -K optie niet met de -k of the -t optie gebruikt worden.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Kan principal naam voor de aanvraag ondertekening niet bepalen.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "Fout bij het instellen van ccache voor \"host\" service op cliënt die " "standaard keytab: %s gebruikt.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "Fout bij het instellen van ccache voor \"%s\" op cliënt die standaard " "keytab: %s gebruikt.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "Fout bij het instellen van ccache voor \"host\" service die keytab \"%s\" " "gebruikt: %s.\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "Fout bij het instellen van ccache voor \"%s\" op cliënt die keytab \"%s\" " "gebruikt: %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s gebruik sessie bus\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S gebruik systeem bus\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "\t-l start een specifieke socket om naar te luisteren\n" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" "\t-L gebruik alleen een specifiek socket om naar te luisteren\n" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" "\t-P PAD specificeert de specifieke socket waarnaar geluisterd wordt\n" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n niet omzetten in een daemon\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f omzetten in een daemon\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT bus-geactiveerde, idle timeout\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B gebruik geen idle timeout\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL stel debug niveau in (impliceert -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "\t-c COMMANDO start COMMANDO sluit af als deze dat doet\n" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p BESTAND schrijf een service PID naar bestand\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F forceer NSS naar de FIPS modus\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Er is een interne fout opgetreden." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Geen bijpassende ingang gevonden.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Er is al een CA met de bijnaam \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Certificaat opslag type niet gespecificeerd." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Certificaat opslag type \"%s\" niet ondersteund." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "De locatie \"%s\" moet een absoluut pad zijn." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Certificaat opslaglocatie niet gespecificeerd." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "Er is geen toegang tot de ouder van locatie \"%s\" wegens onvoldoende " "rechten." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "De ouder van locatie \"%s\" moet een geldige map zijn." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "De locatie \"%s\" moet een bestand zijn." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "Er is geen toegang tot de locatie \"%s\" wegens onvoldoende rechten." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "De locatie \"%s\" moet een map zijn." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Certificaat bijnaam niet opgegeven." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Er is al een verzoek met de bijnaam \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Een certificaat op dezelfde locatie wordt al gebruik door een aanvraag met " "bijnaam \"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Sleutel opslag type \"%s\" niet ondersteund." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "sleutel opslaglocatie niet gespecificeerd." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Sleutel bijnaam niet opgegeven." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Een sleutel op dezelfde locatie wordt al gebruik door een aanvraag met " "bijnaam \"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Er is geen ondersteuning voor sleuteltype \"%s\"." #: src/tdbush.c:1400 msgid "No such CA." msgstr "Onbekende CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Certificaat autoriteit \"%s\" is niet bekend." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Onbekende parameter of verkeerde type waarde." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "Fout bij het ontleden van argumenten." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Onbekende eigenschap naam." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "Onvoldoende toegang. Probeer de bewerking opnieuw als root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Verifieer of de certmonger service opgestart werd.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "Verifieer of de certmonger service nog steeds draait.\n" certmonger-0.78.6/po/ne.po0000664000175000017500000012645312645513277012313 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Nepali (http://www.transifex.com/projects/p/certmonger/" "language/ne/)\n" "Language: ne\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/nds.po0000664000175000017500000012646112645513277012474 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Low German (http://www.transifex.com/projects/p/certmonger/" "language/nds/)\n" "Language: nds\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/nb.po0000664000175000017500000012707612645513277012312 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Kjartan Maraas , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Norwegian BokmÃ¥l (http://www.transifex.com/projects/p/" "certmonger/language/nb/)\n" "Language: nb\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Kan ikke bestemme vertsnavn for CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Kan ikke lese forespørsel om signering.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Feil ved oppsett av XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Feil ved tolking av svar fra tjener.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Feil med tjener.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Feil %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Feil %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/my.po0000664000175000017500000012644512645513277012337 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Burmese (http://www.transifex.com/projects/p/certmonger/" "language/my/)\n" "Language: my\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ms_MY.po0000664000175000017500000012646012645513277012733 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Malay (Malaysia) (http://www.transifex.com/projects/p/fedora/" "language/ms_MY/)\n" "Language: ms_MY\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ms.po0000664000175000017500000012644312645513277012327 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Malay (http://www.transifex.com/projects/p/certmonger/" "language/ms/)\n" "Language: ms\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/mr.po0000664000175000017500000012645412645513276012327 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Marathi (http://www.transifex.com/projects/p/certmonger/" "language/mr/)\n" "Language: mr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/mn.po0000664000175000017500000012645612645513276012325 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Mongolian (http://www.transifex.com/projects/p/certmonger/" "language/mn/)\n" "Language: mn\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ml.po0000664000175000017500000012645612645513276012323 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Malayalam (http://www.transifex.com/projects/p/certmonger/" "language/ml/)\n" "Language: ml\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/mk.po0000664000175000017500000012651512645513276012316 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Macedonian (http://www.transifex.com/projects/p/certmonger/" "language/mk/)\n" "Language: mk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n % 10 == 1 && n % 100 != 11) ? 0 : 1;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/mg.po0000664000175000017500000012645412645513276012314 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Malagasy (http://www.transifex.com/projects/p/certmonger/" "language/mg/)\n" "Language: mg\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/mai.po0000664000175000017500000012645712645513276012462 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Maithili (http://www.transifex.com/projects/p/certmonger/" "language/mai/)\n" "Language: mai\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/lv.po0000664000175000017500000012652212645513276012326 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Latvian (http://www.transifex.com/projects/p/certmonger/" "language/lv/)\n" "Language: lv\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n != 0 ? 1 : " "2);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/lt.po0000664000175000017500000014732612645513276012331 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # FULL NAME , 2014 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Lithuanian (http://www.transifex.com/projects/p/certmonger/" "language/lt/)\n" "Language: lt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n" "%100<10 || n%100>=20) ? 1 : 2);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Nepavyko nustatyti LÄ® serverio.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Nepavyko perskaityti pasiraÅ¡ymo užklausos.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Klaida nustatant XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Klaida skaitant serverio atsakymÄ….\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Serverio klaida.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "BaigÄ—si atmintis.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "Nepateiktas agento URL (-A) ir nežinomas numatytasis.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "Nepateikta pabaigos esybÄ— (-E) ir nežinoma numatytoji.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "Nepateiktas agento URL (-A) ir nežinomas numatytasis.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Nepateiktas profilis/Å¡ablonas (-T) ir nežinomas numatytasis.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "VidinÄ— klaida: nežinoma bÅ«sena.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Klaida %d jungiantis prie %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Klaida %d jungiantis prie %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "VidinÄ— klaida: nÄ—ra atsakymo į „%s?%s“.\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "Kelias „%s“ nÄ—ra absoliutus, vietoj to bandoma naudoti „%s“.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Kelias „%s“ nÄ—ra absoliutus ir kilo klaida nustatant dabartinio katalogo " "pavadinimÄ….\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Kelias „%s“ nÄ—ra katalogas.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Kelias „%s“: %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Kelias „%s“ nÄ—ra įprastinis failas.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Patikrinkite, ar praneÅ¡imų magistralÄ—s (D-Bus) tarnyba veikia.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Klaida kuriant DBus užklausos praneÅ¡imÄ….\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Klaida %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Klaida %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Klaida: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Gautas klaidos praneÅ¡imas iÅ¡ vietinÄ—s %s tarnybos.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Negautas atsakymas iÅ¡ %s tarnybos.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Klaida inicializuojant Kerberos bibliotekÄ…: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Neatpažintas keyUsage „%s“.\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Nepavyko įvertinti OID „%s“.\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Klaida skaitant Kerberos direktoriaus pavadinimÄ… „%s“: %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Klaida atstatant Kerberos direktoriaus pavadinimÄ… „%s“: %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: parametras reikalauja argumento -- „%c“\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: netinkamas parametras -- „%c“\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Klaida: nenaudojamas papildomas argumentas „%s“.\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Klaida: pateikti nenaudojami papildomi argumentai.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Duomenų bazÄ—s vieta arba slapyvardis nurodyti be vienas kito.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Nurodyti abu: duomenų bazÄ—s katalogas ir liudijimo failas.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Nenurodytas nei duomenų bazÄ—s katalogas bei slapyvardis, nei liudijimo " "failas.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "Raktas ir liudijimas negali bÅ«ti abu įraÅ¡yti į tÄ… patį failÄ….\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "IPA realizacija reikalauja naudoti parametrÄ… -K (direktoriaus pavadinimas), " "kai naudojamas parametras -N (subjekto pavadinimas).\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Nerasta LÄ® pavadinimu „%s“.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Klaida nustatant užklausos argumentus.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Nauja pasiraÅ¡ymo užklausa „%s“ pridÄ—ta.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Negalima pridÄ—ti naujos pasiraÅ¡ymo užklausos.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "PridÄ—tas nauja sekimo užklausa „%s“.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Negalima pridÄ—ti naujos sekimo užklausos.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Nenurodytas nei duomenų bazÄ—s katalogas bei slapyvardis, nei liudijimo " "failas.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Užklausa „%s“ pakeista.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Užklausa „%s“ negali bÅ«ti pakeista.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Nerasta užklausa su nurodytu slapyvardžiu.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Nerasta užklausa, kuri atitinka argumentus.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Užklausa „%s“ paÅ¡alinta.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Užklausos „%s“ nepavyko paÅ¡alinti.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Klaida keiÄiant „%s“.\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "IÅ¡ naujo pateikiama „%s“ į „%s“.\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "IÅ¡ naujo pateikiama „%s“.\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Klaida bandant pateikti „%s“ į „%s“.\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Klaida bandant pateikti „%s“.\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Sekamų liudijimų ir užklausų skaiÄius: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Užklausos ID „%s“:\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tbÅ«sena: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tlį-klaida: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tužstrigo: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\traktų poros saugykla: tipas=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "NÄ–RA" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",vieta='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",slapyvardis='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",leksema='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinfailas=„%s“" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tliudijimas: tipas=%s,vieta=„%s“" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tLÄ®: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\tiÅ¡davÄ—: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tsubjektas: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\tgalioja iki: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "nežinoma" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tel. paÅ¡tas: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tdirektoriaus pavadinimas: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\trakto naudojimas: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tkomanda prieÅ¡ įraÅ¡ant: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tkomanda po įraÅ¡ymo: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tsekimas: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tautomatinis atnaujinimas: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "LÄ® „%s“:\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tlį tipas: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tpagalbininko vieta: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tkitas serijinis numeris: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tžinomų iÅ¡davÄ—jų pavadinimai:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - kliento liudijimo įtraukimo įrankis\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Naudojimas: %s užklausa [parametrai]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "BÅ«tini argumentai:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Jei naudojama NSS duomenų bazÄ— saugojimui:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tNSS duomenų bazÄ— raktui ir liudijimui\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n PAVADINIMAS\tslapyvardis NSS pagrindo saugyklai (tinka tik su -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t PAVADINIMAS\tnebÅ«tinas leksemos pavadinimas NSS pagrindo saugyklai " "(tinka tik su -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Jei saugyklai naudojami failai:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FAILAS\tprivataus rakto PEM failas\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FAILAS\tliudijimo PEM failas (tinka tik su -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Jei raktai turi bÅ«ti Å¡ifruoti:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FAILAS\tfailas, kuris saugo Å¡ifravimo PIN\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN vertÄ—\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "NebÅ«tini argumentai:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Liudijimo apdorojimo nustatymai:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I PAVADINIMAS\tužklausai priskiriamas slapyvardis\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr " -g DYDIS\tgeneruojamo rakto dydis, jei rakto dar nÄ—ra\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tbandymas atnaujinti liudijimÄ…, kai baigiasi galiojimas (numatyta)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr " -R\t\tnebandyti atnaujinti liudijimo, kai baigiasi galiojimas\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c LÄ®\t\tnaudoti nurodytÄ… LÄ® vietoj numatytosios\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFILIS\tpraÅ¡yti LÄ® apdoroti užklausÄ… naudojant pavadintÄ… profilį ar " "Å¡ablonÄ…\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parametrai pasiraÅ¡ymo užklausai:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N PAVADINIMAS\tnustatyti subjekto pavadinimÄ… (numatyta: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "-U IÅ PLNAUD\tnustatyti praÅ¡omÄ… iÅ¡plÄ—stinį rakto naudojimo OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u RAKTONAUD\tnustatyti praÅ¡omÄ… rakto naudojimo vertÄ™\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K PAVADINIMAS\tnustatyti praÅ¡omÄ… direktoriaus pavadinimÄ…\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "-D DNSPAV\tnustatyti praÅ¡omÄ… DNS pavadinimÄ…\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E ELPAÅ TAS\tnustatyti praÅ¡omÄ… el. paÅ¡to adresÄ…\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* MagistralÄ—s parametrai:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tprisijungti prie certmonger tarnybos sistemos magistralÄ—je\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tprisijungti prie certmonger tarnybos seanso magistralÄ—je\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Kiti parametrai:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tkomanda, vykdoma prieÅ¡ įraÅ¡ant liudijimÄ…\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tkomanda, vykdoma po liudijimo įraÅ¡ymo\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\tpraneÅ¡ti visÄ… informacijÄ… apie klaidas\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Naudojimas: %s start-tracking [parametrai]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Jei keiÄiama esama užklausa:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i PAVADINIMAS\tesamos sekamos užklausos slapyvardis\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Jei raktai yra Å¡ifruoti:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I PAVADINIMAS\tslapyvardis sekamai užklausai\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parametrai pasiraÅ¡ymo užklausai atnaujinimo metu:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U IÅ PLNAUD\tperraÅ¡yti iÅ¡plÄ—stinio rakto naudojimo OID\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K PAVADINIMAS\tperraÅ¡yti praÅ¡omÄ… direktoriaus pavadinimÄ…\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSPAV\tperraÅ¡yti praÅ¡omÄ… DNS pavadinimÄ…\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E ELPAÅ AS\tperraÅ¡yti praÅ¡omÄ… el. paÅ¡to adresÄ…\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Naudojimas: %s stop-tracking [parametrai]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Pagal užklausos identifikatorių:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i PAV\tslapyvardis sekamai užklausai\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Naudojimas: %s resubmit [parametrai]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FAILAS\tliudijimo PEM failas\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Naujos parametrų vertÄ—s pasiraÅ¡ymo užklausai:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I PAV\tnaujas slapyvardis sekimo užklausai\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c LÄ®\t\tnaudoti nurodytÄ… LÄ® vietoj dabartinÄ—s\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Naudojimas: %s list [parametrai]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Bendri parametrai:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c LÄ®\tiÅ¡vardinti tik užklausas ir liudijimus, susijusius su Å¡ia LÄ®\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tpateikti tik informacijÄ… apie neįvykdytas užklausas\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tpateikti tik informacijÄ… apie sekamus liudijimus\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Jei pasirenkama specifinÄ— užklausa:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR\tiÅ¡vardinti tik užklausas ir liudijimus, kurie naudoja Å¡iÄ… NSS " "duomenų bazÄ™\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n PAV\tiÅ¡vardinti tik užklausas ir liudijimus, kurie naudoja šį " "slapyvardį\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FAILAS\tiÅ¡vardinti tik užklausas ir liudijimu, įraÅ¡ytus į šį PEM failÄ…\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tprisijungti prie certmonger tarnybos sistemos magistralÄ—je\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tprisijungti prie certmonger tarnybos seanso magistralÄ—je\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Naudojimas: %s list-cas [parametrai]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c LÄ®\tpateikti tik informacijÄ… apie LÄ® su Å¡iuo pavadinimu\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: neatpažinta komanda\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "-t patametro negalima naudoti su -K parametru.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "-k parametro negalima naudoti su parametru -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "-K parametro negalima naudoti su -k arba -t parametru.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Nepavyko nustatyti pasiraÅ¡ymo užklausos direktoriaus pavadinimo.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s naudoti seanso magistralÄ™\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S naudoti sistemos magistralÄ™\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n netapti demonu\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f netapti demonu\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b LAIKAS aktyvuojant per magistralÄ™, neveiksnumo laikas\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B nenaudoti neveiksnumo laiko\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LYGIS nustatyti derinimo lygį (įtraukia -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FAILAS įraÅ¡yti tarnybos PID failÄ…\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F priverstinÄ— NSS į FIPS veiksenÄ…\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Kilo vidinÄ— klaida." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Nerastas atitinkamas įraÅ¡as.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Jau yra LÄ® slapyvardžiu „%s“." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Nenurodytas liudijimo saugyklos tipas." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Liudijimo saugyklos tipas „%s“ nepalaikomas." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "Vieta „%s“ turi bÅ«ti absoliuÄiu kelius." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Nenurodyta liudijimo saugojimo vieta." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "Vietos „%s“ tÄ—vas turi bÅ«ti katalogas." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "Vieta „%s“ turi bÅ«ti failas." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "Vieta „%s“ turi bÅ«ti katalogas." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Nenurodytas liudijimo slapyvardis." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Jau yra užklausa slapyvardžiu „%s“." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Liudijimas toje paÄioje vietoje jau naudojamas užklausos slapyvardžiu „%s“." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Rakto saugyklos tipas „%s“ nepalaikomas." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Nenurodyta rakto saugyklos vieta." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nenurodyta rakto slapyvardis." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Raktas toje paÄioje vietoje jau naudojamas užklausos slapyvardžiu „%s“." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "NÄ—ra tokios LÄ®." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Liudijimų įstaiga „%s“ nežinoma." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Neatpažintas parametras arba blogas vertÄ—s tipas." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "Nepakanka prieigos. Bandykite atlikti veiksmÄ… root naudotoju.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Patikrinkite, ar certmonger tarnyba veikia.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "Patikrinkite, ar certmonger tarnyba vis dar veikia.\n" certmonger-0.78.6/po/lo.po0000664000175000017500000012644112645513276012317 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Lao (http://www.transifex.com/projects/p/certmonger/language/" "lo/)\n" "Language: lo\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/la.po0000664000175000017500000012645212645513276012303 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Latin (http://www.transifex.com/projects/p/certmonger/" "language/la/)\n" "Language: la\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ky.po0000664000175000017500000012644412645513276012333 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Kirgyz (http://www.transifex.com/projects/p/certmonger/" "language/ky/)\n" "Language: ky\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ku.po0000664000175000017500000012645412645513276012330 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Kurdish (http://www.transifex.com/projects/p/certmonger/" "language/ku/)\n" "Language: ku\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ks.po0000664000175000017500000012645512645513276012327 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Kashmiri (http://www.transifex.com/projects/p/certmonger/" "language/ks/)\n" "Language: ks\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ko.po0000664000175000017500000012644412645513276012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Korean (http://www.transifex.com/projects/p/certmonger/" "language/ko/)\n" "Language: ko\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/kn.po0000664000175000017500000012644512645513276012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Kannada (http://www.transifex.com/projects/p/certmonger/" "language/kn/)\n" "Language: kn\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/km.po0000664000175000017500000012644312645513276012316 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Khmer (http://www.transifex.com/projects/p/certmonger/" "language/km/)\n" "Language: km\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/kk.po0000664000175000017500000012644412645513276012315 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Kazakh (http://www.transifex.com/projects/p/certmonger/" "language/kk/)\n" "Language: kk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ka.po0000664000175000017500000012644612645513276012305 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Georgian (http://www.transifex.com/projects/p/certmonger/" "language/ka/)\n" "Language: ka\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ja_JP.po0000664000175000017500000012646012645513276012671 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Japanese (Japan) (http://www.transifex.com/projects/p/fedora/" "language/ja_JP/)\n" "Language: ja_JP\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ja.po0000664000175000017500000016025012645513276012273 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # carrotsoft , 2011 # Hajime Taira , 2011-2012 # noriko , 2012 # noriko , 2012 # Tomoyuki KATO , 2011-2014 # carrotsoft , 2011 # carrotsoft , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Japanese (http://www.transifex.com/projects/p/certmonger/" "language/ja/)\n" "Language: ja\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "CA ã®ãƒ›ã‚¹ãƒˆåを解釈ã§ãã¾ã›ã‚“。\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "ç½²åリクエストを読むã“ã¨ãŒã§ãã¾ã›ã‚“。\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "XMLRPC ã®è¨­å®šä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "サーãƒãƒ¼ã®å¿œç­”を解æžä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "サーãƒãƒ¼ã‚¨ãƒ©ãƒ¼ã§ã™ã€‚\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "メモリーãŒä¸è¶³\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" "エージェント URL (-A) ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆãŒä¸æ˜Žã§ã™ã€‚\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" "エンド・エンティティ URL (-E) ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆãŒä¸æ˜Žã§" "ã™ã€‚\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" "エージェント URL (-A) ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆãŒä¸æ˜Žã§ã™ã€‚\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" "プロファイル/テンプレート (-T) ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。ã¾ãŸã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆãŒä¸æ˜Žã§" "ã™ã€‚\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "内部エラー: 未知ã®çŠ¶æ…‹ã€‚\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "内部エラー: \"%s?%s\" ã¸ã®å¿œç­”ãŒã‚ã‚Šã¾ã›ã‚“。\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "パス \"%s\" ãŒçµ¶å¯¾ãƒ‘スã§ã¯ã‚ã‚Šã¾ã›ã‚“。代ã‚ã‚Šã« \"%s\" ã§è©¦è¡Œã—ã¦ã„ã¾ã™ã€‚\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "パス \"%s\" ãŒçµ¶å¯¾ãƒ‘スã§ã¯ã‚ã‚Šã¾ã›ã‚“。ã¾ãŸã€ã‚«ãƒ¬ãƒ³ãƒˆãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã®åå‰ã‚’判" "æ–­ã™ã‚‹éš›ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "パス \"%s\": 権é™ãŒã‚ã‚Šã¾ã›ã‚“。\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "パス \"%s\" ã¯ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã§ã¯ã‚ã‚Šã¾ã›ã‚“。\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "パス \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "パス \"%s\" ã¯ä¸€èˆ¬ãƒ•ã‚¡ã‚¤ãƒ«ã§ã¯ã‚ã‚Šã¾ã›ã‚“。\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "message bus (D-Bus) サービスãŒç¨¼åƒä¸­ã§ã‚ã‚‹ã“ã¨ã‚’確èªã—ã¦ãã ã•ã„。\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" "D-Bus è¦æ±‚メッセージを作æˆä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" "\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "エラー %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "エラー %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "エラー: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "ローカル㮠%s サービスã‹ã‚‰ã‚¨ãƒ©ãƒ¼å¿œç­”ã‚’å—ã‘å–ã‚Šã¾ã—ãŸã€‚\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "%s サービスã‹ã‚‰å¿œç­”ãŒå—ã‘å–ã‚Œã¾ã›ã‚“。\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Kerberos ライブラリーをåˆæœŸåŒ–中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "\"%s\" キーã®ç”Ÿæˆã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¾ã›ã‚“。\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "利用ã§ãるキー形å¼ã¯ä»¥ä¸‹ã®ã¨ãŠã‚Šã§ã™:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "èªè­˜ã§ããªã„キー使用法 \"%s\"。\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "OID \"%s\" を評価ã™ã‚‹ã“ã¨ãŒã§ãã¾ã›ã‚“。\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Kerberos ã®ãƒ—リンシパルå \"%s\" をパース中ã«ã‚¨ãƒ©ãƒ¼: %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Kerberos ã®ãƒ—リンシパルå \"%s\" をアンパース中ã«ã‚¨ãƒ©ãƒ¼: %s\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: オプションã«ã¯å¼•æ•°ãŒå¿…è¦ã§ã™ã€‚-- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: 無効ãªã‚ªãƒ—ション -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "エラー: 使用ã•ã‚Œãªã„余計ãªå¼•æ•° \"%s\"。\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "エラー:余分ãªãƒ‘ラメーターãŒæŒ‡å®šã•ã‚Œã¾ã—ãŸã€‚\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" "データベースã®å ´æ‰€ã‚‚ã—ãã¯ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã®ã©ã¡ã‚‰ã‹ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "データベースディレクトリーã¨è¨¼æ˜Žæ›¸ãƒ•ã‚¡ã‚¤ãƒ«ã®ä¸¡æ–¹ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã™ã€‚\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "データベースディレクトリーã¨ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã€ã‚‚ã—ãã¯è¨¼æ˜Žæ›¸ãƒ•ã‚¡ã‚¤ãƒ«ã®æŒ‡å®šã•ã‚Œã¦" "ã„ã¾ã›ã‚“。\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "キーã¨è¨¼æ˜Žæ›¸ã®ä¸¡æ–¹ã‚’åŒã˜ãƒ•ã‚¡ã‚¤ãƒ«ã«ä¿å­˜ã™ã‚‹ã“ã¨ãŒã§ãã¾ã›ã‚“。\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "IPA ãƒãƒƒã‚¯ã‚¨ãƒ³ãƒ‰ã¯ -N オプション(サブジェクトå) を使用ã—ãŸå ´åˆã€-K オプショ" "ン(プリンシパルå)ã‚’å¿…è¦ã¨ã—ã¾ã™ã€‚\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "\"%s\" ã¨ã„ã†åå‰ã® CA ãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“。\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" "リクエストã®å¼•æ•°ã‚’設定中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" "\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "æ–°ã—ã„ç½²åリクエスト \"%s\" ãŒè¿½åŠ ã•ã‚Œã¾ã—ãŸã€‚\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "æ–°ã—ã„ç½²åリクエストã®è¿½åŠ ãŒã§ãã¾ã›ã‚“。\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "æ–°ã—ã„追跡リクエスト \"%s\" ãŒè¿½åŠ ã•ã‚Œã¾ã—ãŸã€‚\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "æ–°ã—ã„追跡リクエストã®è¿½åŠ ãŒã§ãã¾ã›ã‚“。\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "IDã¾ãŸã¯ãƒ‡ãƒ¼ã‚¿ãƒ™ãƒ¼ã‚¹ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã€ã‚‚ã—ãã¯ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã€è¨¼æ˜Žæ›¸ãƒ•ã‚¡ã‚¤ãƒ«ã®æŒ‡" "定ã•ã‚Œã¦ã„ã¾ã›ã‚“。\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "リクエスト \"%s\" ã¯å¤‰æ›´ã•ã‚Œã¾ã—ãŸã€‚\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "リクエスト \"%s\" ã¯å¤‰æ›´ã§ãã¾ã›ã‚“。\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "指定ã•ã‚ŒãŸãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ã‚’æŒã¤ãƒªã‚¯ã‚¨ã‚¹ãƒˆãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“ã§ã—ãŸã€‚\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "引数ã«è©²å½“ã—ãŸãƒªã‚¯ã‚¨ã‚¹ãƒˆãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“。\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "リクエスト \"%s\" ã¯å‰Šé™¤ã•ã‚Œã¾ã—ãŸã€‚\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "リクエスト \"%s\" ã¯å‰Šé™¤ã§ãã¾ã›ã‚“。\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" "\"%s\" を変更中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" "\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "\"%s\" ã‚’ \"%s\" ã¸å†é€ä¸­ã§ã™ã€‚\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "\"%s\" ã‚’å†é€ä¸­ã§ã™ã€‚\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" "\"%s\" ã‚’ \"%s\" ã¸é€ä¿¡ä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" "\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" "\"%s\" ã‚’é€ä¿¡ä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" "\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "追跡ã•ã‚Œã¦ã„る証明書ã¨ãƒªã‚¯ã‚¨ã‚¹ãƒˆã®æ•°ï¼š%d\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "リクエスト ID '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\t状態: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tCAエラー: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tスタック: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tキーペアストレージ: type=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "ãªã—" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",location='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",nickname='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinfile='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\t証明書: type=%s,location='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\t発行者: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tサブジェクト: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\t有効期é™: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "ä¸æ˜Ž" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tEメール: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tDNS: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tプリンシパルå: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tキー使用法: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\t拡張キー使用法: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tä¿å­˜å‰ã‚³ãƒžãƒ³ãƒ‰: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tä¿å­˜å¾Œã‚³ãƒžãƒ³ãƒ‰: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\t追跡: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\t自動更新: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tCAã®ç¨®é¡ž: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tヘルパーã®å ´æ‰€: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\t次ã®ã‚·ãƒªã‚¢ãƒ«ç•ªå·: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\t発行者å:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - クライアント証明書登録ツール\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "使ã„æ–¹: %s request [オプション]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "å¿…é ˆã®å¼•æ•°:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* ã‚‚ã—ストレージ㫠NSS データベースを使ã†å ´åˆ:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tキーã¨è¨¼æ˜Žæ›¸ã®ãŸã‚ã® NSS データベース\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NAME\tNSS ベースストレージã®ãŸã‚ã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ (-d オプションを指定ã—ãŸæ™‚" "ã®ã¿æœ‰åŠ¹)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t åå‰\tNSS ベースã®è¨˜æ†¶é ˜åŸŸã®ãŸã‚ã®ã‚ªãƒ—ションã®ãƒˆãƒ¼ã‚¯ãƒ³å(-d オプションを" "指定ã—ãŸæ™‚ã®ã¿æœ‰åŠ¹)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* ã‚‚ã—ストレージã®ãŸã‚ã«ãƒ•ã‚¡ã‚¤ãƒ«ã‚’使ã†æ™‚:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FILE\tプライベートキーã®ãŸã‚ã® PEM ファイル\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FILE\t証明書ã®ãŸã‚ã® PEM ファイル (-k を指定ã—ãŸå ´åˆã®ã¿æœ‰åŠ¹)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* ã‚‚ã—キーãŒæš—å·åŒ–ã•ã‚Œã¦ã„ãŸå ´åˆ:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE\tæš—å·åŒ–ã•ã‚ŒãŸPIN コードãŒå«ã¾ã‚Œã‚‹ãƒ•ã‚¡ã‚¤ãƒ«\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN コードã®å€¤\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "ä»»æ„ã®å¼•æ•°:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* 証明書ã®å‡¦ç†æ–¹æ³•ã®è¨­å®š:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAME\tリクエストã«å‰²ã‚Šå½“ã¦ã‚‹ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ \n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr " -G TYPE\tキーãŒå­˜åœ¨ã—ãªã„å ´åˆã«ç”Ÿæˆã•ã‚Œã‚‹ã‚­ãƒ¼ã®å½¢å¼\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr " -g SIZE\tキーãŒå­˜åœ¨ã—ãªã„å ´åˆã«ç”Ÿæˆã•ã‚Œã‚‹ã‚­ãƒ¼ã®ãƒ“ット長\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr " -r\t\t有効期é™ãŒè¿‘ã¥ã„ã¦ã„る時ã«è¨¼æ˜Žæ›¸ã‚’æ›´æ–°ã™ã‚‹(デフォルト)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr " -R\t\t有効期é™ãŒè¿‘ã¥ã„ã¦ã‚‚証明書を更新ã—ãªã„\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\t指定ã•ã‚ŒãŸCAã§ã¯ãªãã€ãƒ‡ãƒ•ã‚©ãƒ«ãƒˆã‚’使用\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFILE\tåå‰ã¤ãプロファイルã¾ãŸã¯ãƒ†ãƒ³ãƒ—レートを使用ã—ã¦ã€CA ãŒãƒªã‚¯ã‚¨ã‚¹" "トを処ç†ã™ã‚‹ã‹ç¢ºèªã—ã¾ã™\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* ç½²å中リクエストã®ãƒ‘ラメーター:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAME\tè¦æ±‚ã•ã‚ŒãŸã‚µãƒ–ジェクトåを設定 (デフォルト: CN=<ホストå>)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTUSAGE\t 拡張キー使用法(EKU)ã®OIDを設定\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u KEYUSAGE\tè¦æ±‚ã•ã‚ŒãŸã‚­ãƒ¼ä½¿ç”¨æ³•ã®å€¤ã‚’設定ã™ã‚‹\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAME\tè¦æ±‚ã•ã‚ŒãŸãƒ—リンシパルåを設定\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAME\t設定ã™ã‚‹DNSå\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL\tè¦æ±‚ã—ãŸEメールアドレスを設定\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* ãƒã‚¹ã®ã‚ªãƒ—ション:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tシステムãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tセッションãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* ãã®ä»–ã®ã‚ªãƒ—ション:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\t証明書をä¿å­˜ã™ã‚‹å‰ã«å®Ÿè¡Œã™ã‚‹ã‚³ãƒžãƒ³ãƒ‰\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\t証明書をä¿å­˜ã—ãŸå¾Œã«å®Ÿè¡Œã™ã‚‹ã‚³ãƒžãƒ³ãƒ‰\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\t詳細ãªã™ã¹ã¦ã®ã‚¨ãƒ©ãƒ¼ã‚’報告\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "使ã„æ–¹: %s start-tracking [オプション]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* ã‚‚ã—既存ã®ãƒªã‚¯ã‚¨ã‚¹ãƒˆã‚’変更ã™ã‚‹æ™‚:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAME\t既存ã®è¿½è·¡ãƒªã‚¯ã‚¨ã‚¹ãƒˆã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ \n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* ã‚‚ã—キーãŒæš—å·åŒ–ã•ã‚Œã¦ã„ãŸæ™‚:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAME\t追跡リクエストã«ä¸Žãˆã‚‹ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ \n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* 更新時ã«ç½²åリクエストã®ãŸã‚ã®ãƒ‘ラメーター:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTUSAGE\t指定ã•ã‚ŒãŸã‚­ãƒ¼ã®OIDã§æ‹¡å¼µã‚­ãƒ¼ä½¿ç”¨æ³•(EKU)を上書ã\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAME\tè¦æ±‚ã•ã‚ŒãŸãƒ—リンシパルåを上書ã\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAME\tè¦æ±‚ã•ã‚ŒãŸ DNS åを上書ã\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL\tè¦æ±‚ã•ã‚ŒãŸEメールアドレスを上書ã\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "使ã„æ–¹: %s stop-tracking [オプション]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* リクエストã®è­˜åˆ¥å­:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAME\t追跡リクエストã®ãŸã‚ã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ \n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "使ã„æ–¹: %s resubmit [オプション]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FILE\t証明書ã®ãŸã‚ã® PEM ファイル\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* ç½²åリクエストã®ãŸã‚ã®æ–°ã—ã„パラメーター値:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAME\t追跡リクエストã«æ–°ã—ã„ニックãƒãƒ¼ãƒ ã‚’付与\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\t指定ã•ã‚ŒãŸCAã§ã¯ãªãã€ç¾åœ¨ã®ã„ãšã‚Œã‹ã‚’使用\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "使ã„æ–¹: %s list [オプション]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* 一般的ãªã‚ªãƒ—ション:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr " -c CA\tã“ã® CA ã«é–¢é€£ä»˜ã‘られã¦ã„るリクエストã¨è¨¼æ˜Žæ›¸ã®ä¸€è¦§ã®ã¿\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\t未処ç†ã®è¦æ±‚ã«ã¤ã„ã¦ã®æƒ…å ±ã®ä¸€è¦§ã®ã¿\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\t追跡済ã¿è¨¼æ˜Žæ›¸ã«ã¤ã„ã¦ã®æƒ…å ±ã®ä¸€è¦§ã®ã¿\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* ã‚‚ã—も特定ã®ãƒªã‚¯ã‚¨ã‚¹ãƒˆãŒé¸æŠžã•ã‚ŒãŸå ´åˆ:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR»ã“ã® NSS デー" "タベースを使用ã™ã‚‹ãƒªã‚¯ã‚¨ã‚¹ãƒˆã¨è¨¼æ˜Žæ›¸ã®ã¿ã‚’表示\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAME»ã“ã®ãƒ‹ãƒƒã‚¯" "ãƒãƒ¼ãƒ ã‚’使用ã™ã‚‹ãƒªã‚¯ã‚¨ã‚¹ãƒˆã¨è¨¼æ˜Žæ›¸ã®ã¿ã‚’表示\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FILE»ã“ã® PEM ファ" "イルã«ä¿å­˜ã•ã‚Œã¦ã„るリクエストã¨è¨¼æ˜Žæ›¸ã®ã¿ã‚’表示\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tシステムãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tセッションãƒã‚¹ä¸Šã® certmonger サービスã«æŽ¥ç¶š\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "使ã„æ–¹: %s list-cas [オプション]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA\t指定ã•ã‚ŒãŸåå‰ã® CA ã«ã¤ã„ã¦ã®æƒ…報一覧ã®ã¿è¡¨ç¤º\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: èªè­˜ã§ããªã„コマンド\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "クライアント㧠XMLRPC ã®è¨­å®šä¸­ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "-t オプション㯠-K オプションã¨åŒæ™‚ã«ä½¿ç”¨ã§ãã¾ã›ã‚“。\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "-k オプション㯠-K オプションã¨åŒæ™‚ã«ä½¿ç”¨ã§ãã¾ã›ã‚“。\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "-K オプション㯠-k ã¾ãŸã¯ -t オプションã¨åŒæ™‚ã«ä½¿ç”¨ã§ãã¾ã›ã‚“。\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "ç½²åリクエストã®ãŸã‚ã®ãƒ—リンシパルåを解釈ã§ãã¾ã›ã‚“。\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "デフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ルを使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ \"host\" サービス㮠ccache " "セットアップ中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "デフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ルを使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ \"%s\" ã® ccache セットアッ" "プ中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "デフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ル \"%s\" を使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§ \"host\" サービス㮠" "ccache セットアップ中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" " \"%s\" ã® ccache をデフォルトã®ã‚­ãƒ¼ãƒ†ãƒ¼ãƒ–ル \"%s\" を使用ã™ã‚‹ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã§" "セットアップ中ã«ã‚¨ãƒ©ãƒ¼ãŒç™ºç”Ÿã—ã¾ã—ãŸ: %s。\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s セッションãƒã‚¹ã‚’使用\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S システムãƒã‚¹ã‚’使用\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n デーモンã«ãªã‚‰ãªã„\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f デーモンã«ãªã‚‹\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT ãƒã‚¹æœ‰åŠ¹åŒ–ã€æœªä½¿ç”¨ã§ã‚¿ã‚¤ãƒ ã‚¢ã‚¦ãƒˆ\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B アイドルタイムアウトを使用ã—ãªã„\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL デãƒãƒƒã‚°ãƒ¬ãƒ™ãƒ«ã‚’設定 (-n ã‚’å«ã‚€)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FILE サービス㮠PID をファイルã«æ›¸ã込む\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F 強制的㫠NSS ã‚’ FIPS モードã«ã™ã‚‹\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "内部エラーãŒç™ºç”Ÿã—ã¾ã—ãŸã€‚" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "該当ã™ã‚‹ã‚¨ãƒ³ãƒˆãƒªãƒ¼ãŒè¦‹ã¤ã‹ã‚Šã¾ã›ã‚“。\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "ニックãƒãƒ¼ãƒ  \"%s\" ã¯ã€ã™ã§ã« CA ã§ä½¿ã‚ã‚Œã¦ã„ã¾ã™ã€‚" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "証明書ストレージã®ç¨®é¡žãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "証明書ストレージã®ç¨®é¡ž \"%s\" ã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¦ã„ã¾ã›ã‚“。" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "場所 \"%s\" ã¯çµ¶å¯¾ãƒ‘スã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "証明書ストレージã®å ´æ‰€ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "権é™ãŒç„¡ã„ãŸã‚ \"%s\" ã®è¦ªãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªã«ã‚¢ã‚¯ã‚»ã‚¹ã§ãã¾ã›ã‚“ã§ã—ãŸã€‚" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" "場所 \"%s\" ã®è¦ªãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã¯æœ‰åŠ¹ãªãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "場所 \"%s\" ã¯ãƒ•ã‚¡ã‚¤ãƒ«ã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "権é™ãŒç„¡ã„ãŸã‚ \"%s\" ã«ã‚¢ã‚¯ã‚»ã‚¹ã§ãã¾ã›ã‚“ã§ã—ãŸã€‚" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "場所 \"%s\" ã¯ãƒ‡ã‚£ãƒ¬ã‚¯ãƒˆãƒªãƒ¼ã§ãªã‘ã‚Œã°ãªã‚Šã¾ã›ã‚“。" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "証明書ã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "ニックãƒãƒ¼ãƒ  \"%s\" ã®ãƒªã‚¯ã‚¨ã‚¹ãƒˆã¯ã€ã™ã§ã«ã‚ã‚Šã¾ã™ã€‚" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "åŒã˜å ´æ‰€ã«ã‚る証明書ã¯ã€ã™ã§ã«ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  \"%s\" ã‚’æŒã¤ãƒªã‚¯ã‚¨ã‚¹ãƒˆã§ä½¿ç”¨ã•ã‚Œ" "ã¦ã„ã¾ã™ã€‚" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "キー・ストレージã®ç¨®é¡ž \"%s\" ã¯ã‚µãƒãƒ¼ãƒˆã—ã¦ã„ã¾ã›ã‚“。" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "キー・ストレージã®å ´æ‰€ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "キーã®ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ ãŒæŒ‡å®šã•ã‚Œã¦ã„ã¾ã›ã‚“。" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "åŒã˜å ´æ‰€ã«ã‚るキーã¯ã€ã™ã§ã«ãƒ‹ãƒƒã‚¯ãƒãƒ¼ãƒ  \"%s\" ã‚’æŒã¤ãƒªã‚¯ã‚¨ã‚¹ãƒˆã§ä½¿ç”¨ã•ã‚Œã¦" "ã„ã¾ã™ã€‚" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "ã‚­ãƒ¼å½¢å¼ \"%s\" ã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¾ã›ã‚“。" #: src/tdbush.c:1400 msgid "No such CA." msgstr "ãã®ã‚ˆã†ãªè¨¼æ˜Žå±€ã¯ã‚ã‚Šã¾ã›ã‚“。" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "èªè¨¼å±€ \"%s\" ã¯èªçŸ¥ã•ã‚Œã¦ã„ãªã„証明局ã§ã™ã€‚" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "èªè­˜ã•ã‚Œã¦ã„ãªã„パラメーターã‹ã€ã‚‚ã—ãã¯ä¸é©åˆ‡ãªãƒ‡ãƒ¼ã‚¿åž‹ã§ã™ã€‚" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "å分ãªã‚¢ã‚¯ã‚»ã‚¹æ¨©ãŒã‚ã‚Šã¾ã›ã‚“。æ“作を root ã¨ã—ã¦å†å®Ÿè¡Œã—ã¦ãã ã•ã„。\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "certmonger サービスãŒé–‹å§‹ã—ã¦ã„ã‚‹ã“ã¨ã‚’確èªã—ã¦ãã ã•ã„。\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "certmonger サービスãŒã¾ã å®Ÿè¡Œä¸­ã§ã‚ã‚‹ã“ã¨ã‚’確èªã—ã¦ãã ã•ã„。\n" certmonger-0.78.6/po/it_IT.po0000664000175000017500000012646612645513276012724 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Italian (Italy) (http://www.transifex.com/projects/p/fedora/" "language/it_IT/)\n" "Language: it_IT\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/it.po0000664000175000017500000014626612645513276012330 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Mario Santagiuliana , 2012 # Silvio Pierro , 2012 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Italian (http://www.transifex.com/projects/p/certmonger/" "language/it/)\n" "Language: it\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Impossibile determinare l'hostname di CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Impossibile leggere la richiesta di firma.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Errore nell'impostazione di XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Errore di analisi della risposta del server.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Errore server.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Memoria esaurita.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "Il percorso \"%s\" non è assoluto, tentativo di usare \"%s\" al suo posto.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Il percorso \"%s\" non è assoluto, e si è verificato un errore nella " "determinazione del nome della cartella attuale.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Il percorso \"%s\" non è una cartella.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Percorso \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Il percorso \"%s\" non è un file regolare.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Verificare che il servizio bus messaggi (D-bus) è in esecuzione.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Errore nella creazione di messaggi di richiesta DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Errore \"%s\": %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Errore %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Errore: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Ricevuta una risposta di errore dal servizio locale %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Nessuna risposta ricevuta dal servizio %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Errore nell'inizializzazione della libreria Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Impossibile valutare OID: \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Errore nell'analisi del nome principale Kerberos \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Errore non analizzato nome principale Kerberos \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: l'opzione richiede un argomento -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: opzione non valida -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Errore: argomento extra \"%s\" non usato.\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Errore: argomenti extra non usati dove forniti.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Posizione database o nickname specificato senza ordine.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Cartella database e file certificato specificati contemporaneamente.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Non è stata specificata nessuna cartella di database e nickname o file " "certificato.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" "La chiave ed il certificato non possono essere salvati entrambi nello stesso " "file.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "Il backend IPA richiede l'uso dell'opzione -K (nome principale) quando si " "usa l'opzione -N (nome soggetto).\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Non è stato trovato nessun CA con nome \"%s\".\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Errore nell'impostazione degli argomenti richiesti.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Aggiunta una nuova richiesta segnata \"%s\".\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "La nuova richiesta segnata non può essere aggiunta.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Aggiunta una nuova richiesta di tracking \"%s\".\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "La nuova richiesta di tracking non puoÌ€ essere aggiunta.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Non è stato specificato nessuno tra l'ID oppure la cartella di database ed " "il nickname oppure il certificato.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Richiesta \"%s\" modificata.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "La richiesta \"%s\" non può essere modificata.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Non è stata trovata nessuna richiesta con il nickname specificato.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Non è stata trovata nessuna richiesta con argomenti corrispondenti.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Richiesta \"%s\" rimossa.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "La richiesta \"%s\" non puoÌ€ essere rimossa.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Errore nella modifica di \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Re-invio di \"%s\" a \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Re-invio di \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Errore nel tentativo di sottomettere \"%s\" a \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Errore nel tentativo di sottomettere \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Il numero di certificati e di richieste sotto tracciamento: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID richiesto '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tstato: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\terrore-ca: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tstuck: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tcoppia chiavi di storage: tipo=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "NESSUNO" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",posizione='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",nickname='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinfile='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tcertificato: tipo=%s,posizione='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\temittente: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tsoggetto: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\tscadenza: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "sconosciuto" #: src/getcert.c:3577 msgid "\temail: " msgstr "\temail:" #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tnome principale:" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\ttraccia: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-renew: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\ttipo-ca: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tposizione-aiutante: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tprossimo-numero-serie: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tnomi-emittente-noti:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - strumento di registrazione certificato client\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Utilizzo: %s request [opzioni]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Argomenti richiesti:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Se si utilizza un database NSS per lo storage:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tDatabase NSS per chiave e certificato\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NOME\tnickname per gli storage basati su NSS (valido solo con -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NOME\tnome token opzionale per storage basato su NSS (valido solo con -" "d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Se si utilizzano file per lo storage:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FILE\tfile PEM per la chiave privata\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FILE\tfile PEM per il certificato (valido solo con -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Se le chiavi devono essere cifrate:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE\til file che contiene il PIN di cifratura\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tvalore PIN\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Argomenti aggiuntivi:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Impostazioni di gestione certificato:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NOME\tnickname da assegnare alla richiesta\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g DIM\tdimensione della chiave da generare se non ne è già presente una\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\ttenta di rinnovare il certificato quando si avvicina la scadenza " "(predefinito)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -r\t\tnon tentare di rinnovare il certificato quando si avvicina la " "scadenza\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tusa il CA specificato piuttosto che il predefinito\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parametri per la richiesta segnata:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr " -N NOME\timposta il nome del soggetto (predefinito: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U USOEXT\timposta l'utilizzo OID della chiave estesa richiesta\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NOME\timposta il nome principale richiesto\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D NOMEDNS\timposta il nome DNS richiesto\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL\timposta l'indirizzo email richiesto\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Opzioni bus:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tconnessione al servizio certmonger sul bus di sistema\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -S\t\tconnessione al servizio certmonger sul bus di sessione\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Altre opzioni:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\triporta tutti i dettagli degli errori\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Utilizzo: %s start-tracking [opzioni]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Se si modifica una richiesta preesistente:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NOME\tnickname di una richiesta di tracking preesistente\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Se le chiavi sono cifrate:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NOME\tnickname da dare alla richiesta di tracking\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parametri per la richiesta segnante al momento del rinnovo:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" " -U USOEXT\tSovrascrive l'utilizzo OID della chiave estesa richiesta\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NOME\tsovrascrive il nome principale richiesto\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D NOMEDNS\tsovrascrive il nome DNS richiesto\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL\tsovrascrive l'indirizzo email richiesto\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Utilizzo: %s stop-tracking [opzioni]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Per richieste di identificazione:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NOME\tnickname di una richiesta di tracking\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Utilizzo: %s resubmit [opzioni]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FILE\tfile PEM per il certificato\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Nuovi valori di parametro per le richieste segnanti:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAME\tnuovo nickname da dare alla richiesta di tracking\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\tusa il CA specificato piuttosto che l'attuale\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Utilizzo: %s list [opzioni]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Opzioni generali:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\telenca solo le richieste ed i certificati associati a questo CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\telenca solo le informazioni sulle richieste eccezionali\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\telenca solo le informazioni sui certificati tracciati\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Se si seleziona una richiesta specifica:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR\telenca solo le richieste ed i certificati che usano questo " "database NSS\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NOME\telenca solo le richieste ed i certificati che usano questo " "nickname\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FILE\telenca solo le richieste ed i certificati immagazzinati in questo " "file PEM\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tconnettersi al servizio certmonger sul bus di sistema\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tconnettersi al servizio certmonger sul bus di sessione\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Utilizzo: %s list-cas [opzioni]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA\telenca solo informazioni sulla CA con questo nome\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: comando non riconosciuto\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "L'opzione -t non può essere usata con l'opzione -K .\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "L'opzione -k non puoÌ€ essere usata con l'opzione -K .\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" "L'opzione -K non puoÌ€ essere usata ne con l'opzione -k che con l'opzione -" "t .\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" "Impossibile determinare il nome principale per la richiesta di firma.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s usa bus di sessione\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-s usa bus di sistema\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n non rende un demone\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-n rende un demone\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT attivato da bus, timeout inattivo\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B non usa un timeout inattivo\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL imposta il livello di debugging (implica -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FILE scrive il PID di servizio su file\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Si è verificato un errore interno." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Non eÌ€ stata trovata nessuna voce corrispondente.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "E' già presente una CA con il nickname \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Tipo di storage di certificato non specificato." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Tipo di storage di certificato \"%s\" non supportato." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "La posizione \"%s\" deve essere un percorso assoluto." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "La posizione di storage di certificato non è specificata." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" "La directory superiore della posizione \"%s\" deve essere una cartella " "valida." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "La posizione \"%s\" deve essere un file." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "La posizione \"%s\" deve essere una cartella." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Nickname del certificato non specificato." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "E' giaÌ€ presente una richiesta con il nickname \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Il certificato con questa posizione è già usato dalla richiesta con il " "nickname \"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Tipo chiave di storage \"%s\" non supportata." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "La posizione di storage di chiave non eÌ€ specificata." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nickname di chiave non specificata." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "La chiave con questa posizione eÌ€ giaÌ€ usata dalla richiesta con il nickname " "\"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "Nessuna CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Autorità di certificato \"%s\" sconosciuta." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Parametro non riconosciuto o tipo di valore errato." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/is.po0000664000175000017500000012645612645513276012326 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Icelandic (http://www.transifex.com/projects/p/certmonger/" "language/is/)\n" "Language: is\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ilo.po0000664000175000017500000012645412645513276012474 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Iloko (http://www.transifex.com/projects/p/certmonger/" "language/ilo/)\n" "Language: ilo\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/id.po0000664000175000017500000014113012645513276012271 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Nalin Dahyabhai , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Indonesian (http://www.transifex.com/projects/p/certmonger/" "language/id/)\n" "Language: id\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "tidak dapat menentukan nama host dari CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Tidak dapat membaca tanda permintaan.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Setting kesalahan untuk XMLRPC\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "merespon pelayanan penguraian kesalahan.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Kesalahan server.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Path \"%s\"tidak mutlak, dan ada eror yang menentukan nama dari sebuah " "direktori.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "permintaan pesan Eror penciptaan DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Error %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Error %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Error: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Menerima respon eror dari lokal %s layanan.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Tidak menerima respon dari %s layanan.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Menginisialisasi Kesalahan Kerberos : %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Tidak dapat mengevaluasi OID\"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Kesalahan menguraikan nama utama Kerberos \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Kesalahan tanpa menguraikan nama utama Kerberos \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Lokasi database atau nama panggilan khusus tanpa yang lain. \n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Direktori database dan sertifikat file kedua secara khusus.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Tidak ada dari direktori database dan nama panggilan atau sertifikat berkas " "khusus.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" "Kunci dan sertifikat tidak dapat di simpan seluruhnya pada file yang sama.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "IPA kembali memerlukan kegunaan dari pilihan -K (nama utama) di mana ketika " "pilihan -N (nama subjek) telah digunakan.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Tidak ada CA dengan nama \"%s\"menemukan.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Pengaturan kesalahan permintaan beberapa argumen.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Menandai permintaan baru \"%s\" yang di tambah.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Menandai permintaan baru yang tidak dapat ditambahkan.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Permintaan pelacakan di tambahkan \"%s\"added.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Permintaan pelacakan tidak dapat di tambahkan.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "ID kosong atau direktori database dan nama panggilan atau sertifikat berkas " "khusus.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Permintaan \"%s\" memodifikasi.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Permintaan \"%s\" tidak dapat dimodifikasi.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Tidak menemukan permintaan mengenai argumen yang cocok.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Permintaan \"%s\" menghapus.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Permintaan \"%s\" tidak dapat menghapus.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Modifikasi eror \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Pengajuan kembali \"%s\" to \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Pengajuan kembali \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Usaha eror untuk di ajukan \"%s\"untuk \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Usaha eror untuk di ajukan \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID de solicitud '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tstatus: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tca-error: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tstuck: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\tissuer: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tsubject: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\texpires: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "Tidak diketauhui" #: src/getcert.c:3577 msgid "\temail: " msgstr "\temail: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tprincipal name: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\ttrack: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-renew: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "AC '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tca-type: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\thelper-location: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tnext-serial-number: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tknown-issuer-names:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - sertifikat pendaftaran pelanggan\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Pemakaian: %s request[options]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Argumentasi yang di butuhkan:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "*Jika menggunakan database NSS untuk menyimpan:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "-d DIR\tNSS database untuk kunci dan pemastian\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" "-n NAME\tnickname untuk dasar penyimpanan NSS (hanya valid dengan -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" "-t NAME\toptional tanda nama untuk dasar penyimpanan NSS (hanya valid dengan " "-d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "*Jika menggunakan berkas untuk penyimpanan:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "-k FILE\tPEM berkas untuk kunci privasi\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "-f FILE\tPEM berkas untuk sertifikat (hanya valid dengan -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "-p FILE\tfile yang memegang enkripsi suatu PIN\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Pilihan argumen-argumen:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Keadaan menangani sertifikat:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "-I NAME\tnickname untuk menandai sebuah permintaan\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" "-g SIZE\tsize sebuah kunci untuk menghasilkan jika salah satu telah tidak " "berada di dalam tempat\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" "-r\t\tattempt untuk memperbarui sertifikat ketika mendekati akhir waktu " "(kegagalan)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" "-R\t\tdon't usaha untuk memperbarui sertifikat ketika mendekati akhir waktu\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tuse CA khusus lebih baik daripada kegagalan\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Beberapa parameter untuk menandai permintaan:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr " -N NAME\tset permintaan nama subjek (kegagalan: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "-U EXTUSAGE\tset memperluas permintaan pemakaian kunci OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "-K NAME\tset permintaan nama utama\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "-D DNSNAME\tset permintaan nama DNS\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "-E EMAIL\tset permintaan alamat email\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Pilihan Bus:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "-S\t\tconnect untuk layanan pemastian dalam sistem bus\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "-s\t\tconnect untuk layanan pemastian pada pembahasan bus\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Pemakaian: %s start-tracking [options]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Jika memodifikasi permintaan yang ada:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "-i NAME\tnickname permintaan mengikuti jalan yang ada\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Jika kunci adalah enkripsi:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "-I NAME\tnickname untuk memberi mengikuti permintaan\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Pemakaian: %s stop-tracking [options]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Dengan memperkenalkan permintaan:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "-i NAME\tnickname untuk mengikuti permintaan\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Pemakaian: %s resubmit [options]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "-f FILE\tPEM berkas untuk sertifikat\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Parameter baru bernilai untuk menandai permintaan:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "-I NAME\tnew nama panggilan untuk memberikan mengikuti permintaan\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "-c CA\t\tuse CA khusus lebih baik daripada saat ini\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Pemakaian: %s list [options]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Pilihan umum:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "-c CA\tlist hanya permintaan dan pemastian kolega dengan CA ini\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "-r\tlist hanya informasi tentang permintaan terkemuka\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "-t\tlist hanya informasi tentang jalannya sertifikat\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "-S\tconnect untuk layanan pemastian pada sistem bus\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "-s\tconnect untuk layanan pemastian pada pembahasan bus\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Pemakaian: %s list-cas [options]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "-c CA\tlist hanya informasi tentang CA dengan nama ini\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: tidak mengenali perintah\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Tidak dapat untuk menentukan nama utama untuk menandai permintaan.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Eror pada bagian dalam telah terjadi" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Tidak menemukan catatan masuk yang cocok.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Tipe penyimpanan sertifikat tidak khusus." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Tipe penyimpanan sertifikat \"%s\" tidak mendukung." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "Lokasi \"%s\" harus analisa yang tepat." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Lokasi penyimpanan sertifikat tidak khusus." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "induk dari lokasi \"%s\" harus sebuah direktori yang valid." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "Lokasi \"%s\" harus berupa berkas." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "Lokasi \"%s\" harus berupa direktori." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "nama panggilan sertifikat tidak khusus." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Permintaan telah dilakukan dengan nama panggilan \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Tipe kunci penyimpanan \"%s\" tidak mendukung." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "lokasi kunci penyimpanan tidak khusus." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "kunci nama panggilan tidak khusus." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "CA tidak serupa." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Wewenang sertifikat \"%s\" tidak diketahui." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Tidak mengenal parameter atau salah tipe nilai." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ia.po0000664000175000017500000012646012645513276012277 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Interlingua (http://www.transifex.com/projects/p/certmonger/" "language/ia/)\n" "Language: ia\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/hy.po0000664000175000017500000012645512645513276012332 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Armenian (http://www.transifex.com/projects/p/certmonger/" "language/hy/)\n" "Language: hy\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/hu.po0000664000175000017500000015340512645513276012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Peter Borsa , 2012 # Zoltan Hoppár , 2012-2013 # Porcsin László , 2015. #zanata msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2015-02-22 02:25-0500\n" "Last-Translator: Porcsin László \n" "Language-Team: Hungarian (http://www.transifex.com/projects/p/certmonger/" "language/hu/)\n" "Language: hu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "CA hosztnevének meghatározása meghiúsult.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Bejelentkezési kérés olvasása meghiúsult.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Hiba történt a XMLRPC-re történÅ‘ beállításkor\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Hiba a szerver válasz értelmezésében.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Szerver hiba.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Elfogyott a rendelkezésre álló memória.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "Nincs ágens URL megadva (-A), és nincs ismert alapértelmezett sem.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" "Nincs végentitású URL megadva (-E), és nincs ismert alapértelmezett sem.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "Nincs ágens URL megadva (-A), és nincs ismert alapértelmezett sem.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" "Nincs profil / sablon megadva (-T), és nincs ismert alapértelmezett sem.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "BelsÅ‘ hiba: ismeretlen állapot.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Hiba: %d csatlakozik ide - %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Hiba: %d csatlakozik ide - %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "BelsÅ‘ hiba: nincs válasz erre - \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "\"%s\" elérési út nem abszolút, próbaként \"%s\" kerül alkalmazásra " "helyette.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "\"%s\" elérési út nem abszolút, és hiba történt a jelenlegi könyvtár " "meghatározásakor.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "\"%s\" elérési út nem egy szabályos könyvtár.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr " \"%s\" elérési útja: %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "\"%s\" elérési út nem egy szabályos fájl.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Kérem ellenÅ‘rizze, hogy az üzenet busz (D-Bus) szolgáltatás működik.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Hiba történt a a DBus kérési üzenet elkészítésekor.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Hiba %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" "Hiba %s\n" "\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Hiba %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Hiba érkezett egy helyi %s szolgáltatástól.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Nincs válasz a következÅ‘ szolgáltatástól: %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Hiba történt a Kerberos modul beállításakor: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Felismerhetetlen kulcshasználat \"%s\".\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Nem értelmezhetÅ‘ OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Hiba a Kerberos megbízói név értelmezésekor \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Hiba a Kerberos megbízói név visszafordításakor \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: az opcióhoz szükséges egy paraméter is -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: érvénytelen opció --'%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "HIba: kihasználatlan extra paraméter \"%s\".\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Hiba: használaton kívüli extra paraméterek is alkalmazásra kerültek.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Adatbázis helye vagy elnevezése egymás nélkül vannak meghatározva.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Adatbázis könyvtára és az aláírás fájl meghatározva.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Sem az adatbázis könyvtára és az elnevezése, vagy az aláírás fájl nincs " "meghatározva.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "A kulcs és az aláírás nem menthetÅ‘ el egy ugyanazon fájlba.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "Az IPA backend-nek szükséges a -K opció (megbízói név) ha az -N opció (tárgy " "név) alkalmazásban van.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Nincs elérhetÅ‘ CA \"%s\" néven.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Hiba a paraméterek kérésekor.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Új aláírási kérelem \"%s\" hozzáadva.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Új aláírási kérelem nem adható hozzá.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Új nyomkövetési kérés \"%s\" hozzáadva.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Új nyomkövetési kérés nem adható hozzá.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Sem az ID vagy adatbázis könyvtára és az elnevezése, vagy az aláírás fájl " "sincsen meghatározva.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "\"%s\" kérés módosult.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "\"%s\" kérés nem módosítható.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Nem található kérés a megadott elnevezéssel.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Olyan kérés nem található ami egyezne a paraméterekkel.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "\"%s\" kérés eltávolítva.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "\"%s\" kérés nem távolítható el.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "\"%s\" módosításakor hiba lépett fel.\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "\"%s\" újraküldése ide: \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Újraküldés: \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Nem sikerült \"%s\" beküldése ide: \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "\"%s\" beküldése sikertelen.\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "A nyomonkövetett kérések és aláírások száma: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID kérése: '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "»status: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "»ca-error: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "»beragadt: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tkulcspár tároló: típusa=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "NINCS" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",helye='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",elnevezés='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",jegy='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinfájl='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\ttanusítvány: típusa=%s,helye='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "»CA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "»issuer: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "»subject: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" "»lejárati idÅ‘: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "ismeretlen" #: src/getcert.c:3577 msgid "\temail: " msgstr "»email: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "»dns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "»megbízó neve: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tkulcshasználat: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "»eku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tpre-mentés parancs: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tpost-mentés parancs: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "»track: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" "»automatikus " "megújítás: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "»ca-típus: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" "»segítÅ‘-helye: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" "»következÅ‘ " "sorozatszám: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" "»ismert kibocsátó " "nevek:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - kliens tanusítvány felvevÅ‘ eszköz\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Használata: %s kérés [opciók]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Szükséges paraméterek:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" "* Ha egy NSS adatbázist használ a tárolóhoz:\n" "\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" " -d DIR»NSS adatbázis " "a kulcshoz és a tanusítványhoz\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NAME»elnevezés az " "NSS-alapú tárolóhoz (csak -d opcióval érvényes)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAME\topcionális token név az NSS-alapú tárolókhoz (csak a -d opcióval " "érvényes)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Ha a fájlokat a tárolásra használja:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FILE\tPEM fájl a privát kulcshoz\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FILE\tPEM fájl az aláíráshoz (csak a -k opcióval érvényes)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Ha a kulcsok titkosításra kerülnek:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE\tfájl ami a titkosító PIN-t tartalmazza\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN értéke\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Opcionális paraméterek:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Aláírás ezeket a beállításokat kezeli:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAME\telnevezés amelyet hozzárendelhetünk az igényléshez\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g SIZE\taz előállítandó kulcs mérete ha egy már nem lenne a helyén\n" "\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tmegkísérlés a bizonyítvány megújítására ha a lejárati idÅ‘ közeledik " "(alapértelmezett)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tne kísérelje meg a bizonyítvány megújítását ha a lejárati idÅ‘ " "közeledik\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" " -c CA\t\tinkább alkalmazza a megadott CA mint az alapértelmezettet\n" "\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFILE\task CA számítás a kért felhasznált profil név vagy sablon\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Paraméterek az aláírási igényléshez:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAME \tigényelt tárgy nevének beállítása (alapértelmezett: " "CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\tigényelt kibÅ‘vített kulcs használatának beállítása OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u KEYUSAGE\tbeállítja a kért kulcshasználati értéket\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "-K NAME\tigényelt elsÅ‘dleges név beállítása \n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "- D DNSNAME\tigényelt DNS név beállítása\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "-E MAIL \tigényelt email cím beállítása\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Adatcsatorna opciók:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "-S\t\tconnect certmonger szolgáltatásnál a rendszer buszon \n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "-s\t\tconnect certmonger szolgáltatásnál a szál vezérélésnél \n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Egyéb opciók:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "-B\tcommand futtatás elÅ‘tt a tanúsítványt menti \n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "-C\tcommand futtatás után a tanúsítványt menti \n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\tjelentse az összes hibarészletet\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Használata: %s nyomon követés [opciók]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Ha módosítanak egy létezÅ‘ kérést:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAME\tnickname of an existing tracking request\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Ha a kulcsok titkosítottak:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAME\telnevezés a nyomonkövetési kéréshez\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" "* Paraméterek az aláírási kéréshez megújításkor:\n" "\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTUSAGE\tfelülírja a kért kibÅ‘vített kulcs használat OID-jét\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" " -K NAME\tfelülírja a kért elsÅ‘dleges nevet\n" "\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAME\tfelülírja a kért DNS nevet\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" " -E EMAIL\tfelülírja a kért email címet\n" "\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Használata: %s stop-tracking [opciók]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Kérés azonosítója alapján:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAME\telnevezés a nyomonkövetési kéréshez\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Használata: %s újraküldése [opciók]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FILE\tPEM fájl az aláírásért\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Új paraméter értékek az aláírási kérelemhez:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAME\túj név megadása a nyomonkövetési kéréshez\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\talkalmazza a megadott CA-t jelenlegi helyett \n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Használata: %s listázása [opciók]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Ãltalános opciók:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\tcsak azokat a kéréseket és bizonytványokat listázza amelyek ezzel a " "CA-val vannak kapcsolatban\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tcsak a kiemelkedÅ‘ kérésekrÅ‘l szóló információkat listázza\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" " -t\tcsak a nyomonkövetett bizonytványok adatait listázza\n" "\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Ha kiválaszt egy specifikus igénylést:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR\tcsak olyan igényléseket és bizonyítványokat listáz amelyek ezt az " "NSS adatbázist használják\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAME\tcsak olyan igényléseket és bizonyítványokat listáz amelyek ezt az " "elnevezést használják\n" "\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FILE\tcsak olyan igényléseket és bizonyítványokat listáz amelyek " "tárolásra kerültek ebben a PEM fájlban\n" "\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tkapcsolja össze a certmonger szolgáltatást a rendszer bus-al\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" " -s\tkapcsolja össze a certmonger szolgáltatást a session bus-al\n" "\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Alkalmazás: %s list-cas [opciók]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" " -c CA\tcsak az ezzel a névvel rendelkezÅ‘ CA tanúsítvány információit " "listázza\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" "%s: ismeretlen parancs\n" "\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "A -t opció nem használható a _K opcióval együtt.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "A -k opció nem használható a -K opcióval együtt.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "A -K opció nem használható a -k vagy a -t opcióval sem.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Meghatározhatatlan az elsÅ‘dleges neve az aláírási igénylésnek.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s szálvezérlés használata\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" "\t-S rendszerbusz használata\n" "\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n művelet ne váljon daemonná\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f művelet váljon daemonná\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" "\t-b TIMEOUT busz-vezérelt, várakozási idÅ‘vel\n" "\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" "\t-B várakozási idÅ‘ elhagyása\n" "\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL hibakeresési szint beállítása (ez azt jelenti: -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" "\t-p FILE szolgáltatás PID rögzítése fájlba\n" "\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F eröltesse az NSS-t FIPS módba\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "BelsÅ‘ hiba történt." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Nincs egyezÅ‘ bejegyzés.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Már szerepel egy CA ezzel a névvel: \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Bizonyítvány tároló típusa nem definiált." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "\"%s\" típusú bizonyítványtároló enm támogatott." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "A hely \"%s\" abszolút elérési útnak kell lennie." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Bizonyítványok tárolási helye nincs meghatározva." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "\"%s\" szülÅ‘ könyvtárnak létezÅ‘ mappának kell lennie." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "\"%s\" egy fájlnak kell lennie." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "\"%s\" egy könyvtárnak kell lennie." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Bizonyítvány elnevezése nincs definiálva." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Már van egy igénylés ezzel a névvel: \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Tanúsítvány ugyanazt a helyet használja amit a becenévnél igényelt \"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "\"%s\" kulcstároló típus nem támogatott." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Kulcstároló helye nem definiált." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Kulcs elnevezés nem meghatározott." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "Kulcs ugyanazt a helyet használja amit a becenévnél igényelt \"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "Nincs ilyen CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "\"%s\" nevű tanúsítvány hatóság nem ismert." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Ismeretlen paraméter, vagy rossz értéktípus." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" "Elégtelen hozzáférési jog. Kérem ismételje meg a műveletet " "rendszergazdaként.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Kérem ellenÅ‘rizze, hogy a certmonger szolgáltatás már elindult.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "Kérem ellenÅ‘rizze, hogy a certmonger szolgáltatás még mindig fut.\n" certmonger-0.78.6/po/hr_HR.po0000664000175000017500000012660412645513276012710 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Croatian (Croatia) (http://www.transifex.com/projects/p/" "fedora/language/hr_HR/)\n" "Language: hr_HR\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/hr.po0000664000175000017500000012657012645513276012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Croatian (http://www.transifex.com/projects/p/certmonger/" "language/hr/)\n" "Language: hr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/hi.po0000664000175000017500000012645212645513276012307 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Hindi (http://www.transifex.com/projects/p/certmonger/" "language/hi/)\n" "Language: hi\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/he.po0000664000175000017500000012645312645513276012304 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Hebrew (http://www.transifex.com/projects/p/certmonger/" "language/he/)\n" "Language: he\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/gu.po0000664000175000017500000013177012645513276012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # sweta , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Gujarati (http://www.transifex.com/projects/p/certmonger/" "language/gu/)\n" "Language: gu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "CA નાં યજમાનનામને નકà«àª•à«€ કરવાનà«àª‚ અસમરà«àª¥.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "XMLRPC માટે સà«àª¯à«‹àªœàª¿àª¤ કરતી વખતે ભૂલ.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "સરà«àªµàª° ભૂલ.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "મહેરબાની કરીને ખાતરી કરો કે સંદેશા બસ (D-Bus) સેવા ચાલી રહી છે.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "ભૂલ %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "ભૂલ %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "ભૂલ: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "નામ \"%s\" સાથે CA મળà«àª¯à« નથી.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tસà«àª¥àª¿àª¤àª¿: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tવિષય: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "અજà«àªžàª¾àª¤" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tઇમેલ: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tટà«àª°à«‡àª•: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "જરૂરી દલીલો:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN કિંમત\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "વૈકલà«àªªàª¿àª• દલીલો:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* બસ વિકલà«àªªà«‹:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Usage: %s list [options]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* સામાનà«àª¯ વિકલà«àªªà«‹:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "આંતરિક ભૂલ ઉદà«àª­àªµà«€." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "પà«àª°àª®àª¾àª£àªªàª¤à«àª° સંગà«àª°àª¹ પà«àª°àª•àª¾àª° સà«àªªàª·à«àªŸ થયેલ નથી." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "પà«àª°àª®àª¾àª£àªªàª¤à«àª° સંગà«àª°àª¹ પà«àª°àª•àª¾àª° \"%s\" આધારભૂત નથી." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "પà«àª°àª®àª¾àª£àªªàª¤à«àª° સંગà«àª°àª¹ સà«àª¥àª¾àª¨ સà«àªªàª·à«àªŸ થયેલ નથી." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "સà«àª¥àª¾àª¨ \"%s\" ફાઇલ હોવી જ જોઇàª." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "સà«àª¥àª¾àª¨ \"%s\" ડિરેકà«àªŸàª°à«€ હોવી જ જોઇàª." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "પà«àª°àª®àª¾àª£àªªàª¤à«àª° ઉપનામ સà«àªªàª·à«àªŸ થયેલ નથી." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "કી સંગà«àª°àª¹ પà«àª°àª•àª¾àª° \"%s\" આધારભૂત નથી." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "કી સંગà«àª°àª¹ સà«àª¥àª¾àª¨ સà«àªªàª·à«àªŸ થયેલ નથી." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "કી ઉપનામ સà«àªªàª·à«àªŸ થયેલ નથી." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/gl.po0000664000175000017500000012645512645513276012314 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Galician (http://www.transifex.com/projects/p/certmonger/" "language/gl/)\n" "Language: gl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ga.po0000664000175000017500000012652312645513276012275 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Irish (http://www.transifex.com/projects/p/certmonger/" "language/ga/)\n" "Language: ga\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=5; plural=(n==1 ? 0 : n==2 ? 1 : n<7 ? 2 : n<11 ? 3 : " "4);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/fr.po0000664000175000017500000015654112645513276012320 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # dominique bribanick , 2012 # Gé Baylard , 2014 # Jérôme Fenal , 2012-2014 # Joël Beaudoin , 2011 # Kévin Raymond , 2012 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: French (http://www.transifex.com/projects/p/certmonger/" "language/fr/)\n" "Language: fr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" "Impossible de déterminer le nom d'hôte de l'autorité de certification.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Impossible de lire la signature de la demande.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Erreur lors de la configuration de XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Erreur d'analyse de la réponse du serveur.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Erreur du serveur.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Mémoire saturée.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" "Aucune URL d'agent spécifiée (-A), et aucune valeur par défaut connue.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "Renouvellement demandé, mais numéro de série manquant.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" "Aucune URL d'entité finale spécifiée (-E), et aucune valeur par défaut " "connue.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" "Aucune URL d'agent spécifiée (-A), et aucune valeur par défaut connue.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" "Aucune profil ou patron spécifié (-T), et aucune valeur par défaut connue.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "Erreur lors de l'arrêt de NSS.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Erreur interne : état inconnu.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Erreur %d lors de la connexion à %s : %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Erreur %d lors de la connexion à %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Erreur interne : pas de réponse à « %s?%s ».\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "Le chemin « %s » n'est pas absolu, tentative d'utilisation de « %s » à la " "place.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Le chemin d'accès « %s » n'est pas absolu, et il y a une erreur pour " "déterminer le nom du répertoire courant.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "Chemin « %s » : permissions insuffisantes.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Le chemin « %s » n'est pas un répertoire.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Chemin « %s » : %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Le chemin « %s » n'est pas un fichier régulier.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" "Veuillez vérifier que le service bus de messages (D-Bus) est en cours " "d'exécution.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Erreur de création du message de demande de DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Erreur %s : %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Erreur %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Erreur : %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Un message d'erreur a été reçu du service local %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Pas de réponse du service %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "État %s, bloqué : %s.\n" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Erreur lors de l'initialisation de la bibliothèque Kerberos : %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Absence de prise en charge de la création de clés « %s ».\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Les types de clés connus incluent :" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Utilisation de la clé « %s » inconnue.\\n\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Impossible d'évaluer OID « %s ».\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Erreur lors de l'analyse du nom principal Kerberos « %s » : %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" "Erreur lors de la récupération du nom principal Kerberos « %s » : %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s : valeur invalide -- '%s'\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s : cette option requiert un argument -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s : -- '%c' est une option invalide\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Erreur : l'argument supplémentaire « %s » est inutilisé.\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Erreur : des arguments supplémentaires inutilisés ont été fournis.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" "Un élément est manquant entre le nom de la base de données ou son nom.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" "Le répertoire de la base de données et le fichier de certificat ont été " "spécifiés.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Aucun répertoire de base de données, nom ou fichier de certificat n'ont été " "spécifiés.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" "Les clés et les certificats ne peuvent être tous les deux enregistrés dans " "le même répertoire.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "Le backend IPA requiert l'utilisation de l'option -K (nom principal) si " "l'option -N (nom d'objet) est utilisée.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Pas d'autorité de certification avec le nom « %s » trouvé.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Erreur de paramétrage des arguments.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Nouvelle demande de signature de « %s » ajoutée.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "La nouvelle demande de signature n'a pas pu être ajoutée.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Nouvelle demande de suivi « %s » ajoutée.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "La nouvelle demande de suivi n'a pas pu être ajoutée.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Aucun ID ou répertoire de base de données ni de nom ou fichier de certificat " "spécifié.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Demande « %s » modifiée.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "La demande « %s » ne peux être modifiée.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Aucune demande trouvée avec le nom spécifié.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Aucune demande ne correspond aux arguments.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Demande « %s » suprimée.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Demande « %s » n'a pas pu être enlevée.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Erreur lors de la modification de « %s ».\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Nouvelle soumission de « %s » à « %s ».\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Nouvelle soumission de « %s ».\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Erreur en tentant de soumettre « %s » à « %s ».\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Erreur en tentant de soumettre « %s ».\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Le numéro des certificats et les demandes qui seront suivis : %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID de la demande « %s » :\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tétat : %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\terreur-ac : %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tbloqué : %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tpaire de clés de stockage : modèle = « %s »" #: src/getcert.c:3504 msgid "NONE" msgstr "Aucun" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ", emplacement = « %s »" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ", nom = « %s »" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ", jeton = « %s »" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ", fichier pin = « %s »" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tcertificat : modèle = « %s », emplacement = « %s »" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tAutorité de certification : %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\témetteur : %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tsujet : %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\texpiration : %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "inconnu" #: src/getcert.c:3577 msgid "\temail: " msgstr "\te-mail : " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns : " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tnom principal : " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tAdresse IP : " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tusage de la clé : %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku : " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "\tcertificats racine enregistrés sur fichiers :\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "\tautres certificats racine enregistrés sur fichiers :\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "\tautres certificats enregistrés sur fichiers :\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "\tcertificats racine enregistrés sur bases de données :\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "\tautres certificats racine enregistrés sur bases de données :\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "\tautres certificats enregistrés sur bases de données :\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tcommande de pré-sauvegarde : %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tcommande de post-sauvegarde : %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tchemin : %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-renouvellement : %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "Autorité de certification « %s » :\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "\tauto-identification en tant que : %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\ttype-ac : %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\templacement-de-l'-aide : %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tprochain-numéros-de-série : %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tnoms-des-problèmes-identifiés :\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "\tprofils/modèles/types de certificats connus :\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "\tprofils/modèles/types de certificats par défaut : %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "\terreur lors du rafraîchissement des données du CA\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - outil d'inscription du certificat client\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Utilisation : %s request [options]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Arguments requis :\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Si vous utilisez une base de données NSS pour le stockage :\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d RÉPERTOIRES\tNSS base de données pour les clés et certificats\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NOM\tsurnom pour le stockage NSS-base (valide uniquement avec -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NOM\tnom de jeton optionel pour le stockage NSS-base (valide uniquement " "avec -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Si vous utilisez des fichiers de stockage :\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FICHIER\tPEM fichier pour une clé privée\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FICHIER\tPEM fichier du certificat (valide uniquement avec -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Si les clés sont à chiffrer :\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FICHIER\tfichier qui contient le code PIN de chiffrement\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tvaleur PIN\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Arguments optionnels :\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Paramètres de gestion du certificat :\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NOM\tnom à attribuer à la demande\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr " -G TYPE\ttype de la clé à créer si aucune n'existe déjà\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g TAILLE\ttaille de la clé à générer si elle n'est pas déjà en place\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\ttente de renouveler le certificat lorsque l'expiration approche (par " "défaut)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tne pas tenter de renouveler le certificat lorsque l'expiration " "approche\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" " -c AC\t\tutiliser l'autorité de certification spécifié, plutôt que celui " "par défaut\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFIL\tinterroger le CA pour traiter la requête en utilisant le profil " "nommé ou le modèle\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Paramètres de la requête de signature :\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NOM\tdéfinit le nom du sujet demandé (par défaut: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\tdéfinit l'étendu de l'utilisation d'une clé OID demandé\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u USAGECLÉ\tconfigure la valeur requise d'usage de la clé\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NOM\tdéfinit le nom principal demandé\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D NOMDNS\tdéfinit le nom DNS demandé\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL\tdéfinit l'adresse e-mail demandé\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr " -A ADRESSE\tdéfinit l'adresse IP demandée\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Options du Bus :\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tconnecte le service certmonger sur le bus système\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tconnecte le service certmonger sur le bus de session\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Autres options :\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tcommande à lancer avant de sauvegarder le certificat\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tcommande à lancer après avoir sauvegardé le certificat\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr " -F\tfichier de stockage des certificats de CA\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr " -a\tbase de données NSS d'enregistrement des certificats de CA\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\trapporte tous les détails des erreurs\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Utilisation : %s start-tracking [options]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Si vous modifiez une requête existante :\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NOM\tnom d'une demande de suivi existante\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Si les clés sont chiffrées :\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NOM\tnom à donner à la demande de suivi\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" "* Paramètres de la requête de signature au moment du renouvellement :\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\toutrepasse la requête d'utilisation d'une clé OID étendue\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NOM\toutrepasse le nom principal demandé\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D NOMDNS\toutrepasse le nom DNS demandé\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL\toutrepasse l'adresse e-mail demandée\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr " -A ADRESSE\toutrepasse l'adresse IP demandée\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Utilisation : %s stop-tracking [options]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* En identifiant la demande :\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NOM\tnom pour suivre la demande\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Utilisation : %s resubmit [options]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FICHIER\tfichier PEM pour le certificat\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Nouvelle valeur du paramètre pour la demande de signature :\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NOM\tnouveau nom à donner à la demande de suivi\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" " -c AC\t\tutilise l'autorité de certification spécifié plutôt que l'actuel\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Utilisation : %s list [options]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Options générales :\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c AC\tliste seulement les requêtes et les certificats associés à une " "autorité de certification\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tliste seulement l'information des demandes en attente\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tliste seulement l'information des certificats suivis\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Si vous sélectionnez une requête spécifique : \n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR\tn'afficher que les requêtes et certificats utilisant cette base de " "données NSS\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAME\tn'afficher que les requêtes et certificats utilisant ce pseudo\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FILE\tn'afficher que les requêtes et certificats stockés dans ce " "fichier PEM\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tconnecte le service certmonger sur le bus système\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tconnecte le service certmonger sur le bus de session\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "Utilisation : %s status [options]\n" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Utilisation : %s list-cas [options]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" " -c AC\tliste seulement les informations à propos de l'autorité de " "certification avec ce nom\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "Utilisation : %s refresh-ca [options]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr " -c CA\trafraîchir l'information du CA de ce nom\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s : commande inconnue\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "Impossible de déterminer l'emplacement du serveur LDAP IPA.\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" "Impossible de déterminer le DN de base des informations de domaine sur le " "serveur IPA.\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "Erreur lors de la configuration de XMLRPC sur le client.\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "L'option -t ne peut pas être utilisée avec l'option -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "L'option -k ne peut pas être utilisée avec l'option -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "L'option -K ne peut pas être utilisée avec les options -k ni -t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" "Impossible de déterminer le nom principal pour la signature demandée.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "Erreur de mise en place du ccache pour le service « hôte » sur le client " "utilisant le jeu declés par défaut : %s.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "Erreur de mise en place du ccache pour « %s » sur le client en utilisant le " "jeu de clés par défaut : %s.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "Erreur de mise en place du ccache pour le service « hôte » en utilisant le " "jeu de clés « %s » : %s.\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "Erreur de mise en place du ccache pour « %s » sur le client en utilisant le " "jeu de clés « %s » : %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s utiliser le bus de la session\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S utiliser le bus du système\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n ne pas se transformer en démon\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f devenir un démon\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b délai d'attente du bus activé, durée d'inactivité\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B ne pas utiliser un délai d'inactivité\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d NIVEAU définir le niveau de débogage (nécessite -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FICHIER écrire le PID du service dans un fichier\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F impose le mode FIPS à NSS\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Une erreur interne s'est produite." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Aucune correspondance trouvées.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Il existe déjà une autorité de certification avec le nom « %s »." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Type de stockage de certificat non spécifié." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Le type de certificat « %s » n'est pas pris en charge." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "L'emplacement « %s » doit être un chemin absolu." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Emplacement de stockage de certificat non spécifié." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "L'emplacement parent de « %s » n'est pas accessible du fait de permissions " "insuffisantes." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "L'emplacement principal « %s » doit être un répertoire valide." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "L'emplacement « %s » doit être un fichier." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" "L'emplacement « %s » n'est pas accessible du fait de permissions " "insuffisantes." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "L'emplacement « %s » doit être un répertoire." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Nom du certificat non spécifié." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Il existe déjà une demande avec le nom « %s »." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "Le certificat est déjà utilisé par une requête avec le nom « %s »." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Stockage de clés de type « %s » n'est pas pris en charge." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Emplacement de stockage de clé non spécifié." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nom de la clé non spécifié." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "La clé est déjà utilisé par une requête avec le nom « %s »." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Absence de prise en charge des clés de type « %s »." #: src/tdbush.c:1400 msgid "No such CA." msgstr "Aucune autorité de certification." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "L'autorité de certification « %s » non connue." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Paramètre inconnu ou type de valeur incorrecte." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "Erreur lors de l'analyse des arguments." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Nom de propriété inconnu." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" "Accès insuffisant. Merci de recommencer l'opération en tant que root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Merci de vérifier que le service certmonger a été démarré.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" "Merci de vérifier que le service certmonger est en cours d'exécution.\n" "\n" certmonger-0.78.6/po/fi.po0000664000175000017500000012645412645513276012307 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Finnish (http://www.transifex.com/projects/p/certmonger/" "language/fi/)\n" "Language: fi\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/fa_IR.po0000664000175000017500000012645612645513276012673 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Persian (Iran) (http://www.transifex.com/projects/p/fedora/" "language/fa_IR/)\n" "Language: fa_IR\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/fa.po0000664000175000017500000012644512645513276012277 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Persian (http://www.transifex.com/projects/p/certmonger/" "language/fa/)\n" "Language: fa\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/eu_ES.po0000664000175000017500000012646512645513276012713 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Basque (Spain) (http://www.transifex.com/projects/p/fedora/" "language/eu_ES/)\n" "Language: eu_ES\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/eu.po0000664000175000017500000012705512645513276012320 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Asier Iturralde Sarasola , 2012 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Basque (http://www.transifex.com/projects/p/certmonger/" "language/eu/)\n" "Language: eu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Zerbitzariaren errorea.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Errorea %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Errorea %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Errorea: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "ezezaguna" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Beharrezko argumentuak:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Hautazko argumentuak:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Beste aukerak:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Aukera orokorrak:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/et.po0000664000175000017500000012645512645513276012322 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Estonian (http://www.transifex.com/projects/p/certmonger/" "language/et/)\n" "Language: et\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/es_ES.po0000664000175000017500000012646612645513276012712 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Spanish (Spain) (http://www.transifex.com/projects/p/fedora/" "language/es_ES/)\n" "Language: es_ES\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/es.po0000664000175000017500000016064612645513276012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Claudio Rodrigo Pereyra Diaz , 2011, 2012 # Daniel Cabrera , 2011 # beckerde , 2011 # vareli , 2013 # Gerardo Rosales , 2014 # Gladys Guerrero , 2012 # Daniel Cabrera , 2011 # Henderb Rodriguez , 2014 # Hernan Gabriel Alvarez Guerra , 2014 # Nalin Dahyabhai , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Spanish (http://www.transifex.com/projects/p/certmonger/" "language/es/)\n" "Language: es\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "No es posible determinar el nombre del equipo de CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "No es posible leer la petición de identificación.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Error al definir XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Error analizando la respuesta del servidor.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Error de servidor.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Falta memoria.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" "Sin URL agente (-A) dada, y no hay conocido por defecto\n" "\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "Se solicitó renovación, pero no se indicó númerio de serie.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "Sin URL de entidad final (-E) dada, y no hay conocida por defecto\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" "Sin URL agente (-A) dada, y no hay conocido por defecto\n" "\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Sin pérfil/plantilla (-T) dado, y no hay conocido por defecto\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "Error al apagar NSS\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Error interno: estado desconocido.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Error %d conectando a %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Error %d conectando a %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Error interno: no hay respuesta para \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "La dirección \"%s\" no es absoluta, intentando usar \"%s\" en su lugar.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "La ruta \"%s\" no es absoluta, y hubo un error al determinar el nombre del " "directorio actual.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "Ruta \"%s\": permisos insuficientes.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "La dirección \"%s\" no es un directorio.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Ruta \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "La dirección \"%s\" no es un archivo común.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "Ningún bus del sistema se está ejecutando.\n" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "Ejecutando como UID 0.\n" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "Iniciando temporalmente un demonio de servicio dedicado.\n" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "Error conectándose a D-Bus.\n" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" "Por favor verifique que el servicio de bus de mensajes (D-Bus) se encuentre " "funcionando.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Error creando mensaje de petición DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Error %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Error %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Error: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Se ha recibido una respuesta de erro desde el servicio %s local.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "No se ha recibido una respuesta desde el servicio %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "Estado %s, pendiente: %s.\n" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Erro al inicializar la biblioteca Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Sin soporte para generar las llaves \"%s\"\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Los tipos de llaves conocidos incluyen:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "keyUsage \"%s\" no reconocido.\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "No se pudo evaluar OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Error analizando el nombre \"%s\"del principal de Kerberos: %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" "Error al dejar de analizar el nombre \"%s\" del principal de Kerberos: %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s: valor inválido -- '%s'\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: opción requiere un argumento -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: opción no valida -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Error: argumento extra no utilizado \"%s\".\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Error: se enviaron argumentos extra no usados.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" "La ubicación de la base de datos, o el apodo, han sido indicados el uno sin " "el otro.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" "Han sido especificados el directorio de la base de datos y el archivo de " "certificado.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "No han sido especificados ni el directorio de la base de datos, ni el apodo " "del archivo de certificado.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" "La llave y el certificado no pueden ambos ser guardados en un mismo " "archivo.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "El motor de IPA necesita la utilización de la opción -K (el nombre del " "principal) cuando se esté utilizando la opción -N (el nombre del asunto).\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "No se ha encontrado un CA con el nombre \"%s\".\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Error al definir los argumentos de la petición.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Ha sido agregada una nueva petición \"%s\" de identificación.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Ha se ha podido agregar la nueva petición de identificación.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Nueva solicitud de seguimiento \"%s\" agregada.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Nueva solicitud de seguimiento no puede ser agregada.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "No se ha especificado ningún ID, o directorio de base de datos y apodo, o " "archivo de certificado.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Solicitud \"%s\" modificada.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Solicitud \"%s\" no puede ser modificada.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "No han sido halladas peticiones con el alias indicado.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "No se encontraron solicitudes que coincidan con los argumentos.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Solicitud \"%s\" eliminada.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "La solicitud \"%s\" no pudo ser eliminada.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Error modificando \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Reenviando \"%s\" to \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Reenviando \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Error intentando enviar \"%s\" hacia \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Error intentando enviar \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "Petición de ID '%s' se está refrescando.\n" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "Petición de ID '%s' NO se está refrescando.\n" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" "Cantidad de peticiones y certificados que están siendo rastrados: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID de solicitud '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\testado: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tca-error: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tstuck: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" "»par de clave " "almacenada: tipo=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "NINGUNO" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",ubicación='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",usuario='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",archivopin='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" "»certificado: tipo=%s," "ubicación='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\tgenerador: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tasunto: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\texpira: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "desconocido" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tcorreo electrónico: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tnombre del principal: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "⇥Dirección IP:" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" "\tutilización de clave: %s\n" "\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "⇥certificados raíz guardados en un archivo:\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "⇥otros certificados raíz guardados en un archivo:\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "⇥otros certificados guardados en un archivo:\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "⇥certificados raíz guardados en la base de datos:\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "⇥otros certificados raíz guardados en la base de datos:\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "⇥otros certificados guardados en la base de datos:\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tcomando de almacenado previo: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tcomando de almacenado posterior: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\ttrack: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto renovación: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "auto-identificado como: %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\ttipo de tca: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tubicación del asistente: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tnúmero de serie siguiente: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tnombres de generadores conocidos:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "known profiles/templates/certtypes:\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "default profile/template/certtype: %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "Ningún apodo CA y ningúna bandera -a especificada.\n" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "Datos para CA '%s' se están refrescando.\n" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "Datos para CA innombrados están refrescándose.\n" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "error refrescando los datos CA\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s . herramienta de inscripción de certificado de cliente\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Utilización: petición %s [opciones]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Argumentos requeridos:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" "* si se está utilizando para el almacenamiento una base de datos NSS:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tbase de datos NSS para la llave y el certificado\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NAME\tapodo para el almacenamiento basado en NSS (sólo valido con -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAME\tnombre opcional de la ficha para el almacenamiento basado en NSS " "(sólo valido con -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* si se están utilizando archivos para el almacenamiento:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FILE\tarchivoPEM para la llave privada\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FILE\tarchivo PEM para el certificado (sólo válido con -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* si la llaves serán cifradas:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE\tarchivo que contiene el PIN de cifrado\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tvalor del PIN\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Argumentos opcionales:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Configuración de la manipulación del certificado:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAME\tapodo a ser asignado a la petición\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" "-G TYPE⇥tipo de llave a ser generada si no hay alguna en su lugar\n" "\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g SIZE\ttamaño de la llave a ser generada si aún no existe ninguna\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tintento de renovación del certificado cuando el momento de " "expiración esté próximo (predeterminado)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tno intentar renovar el certificado cuando el momento de expiración " "esté próximo\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tutilizar el CA indicado en lugar del predeterminado\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFILE\tpide a CA el proceso de la solicitud utilizando el perfil o el " "modelo invocado\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parámetros para la petición de identificación:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAME\tdefine el nombre del asunto solicitado (predeterminado: " "CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\tdefine la utilización OID de la extensión de la llave " "solicitada\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" " -u KEYUSAGE\tfijado el valor de utilzación de clave pedido\n" "\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAME\tdefine el nombre del principal solicitado\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAME\tdefine el nombre DNS solicitado\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL\tdefine la dirección de correo electrónico solicitada\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr " -A ADDRESS⇥define la dirección IP solicitada\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Opciones de Bus:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tconectar al servicio certmonger en el bus del sistema\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tconectar al servicio certmonger en el bus de sesión\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Otras opciones:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tcomando a ejecutar antes de guardar el certificado\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tcomando a ejecutar luego de guardar el certificado\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "-F archivo en el cual almacenar los certificados CA\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "-a base de datos en la cual almacenar los certificados CA\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "-w intenta esperar que los certificados sean emitidos\n" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" " -v»informar todos " "los detalles de errores\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Utilización: %s iniciar seguimiento [opciones]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Si se está modificando una petición existente:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAME\tnombre de apodo de una petición de seguimiento existente\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Si las llaves se encuentran cifradas:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAME\tapodo a darle a la petición de seguimiento\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" "* Parámetros para la solicitud de firma en el momento de la renovación:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\treemplazar la utilización de llave extendida OID solicitada\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAME\treemplazar el nombre principal solicitado\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAME\treemplazar el nombre DNS solicitado\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL\treemplazar la dirección de correo electrónico solicitada\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr " -A ADDRESS⇥remplazar la dirección IP solicitada\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Utilziación: %s detener seguimiento [opciones]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Por identificador de petición:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAME\tapodo de la petición de seguimiento\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Utilización: %s volver a enviar [opciones]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FILE\tarchivo PEM del certificado\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Nuevos valores de los parámetros de la petición de identificación:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAME\tnuevo apodo a darle a la petición de seguimiento\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\tutilizar el CA indicado en lugar del actual\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Utilización: %s lista [opciones]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Opciones generales:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\tlista sólo las peticiones y los certificados asociados con este CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tlista sólo la información acerca de peticiones destacadas\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tlista sólo información acerca de certificados en seguimiento\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Si selecciona un pedido específico:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR» sólo lista " "los pedidos y certificados que usa esta base de datos NSS\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NOMBRE»sólo lista " "los pedidos y certificados que usan este apodo\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f ARCHIVO »sólo " "lista los pedidos y certificados guardados en este archivo PEM\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tconectar con el servicio certmonger en el bus del sistema\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tconectar con el servicio certmonger en el bus de la sesión\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "Uso: %s refrescar [opciones]\n" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "Uso: %s estado [opciones]\n" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "* Seleccione una petición específica\n" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "* cuando se usa una base de datos NSS para almacenamiento\n" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" "-d DIR devuelve el estado para las peticiones en esta base de datos NSS\n" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "-n NOMBRE devuelve el estado para cert que usa este apodo\n" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "* cuando se usan archivos para almacenamiento:\n" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" "-f ARCHIVO devuelve el estado para cert almacenado en este archivo PEM\n" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Utilización: %s list-cas [opciones]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" " -c CA\tlista sólo la información de este nombre relacionada con el CA\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "Uso: %s refresh-ca [opciones]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "-c CA refresca la información acerca de los CA con este nombre\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: comando no reconocido\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "No es posible determinar la ubicación del servidor IPA LDAP\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" "No es posible determinar la base DN de el dominio de en el servidor IPA\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "Error configurando para XMLRPC en el cliente\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "La opción -t no puede ser utilizada junto con la opción -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "La opción -k no puede ser utilizada junto con la opción -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" "La opción -K no puede ser utilizada junto con la opción -k, ni con la opción " "-t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" "No es posible determinar el nombre del principal para la petición de " "identificación.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "Error definiendo ccache para el servicio del \"equipo\" utilizando el keytab " "predeterminado: %s.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "Error definiendo ccache para \"%s\" en el cliente utilizando el keytab " "predeterminado: %s.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "Error definiendo ccache para el servicio del \"equipo\" en el cliente " "utilizando el keytab \"%s\": %s\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "Error definiendo ccache para \"%s\" en el cliente utilizando el keytab \"%s" "\": %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s usar session bus\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S usar system bus\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n no se convierta en demonio\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f conviértase en demonio\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT bus-activated, tiempo de inactividad \n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B no usar un tiempo de inactividad \n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL establecer nivel de depuración (implica -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FILE escribir servicio PID al archivo \n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" "\t-F forzar NSS en modo FIPS\n" "\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Ha ocurrido un error interno." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "No se ha encontrado una entrada coincidente.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Ya existe un CA con el apodo \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "No ha sido especificado el tipo de certificado de almacenamiento." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" "No existe soporte para el tipo \"%s\" de certificado de almacenamiento." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "La ubicación \"%s\" debe ser una ruta absoluta." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "No ha sido indicada una ubicación del certificado de almacenamiento." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "El padre de la ubicación \"%s\" no pudo ser accesado debido a permisos " "insuficientes." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "El paterno de la ubicación \"%s\" debe ser un directorio válido." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "La ubicación \"%s\" debe ser un archivo." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" "La ubicación \"%s\" no pudo ser accesada debido a permisos insuficientes." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "La ubicación \"%s\" debe ser un directorio." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "No ha sido especificado un apodo de certificado." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Ya existe una petición con el apodo \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Un certificado en la misma ubicación ya está siendo utilizado por la " "petición hecha con el alias \"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "No existe soporte para el tipo \"%s\" de llave de almacenamiento." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "No ha sido especificada una ubicación de la llave." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "No ha sido especificado un apodo de llave." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Una llave en la misma ubicación ya está siendo utilizada por la petición " "hecha con el alias \"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Sin soporte para tipo de llave %s\"." #: src/tdbush.c:1400 msgid "No such CA." msgstr "No existe el CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "No se conoce la autoridad \"%s\" del certifiicado. " #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Parámetro irreconocible o tipo de valor erróneo." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "Error analizando argumentos." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Nombre de propiedad no reconocido." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "Acceso insuficiente. Por favor reintente la operanción como root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Por favor verifique que el servicio certmonger ha sido arrancado.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" "Por favor verifique que el servicio certmonger está todavía corriendo.\n" certmonger-0.78.6/po/eo.po0000664000175000017500000012645612645513276012316 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Esperanto (http://www.transifex.com/projects/p/certmonger/" "language/eo/)\n" "Language: eo\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/en_GB.po0000664000175000017500000012650312645513276012656 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/" "certmonger/language/en_GB/)\n" "Language: en_GB\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/el.po0000664000175000017500000012645212645513276012307 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Greek (http://www.transifex.com/projects/p/certmonger/" "language/el/)\n" "Language: el\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/dz.po0000664000175000017500000012644612645513276012327 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Dzongkha (http://www.transifex.com/projects/p/certmonger/" "language/dz/)\n" "Language: dz\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/de_CH.po0000664000175000017500000012647712645513276012660 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: German (Switzerland) (http://www.transifex.com/projects/p/" "certmonger/language/de_CH/)\n" "Language: de_CH\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/de.po0000664000175000017500000015114112645513276012270 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Fabian Affolter , 2014 # hpeters , 2012 # Mario Blättermann , 2011 # Nalin Dahyabhai , 2011 # Roman Spirgi , 2012-2013 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: German (http://www.transifex.com/projects/p/certmonger/" "language/de/)\n" "Language: de\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" "Rechnername der Zertifizierungsstelle (CA) konnte nicht ermittelt werden.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Signaturanfrage konnte nicht gelesen werden.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Fehler beim Einrichten von XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Fehler beim Abfragen der Serverantwort.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Server-Fehler.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Ungenügend Speicher.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "Keine Agent-URL (-T) angegeben, Standarwert nicht gesetzt.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "Keine End-Entity-URL (-T) angegeben, Standarwert nicht gesetzt.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "Keine Agent-URL (-T) angegeben, Standarwert nicht gesetzt.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "Kein Profil/ Vorlage (-T) angegeben, Standarwert nicht gesetzt.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Interner Fehler: Unbekannter Status.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "%d-Fehler beim Verbinden zu %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Fehler %d connecting to %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Interner Fehler: Keine Antwort an \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "Pfad »%s« ist nicht absolut, versuche stattdessen »%s« zu verwenden.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Pfad »%s« ist nicht absolut. Außerdem trat beim Ermitteln des Namens des " "aktuellen Ordners ein Fehler auf.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Pfad »%s« ist kein Verzeichnis.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Pfad »%s«: %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Pfad »%s« ist keine reguläre Datei.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Bitte überprüfen Sie, ob der D-Bus-Dienst läuft.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Fehler beim Erstellen der D-Bus-Anfragemeldung.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Fehler %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Fehler %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Fehler: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Fehlermeldung erhalten vom lokalen Dienst %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Keine Antwort vom %s-Dienst erhalten.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Fehler bei der Initialisierung der Kerberos-Bibliothek: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Unbekannte SchlüsselBenutzung »%s«.\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "OID »%s« konnte nicht ermittelt werden.\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Fehler beim Parsen des Principal-Namens »%s« für Kerberos: %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Fehler beim Unparsen des Principal-Namens »%s« für Kerberos: %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: Option erfordert einen Parameter -- »%c«\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: ungültige Option -- »%c«\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Fehler: unbenötigter, zusätzlicher Parameter »%s«.\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Fehler: unbenötigte, zusätzliche Parameter wurden angegeben.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Ort der Datenbank oder Kurzname allein angegeben.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" "Sowohl Datenbankordner als auch Zertifikatdatei wurden nicht angegeben.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Weder Datenbankordner noch Kurzname oder Zertifikatdatei wurden angegeben.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" "Schlüssel und Zertifikat können nicht in der gleichen Datei gespeichert " "werden.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "Das IPA-Backend benötigt die Option -K (Name des Principals), wenn die " "Option -N (Name des Subjekts) verwendet wird.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Keine Zertifizierungsstelle mit dem Namen »%s« gefunden.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Fehler beim Setzen der Anfrageparameter.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Neue Signaturanfrage »%s« wurde hinzugefügt.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Neue Signaturanfrage konnte nicht hinzugefügt werden.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Neue Ãœberwachungsanfrage »%s« wurde hinzugefügt.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Neue Ãœberwachungsanfrage konnte nicht hinzugefügt werden.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Kennung, Datenbankordner, Kurzname und Zertifikatdatei nicht angegeben.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Anfrage »%s« wurde geändert.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Anfrage »%s« konnte nicht geändert werden.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Keine Anfrage mit angegebenem Kurznamen gefunden.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Keine mit den Parametern übereinstimmende Anfrage gefunden.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Anfrage »%s« wurde entfernt.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Anfrage »%s« konnte nicht entfernt werden.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Fehler beim Bearbeiten von »%s«.\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "»%s« erneut an »%s« übertragen.\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "»%s« erneut übertragen.\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Fehler beim Versuch, »%s« an »%s« zu übertragen.\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Fehler beim Versuch, »%s« zu übertragen.\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Anzahl der Zertifikate und überwachten Anfragen: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Anfragekennung »%s«:\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tStatus: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tCA-Fehler: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tstecken geblieben: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\tSchlüsselpaar-Speicher: Typ=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "NICHTS" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",Ort=»%s«" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",Kurzname=»%s«" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",Token=»%s«" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",PIN-Datei=»%s«" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tZertifikat: Typ=%s, Ort=»%s«" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\tAusgabestelle: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tSubjekt: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\tAblauf: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "unbekannt" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tE-Mail: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tDNS: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tPrincipal-Name: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" "Schlüsselbenutzung: %s\n" "\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\tEKU: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "»Befehl vor dem Speichern: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "»Befehl nach dem Speichern: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tTrack: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tAuto-Erneuern: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA »%s«:\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tCA-Typ: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tHelper-Speicherort: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tNächste Seriennummer: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tBekannte Ausstellernamen:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - Tool z. Client-Zertifikatanmeldung\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Aufruf: %s request [Optionen]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Benötigte Parameter:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Falls in einer NSS-Datenbank gespeichert wird:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tNSS-Datenbank für Schlüssel und Zertifikat\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr " -n NAME\tKurzname für NSS-basierte Speicherung (nur gültig mit -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAME\toptionaler Token-Name für NSS-basierte Speicherung (nur gültig " "mit -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Falls Dateien zum Speichern verwendet werden:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k DATEI\tPEM-Datei für geheimen Schlüssel\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f DATEI\tPEM-Datei für Zertifikat (nur gültig mit -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Falls Schlüssel verschlüsselt werden sollen:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p DATEI\tDatei, welche die Verschlüsselungs-PIN enthält\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN-Wert\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Optionale Parameter:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Einstellungen für Umgang mit Zertifikaten:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAME\tder Anfrage zuzuordnender Kurzname\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g GRÖSSE\tGröße des zu generierenden Schlüssels, falls noch keiner " "vorhanden ist\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tversuchen, kurz vor Ablauf das Zertifikat zu erneuern (Standard)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -r\t\tnicht versuchen, kurz vor Ablauf das Zertifikat zu erneuern " "(Standard)\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" " -c CA\tAngegebene Zertifizierungsstelle statt der aktuellen verwenden\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFILE\tAnfrage an CA, um den Antrag unter Verwendung des benannten " "Profils oder der Vorlage auszuführen\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parameter für die Signaturanfrage:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAME\tAngefragten Subjektnamen festlegen (Standard: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\tAngefragte OID für erweiterte Schlüsselverwendung festlegen\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" " -u SCHLÃœSSELNUTZUNG\tGewünschter Wert für SchlüsselBenutzung setzen\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAME\tAngefragten Principal-Namen festlegen\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAME\tAngefragten DNS-Namen festlegen\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL\tAngefragte E-Mail-Adresse festlegen\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Busoptionen:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tmit dem Certmonger-Dienst über den Systembus verbinden\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -S\t\tmit dem Certmonger-Dienst über den Sitzungsbus verbinden\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Weitere Optionen:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B»Auszuführender Befehl vor dem Speichern des Zertifikats\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tAuszuführender Befehl nach dem Speichern des Zertifikats\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\tAlle Fehlerdetails ausgeben\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Aufruf: %s start-tracking [Optionen]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Falls eine existierende Anfrage geändert wird:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAME\tKurzname für existierende Ãœberwachungsanfrage\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Falls Schlüssel verschlüsselt sind:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAME\tNeuer Kurzname für die Ãœberwachungsanfrage\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parameter für die Signaturanfrage zum Zeitpunkt der Erneuerung:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" " -U EXTUSAGE\tAngefragte OID für erweiterte Schlüsselverwendung " "überschreiben\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAME\tangefragten Principal-Name überschreiben\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAME\tangefragten DNS-Namen überschreiben\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E EMAIL\tangefragte E-Mail-Adresse überschreiben\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Aufruf: %s stop-tracking [Optionen]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Nach Anfrage-Kennung:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAME\tKurzname für Ãœberwachungsanfrage\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Aufruf: %s resubmit [Optionen]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f DATEI\tPEM-Datei des Zertifikats\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Neue Parameterwerte für die Signaturanfrage:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAME\tNeuer Kurzname für die Ãœberwachungsanfrage\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" " -c CA\t\tAngegebene Zertifizierungsstelle statt der aktuellen verwenden\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Aufruf: %s list [Optionen]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Allgemeine Optionen:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\tNur die dieser Zertifizierungsstelle zugeordneten Anfragen und " "Zertifikate auflisten\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tNur Informationen zu offenen Anfragen auflisten\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tNur Informationen zu überwachten Zertifikaten auflisten\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Falls bestimmte Anfrage ausgewählt wird:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d VERZ\tnur Anfragen und Zertifikate auflisten, die diese NSS-Datenbank " "nutzen\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAME\tnur Anfragen und Zertifikate auflisten, die diesen Kurznamen " "nutzen\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f DATEI\tnur Anfragen und Zertifikate auflisten, die in dieser PEM-Datei " "gespeichert sind\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tmit dem Certmonger-Dienst über den Systembus verbinden\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -S\tmit dem Certmonger-Dienst über den Sitzungsbus verbinden\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Aufruf: %s list-cas [Optionen]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" " -c CA\tNr Informationen zu Zertifizierungsstellen dieses Namens auflisten\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: Unbekannter Befehl.\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" "Die -t Option kann nicht zusammen mit der -K Option verwendet werden.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" "Die -k Option kann nicht zusammen mit der -K Option verwendet werden.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" "Die -K Option kann weder mit der -k noch der -t Option verwendet werden.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Principal-Name für Signaturanfrage konnte nicht ermittelt werden.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s Sitzungs-Bus verwenden\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S System-Bus verwenden\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n nicht als Dämon ausführen\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f als Dämon ausführen\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT bus-aktiviert, Timeout der Leerlaufzeit\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B kein Timeout der Leerlaufzeit verwenden\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL Debugging-Stufen setzen (impliziert -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FILE Dienst-PID in Datei schreiben\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F NSS in FIPS-Modus ausführen\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Ein interner Fehler ist aufgetreten." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Kein passender Eintrag gefunden.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Es gibt bereits ein Zertifikat mit dem Kurznamen »%s«." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Speichertyp des Zertifikats wurde nicht angegeben." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Speichertyp »%s« des Zertifikats wird nicht unterstützt." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "Der Ort »%s« muss ein absoluter Pfad sein." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Speicherort für Zertifikat ist nicht angegeben." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "Ãœbergeordnete Ebene des Ortes »%s« muss ein gültiger Ordner sein." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "Der Ort »%s« muss eine Datei sein." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "Der Ort »%s« muss ein Ordner sein." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Kurzname des Zertifikats nicht angegeben." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Es gibt bereits eine Anfrage mit dem Kurznamen »%s«." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Zertifikat am gleichen Speicherort wird bereits von Anfrage mit Kurznamen " "»%s« verwendet." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Speichertyp »%s« für Schlüssel nicht unterstützt." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Speicherort des Schlüssels wurde nicht angegeben." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Kurzname des Schlüssels nicht angegeben." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "Schlüssel am gleichen Speicherort wird bereits von Anfrage mit Kurznamen " "»%s« verwendet." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "Keine solche Zertifizierungsstelle." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Zertifizierungsstelle »%s« ist unbekannt." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Nicht erkannter Parameter oder falscher Werttyp." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" "Unzureichende Berechtigung. Bitte führen Sie die Aktion als Root aus.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Bitte überprüfen Sie, ob der Certmonger-Dienst gestartet wurde.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" "Bitte vergewissern Sie sich, dass der Certmonger-Dienst immer noch läuft.\n" certmonger-0.78.6/po/da.po0000664000175000017500000014360312645513276012270 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Kris Thomsen , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 05:00-0500\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Danish (http://www.transifex.com/projects/p/certmonger/" "language/da/)\n" "Language: da\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Kunne ikke bestemme værtsnavnet af CA.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Kunne ikke læse signeringsforespørgsel.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Fejl under opsætning af XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Fejl under fortolkning af serversvar.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Serverfejl.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Løbet tør for hukommelse.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "Stien \"%s\" er ikke absolut, forsøger at bruge \"%s\" istedet.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "Stien \"%s\" er ikke absolut, og der opstod en fejl under bestemmelse af " "navnet pÃ¥ den nuværende mappe.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "Stien \"%s\" er ikke en mappe.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "Stien \"%s\" er ikke en almindelig fil.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "Kontrollér at tjenesten for beskedbussen (D-Bus) kører.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Fejl under oprettelse af forespørgselsbesked for DBus.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Fejl %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Fejl %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Fejl: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Modtog fejlrespons fra lokal tjeneste %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Intet svar modtaget fra tjenesten %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Fejl under initialisering af Kerberos-biblioteket: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Kunne ikke evaluere OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Kunne ikke fortolke hovednavn for Kerberos \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Kunne ikke aftolke hovednavn for Kerberos \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Fejl: ubrugte ekstra-argumenter blev angivet.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "Databaseplacering eller kaldenavn angivet uden den anden.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Databasemappe og certifikatfil er begge angivet.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "Ingen databasemappe og kaldenavn eller certifikat-fil angivet.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "Nøgle og certifikat kan ikke blive gemt i den samme fil.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "IPA-motoren kræver brug af tilvalget -K (hovednavn), nÃ¥r tilvalget -N " "(emnenavn) er brugt.\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Ingen CA med navnet \"%s\" fundet.\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Fejl under indstilling af forespørgselsargumenter.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Ny signeringsforespørgsel \"%s\" tilføjet.\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Ny signeringsforespørgsel kunne ikke tilføjes.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Ny sporingsforespørgsel \"%s\" tilføjet.\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Ny sporingsforespørgsel kunne ikke tilføjes.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Intet ID eller databasemappe og -kaldenavn eller certifikatfil angivet.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Forspørgsel \"%s\" ændret.\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Forespørgsel \"%s\" kunne ikke ændres.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Ingen forespørgsel fundet, som matchede argumenter.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Forespørgsel \"%s\" fjernet.\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Forespørgsel \"%s\" kunne ikke fjernes.\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Fejl under ændring af \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Gensender \"%s\" til \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Gensender \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Fejl under forsøg pÃ¥ sending \"%s\" til \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Fejl under forsøg pÃ¥ sending \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Antallet af certifikater og forespørgsler som spores: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Forespørgsels-id \"%s\":\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\tstatus: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\tca-fejl: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tsat fast: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" "»lagring for nøglepar: " "type=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "INGEN" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",placering='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",kaldenavn='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",symbol='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",pinfil='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" "»certifikat: type=%s," "placering='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tCA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\tudsteder: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\temne: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\tudløber: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "ukendt" #: src/getcert.c:3577 msgid "\temail: " msgstr "\te-post: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\thovednavn: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tspor: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-forny: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA \"%s\":\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tca-type: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\thjælperplacering: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tnæste serienummer: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tkendte udstedernavne:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - udrulningsværktøj for klientcertifikat\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Brug: %s forespørgsel [tilvalg]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "PÃ¥krævede argumenter:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Hvis der bruges en NSS-database til lagring:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d MAPPE\tNSS-database for nøgle og certifikat\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr " -n NAVN\tkaldenavn for NSS-baseret lagring (kun gyldig med -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAVN\tvalgfri symbolnavn til NSS-baseret lagring (kun gyldig med -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Hvis filer bruges til lagring:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FIL\tPEM-fil til privat nøgle\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FIL\tPEM-fil til certifikat (kun gyldig med -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Hvis nøgler skal krypteres:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FIL\tfilen som indeholder krypterings-PIN\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tPIN-værdi\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Valgfri argumenter:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Indstillinger for certifikathÃ¥ndtering:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAVN\tkaldenavn at tillægge forespørgslen\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g STØRRELSE\tstørrelsen pÃ¥ nøglen som skal genereres hvis der ikke " "allerede findes en\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tforsøg at forny certifikatet nÃ¥r udløbsdatoen er nær (standard)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr " -R\t\tforsøg ikke at forny certifikatet nÃ¥r udløbsdatoen er nær\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA\t\tbrug den angivne CA i stedet for standarden\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Parametre til signeringsforespørgsel:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr " -N NAVN\tangiv forespurgt emnenavn (standard: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTBRUG\tangiv forespurgt udvidet nøglebrug OID\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAVN\tangiv forespurgt hovednavn\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAVN\tangiv forespurgt DNS-navn\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E E-POST\tangiv forespurgt e-post-adresse\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Busindstillinger:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tforbind til certmonger-tjenesten i systembussen\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tforbind til certmonger-tjenesten i sessionsbussen\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Andre tilvalg:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" " -v»rapportér alle " "deltaljer om fejl\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Brug: %s start-sporing [tilvalg]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Hvis en eksisterende forespørgsel redigeres:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAVN\tkaldenavn for eksisterende fulgt forespørgsel\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Hvis nøgler er krypteret:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NAVN\tkaldenavn at give til fulgt forespørgsel\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Parametre til signeringsforespørgsel ved fornyelsestidspunkt:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTBRUG\toverskriv forespurgt udvidet nøglebrug OID\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAVN\toverskriv forespurgt hovednavn\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAVN\toverskriv forespurgt DNS-navn\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E E-POST\toverskriv forespurgt e-post-adresse\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Brug: %s stop-sporing [tilvalg]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Efter forespørgselsidentifikator:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAVN\tkaldenavn for fulgt forespørgsel\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Brug: %s resubmit [tilvalg]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FIL\tPEM-fil til certifikat\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Nye parameterværdier til signering af forespørgsel:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NAVN\tnyt kaldenavn at give til fulgt forespørgsel\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA\t\tbrug den angivne CA i stedet for den nuværende\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Brug %s list [tilvalg]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Generelle tilvalg:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA\tvis kun forespørgsler og certifikater forbundet med denne CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\tvis kun information om specielle forespørgsler\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\tvis kun information om fulgte certifikater\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Hvis en specifik forespørgsel vælges:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d MAPPE»oplister " "kun forespørgsler og certs som bruger denne NSS-database\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAVN»oplister kun " "forespørgsler og certs som bruger dette kaldenavn\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FIL»oplister kun " "forespørgsler og certs, som er gemt i denne PEM-fil\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tforbind til tjenesten certmonger i systembussen\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tforbind til tjenesten certmonger i sessionsbussen\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Brug: %s vis-cas [tilvalg]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA\tvis kun information om CA'et med dette navn\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: ukendt kommando\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Kunne ikke bestemme hovednavn for signeringsforespørgsel.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Der opstod en intern fejl." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Intet matchende element fundet.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Der er allerede en CA med kaldenavnet \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Certifikatslagringstype er ikke angivet." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Certifikatslagringstype \"%s\" er ikke understøttet." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "Placeringen \"%s\" skal være en absolut sti." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "Certifikatslagringsplacering er ikke angivet." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "Placeringen over \"%s\" skal være en gyldig mappe." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "Placeringen \"%s\" skal være en fil." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "Placeringen \"%s\" skal være en mappe." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "Certifikatkaldenavn ikke angivet." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Der er allerede en forespørgsel med kaldenavnet \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Nøglelagringstype \"%s\" er ikke understøttet." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "Nøglelagringsplacering er ikke angivet." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "Nøglekaldenavn er ikke angivet." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "Ingen sÃ¥dan CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Certifikatsautoritet \"%s\" er ikke kendt." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Ikke opdaget parameter eller forkert værditype." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/cy.po0000664000175000017500000012653212645513276012321 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Welsh (http://www.transifex.com/projects/p/certmonger/" "language/cy/)\n" "Language: cy\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=(n==1) ? 0 : (n==2) ? 1 : (n != 8 && n != " "11) ? 2 : 3;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/cs_CZ.po0000664000175000017500000012742112645513276012705 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Milan Kerslager , 2011 msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Czech (Czech Republic) (http://www.transifex.com/projects/p/" "fedora/language/cs_CZ/)\n" "Language: cs_CZ\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Chyba pÅ™i pasování odpovÄ›di serveru.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Chyba serveru.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, fuzzy, c-format msgid "Error connecting to D-Bus.\n" msgstr "Chyba pÅ™i pÅ™ipojování k D-Bus.\n" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Chyba %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Chyba %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Chyba: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "»vyprší: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "neznámý" #: src/getcert.c:3577 msgid "\temail: " msgstr "»email: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "»dns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 #, fuzzy msgid "Error parsing arguments." msgstr "Chyba pÅ™i pasování odpovÄ›di serveru.\n" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/cs.po0000664000175000017500000012650512645513276012313 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Czech (http://www.transifex.com/projects/p/certmonger/" "language/cs/)\n" "Language: cs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ca.po0000664000175000017500000017676412645513276012305 00000000000000# Robert Antoni Buj Gelonch , 2015. #zanata msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2015-05-14 04:58-0400\n" "Last-Translator: Robert Antoni Buj Gelonch \n" "Language-Team: Catalan\n" "Language: ca\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Zanata 3.6.2\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "No es pot determinar el nom d'amfitrió de l'AC.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "No es pot llegir la sol·licitud de signatura.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "S'ha produït un error en preparar-se per a l'XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" "S'ha produït un error en analitzar sintàcticament la resposta del servidor.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Error del servidor.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" "Els paràmetres del perfil (-O) han de tenir la forma paràmetre=valor.\n" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "Sense memòria.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" "Els paràmetres de l'enviament (-o) tan de tenir la forma paràmetre=valor.\n" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" "No s'han especificat les credencials de l'agent, i no n'hi ha cap de conegut " "per defecte.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" "Es va sol·licitar una renovació, però no es va proporcionar cap número de " "sèrie.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" "No s'ha indicat cap URL de l'entitat final (-E), i no n'hi ha cap de " "coneguda per defecte.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" "No s'ha indicat cap URL de l'agent (-A), i no n'hi ha cap de conegut per " "defecte.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" "No s'ha indicat cap perfil/plantilla (-T), i no n'hi ha cap de conegut per " "defecte.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "S'ha produït un error en aturar NSS.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "S'ha produït un error intern: estat desconegut.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" "No s'han especificat les credencials de l'agent (-n) però són necessàries.\n" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "S'ha produït l'error %d en connectar-se a %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "S'ha produït l'error %d en connectar-se a %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "S'ha produït un error intern: sense resposta a \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "ORDRE" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "DIRECTORI" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "LLISTA" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "ADREÇA" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "NOMFITXER" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "NOMAMFITRIÓ" #: src/getcert.c:67 msgid "ID" msgstr "ID." #: src/getcert.c:69 msgid "BITS" msgstr "BITS" #: src/getcert.c:71 msgid "MODE" msgstr "MODE" #: src/getcert.c:72 msgid "NAME" msgstr "NOM" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "PRINCIPAL" #: src/getcert.c:74 msgid "SUBJECT" msgstr "ASSUMPTE" #: src/getcert.c:75 msgid "URL" msgstr "URL" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "NOMUSUARI[:NOMGRUP]" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" "El camí \"%s\" no és absolut, s'està intentant d'utilitzar \"%s\" en lloc " "seu.\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "El camí \"%s\" no és absolut i a més d’això hi va haver un error en " "determinar el nom del directori actual.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "Camí \"%s\": permisos insuficients.\n" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "El camí \"%s\" no és un directori.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Camí \"%s\": %s.\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "El camí \"%s\" no és un fitxer regular.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "No hi ha cap bus de sistema executant-se.\n" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "S'està executant com a UID 0.\n" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "S'està llançant el dimoni de servei dedicat temporal.\n" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "S'ha produït un error en connectar amb D-Bus.\n" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" "Si us plau, comproveu que s'estigui executant el servei del bus de missatges " "(D-Bus).\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "S'ha produït un error en crear el missatge de sol·licitud DBUS.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Error %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Error %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Error: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "S'ha rebut una resposta d'error del servei local %s.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "No s'ha rebut cap resposta del servei %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "Estat %s, branca: %s.\n" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "base de dades NSS per a la clau i el certificat" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" "sobrenom per a l'emmagatzematge basat en NSS (tan sols és vàlid amb -d)" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" "nom de mostra opcional per a l'emmagatzematge basat amb NSS (tan sols és " "vàlid amb -d)" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "fitxer PEM per a la clau privada" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "fitxer PEM per al certificat (tan sols és vàlid amb -k)" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "fitxer que té el PIN de xifratge de la clau privada" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "PIN de xifratge de la clau privada" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "informació del propietari per a la clau privada" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "permisos del fitxer per a la clau privada" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "informació del propietari per al certificat" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "permisos del fitxer per al certificat" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "base de dades NSS en el qual s'emmagatzemen els certificats de l'AC" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "fitxer en el qual s'emmagatzemen els certificats de l'AC" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "ordre a executar abans de desar el certificat" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "ordre a executar després de desar el certificat" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "sobrenom a assignar a la sol·licitud" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "tipus de clau que es generarà si no n'hi ha ja cap al seu lloc" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "mida de clau que es generarà si no n'hi ha ja cap al seu lloc" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" "intenta de renovar el certificat quan s'apropi el venciment (per defecte)" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "no intentis de renovar el certificat quan s'apropi el venciment" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" "utilitza la configuració especificada de l'AC en lloc de la predeterminada" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" "pregunta a l'AC per processar la sol·licitud mitjançant el perfil o la " "plantilla amb nom" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" "estableix el nom del subjecte sol·licitat (per defecte: CN=)" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "estableix l'ús de la clau sol·licitat" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "estableix l'OID de l'ús estès de la clau sol·licitat" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "estableix el nom del principal sol·licitat" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "estableix el nom DNS sol·licitat" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "estableix l'adreça de correu electrònic sol·licitada" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "estableix l'adreça IP sol·licitada" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "fitxer que conté el valor de la contrasenya d'un repte opcional" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "valor de la contrasenya d'un repte opcional" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "prova d'esperar l'expedició del certificat" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "temps màxim d'espera per l'expedició del certificat" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "connecta al servei certmonger sobre el bus de la sessió" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "connecta al servei certmonger sobre el bus del sistema" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" "S'ha produït un error en inicialitzar la biblioteca del Kerberos: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "Sense suport per a la generació de les claus \"%s\".\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Els tipus de claus conegudes inclouen:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Ús de clau no reconegut \"%s\".\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "No es pot avaluar l'OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" "S'ha produït un error en analitzar sintàcticament el nom del principal de " "Kerberos \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" "S'ha produït un error en composar sintàcticament el nom del principal de " "Kerberos \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s: el valor no és vàlid -- '%s'\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: l'opció requereix un argument -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: l'opció no és vàlida -- '%c'\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "Error: argument extra \"%s\" sense utilitzar.\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Error: Es van subministrar arguments extra sense utilitzar.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" "La localització de la base de dades o el sobrenom s'ha especificat un sense " "l'altre.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" "S'han especificat ambdós, el directori de la base de dades i el fitxer del " "certificat.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "No s'ha especificat cap directori de la base de dades i sobrenom o cap " "fitxer de certificat.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "La clau i el certificat no poden desar-se ambdós al mateix fitxer.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "El motor IPA requereix l'ús de l'opció -K (nom del principal) quan " "s'utilitza l'opció -N (nom del subjecte).\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "No es va trobar cap AC amb el nom \"%s\".\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "S'ha produït un error en establir els arguments de la sol·licitud.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Es va afegir la nova sol·licitud de signatura \"%s\".\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "No es va poder afegir la nova sol·licitud de signatura.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Es va afegir la nova sol·licitud de seguiment \"%s\".\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "No es va poder afegir la nova sol·licitud de seguiment.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "fitxer PEM per a la clau privada (tan sols és vàlid amb -f)" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "fitxer PEM per al certificat" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "sobrenom d'una sol·licitud existent" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "sobrenom a donar a la sol·licitud de seguiment" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "reemplaça l'ús de la clau sol·licitat" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "reemplaça l'OID de l'ús estès de la clau sol·licitat" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "reemplaça el nom sol·licitat del principal" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "reemplaça el nom DNS sol·licitat" #: src/getcert.c:1774 msgid "override requested email address" msgstr "reemplaça l'adreça sol·licitada de correu electrònic" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "reemplaça l'adreça IP sol·licitada" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "No s'ha especificat cap Id. ni tampoc cap directori de la base de dades i el " "sobrenom o cap fitxer de certificat.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Es va modificar la sol·licitud \"%s\".\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "No es va poder modificar la sol·licitud \"%s.\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "No s'ha trobat cap sol·licitud amb el sobrenom indicat.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "No s'ha trobat cap sol·licitud que coincideixi amb els arguments.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Es va eliminar la sol·licitud \"%s\".\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "No es va poder eliminar la sol·licitud \"%s\".\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "sobrenom per a la sol·licitud de seguiment" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "nou sobrenom a donar a la sol·licitud de seguiment" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "tipus de la nova clau a generar" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "mida de la nova clau a generar" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "utilitza la configuració especificada de l'AC en lloc de l'actual" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "S'ha produït un error en modificar \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "S'està tornant a presentar \"%s\" a \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "S'està tornant a presentar \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "S'ha produït un error en intentar presentar \"%s\" a \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "S'ha produït un error en intentar presentar \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "refresca la informació sobre totes les sol·licituds pendents" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" "refresca la informació tan sols per a les sol·licituds mitjançant la " "configuració especificada de l'AC" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "L'Id. de la sol·licitud '%s' que s'està refrescant.\n" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "L'Id. de la sol·licitud '%s' que NO s'està refrescant.\n" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "tan sols llista la informació sobre les sol·licituds pendents" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "tan sols llista la informació sobre els certificats seguits" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" "tan sols llista les sol·licituds i els certificats que estiguin associats " "amb aquesta configuració de l'AC" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Número de certificats i de sol·licituds que s'estan seguint: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "Id. de la sol·licitud '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "\testat: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "\terror-ac: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "\tbranca: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "\temgatgatzematge parell clau: tipus=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "CAP" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",localització='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",sobrenom='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",mostra='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",fitxer-pin='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "\tcertificat: tipus=%s,localització='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "\tempremta de sol·licitud de signatura (MD5): %s\n" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "\tempremta de sol·licitud de signatura (SHA1): %s\n" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "\tAC: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "\temissor: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "\tsubjecte: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "\tvenç: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "desconegut" #: src/getcert.c:3577 msgid "\temail: " msgstr "\tcorreu electrònic: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "\tnom del principal: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tadreça IP: " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tús de la clau: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "\tplantilla de certificat/perfil: %s\n" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "\tels certificats arrel s'han desat als fitxers:\n" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "\tels altres certificats arrel s'han desat als fitxers:\n" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "\tels altres certificats s'han desat als fitxers:\n" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "\tels certificats arrel s'han desat a les bases de dades:\n" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "\tels altres certificats arrel s'han desat a les bases de dades:\n" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "\tels altres certificats s'han desat a les bases de dades:\n" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tordre abans de desar: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tordre després de desar: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\tpista: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-renova: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" "No s'ha especificat cap Id. ni tampoc cap directori de la base de dades i el " "sobrenom o cap fitxer de certificat.\n" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "llista tan sols la configuració de l'AC especificada" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "AC '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "\tauto-identifica com: %s\n" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\ttipus-ac: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\tlocalització-ajudant: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "\tsegüent número de sèrie: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "\tnoms d'emissors coneguts:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "\tperfil/plantilla/tipus-certificat coneguts:\n" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "\tperfil/plantilla/tipus-certificat per defecte: %s\n" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "\tIdentificador de l'AC SCEP: %s\n" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "\tEmpremta del certificat de l'AC SCEP (MD5): %s\n" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "\tEmpremta del certificat de l'AC SCEP (SHA1): %s\n" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "refresca la informació sobre la configuració de l'AC amb aquest nom" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "refresca la informació sobre les AC conegudes" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "No s'ha especificat ni el sobrenom de l'AC ni el marcador -a.\n" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "Les dades per a l'AC '%s' que s'estan refrescant.\n" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "Les dades per a l'AC sense nom que s'estan refrescant.\n" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "\ts'ha produït un error en refrescar les dades de l'AC\n" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "sobrenom a donar a la nova configuració de l'AC" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "ordre de l'ajudant a executar per comunicar-se amb l'AC" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "No s'ha especificat el sobrenom de l'AC,\n" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "No s'ha especificat l'ordre de l'ajudant de l'AC.\n" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "S'ha afegit la nova AC \"%s\".\n" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "No es va poder afegir la nova AC.\n" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "localització del servidor SCEP" #: src/getcert.c:4295 msgid "CA identifier" msgstr "Identificador de l'AC" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "fitxer que conté els certificats de l'AC" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "fitxer que conté els certificats de la RA" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "fitxer que conté els certificats a la cadena de certificació de la RA" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "no s'ha especificat la URL del servidor.\n" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "HTTPS requereix un certificat de l'AC.\n" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "S'ha produït un error en la construcció de la línia d'ordres.\n" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "S'ha produït un error en establir l'identificador de l'AC.\n" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "sobrenom de la configuració de l'AC" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "ordre actualitzada de l'ajudant a executar per comunicar-se amb l'AC" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "S'ha modificat l'AC\"%s\".\n" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "No es va poder modificar l'AC.\n" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "sobrenom de la configuració de l'AC a eliminar" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "S'ha eliminat l'AC \"%s\".\n" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "No es va poder eliminar l'AC.\n" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - eina d'inscripció de certificats de client\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Ús: %s request [opcions]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Arguments requerits:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Si s'utilitza una base de dades NSS per a l'emmagatzematge:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR\tbase de dades NSS per a la clau i el certificat\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NOM\tsobrenom per a l'emmagatzematge basat en NSS (tan sols és vàlid " "amb -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NOM\tnom de mostra opcional per a l'emmagatzematge basat amb NSS (tan " "sols és vàlid amb -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Si s'utilitzen fitxers per a l'emmagatzematge:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FITXER\tfitxer PEM per a la clau privada\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FITXER\tfitxer PEM per al certificat (tan sols és vàlid amb -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Si s'han de xifrar les claus:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE\tfitxer que conté el PIN de xifratge\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN\tvalor del PIN\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Arguments opcionals:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* Ajustos del tractament del certificat:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NOM\tsobrenom a assignar a la sol·licitud\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" " -G TIPUS\ttipus de clau que es generarà si encara no n'hi ha cap ja al seu " "lloc\n" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g MIDA\tmida de la clau que es generarà si encara no n'hi ha cap ja al " "seu lloc\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r\t\tintenta de renovar el certificat quan s'apropi el venciment (per " "defecte)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R\t\tno intentis de renovar el certificat quan s'apropi el venciment\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c AC\t\tutilitza l'AC especificada en lloc de la predeterminada\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PERFIL\tpregunta a l'AC per processar la sol·licitud mitjançant el " "perfil o la plantilla amb nom\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Paràmetres per a la sol·licitud de signatura:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NOM\testableix el nom del subjecte sol·licitat (per defecte: CN=)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U ÚSEXT\testableix l'OID de l'ús estès de la clau sol·licitat\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u ÚSCLAU\testableix l'ús de la clau sol·licitat\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NOM\testableix el nom del principal sol·licitat\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D NOMDNS\testableix el nom DNS sol·licitat\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E CORREU\testableix l'adreça de correu electrònic sol·licitada\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr " -A ADREÇA\testableix l'adreça IP sol·licitada\n" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr " -l FITXER\tfitxer que conté la contrasenya d'un repte opcional\n" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr " -L CONTRASENYA\tcontrasenya d'un repte opcional\n" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Opcions del bus:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr " -S\t\tconnecta al servei certmonger sobre el bus del sistema\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr " -s\t\tconnecta al servei certmonger sobre el bus de la sessió\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Altres opcions:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tordre a executar abans que es desi el certificat\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tordre a executar un cop es desi el certificat\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr " -F\tfitxer on s'emmagatzemen els certificats de l'AC\n" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr " -a\tbase de dades NSS on s'emmagatzemen els certificats de l'AC\n" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr " -w\tprova d'esperar l'expedició del certificat\n" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v\tinforma de tots els detalls dels errors\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Ús: %s start-tracking [opcions]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Si es modifica una sol·licitud existent:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NOM\tsobrenom d'una sol·licitud de seguiment existent\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Si les claus estan xifrades:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr " -I NOM\tsobrenom a donar a la sol·licitud de seguiment\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" "* Paràmetres per a la sol·licitud de signatura en el moment de la " "renovació:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U ÚSEXT\treemplaça l'OID de l'ús estès de la clau sol·licitat\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NOM\treemplaça el nom del principal sol·licitat\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D NOMDNS\treemplaça el nom DNS sol·licitat\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr " -E CORREU\treemplaça l'adreça de correu electrònic sol·licitada\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr " -A ADREÇA\treemplaça l'adreça IP sol·licitada\n" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Ús: %s stop-tracking [opcions]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* Per a l'identificador sol·licitat:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -I NOM\tsobrenom per seguir a la sol·licitud\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Ús: %s resubmit [opcions]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FITXER\tfitxer PEM per al certificat\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Nous valors dels paràmetres per a la sol·licitud de signatura:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr " -I NOM\tnou sobrenom a donar a la sol·licitud de seguiment\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c AC\t\tutilitza l'AC especificada en lloc de l'actual\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "Ús: %s rekey [opcions]\n" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr " -G TIPUS\ttipus de la nova clau a generar\n" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr " -g MIDA\tmida de la nova clau a generar\n" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Ús: %s list [opcions]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* Opcions generals:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c AC\ttan sols llista les sol·licituds i els certificats que estiguin " "associats amb aquesta AC\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r\ttan sols llista la informació sobre les sol·licituds pendents\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr " -t\ttan sols llista la informació sobre els certificats seguits\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Si es selecciona una sol·licitud específica:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR\ttan sols llista les sol·licituds i els certificats que utilitzin " "aquesta base de dades NSS\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NOM\ttan sols llista les sol·licituds i els certificats que utilitzin " "aquest sobrenom\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FITXER\ttan sols llista les sol·licituds i els certificats " "emmagatzemats en aquest fitxer PEM\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S\tconnecta al servei certmonger sobre el bus del sistema\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s\tconnecta al servei certmonger sobre el bus de la sessió\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "Ús: %s refresh [opcions]\n" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr " -a\trefresca la informació sobre totes les sol·licituds pendents\n" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "Ús: %s status [opcions]\n" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "* Selecció d'una sol·licitud específica:\n" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "* Quan s'utilitzi una base de dades NSS per a l'emmagatzematge:\n" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" " -d DIR\tretorna l'estat per a la sol·licitud en aquesta base de dades NSS\n" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" " -n NOM\tretorna l'estat del certificat que utilitzi aquest sobrenom\n" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "* Quan s'utilitzin fitxers per a l'emmagatzematge:\n" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" " -f FITXER\tretorna l'estat per al certificat emmagatzemat en aquest fitxer " "PEM\n" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Ús: %s list-cas [opcions]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c AC\ttan sols llista la informació sobre l'AC amb aquest nom\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "Ús: %s refresh-ca [opcions]\n" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr " -c AC\trefresca la informació sobre l'AC amb aquest nom\n" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr " -a\trefresca la informació sobre totes les AC conegudes\n" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "Ús: %s add-ca [opcions]\n" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr " -c AC\t\tsobrenom a donar a la nova configuració de l'AC\n" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr " -e ORDRE\tordre de l'ajudant a executar per comunicar-se amb l'AC\n" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "Ús: %s add-scep-ca [opcions]\n" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr " -u URL\tlocalització del servidor SCEP\n" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr " -i ID\t\tidentificador de l'AC\n" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr " -R FITXER\tfitxer que conté el certificat de l'AC\n" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr " -r FITXER\tfitxer que conté el certificat de la RA\n" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" " -I FITXER\tfitxer que conté els certificats a la cadena de certificació de " "la RA\n" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "Ús: %s modify-ca [opcions]\n" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr " -c AC\t\tsobrenom de la configuració de l'AC\n" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" " -e ORDRE\tordre de l'ajudant actualitzat a executar per comunicar-se amb " "l'AC\n" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "Ús: %s remove-ca [opcions]\n" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr " -c AC\tsobrenom de la configuració de l'AC a eliminar\n" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "Ús: %s ordre [opcions]\n" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "sol·licita un nou certificat des d'una AC\n" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "comença la monitorització d'un certificat ja expedit\n" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "atura la monitorització d'un certificat\n" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" "tornar a presentar una sol·licitud d'inscripció en curs, o n'inicia un de " "nova\n" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "genera una nova clau privada i substitueix un certificat\n" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "comprova l'estat d'una sol·licitud d'inscripció en curs\n" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "llista els certificats que s'estan monitoritzant i sol·licitant\n" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" "comprova l'estat d'un certificat que s'està monitoritzant o sol·licitant\n" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "afegeix la configuració d'una AC\n" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "afegeix la configuració d'una AC SCEP\n" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "llista les configuracions de les AC conegudes\n" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "modifica la configuració d'una AC\n" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "refresca la memòria cau de tota la informació obtinguda d'una AC\n" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "elimina la configuració d'una AC\n" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: no s'ha reconegut l'ordre\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "No es pot determinar la localització del servidor LDAP IPA.\n" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "No es pot contactar amb el servidor LDAP IPA.\n" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" "No es pot determinar el DN base de la informació de domini sobre el servidor " "IPA.\n" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "S'ha produït un error en preparar-se per a l'XMLRPC sobre el client.\n" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "L'opció -t no pot utilitzar-se amb l'opció -K.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "L'opció -k no pot utilitzar-se amb l'opció -K.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "L'opció -K no pot utilitzar-se amb l'opció -k ni amb l'opció -t.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" "No es pot determinar el nom del principal per a la sol·licitud de " "signatura.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "No hi ha cap domini IPA configurat i no se n'ha especificat cap.\n" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" "S'ha produït un error en preparar ccache per al servei \"host\" al client " "mitjançant la taula de claus predeterminada: %s.\n" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" "S'ha produït un error en preparar ccache per a \"%s\" al client mitjançant " "la taula de claus predeterminada: %s.\n" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" "S'ha produït un error en preparar ccache per al servei \"host\" al client " "mitjançant la taula de claus \"%s\": %s.\n" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" "S'ha produït un error en preparar ccache per a \"%s\" al client mitjançant " "la taula de claus \"%s\": %s.\n" #: src/main.c:74 msgid "use session bus" msgstr "utilitza el bus de la sessió" #: src/main.c:75 msgid "use system bus" msgstr "utilitza el bus del sistema" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "inicia un socket dedicat a escoltar" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "tan sols utilitza el socket dedicat a escoltar" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "especifica el socket dedicat a escoltar" #: src/main.c:78 msgid "PATHNAME" msgstr "NOMCAMÃ" #: src/main.c:79 msgid "don't become a daemon" msgstr "no te converteixis en un dimoni" #: src/main.c:80 msgid "do become a daemon" msgstr "converteix-te en un dimoni" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "activat per bus, temps d'expiració d'inactivitat" #: src/main.c:81 msgid "SECONDS" msgstr "SEGONS" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "no utilitzis un temps d'expiració d'inactivitat" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "estableix el nivell de depuració (implica -n)" #: src/main.c:83 msgid "NUMBER" msgstr "NÚMERO" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "inicia l'ORDRE i surt quan ho faci" #: src/main.c:87 msgid "write service PID to file" msgstr "escriu el PID del servei al fitxer" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "força NSS al mode FIPS" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s utilitza el bus de la sessió\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S utilitza el bus del sistema\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "\t-l inicia un socket dedicat a escoltar\n" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "\t-L tan sols utilitza el socket dedicat a escoltar\n" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "\t-P CAMà especifica el socket dedicat a escoltar\n" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n no et converteixis en un dimoni\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f converteix-te en un dimoni\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT activat per bus, temps d'expiració d'inactivitat\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B no utilitzis un temps d'expiració d'inactivitat\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d NIVELL estableix el nivell d depuració (implica -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "\t-c ORDRE inicia l'ORDRE i surt quan també ho faci l'ordre.\n" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FITXER escriu el PID del servei al fitxer\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "\t-F força NSS al mode FIPS\n" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "S'ha produït un error intern." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "No s'han trobat cap entrada que coincideixi.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Ja hi ha una AC amb el sobrenom \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "No s'ha especificat el tipus d'emmagatzematge de certificat," #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "El tipus d'emmagatzematge de certificat \"%s\" no està suportat." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "La localització \"%s\" ha de ser un camí absolut." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" "No s'ha especificat la localització de l'emmagatzematge del certificat." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" "No es pot accedir a la localització pare \"%s\" a causa de permisos " "insuficients." #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "El pare de la localització \"%s\" ha de ser un directori vàlid." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "La localització \"%s\" ha de ser un fitxer." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" "No es pot accedir a la localització \"%s\" a causa de permisos insuficients." #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "La localització \"%s\" ha de ser un directori." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "No s'ha especificat el sobrenom del certificat." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Ja hi ha una sol·licitud amb el sobrenom \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "El certificat a la mateixa localització ja està utilitzat per la sol·licitud " "amb sobrenom \"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "El tipus d'emmagatzematge de clau \"%s\" no està suportat." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "No s'ha especificat la localització de l'emmagatzematge de la clau." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "No s'ha especificat el sobrenom de la clau." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" "La clau a la mateixa localització ja està utilitzada per la sol·licitud amb " "sobrenom \"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "Sense suport per al tipus de clau \"%s\"." #: src/tdbush.c:1400 msgid "No such CA." msgstr "No existeix l'AC." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "Autoritat de certificació \"%s\" no coneguda." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Paràmetre no reconegut o tipus de valor erroni." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "S'ha produït un error en analitzar sintàcticament els arguments." #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "Nom de propietat no reconeguda." #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "Accés insuficient. Si us plau, torneu a repetir-ho com a root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "Si us plau, verifiqueu que s'hagi iniciat el servei certmonger.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" "Si us plau, verifiqueu que encara s'estigui executant el servei certmonger.\n" certmonger-0.78.6/po/bs.po0000664000175000017500000012657112645513276012315 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Bosnian (http://www.transifex.com/projects/p/certmonger/" "language/bs/)\n" "Language: bs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/brx.po0000664000175000017500000012645312645513276012503 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Bodo (http://www.transifex.com/projects/p/certmonger/language/" "brx/)\n" "Language: brx\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/br.po0000664000175000017500000012645212645513275012311 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Breton (http://www.transifex.com/projects/p/certmonger/" "language/br/)\n" "Language: br\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/bo.po0000664000175000017500000012644512645513275012310 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Tibetan (http://www.transifex.com/projects/p/certmonger/" "language/bo/)\n" "Language: bo\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/bn_IN.po0000664000175000017500000012647212645513275012675 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Bengali (India) (http://www.transifex.com/projects/p/" "certmonger/language/bn_IN/)\n" "Language: bn_IN\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/bn.po0000664000175000017500000012645412645513275012307 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Bengali (http://www.transifex.com/projects/p/certmonger/" "language/bn/)\n" "Language: bn\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/bg.po0000664000175000017500000016363712645513275012304 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: # Boris Yakimov , 2012 # Valentin Laskov , 2011-2013 # Valentin Laskov , 2015. #zanata msgid "" msgstr "" "Project-Id-Version: certmonger 0.78\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2015-04-14 04:13-0400\n" "Last-Translator: Valentin Laskov \n" "Language-Team: Bulgarian (http://www.transifex.com/projects/p/certmonger/" "language/bg/)\n" "Language: bg\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Zanata 3.6.2\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "Ðе може да Ñе определи името на CA хоÑта.\n" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "Ðе може да Ñе прочете заÑвката за подпиÑване.\n" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "Грешка при подготовка за XMLRPC.\n" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "Грешка при анализ отговора от Ñървъра.\n" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "Сървърна грешка.\n" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "ÐедоÑтиг на памет.\n" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, fuzzy, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "ÐÑма зададен agent URL (-A), а нÑма и такъв по подразбиране.\n" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "ПоиÑкано е обновÑване, но не е зададен Ñериен номер.\n" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "ÐÑма зададен end-entity URL (-E), а нÑма и такъв по подразбиране.\n" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "ÐÑма зададен agent URL (-A), а нÑма и такъв по подразбиране.\n" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "ÐÑма зададен profile/template (-T), а нÑма и такъв по подразбиране.\n" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "Грешка при изключването на NSS.\n" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "Вътрешна грешка: непознато ÑÑŠÑтоÑние.\n" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "Грешка %d при Ñвързване към %s: %s.\n" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "Грешка %d при Ñвързване към %s.\n" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "Вътрешна грешка: нÑма отговор до \"%s?%s\".\n" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "ПътÑÑ‚ \"%s\" не е абÑолютен, вмеÑто него, пробвам \"%s\".\n" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" "ПътÑÑ‚ \"%s\" не е абÑолютен и Ñе получи грешка при определÑне името на " "текущата директориÑ.\n" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "ПътÑÑ‚ \"%s\" не е директориÑ.\n" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "Път \"%s\": %s.âŽ\n" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "ПътÑÑ‚ \"%s\" не е обикновен файл.\n" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "Грешка при Ñвързването към D-Bus.\n" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "МолÑ, проверете дали уÑлугата за ÑÑŠÐ¾Ð±Ñ‰ÐµÐ½Ð¸Ñ (D-Bus) работи.\n" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "Грешка при Ñъздаване на DBus Ñъобщение-заÑвка.\n" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "Грешка %s: %s\n" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "Грешка %s\n" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "Грешка: %s\n" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "Получен е отговор за грешка от локална %s уÑлуга.\n" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "Ðе е получен отговор от уÑлугата %s.\n" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "Грешка при инициализиране на Kerberos библиотеката: %s.\n" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "ЛипÑва поддръжка за генериране на \"%s\" ключове.\n" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "Познатите типове ключове включват:" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "Ðеразпознат keyUsage \"%s\".\n" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "Ðе може да Ñе преÑметне OID \"%s\".\n" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "Грешка при разбора на главното име на Kerberos \"%s\": %s.\n" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "Грешка при ÑглобÑването на главното име на Kerberos \"%s\": %s.\n" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "%s: невалидна ÑтойноÑÑ‚ -- '%s'\n" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "%s: опциÑта изиÑква аргумент -- '%c'\n" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "%s: грешна Ð¾Ð¿Ñ†Ð¸Ñ -- '%c'âŽ\n" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" "Грешка: неизползван допълнителен аргумент \"%s\".âŽ\n" "\n" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "Грешка: бÑха предоÑтавени неизползвани допълнителни аргументи.\n" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" "МеÑтоположение на базата данни или пÑевдоним е определено без другото.\n" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "Определени Ñа и Ð´Ð¸Ñ€ÐµÐºÑ‚Ð¾Ñ€Ð¸Ñ Ð½Ð° базата данни, и файл ÑÑŠÑ Ñертификата.\n" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" "Ðикое от Ð´Ð¸Ñ€ÐµÐºÑ‚Ð¾Ñ€Ð¸Ñ Ð½Ð° базата данни и пÑевдоним, или файл ÑÑŠÑ Ñертификат не " "е определено.\n" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" "Ðе може и ключът, и Ñертификатът, да бъдат запиÑани в един и Ñъщ файл.\n" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" "ЗадниÑÑ‚ Ñлой на IPA изиÑква използването на -K Ð¾Ð¿Ñ†Ð¸Ñ (главно име), когато -N " "опциÑта (име на обекта) Ñе използва.âŽ\n" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "Ðе е намерен CA Ñ Ð¸Ð¼Ðµ \"%s\".\n" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "Грешка при задаване аргументите на заÑвката.\n" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "Добавена е нова заÑвка за подпиÑване \"%s\".\n" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "Ðовата заÑвка за подпиÑване не можа да бъде добавена.\n" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "Беше добавена нова проÑледÑвана заÑвка \"%s\".\n" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "Ðе може да бъде добавена нова проÑледÑвана заÑвка.\n" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" "Ðикое от ID, или Ð´Ð¸Ñ€ÐµÐºÑ‚Ð¾Ñ€Ð¸Ñ Ð½Ð° базата данни и пÑевдоним, или файл ÑÑŠÑ " "Ñертификат не е определено.\n" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "Беше променена заÑвката \"%s\".\n" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "Ðе можа да бъде променена заÑвката \"%s\".\n" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "Ðе е намерено иÑкане за този пÑевдоним.\n" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "Ðе беше намерена заÑвка, отговарÑща на аргументите.\n" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "Беше премахната заÑвката \"%s\".\n" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "Ðе можа да бъде премахната заÑвката \"%s\".\n" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "Грешка при промÑна \"%s\".\n" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "Повторно изпращане на \"%s\" към \"%s\".\n" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "Повторно изпращане на \"%s\".\n" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "Грешка при опит за изпращане на \"%s\" към \"%s\".\n" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "Грешка при опит за изпращане на \"%s\".\n" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "ЗаÑвка ID '%s' Ñе обновÑва.\n" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "ЗаÑвка ID '%s' ÐЕ Ñе обновÑва.\n" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "Брой на проÑледÑваните Ñертификати и заÑвки: %d.\n" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "ID на заÑвка '%s':\n" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr " ÑÑŠÑтоÑние: %s\n" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr " CA-грешка: %s\n" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr " оÑтанал: %s\n" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr " хранилище на ключови двойки: тип=%s" #: src/getcert.c:3504 msgid "NONE" msgstr "ÐИЩО" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr ",меÑтоположение='%s'" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr ",пÑевдоним='%s'" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr ",token='%s'" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr ",пинфайл='%s'" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr " Ñертификат: тип=%s,меÑтоположение='%s'" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr " CA: %s\n" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr " издател: %s\n" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr " обект: %s\n" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr " изтича на: %s\n" #: src/getcert.c:3574 msgid "unknown" msgstr "непознат" #: src/getcert.c:3577 msgid "\temail: " msgstr "\temail: " #: src/getcert.c:3583 msgid "\tdns: " msgstr "\tdns: " #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "»главно име: " #: src/getcert.c:3597 msgid "\tIP address: " msgstr "\tIP адреÑ: " #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "\tkey usage: %s\n" #: src/getcert.c:3620 msgid "\teku: " msgstr "\teku: " #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "\tpre-save команда: %s\n" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "\tpost-save команда: %s\n" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "\ttrack: %s\n" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "\tauto-renew: %s\n" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "CA '%s':\n" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "\tca-type: %s\n" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "\thelper-location: %s\n" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "»Ñледващ-Ñериен-номер: %s\n" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr " познати-имена-на-издатели:\n" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "%s - инÑтрумент за запиÑване на клиентÑки Ñертификат\n" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "Употреба: %s request [опции]\n" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "Ðеобходими аргументи:\n" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "* Ðко за хранилище Ñе използва NSS база данни:\n" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr " -d DIR NSS база данни за ключ и Ñертификат\n" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" " -n NAME пÑевдоним за NSS-базирано хранилище (валидно Ñамо Ñ -d)\n" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" " -t NAME незадължително token name за NSS-базирано хранилище " "(валидно Ñамо Ñ -d)\n" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "* Ðко за хранилище Ñе използват файлове:\n" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr " -k FILE PEM файл за чаÑтен ключ\n" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr " -f FILE PEM файл за Ñертификат (валидно Ñамо Ñ -k)\n" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "* Ðко ключовете Ñ‚Ñ€Ñбва да бъдат криптирани:\n" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr " -p FILE файл, Ñъдържащ ПИРза криптиране\n" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr " -P PIN ÑтойноÑÑ‚ на ПИÐ\n" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "Ðезадължителни аргументи:\n" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "* ÐаÑтройки на обработката на Ñертификата:\n" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr " -I NAME пÑевдоним, който да бъде приÑвоен към заÑвката\n" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" " -g SIZE»големина на ключ, който да бъде генериран ако нÑма вече Ñъздаден " "такъвâŽ\n" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" " -r опит за подновÑване на Ñертификата, когато изтичането му " "наближава (по подразбиране)\n" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" " -R не опитвай подновÑване на Ñертификата, когато изтичането му " "наближава\n" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr " -c CA използвай Ð·Ð°Ð´Ð°Ð´ÐµÐ½Ð¸Ñ CA вмеÑто този по подразбиране\n" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" " -T PROFILE\tиÑка CA да обработи заÑвката, използвайки профил или шаблон Ñ " "това име\n" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "* Параметри за подпиÑване на заÑвките:\n" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" " -N NAME задава заÑвеното име на обекта (по подразбиране: CN=<име на " "хоÑÑ‚>)\n" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr " -U EXTUSAGE\tзадава иÑкан разширен OID ключ за употреба\n" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr " -u KEYUSAGE\tзадава иÑканата key usage ÑтойноÑÑ‚\n" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr " -K NAME\tзадава иÑкано principal име\n" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr " -D DNSNAME\tзадава иÑкано DNS име\n" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr " -E EMAIL задава заÑÐ²ÐµÐ½Ð¸Ñ Ð¸Ð¼ÐµÐ¹Ð» адреÑ\n" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "* Опции на шината:\n" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" " -S Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑиÑтемната шина\n" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" " -s Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑеÑийната шина\n" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "* Други опции:\n" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr " -B\tкоманда за изпълнение преди запиÑа на Ñертификата\n" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr " -C\tкоманда за изпълнение Ñлед запиÑа на Ñертификата\n" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr " -v показва вÑички подробноÑти за грешките\n" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "Употреба: %s start-tracking [опции]\n" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "* Ðко Ñе Ð¿Ñ€Ð¾Ð¼ÐµÐ½Ñ ÑъщеÑтвуваща заÑвка:\n" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr " -i NAME пÑевдоним от ÑъщеÑтвуваща проÑледÑвана заÑвка\n" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "* Ðко ключовете Ñа криптирани:\n" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" " -I NAME пÑевдоним, който да бъде даден към проÑледÑваната заÑвка\n" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "* Параметри за заÑвката за подпиÑване по време на подновÑването:\n" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr " -U EXTUSAGE\tзамеÑтва иÑÐºÐ°Ð½Ð¸Ñ Ñ€Ð°Ð·ÑˆÐ¸Ñ€ÐµÐ½ OID ключ за употреба\n" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr " -K NAME\tзамеÑтва иÑканото principal име\n" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr " -D DNSNAME\tзамеÑтва иÑканото DNS име\n" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "-E EMAIL»ÑмÑна на иÑÐºÐ°Ð½Ð¸Ñ email адреÑ\n" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "Употреба: %s stop-tracking [опции]\n" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "* По идентификатор на заÑвката:\n" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr " -i NAME пÑевдоним за проÑледÑваната заÑвка\n" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "Употреба: %s resubmit [опции]\n" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr " -f FILE PEM файл за Ñертификата\n" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "* Ðови ÑтойноÑти на параметри за подпиÑваната заÑвка:\n" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" " -I NAME нов пÑевдоним, който да бъде даден към проÑледÑваната " "заÑвка\n" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr " -c CA използвай Ð·Ð°Ð´Ð°Ð´ÐµÐ½Ð¸Ñ CA вмеÑто текущиÑ\n" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "Употреба: %s list [опции]\n" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "* ОÑновни опции:\n" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" " -c CA Ñамо показва заÑвките и Ñертификатите, аÑоциирани Ñ Ñ‚Ð¾Ð²Ð° " "CA\n" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr " -r Ñамо показва Ð¸Ð½Ñ„Ð¾Ñ€Ð¼Ð°Ñ†Ð¸Ñ Ð·Ð° неуредените заÑвки\n" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" " -t Ñамо показва Ð¸Ð½Ñ„Ð¾Ñ€Ð¼Ð°Ñ†Ð¸Ñ Ð·Ð° проÑледÑваните Ñертификати\n" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "* Ðко изберете Ñпецифична заÑвка:\n" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" " -d DIR Ñамо показва ÑпиÑък на заÑвките и Ñертификатите, използващи " "тази NSS база данни\n" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" " -n NAME Ñамо показва ÑпиÑък на заÑвките и Ñертификатите, използващи " "този пÑевдоним\n" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" " -f FILE Ñамо показва ÑпиÑък на заÑвките и Ñертификатите, запиÑани в " "този PEM файл\n" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr " -S Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑиÑтемната шина\n" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr " -s Ñвържи Ñе Ñ ÑƒÑлугата certmonger през ÑеÑийната шина\n" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "Употреба: %s list-cas [опции]\n" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr " -c CA Ñамо показва Ð¸Ð½Ñ„Ð¾Ñ€Ð¼Ð°Ñ†Ð¸Ñ Ð·Ð° CA Ñ Ñ‚Ð¾Ð²Ð° име\n" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "%s: непозната команда\n" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "ОпциÑта -t не може да бъде използвана заедно Ñ -K опциÑ.\n" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "ОпциÑтата -к не може да бъде използвана заедно Ñ -К опциÑ.\n" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "ОпциÑта -К не може да бъде използвана Ñ -k или -t опции.\n" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "Ðе може да бъде уÑтановено главно име за заÑвката за подпиÑване.\n" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "\t-s използвай ÑеÑийната шина\n" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "\t-S използвай ÑиÑтемната шина\n" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "\t-n не Ñтавай демон\n" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "\t-f Ñтани демон\n" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "\t-b TIMEOUT активиран от шината, idle timeout\n" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "\t-B не използвай idle timeout\n" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "\t-d LEVEL задава ниво за дебъг (implies -n)\n" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "\t-p FILE запиши PID на уÑлугата във файл FILE\n" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "Възникна вътрешна грешка." #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "Ðе бÑха намерени такива запиÑи.\n" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "Вече има CA Ñ Ð¿Ñевдонима \"%s\"." #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "Ðе е определен тип на хранилището на Ñертификати." #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "Ðе Ñе поддържа хранилище на Ñертификати от тип \"%s\"." #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "МеÑтоположението \"%s\" Ñ‚Ñ€Ñбва да е абÑолютен път." #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "МеÑтоположението на хранилището на Ñертификати не е определено." #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "ЧаÑтта преди меÑтоположението \"%s\" Ñ‚Ñ€Ñбва да е валидна директориÑ." #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "МеÑтоположението \"%s\" Ñ‚Ñ€Ñбва да е файл." #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "МеÑтоположението \"%s\" Ñ‚Ñ€Ñбва да е директориÑ." #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "ПÑевдонимът на Ñертификата не е определен." #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "Вече има заÑвка Ñ Ð¿Ñевдонима \"%s\"." #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" "Сертификатът на зададеното мÑÑто вече Ñе използва от друг пÑевдоним \"%s\"." #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "Ðе Ñе поддържа хранилище на ключове от тип \"%s\"." #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "МеÑтоположението на хранилището на ключове не е определено." #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "ПÑевдонимът на ключа не е определен." #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "Ключът на зададеното мÑÑто вече Ñе използва от друг пÑевдоним \"%s\"." #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "ÐÑма такъв CA." #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "СертифициращиÑÑ‚ орган \"%s\" е непознат." #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "Ðеразпознат параметър или грешен тип на ÑтойноÑÑ‚." #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "Ðепозволен доÑтъп. МолÑ, опитайте операциÑта отново, като root.\n" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "МолÑ, проверете дали уÑлугата certmonger е Ñтартирала.\n" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "МолÑ, проверете дали уÑлугата certmonger вÑе още работи.\n" certmonger-0.78.6/po/be.po0000664000175000017500000012657412645513275012301 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Belarusian (http://www.transifex.com/projects/p/certmonger/" "language/be/)\n" "Language: be\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/bal.po0000664000175000017500000012645612645513275012450 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Balochi (http://www.transifex.com/projects/p/certmonger/" "language/bal/)\n" "Language: bal\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/az.po0000664000175000017500000012646012645513275012317 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Azerbaijani (http://www.transifex.com/projects/p/certmonger/" "language/az/)\n" "Language: az\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ast.po0000664000175000017500000012645712645513275012502 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Asturian (http://www.transifex.com/projects/p/certmonger/" "language/ast/)\n" "Language: ast\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/as.po0000664000175000017500000012645512645513275012314 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Assamese (http://www.transifex.com/projects/p/certmonger/" "language/as/)\n" "Language: as\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ar.po0000664000175000017500000012660112645513275012304 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Arabic (http://www.transifex.com/projects/p/certmonger/" "language/ar/)\n" "Language: ar\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 " "&& n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5;\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/am.po0000664000175000017500000012645312645513275012304 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Amharic (http://www.transifex.com/projects/p/certmonger/" "language/am/)\n" "Language: am\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/aln.po0000664000175000017500000012646412645513275012463 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Albanian Gheg (http://www.transifex.com/projects/p/certmonger/" "language/aln/)\n" "Language: aln\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/af_ZA.po0000664000175000017500000012647712645513275012675 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-03-24 16:29+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Afrikaans (South Africa) (http://www.transifex.com/projects/p/" "fedora/language/af_ZA/)\n" "Language: af_ZA\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/af.po0000664000175000017500000012645612645513275012300 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Afrikaans (http://www.transifex.com/projects/p/certmonger/" "language/af/)\n" "Language: af\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/ach.po0000664000175000017500000012645312645513275012442 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR Red Hat, Inc. # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: certmonger\n" "Report-Msgid-Bugs-To: certmonger-devel@lists.fedorahosted.org\n" "POT-Creation-Date: 2016-01-13 13:26-0500\n" "PO-Revision-Date: 2014-11-11 10:00+0000\n" "Last-Translator: Nalin Dahyabhai \n" "Language-Team: Acoli (http://www.transifex.com/projects/p/certmonger/" "language/ach/)\n" "Language: ach\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: src/certmaster.c:136 #, c-format msgid "Unable to determine hostname of CA.\n" msgstr "" #: src/certmaster.c:152 src/dogtag.c:520 src/ipa.c:756 #, c-format msgid "Unable to read signing request.\n" msgstr "" #: src/certmaster.c:177 #, c-format msgid "Error setting up for XMLRPC.\n" msgstr "" #: src/certmaster.c:199 src/getcert.c:470 src/getcert.c:489 src/getcert.c:508 #: src/getcert.c:527 src/getcert.c:545 src/getcert.c:638 src/getcert.c:1329 #: src/getcert.c:1698 src/getcert.c:2240 src/getcert.c:2325 src/getcert.c:2880 #: src/getcert.c:3102 src/getcert.c:3130 src/getcert.c:3351 src/getcert.c:3455 #: src/getcert.c:3490 src/getcert.c:3525 src/getcert.c:3562 src/getcert.c:3813 #: src/getcert.c:4266 src/getcert.c:4383 src/getcert.c:4576 #, c-format msgid "Error parsing server response.\n" msgstr "" #: src/certmaster.c:203 #, c-format msgid "Server error.\n" msgstr "" #: src/dogtag.c:226 #, c-format msgid "Profile params (-O) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:233 src/dogtag.c:238 src/dogtag.c:256 src/dogtag.c:261 #: src/getcert.c:291 #, c-format msgid "Out of memory.\n" msgstr "" #: src/dogtag.c:249 #, c-format msgid "Submit params (-o) must be in the form of param=value.\n" msgstr "" #: src/dogtag.c:408 src/dogtag.c:413 src/dogtag.c:442 #, c-format msgid "No agent credentials specified, and no default known.\n" msgstr "" #: src/dogtag.c:418 #, c-format msgid "Requested renewal, but no serial number provided.\n" msgstr "" #: src/dogtag.c:422 #, c-format msgid "No end-entity URL (-E) given, and no default known.\n" msgstr "" #: src/dogtag.c:427 src/dogtag.c:437 src/dogtag.c:588 #, c-format msgid "No agent URL (-A) given, and no default known.\n" msgstr "" #: src/dogtag.c:432 #, c-format msgid "No profile/template (-T) given, and no default known.\n" msgstr "" #: src/dogtag.c:452 #, c-format msgid "Error shutting down NSS.\n" msgstr "" #: src/dogtag.c:487 src/dogtag.c:771 #, c-format msgid "Internal error: unknown state.\n" msgstr "" #: src/dogtag.c:594 #, c-format msgid "No agent credentials (-n) given, but they are needed.\n" msgstr "" #: src/dogtag.c:751 #, c-format msgid "Error %d connecting to %s: %s.\n" msgstr "" #: src/dogtag.c:756 #, c-format msgid "Error %d connecting to %s.\n" msgstr "" #: src/dogtag.c:764 #, c-format msgid "Internal error: no response to \"%s?%s\".\n" msgstr "" #: src/getcert.c:61 src/main.c:84 src/main.c:86 msgid "COMMAND" msgstr "" #: src/getcert.c:62 msgid "DIRECTORY" msgstr "" #: src/getcert.c:63 src/getcert.c:70 msgid "LIST" msgstr "" #: src/getcert.c:64 src/getcert.c:68 msgid "ADDRESS" msgstr "" #: src/getcert.c:65 src/main.c:87 msgid "FILENAME" msgstr "" #: src/getcert.c:66 msgid "HOSTNAME" msgstr "" #: src/getcert.c:67 msgid "ID" msgstr "" #: src/getcert.c:69 msgid "BITS" msgstr "" #: src/getcert.c:71 msgid "MODE" msgstr "" #: src/getcert.c:72 msgid "NAME" msgstr "" #: src/getcert.c:73 msgid "PRINCIPAL" msgstr "" #: src/getcert.c:74 msgid "SUBJECT" msgstr "" #: src/getcert.c:75 msgid "URL" msgstr "" #: src/getcert.c:76 msgid "USERNAME[:GROUPNAME]" msgstr "" #: src/getcert.c:115 #, c-format msgid "Path \"%s\" is not absolute, attempting to use \"%s\" instead.\n" msgstr "" #: src/getcert.c:120 #, c-format msgid "" "Path \"%s\" is not absolute, and there was an error determining the name of " "the current directory.\n" msgstr "" #: src/getcert.c:142 #, c-format msgid "Path \"%s\": insufficient permissions.\n" msgstr "" #: src/getcert.c:148 #, c-format msgid "Path \"%s\" is not a directory.\n" msgstr "" #: src/getcert.c:154 #, c-format msgid "Path \"%s\": %s.\n" msgstr "" #: src/getcert.c:194 #, c-format msgid "Path \"%s\" is not a regular file.\n" msgstr "" #: src/getcert.c:340 #, c-format msgid "No system bus running.\n" msgstr "" #: src/getcert.c:341 #, c-format msgid "Running as UID 0.\n" msgstr "" #: src/getcert.c:342 #, c-format msgid "Launching temporary dedicated service daemon.\n" msgstr "" #: src/getcert.c:371 #, c-format msgid "Error connecting to D-Bus.\n" msgstr "" #: src/getcert.c:372 src/tdbusm.c:2163 #, c-format msgid "Please verify that the message bus (D-Bus) service is running.\n" msgstr "" #: src/getcert.c:379 #, c-format msgid "Error creating DBus request message.\n" msgstr "" #: src/getcert.c:421 #, c-format msgid "Error %s: %s\n" msgstr "" #: src/getcert.c:425 #, c-format msgid "Error %s\n" msgstr "" #: src/getcert.c:431 #, c-format msgid "Error: %s\n" msgstr "" #: src/getcert.c:433 #, c-format msgid "Received error response from local %s service.\n" msgstr "" #: src/getcert.c:439 #, c-format msgid "No response received from %s service.\n" msgstr "" #: src/getcert.c:643 src/getcert.c:3818 #, c-format msgid "State %s, stuck: %s.\n" msgstr "" #: src/getcert.c:711 src/getcert.c:1747 src/getcert.c:2384 src/getcert.c:2959 #: src/getcert.c:3211 src/getcert.c:3716 msgid "NSS database for key and cert" msgstr "" #: src/getcert.c:712 src/getcert.c:1748 src/getcert.c:2385 src/getcert.c:2960 #: src/getcert.c:3212 src/getcert.c:3717 msgid "nickname for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:713 src/getcert.c:1749 src/getcert.c:2386 src/getcert.c:2961 #: src/getcert.c:3213 src/getcert.c:3718 msgid "optional token name for NSS-based storage (only valid with -d)" msgstr "" #: src/getcert.c:714 msgid "PEM file for private key" msgstr "" #: src/getcert.c:715 msgid "PEM file for certificate (only valid with -k)" msgstr "" #: src/getcert.c:716 src/getcert.c:1752 src/getcert.c:2392 msgid "file which holds the private key encryption PIN" msgstr "" #: src/getcert.c:717 src/getcert.c:1753 src/getcert.c:2393 msgid "private key encryption PIN" msgstr "" #: src/getcert.c:718 src/getcert.c:1754 src/getcert.c:2394 msgid "owner information for private key" msgstr "" #: src/getcert.c:719 src/getcert.c:1755 src/getcert.c:2395 msgid "file permissions for private key" msgstr "" #: src/getcert.c:720 src/getcert.c:1756 src/getcert.c:2396 msgid "owner information for certificate" msgstr "" #: src/getcert.c:721 src/getcert.c:1757 src/getcert.c:2397 msgid "file permissions for certificate" msgstr "" #: src/getcert.c:722 src/getcert.c:1758 src/getcert.c:2398 msgid "NSS database in which to store the CA's certificates" msgstr "" #: src/getcert.c:723 src/getcert.c:1759 src/getcert.c:2399 msgid "file in which to store the CA's certificates" msgstr "" #: src/getcert.c:724 src/getcert.c:1760 src/getcert.c:2400 msgid "command to run before saving the certificate" msgstr "" #: src/getcert.c:725 src/getcert.c:1761 src/getcert.c:2401 msgid "command to run after saving the certificate" msgstr "" #: src/getcert.c:726 msgid "nickname to assign to the request" msgstr "" #: src/getcert.c:727 msgid "type of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:728 msgid "size of key to be generated if one is not already in place" msgstr "" #: src/getcert.c:729 src/getcert.c:1764 msgid "attempt to renew the certificate when expiration nears (default)" msgstr "" #: src/getcert.c:730 src/getcert.c:1765 msgid "don't attempt to renew the certificate when expiration nears" msgstr "" #: src/getcert.c:732 src/getcert.c:1767 msgid "use the specified CA configuration rather than the default" msgstr "" #: src/getcert.c:734 src/getcert.c:1769 src/getcert.c:2405 msgid "ask the CA to process the request using the named profile or template" msgstr "" #: src/getcert.c:735 src/getcert.c:2406 msgid "set requested subject name (default: CN=)" msgstr "" #: src/getcert.c:736 src/getcert.c:2407 msgid "set requested key usage value" msgstr "" #: src/getcert.c:737 src/getcert.c:2408 msgid "set requested extended key usage OID" msgstr "" #: src/getcert.c:738 src/getcert.c:2409 msgid "set requested principal name" msgstr "" #: src/getcert.c:739 src/getcert.c:2410 msgid "set requested DNS name" msgstr "" #: src/getcert.c:740 src/getcert.c:2411 msgid "set requested email address" msgstr "" #: src/getcert.c:741 src/getcert.c:2412 msgid "set requested IP address" msgstr "" #: src/getcert.c:742 src/getcert.c:1777 src/getcert.c:2414 msgid "file which holds an optional challenge password value" msgstr "" #: src/getcert.c:743 src/getcert.c:1776 src/getcert.c:2413 msgid "an optional challenge password value" msgstr "" #: src/getcert.c:744 src/getcert.c:1778 src/getcert.c:2415 msgid "try to wait for the certificate to be issued" msgstr "" #: src/getcert.c:745 src/getcert.c:1779 src/getcert.c:2416 msgid "maximum time to wait for the certificate to be issued" msgstr "" #: src/getcert.c:746 src/getcert.c:1780 src/getcert.c:2417 src/getcert.c:2964 #: src/getcert.c:3216 src/getcert.c:3721 src/getcert.c:3878 src/getcert.c:4109 #: src/getcert.c:4204 src/getcert.c:4300 src/getcert.c:4427 src/getcert.c:4514 msgid "connect to the certmonger service on the session bus" msgstr "" #: src/getcert.c:747 src/getcert.c:1781 src/getcert.c:2418 src/getcert.c:2965 #: src/getcert.c:3217 src/getcert.c:3722 src/getcert.c:3879 src/getcert.c:4110 #: src/getcert.c:4205 src/getcert.c:4301 src/getcert.c:4428 src/getcert.c:4515 msgid "connect to the certmonger service on the system bus" msgstr "" #: src/getcert.c:764 src/getcert.c:1790 src/getcert.c:2427 #, c-format msgid "Error initializing Kerberos library: %s.\n" msgstr "" #: src/getcert.c:828 src/getcert.c:2496 #, c-format msgid "No support for generating \"%s\" keys.\n" msgstr "" #: src/getcert.c:830 src/getcert.c:2498 #, c-format msgid "Known key types include:" msgstr "" #: src/getcert.c:867 src/getcert.c:1880 src/getcert.c:2520 #, c-format msgid "Unrecognized keyUsage \"%s\".\n" msgstr "" #: src/getcert.c:877 src/getcert.c:1890 src/getcert.c:2530 #, c-format msgid "Could not evaluate OID \"%s\".\n" msgstr "" #: src/getcert.c:888 src/getcert.c:1901 src/getcert.c:2541 #, c-format msgid "Error parsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:897 src/getcert.c:1910 src/getcert.c:2550 #, c-format msgid "Error unparsing Kerberos principal name \"%s\": %s.\n" msgstr "" #: src/getcert.c:952 src/getcert.c:1965 src/getcert.c:2605 #, c-format msgid "%s: invalid value -- '%s'\n" msgstr "" #: src/getcert.c:975 src/getcert.c:1993 src/getcert.c:2628 src/getcert.c:3035 #: src/getcert.c:3275 src/getcert.c:3913 #, c-format msgid "%s: option requires an argument -- '%c'\n" msgstr "" #: src/getcert.c:979 src/getcert.c:1996 src/getcert.c:2631 src/getcert.c:3039 #: src/getcert.c:3279 src/getcert.c:3916 #, c-format msgid "%s: invalid option -- '%c'\n" msgstr "" #: src/getcert.c:992 #, c-format msgid "Error: unused extra argument \"%s\".\n" msgstr "" #: src/getcert.c:995 src/getcert.c:2011 src/getcert.c:2643 src/getcert.c:3058 #: src/getcert.c:3291 src/getcert.c:3778 src/getcert.c:3928 src/getcert.c:4159 #: src/getcert.c:4253 src/getcert.c:4354 src/getcert.c:4476 src/getcert.c:4558 #, c-format msgid "Error: unused extra arguments were supplied.\n" msgstr "" #: src/getcert.c:1001 src/getcert.c:2017 src/getcert.c:2267 src/getcert.c:2667 #, c-format msgid "Database location or nickname specified without the other.\n" msgstr "" #: src/getcert.c:1007 src/getcert.c:2023 src/getcert.c:2273 src/getcert.c:2673 #, c-format msgid "Database directory and certificate file both specified.\n" msgstr "" #: src/getcert.c:1015 src/getcert.c:2281 src/getcert.c:2681 #, c-format msgid "" "None of database directory and nickname or certificate file specified.\n" msgstr "" #: src/getcert.c:1022 src/getcert.c:2039 #, c-format msgid "Key and certificate can not both be saved to the same file.\n" msgstr "" #: src/getcert.c:1049 #, c-format msgid "" "The IPA backend requires the use of the -K option (principal name) when the -" "N option (subject name) is used.\n" msgstr "" #: src/getcert.c:1223 src/getcert.c:1664 src/getcert.c:2168 src/getcert.c:2743 #: src/getcert.c:3066 src/getcert.c:3299 src/getcert.c:4565 #, c-format msgid "No CA with name \"%s\" found.\n" msgstr "" #: src/getcert.c:1324 src/getcert.c:1693 src/getcert.c:2234 src/getcert.c:2320 #: src/getcert.c:2874 src/getcert.c:4261 src/getcert.c:4378 src/getcert.c:4397 #: src/getcert.c:4486 src/getcert.c:4571 #, c-format msgid "Error setting request arguments.\n" msgstr "" #: src/getcert.c:1335 #, c-format msgid "New signing request \"%s\" added.\n" msgstr "" #: src/getcert.c:1341 #, c-format msgid "New signing request could not be added.\n" msgstr "" #: src/getcert.c:1704 #, c-format msgid "New tracking request \"%s\" added.\n" msgstr "" #: src/getcert.c:1711 #, c-format msgid "New tracking request could not be added.\n" msgstr "" #: src/getcert.c:1750 msgid "PEM file for private key (only valid with -f)" msgstr "" #: src/getcert.c:1751 src/getcert.c:2387 src/getcert.c:2962 src/getcert.c:3214 #: src/getcert.c:3719 msgid "PEM file for certificate" msgstr "" #: src/getcert.c:1762 msgid "nickname of an existing request" msgstr "" #: src/getcert.c:1763 msgid "nickname to give to tracking request" msgstr "" #: src/getcert.c:1770 msgid "override requested key usage value" msgstr "" #: src/getcert.c:1771 msgid "override requested extended key usage OID" msgstr "" #: src/getcert.c:1772 msgid "override requested principal name" msgstr "" #: src/getcert.c:1773 msgid "override requested DNS name" msgstr "" #: src/getcert.c:1774 msgid "override requested email address" msgstr "" #: src/getcert.c:1775 msgid "override requested IP address" msgstr "" #: src/getcert.c:2032 src/getcert.c:3052 #, c-format msgid "" "None of ID or database directory and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:2248 #, c-format msgid "Request \"%s\" modified.\n" msgstr "" #: src/getcert.c:2252 #, c-format msgid "Request \"%s\" could not be modified.\n" msgstr "" #: src/getcert.c:2260 src/getcert.c:2660 src/getcert.c:3306 src/getcert.c:3786 #, c-format msgid "No request found with specified nickname.\n" msgstr "" #: src/getcert.c:2311 src/getcert.c:2687 src/getcert.c:3317 src/getcert.c:3797 #, c-format msgid "No request found that matched arguments.\n" msgstr "" #: src/getcert.c:2330 #, c-format msgid "Request \"%s\" removed.\n" msgstr "" #: src/getcert.c:2334 #, c-format msgid "Request \"%s\" could not be removed.\n" msgstr "" #: src/getcert.c:2388 src/getcert.c:2963 src/getcert.c:3215 src/getcert.c:3720 msgid "nickname for tracking request" msgstr "" #: src/getcert.c:2389 msgid "new nickname to give to tracking request" msgstr "" #: src/getcert.c:2390 msgid "type of new key to be generated" msgstr "" #: src/getcert.c:2391 msgid "size of new key to be generated" msgstr "" #: src/getcert.c:2403 msgid "use the specified CA configuration rather than the current one" msgstr "" #: src/getcert.c:2888 #, c-format msgid "Error modifying \"%s\".\n" msgstr "" #: src/getcert.c:2904 #, c-format msgid "Resubmitting \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2907 #, c-format msgid "Resubmitting \"%s\".\n" msgstr "" #: src/getcert.c:2916 #, c-format msgid "Error attempting to submit \"%s\" to \"%s\".\n" msgstr "" #: src/getcert.c:2919 #, c-format msgid "Error attempting to submit \"%s\".\n" msgstr "" #: src/getcert.c:2955 msgid "refresh information about all outstanding requests" msgstr "" #: src/getcert.c:2957 msgid "" "refresh information only for requests using the specified CA configuration" msgstr "" #: src/getcert.c:3148 #, c-format msgid "Request ID '%s' being refreshed.\n" msgstr "" #: src/getcert.c:3150 #, c-format msgid "Request ID '%s' NOT being refreshed.\n" msgstr "" #: src/getcert.c:3206 msgid "list only information about outstanding requests" msgstr "" #: src/getcert.c:3207 msgid "list only information about tracked certificates" msgstr "" #: src/getcert.c:3209 msgid "list only requests and certs associated with this CA configuration" msgstr "" #: src/getcert.c:3328 #, c-format msgid "Number of certificates and requests being tracked: %d.\n" msgstr "" #: src/getcert.c:3477 #, c-format msgid "Request ID '%s':\n" msgstr "" #: src/getcert.c:3478 #, c-format msgid "\tstatus: %s\n" msgstr "" #: src/getcert.c:3482 #, c-format msgid "\tca-error: %s\n" msgstr "" #: src/getcert.c:3484 #, c-format msgid "\tstuck: %s\n" msgstr "" #: src/getcert.c:3504 #, c-format msgid "\tkey pair storage: type=%s" msgstr "" #: src/getcert.c:3504 msgid "NONE" msgstr "" #: src/getcert.c:3506 #, c-format msgid ",location='%s'" msgstr "" #: src/getcert.c:3509 src/getcert.c:3531 #, c-format msgid ",nickname='%s'" msgstr "" #: src/getcert.c:3512 src/getcert.c:3534 #, c-format msgid ",token='%s'" msgstr "" #: src/getcert.c:3515 #, c-format msgid ",pin set" msgstr "" #: src/getcert.c:3518 #, c-format msgid ",pinfile='%s'" msgstr "" #: src/getcert.c:3529 #, c-format msgid "\tcertificate: type=%s,location='%s'" msgstr "" #: src/getcert.c:3545 #, c-format msgid "\tsigning request thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:3550 #, c-format msgid "\tsigning request thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:3567 #, c-format msgid "\tCA: %s\n" msgstr "" #: src/getcert.c:3569 #, c-format msgid "\tissuer: %s\n" msgstr "" #: src/getcert.c:3570 #, c-format msgid "\tsubject: %s\n" msgstr "" #: src/getcert.c:3571 #, c-format msgid "\texpires: %s\n" msgstr "" #: src/getcert.c:3574 msgid "unknown" msgstr "" #: src/getcert.c:3577 msgid "\temail: " msgstr "" #: src/getcert.c:3583 msgid "\tdns: " msgstr "" #: src/getcert.c:3589 msgid "\tprincipal name: " msgstr "" #: src/getcert.c:3597 msgid "\tIP address: " msgstr "" #: src/getcert.c:3616 #, c-format msgid "\tkey usage: %s\n" msgstr "" #: src/getcert.c:3620 msgid "\teku: " msgstr "" #: src/getcert.c:3628 #, c-format msgid "\tcertificate template/profile: %s\n" msgstr "" #: src/getcert.c:3634 src/getcert.c:3993 #, c-format msgid "\troot certificates saved to files:\n" msgstr "" #: src/getcert.c:3643 src/getcert.c:4002 #, c-format msgid "\tother root certificates saved to files:\n" msgstr "" #: src/getcert.c:3652 src/getcert.c:4011 #, c-format msgid "\tother certificates saved to files:\n" msgstr "" #: src/getcert.c:3661 src/getcert.c:4020 #, c-format msgid "\troot certificates saved to databases:\n" msgstr "" #: src/getcert.c:3670 src/getcert.c:4029 #, c-format msgid "\tother root certificates saved to databases:\n" msgstr "" #: src/getcert.c:3679 src/getcert.c:4038 #, c-format msgid "\tother certificates saved to databases:\n" msgstr "" #: src/getcert.c:3684 src/getcert.c:4084 #, c-format msgid "\tpre-save command: %s\n" msgstr "" #: src/getcert.c:3687 src/getcert.c:4090 #, c-format msgid "\tpost-save command: %s\n" msgstr "" #: src/getcert.c:3690 #, c-format msgid "\ttrack: %s\n" msgstr "" #: src/getcert.c:3694 #, c-format msgid "\tauto-renew: %s\n" msgstr "" #: src/getcert.c:3801 #, c-format msgid "" "None of ID or database directory and and nickname or certificate file " "specified.\n" msgstr "" #: src/getcert.c:3876 msgid "list only the specified CA configuration" msgstr "" #: src/getcert.c:3943 #, c-format msgid "CA '%s':\n" msgstr "" #: src/getcert.c:3949 #, c-format msgid "\tself-identifies as: %s\n" msgstr "" #: src/getcert.c:3958 #, c-format msgid "\tca-type: %s\n" msgstr "" #: src/getcert.c:3960 #, c-format msgid "\thelper-location: %s\n" msgstr "" #: src/getcert.c:3965 #, c-format msgid "\tnext-serial-number: %s\n" msgstr "" #: src/getcert.c:3975 #, c-format msgid "\tknown-issuer-names:\n" msgstr "" #: src/getcert.c:3984 #, c-format msgid "\tknown profiles/templates/certtypes:\n" msgstr "" #: src/getcert.c:4047 #, c-format msgid "\tdefault profile/template/certtype: %s\n" msgstr "" #: src/getcert.c:4055 #, c-format msgid "\tSCEP CA identifier: %s\n" msgstr "" #: src/getcert.c:4068 #, c-format msgid "\tSCEP CA certificate thumbprint (MD5): %s\n" msgstr "" #: src/getcert.c:4074 #, c-format msgid "\tSCEP CA certificate thumbprint (SHA1): %s\n" msgstr "" #: src/getcert.c:4106 msgid "refresh information about the CA configuration with this name" msgstr "" #: src/getcert.c:4108 msgid "refresh information about all known CAs" msgstr "" #: src/getcert.c:4154 #, c-format msgid "Neither CA nickname nor -a flag specified.\n" msgstr "" #: src/getcert.c:4180 #, c-format msgid "Data for CA '%s' being refreshed.\n" msgstr "" #: src/getcert.c:4182 #, c-format msgid "Data for unnamed CA being refreshed.\n" msgstr "" #: src/getcert.c:4185 #, c-format msgid "\terror refreshing CA data\n" msgstr "" #: src/getcert.c:4202 src/getcert.c:4293 msgid "nickname to give to the new CA configuration" msgstr "" #: src/getcert.c:4203 msgid "helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4243 src/getcert.c:4339 src/getcert.c:4466 src/getcert.c:4553 #, c-format msgid "CA nickname not specified.\n" msgstr "" #: src/getcert.c:4248 src/getcert.c:4471 #, c-format msgid "CA helper command not specified.\n" msgstr "" #: src/getcert.c:4272 src/getcert.c:4389 #, c-format msgid "New CA \"%s\" added.\n" msgstr "" #: src/getcert.c:4275 src/getcert.c:4409 #, c-format msgid "New CA could not be added.\n" msgstr "" #: src/getcert.c:4294 msgid "location of SCEP server" msgstr "" #: src/getcert.c:4295 msgid "CA identifier" msgstr "" #: src/getcert.c:4296 msgid "file containing CA's certificate" msgstr "" #: src/getcert.c:4297 msgid "file containing RA's certificate" msgstr "" #: src/getcert.c:4298 msgid "file containing certificates in RA's certifying chain" msgstr "" #: src/getcert.c:4299 msgid "prefer to not use the SCEP Renewal feature" msgstr "" #: src/getcert.c:4344 #, c-format msgid "server URL not specified.\n" msgstr "" #: src/getcert.c:4349 #, c-format msgid "HTTPS requires a CA certificate.\n" msgstr "" #: src/getcert.c:4371 #, c-format msgid "Error building command line.\n" msgstr "" #: src/getcert.c:4403 #, c-format msgid "Error setting CA identifier.\n" msgstr "" #: src/getcert.c:4425 msgid "nickname of the CA configuration" msgstr "" #: src/getcert.c:4426 msgid "updated helper command to run to communicate with CA" msgstr "" #: src/getcert.c:4493 #, c-format msgid "CA \"%s\" modified.\n" msgstr "" #: src/getcert.c:4496 #, c-format msgid "CA could not be modified.\n" msgstr "" #: src/getcert.c:4513 msgid "nickname of CA configuration to remove" msgstr "" #: src/getcert.c:4581 #, c-format msgid "CA \"%s\" removed.\n" msgstr "" #: src/getcert.c:4583 #, c-format msgid "CA could not be removed.\n" msgstr "" #: src/getcert.c:4621 #, c-format msgid "%s - client certificate enrollment tool\n" msgstr "" #: src/getcert.c:4625 #, c-format msgid "Usage: %s request [options]\n" msgstr "" #: src/getcert.c:4627 src/getcert.c:4675 src/getcert.c:4722 src/getcert.c:4744 #: src/getcert.c:4791 src/getcert.c:4867 msgid "Required arguments:\n" msgstr "" #: src/getcert.c:4628 src/getcert.c:4678 src/getcert.c:4725 src/getcert.c:4747 #: src/getcert.c:4794 src/getcert.c:4849 src/getcert.c:4870 msgid "* If using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4629 src/getcert.c:4679 src/getcert.c:4726 src/getcert.c:4748 #: src/getcert.c:4795 src/getcert.c:4871 msgid " -d DIR\tNSS database for key and cert\n" msgstr "" #: src/getcert.c:4630 src/getcert.c:4680 src/getcert.c:4727 src/getcert.c:4749 #: src/getcert.c:4796 src/getcert.c:4872 msgid " -n NAME\tnickname for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4631 src/getcert.c:4681 src/getcert.c:4728 src/getcert.c:4750 #: src/getcert.c:4797 src/getcert.c:4873 msgid "" " -t NAME\toptional token name for NSS-based storage (only valid with -d)\n" msgstr "" #: src/getcert.c:4632 src/getcert.c:4682 src/getcert.c:4729 src/getcert.c:4751 #: src/getcert.c:4798 src/getcert.c:4852 src/getcert.c:4874 msgid "* If using files for storage:\n" msgstr "" #: src/getcert.c:4633 src/getcert.c:4683 src/getcert.c:4730 msgid " -k FILE\tPEM file for private key\n" msgstr "" #: src/getcert.c:4634 src/getcert.c:4684 src/getcert.c:4731 msgid " -f FILE\tPEM file for certificate (only valid with -k)\n" msgstr "" #: src/getcert.c:4635 msgid "* If keys are to be encrypted:\n" msgstr "" #: src/getcert.c:4636 src/getcert.c:4686 src/getcert.c:4755 src/getcert.c:4802 msgid " -p FILE\tfile which holds the encryption PIN\n" msgstr "" #: src/getcert.c:4637 src/getcert.c:4687 src/getcert.c:4756 src/getcert.c:4803 msgid " -P PIN\tPIN value\n" msgstr "" #: src/getcert.c:4639 src/getcert.c:4689 src/getcert.c:4733 src/getcert.c:4769 #: src/getcert.c:4816 src/getcert.c:4840 src/getcert.c:4877 src/getcert.c:4887 #: src/getcert.c:4905 src/getcert.c:4920 src/getcert.c:4937 src/getcert.c:4951 #: src/getcert.c:4970 src/getcert.c:4984 msgid "Optional arguments:\n" msgstr "" #: src/getcert.c:4640 src/getcert.c:4690 src/getcert.c:4770 src/getcert.c:4817 msgid "* Certificate handling settings:\n" msgstr "" #: src/getcert.c:4641 msgid " -I NAME\tnickname to assign to the request\n" msgstr "" #: src/getcert.c:4642 msgid " -G TYPE\ttype of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4643 msgid " -g SIZE\tsize of key to be generated if one is not already in place\n" msgstr "" #: src/getcert.c:4644 src/getcert.c:4692 msgid "" " -r\t\tattempt to renew the certificate when expiration nears (default)\n" msgstr "" #: src/getcert.c:4645 src/getcert.c:4693 msgid " -R\t\tdon't attempt to renew the certificate when expiration nears\n" msgstr "" #: src/getcert.c:4647 src/getcert.c:4695 msgid " -c CA\t\tuse the specified CA rather than the default\n" msgstr "" #: src/getcert.c:4649 src/getcert.c:4697 src/getcert.c:4775 src/getcert.c:4822 msgid "" " -T PROFILE\task the CA to process the request using the named profile or " "template\n" msgstr "" #: src/getcert.c:4650 msgid "* Parameters for the signing request:\n" msgstr "" #: src/getcert.c:4651 src/getcert.c:4759 src/getcert.c:4806 msgid " -N NAME\tset requested subject name (default: CN=)\n" msgstr "" #: src/getcert.c:4652 src/getcert.c:4760 src/getcert.c:4807 msgid " -U EXTUSAGE\tset requested extended key usage OID\n" msgstr "" #: src/getcert.c:4653 src/getcert.c:4700 src/getcert.c:4761 src/getcert.c:4808 msgid " -u KEYUSAGE\tset requested key usage value\n" msgstr "" #: src/getcert.c:4654 src/getcert.c:4762 src/getcert.c:4809 msgid " -K NAME\tset requested principal name\n" msgstr "" #: src/getcert.c:4655 src/getcert.c:4763 src/getcert.c:4810 msgid " -D DNSNAME\tset requested DNS name\n" msgstr "" #: src/getcert.c:4656 src/getcert.c:4764 src/getcert.c:4811 msgid " -E EMAIL\tset requested email address\n" msgstr "" #: src/getcert.c:4657 src/getcert.c:4765 src/getcert.c:4812 msgid " -A ADDRESS\tset requested IP address\n" msgstr "" #: src/getcert.c:4658 src/getcert.c:4705 src/getcert.c:4766 src/getcert.c:4813 msgid " -l FILE\tfile which holds an optional challenge password\n" msgstr "" #: src/getcert.c:4659 src/getcert.c:4706 src/getcert.c:4767 src/getcert.c:4814 msgid " -L PASSWORD\tan optional challenge password value\n" msgstr "" #: src/getcert.c:4660 src/getcert.c:4707 src/getcert.c:4734 src/getcert.c:4776 #: src/getcert.c:4825 src/getcert.c:4854 src/getcert.c:4878 src/getcert.c:4895 #: src/getcert.c:4910 src/getcert.c:4926 src/getcert.c:4941 src/getcert.c:4960 #: src/getcert.c:4974 src/getcert.c:4987 msgid "* Bus options:\n" msgstr "" #: src/getcert.c:4661 src/getcert.c:4708 src/getcert.c:4735 src/getcert.c:4777 #: src/getcert.c:4826 src/getcert.c:4879 msgid " -S\t\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4662 src/getcert.c:4709 src/getcert.c:4736 src/getcert.c:4778 #: src/getcert.c:4827 src/getcert.c:4880 msgid " -s\t\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4663 src/getcert.c:4710 src/getcert.c:4737 src/getcert.c:4779 #: src/getcert.c:4828 src/getcert.c:4857 src/getcert.c:4898 src/getcert.c:4913 #: src/getcert.c:4929 src/getcert.c:4944 src/getcert.c:4963 src/getcert.c:4977 #: src/getcert.c:4990 msgid "* Other options:\n" msgstr "" #: src/getcert.c:4664 src/getcert.c:4711 src/getcert.c:4780 src/getcert.c:4829 msgid " -B\tcommand to run before saving the certificate\n" msgstr "" #: src/getcert.c:4665 src/getcert.c:4712 src/getcert.c:4781 src/getcert.c:4830 msgid " -C\tcommand to run after saving the certificate\n" msgstr "" #: src/getcert.c:4666 src/getcert.c:4713 src/getcert.c:4782 src/getcert.c:4831 msgid " -F\tfile in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4667 src/getcert.c:4714 src/getcert.c:4783 src/getcert.c:4832 msgid " -a\tNSS database in which to store the CA's certificates\n" msgstr "" #: src/getcert.c:4668 src/getcert.c:4715 src/getcert.c:4784 src/getcert.c:4833 msgid " -w\ttry to wait for the certificate to be issued\n" msgstr "" #: src/getcert.c:4669 src/getcert.c:4716 src/getcert.c:4738 src/getcert.c:4785 #: src/getcert.c:4834 src/getcert.c:4858 src/getcert.c:4881 src/getcert.c:4899 #: src/getcert.c:4914 src/getcert.c:4930 src/getcert.c:4945 src/getcert.c:4964 #: src/getcert.c:4978 src/getcert.c:4991 msgid " -v\treport all details of errors\n" msgstr "" #: src/getcert.c:4673 #, c-format msgid "Usage: %s start-tracking [options]\n" msgstr "" #: src/getcert.c:4676 msgid "* If modifying an existing request:\n" msgstr "" #: src/getcert.c:4677 msgid " -i NAME\tnickname of an existing tracking request\n" msgstr "" #: src/getcert.c:4685 src/getcert.c:4754 src/getcert.c:4801 msgid "* If keys are encrypted:\n" msgstr "" #: src/getcert.c:4691 msgid " -I NAME\tnickname to give to tracking request\n" msgstr "" #: src/getcert.c:4698 msgid "* Parameters for the signing request at renewal time:\n" msgstr "" #: src/getcert.c:4699 msgid " -U EXTUSAGE\toverride requested extended key usage OID\n" msgstr "" #: src/getcert.c:4701 msgid " -K NAME\toverride requested principal name\n" msgstr "" #: src/getcert.c:4702 msgid " -D DNSNAME\toverride requested DNS name\n" msgstr "" #: src/getcert.c:4703 msgid " -E EMAIL\toverride requested email address\n" msgstr "" #: src/getcert.c:4704 msgid " -A ADDRESS\toverride requested IP address\n" msgstr "" #: src/getcert.c:4720 #, c-format msgid "Usage: %s stop-tracking [options]\n" msgstr "" #: src/getcert.c:4723 src/getcert.c:4745 src/getcert.c:4792 src/getcert.c:4868 msgid "* By request identifier:\n" msgstr "" #: src/getcert.c:4724 src/getcert.c:4746 src/getcert.c:4793 src/getcert.c:4848 #: src/getcert.c:4869 src/getcert.c:4889 msgid " -i NAME\tnickname for tracking request\n" msgstr "" #: src/getcert.c:4742 #, c-format msgid "Usage: %s resubmit [options]\n" msgstr "" #: src/getcert.c:4752 src/getcert.c:4799 src/getcert.c:4875 msgid " -f FILE\tPEM file for certificate\n" msgstr "" #: src/getcert.c:4758 src/getcert.c:4805 msgid "* New parameter values for the signing request:\n" msgstr "" #: src/getcert.c:4771 src/getcert.c:4818 msgid " -I NAME\tnew nickname to give to tracking request\n" msgstr "" #: src/getcert.c:4773 src/getcert.c:4820 msgid " -c CA\t\tuse the specified CA rather than the current one\n" msgstr "" #: src/getcert.c:4789 #, c-format msgid "Usage: %s rekey [options]\n" msgstr "" #: src/getcert.c:4823 msgid " -G TYPE\ttype of new key to be generated\n" msgstr "" #: src/getcert.c:4824 msgid " -g SIZE\tsize of new key to be generated\n" msgstr "" #: src/getcert.c:4838 #, c-format msgid "Usage: %s list [options]\n" msgstr "" #: src/getcert.c:4841 src/getcert.c:4864 src/getcert.c:4907 src/getcert.c:4922 #: src/getcert.c:4938 src/getcert.c:4952 src/getcert.c:4971 src/getcert.c:4985 msgid "* General options:\n" msgstr "" #: src/getcert.c:4843 msgid " -c CA\tlist only requests and certs associated with this CA\n" msgstr "" #: src/getcert.c:4845 msgid " -r\tlist only information about outstanding requests\n" msgstr "" #: src/getcert.c:4846 msgid " -t\tlist only information about tracked certificates\n" msgstr "" #: src/getcert.c:4847 msgid "* If selecting a specific request:\n" msgstr "" #: src/getcert.c:4850 msgid " -d DIR\tonly list requests and certs which use this NSS database\n" msgstr "" #: src/getcert.c:4851 msgid " -n NAME\tonly list requests and certs which use this nickname\n" msgstr "" #: src/getcert.c:4853 msgid " -f FILE\tonly list requests and certs stored in this PEM file\n" msgstr "" #: src/getcert.c:4855 src/getcert.c:4896 src/getcert.c:4911 src/getcert.c:4927 #: src/getcert.c:4942 src/getcert.c:4961 src/getcert.c:4975 src/getcert.c:4988 msgid " -S\tconnect to the certmonger service on the system bus\n" msgstr "" #: src/getcert.c:4856 src/getcert.c:4897 src/getcert.c:4912 src/getcert.c:4928 #: src/getcert.c:4943 src/getcert.c:4962 src/getcert.c:4976 src/getcert.c:4989 msgid " -s\tconnect to the certmonger service on the session bus\n" msgstr "" #: src/getcert.c:4862 #, c-format msgid "Usage: %s refresh [options]\n" msgstr "" #: src/getcert.c:4865 msgid " -a\trefresh information about all outstanding requests\n" msgstr "" #: src/getcert.c:4885 #, c-format msgid "Usage: %s status [options]\n" msgstr "" #: src/getcert.c:4888 msgid "* Selecting a specific request:\n" msgstr "" #: src/getcert.c:4890 msgid "* When using an NSS database for storage:\n" msgstr "" #: src/getcert.c:4891 msgid " -d DIR\treturn status for the request in this NSS database\n" msgstr "" #: src/getcert.c:4892 msgid " -n NAME\treturn status for cert which uses this nickname\n" msgstr "" #: src/getcert.c:4893 msgid "* When using files for storage:\n" msgstr "" #: src/getcert.c:4894 msgid " -f FILE\treturn status for cert stored in this PEM file\n" msgstr "" #: src/getcert.c:4903 #, c-format msgid "Usage: %s list-cas [options]\n" msgstr "" #: src/getcert.c:4908 msgid " -c CA\tlist only information about the CA with this name\n" msgstr "" #: src/getcert.c:4918 #, c-format msgid "Usage: %s refresh-ca [options]\n" msgstr "" #: src/getcert.c:4923 msgid " -c CA\trefresh information about the CA with this name\n" msgstr "" #: src/getcert.c:4924 msgid " -a\trefresh information about all known CAs\n" msgstr "" #: src/getcert.c:4935 #, c-format msgid "Usage: %s add-ca [options]\n" msgstr "" #: src/getcert.c:4939 src/getcert.c:4953 msgid " -c CA\t\tnickname to give to the new CA configuration\n" msgstr "" #: src/getcert.c:4940 msgid " -e CMD\thelper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4949 #, c-format msgid "Usage: %s add-scep-ca [options]\n" msgstr "" #: src/getcert.c:4954 msgid " -u URL\tlocation of SCEP server\n" msgstr "" #: src/getcert.c:4955 msgid " -i ID\t\tCA identifier\n" msgstr "" #: src/getcert.c:4956 msgid " -R FILE\tfile containing CA's certificate\n" msgstr "" #: src/getcert.c:4957 msgid " -r FILE\tfile containing RA's certificate\n" msgstr "" #: src/getcert.c:4958 msgid " -I FILE\tfile containing certificates in RA's certifying chain\n" msgstr "" #: src/getcert.c:4959 msgid " -n\tprefer not to use the SCEP Renewal feature\n" msgstr "" #: src/getcert.c:4968 #, c-format msgid "Usage: %s modify-ca [options]\n" msgstr "" #: src/getcert.c:4972 msgid " -c CA\t\tnickname of the CA configuration\n" msgstr "" #: src/getcert.c:4973 msgid " -e CMD\tupdated helper command to run to communicate with CA\n" msgstr "" #: src/getcert.c:4982 #, c-format msgid "Usage: %s remove-ca [options]\n" msgstr "" #: src/getcert.c:4986 msgid " -c CA\tnickname of CA configuration to remove\n" msgstr "" #: src/getcert.c:5001 #, c-format msgid "Usage: %s command [options]\n" msgstr "" #: src/getcert.c:5003 msgid "request a new certificate from a CA\n" msgstr "" #: src/getcert.c:5005 msgid "begin monitoring an already-issued certificate\n" msgstr "" #: src/getcert.c:5007 msgid "stop monitoring a certificate\n" msgstr "" #: src/getcert.c:5009 msgid "resubmit an in-progress enrollment request, or start a new one\n" msgstr "" #: src/getcert.c:5011 msgid "generate a new private key and replace a certificate\n" msgstr "" #: src/getcert.c:5013 msgid "check on the status of an in-progress enrollment request\n" msgstr "" #: src/getcert.c:5015 msgid "list certificates being monitored and requested\n" msgstr "" #: src/getcert.c:5017 msgid "check the status of a certificate being monitored or requested\n" msgstr "" #: src/getcert.c:5020 msgid "add a CA configuration\n" msgstr "" #: src/getcert.c:5022 msgid "add an SCEP CA configuration\n" msgstr "" #: src/getcert.c:5025 msgid "list known CA configurations\n" msgstr "" #: src/getcert.c:5028 msgid "modify a CA configuration\n" msgstr "" #: src/getcert.c:5031 msgid "refresh cache of all information obtained from a CA\n" msgstr "" #: src/getcert.c:5034 msgid "remove a CA configuration\n" msgstr "" #: src/getcert.c:5102 #, c-format msgid "%s: unrecognized command\n" msgstr "" #: src/ipa.c:140 #, c-format msgid "Unable to determine location of IPA LDAP server.\n" msgstr "" #: src/ipa.c:145 #, c-format msgid "Unable to contact an IPA LDAP server.\n" msgstr "" #: src/ipa.c:229 src/ipa.c:503 #, c-format msgid "Unable to determine base DN of domain information on IPA server.\n" msgstr "" #: src/ipa.c:355 #, c-format msgid "Error setting up for XMLRPC on the client.\n" msgstr "" #: src/ipa.c:623 #, c-format msgid "The -t option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:632 #, c-format msgid "The -k option can not be used with the -K option.\n" msgstr "" #: src/ipa.c:641 #, c-format msgid "The -K option can not be used with either the -k or the -t option.\n" msgstr "" #: src/ipa.c:723 #, c-format msgid "Unable to determine principal name for signing request.\n" msgstr "" #: src/ipa.c:786 #, c-format msgid "No IPA domain configured, and none specified.\n" msgstr "" #: src/ipa.c:800 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using default keytab: " "%s.\n" msgstr "" #: src/ipa.c:804 #, c-format msgid "" "Error setting up ccache for \"%s\" on client using default keytab: %s.\n" msgstr "" #: src/ipa.c:811 #, c-format msgid "" "Error setting up ccache for \"host\" service on client using keytab \"%s\": " "%s.\n" msgstr "" #: src/ipa.c:815 #, c-format msgid "Error setting up ccache for \"%s\" on client using keytab \"%s\": %s.\n" msgstr "" #: src/main.c:74 msgid "use session bus" msgstr "" #: src/main.c:75 msgid "use system bus" msgstr "" #: src/main.c:76 msgid "start a dedicated listening socket" msgstr "" #: src/main.c:77 msgid "only use a dedicated listening socket" msgstr "" #: src/main.c:78 msgid "specify the dedicated listening socket" msgstr "" #: src/main.c:78 msgid "PATHNAME" msgstr "" #: src/main.c:79 msgid "don't become a daemon" msgstr "" #: src/main.c:80 msgid "do become a daemon" msgstr "" #: src/main.c:81 msgid "bus-activated, idle timeout" msgstr "" #: src/main.c:81 msgid "SECONDS" msgstr "" #: src/main.c:82 msgid "don't use an idle timeout" msgstr "" #: src/main.c:83 msgid "set debugging level (implies -n)" msgstr "" #: src/main.c:83 msgid "NUMBER" msgstr "" #: src/main.c:84 src/main.c:86 msgid "start COMMAND and exit when it does" msgstr "" #: src/main.c:87 msgid "write service PID to file" msgstr "" #: src/main.c:88 msgid "force NSS into FIPS mode" msgstr "" #: src/main.c:90 msgid "print version information" msgstr "" #: src/main.c:174 #, c-format msgid "Usage: %s [-s|-S] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-v]\n" msgstr "" #: src/main.c:177 msgid "\t-s use session bus\n" msgstr "" #: src/main.c:178 msgid "\t-S use system bus\n" msgstr "" #: src/main.c:179 msgid "\t-l start a dedicated listening socket\n" msgstr "" #: src/main.c:180 msgid "\t-L only use a dedicated listening socket\n" msgstr "" #: src/main.c:181 msgid "\t-P PATH specify the dedicated listening socket\n" msgstr "" #: src/main.c:182 msgid "\t-n don't become a daemon\n" msgstr "" #: src/main.c:183 msgid "\t-f do become a daemon\n" msgstr "" #: src/main.c:184 msgid "\t-b TIMEOUT bus-activated, idle timeout\n" msgstr "" #: src/main.c:185 msgid "\t-B don't use an idle timeout\n" msgstr "" #: src/main.c:186 msgid "\t-d LEVEL set debugging level (implies -n)\n" msgstr "" #: src/main.c:187 msgid "\t-c COMMAND start COMMAND and exit when it does\n" msgstr "" #: src/main.c:188 msgid "\t-p FILE write service PID to file\n" msgstr "" #: src/main.c:189 msgid "\t-F force NSS into FIPS mode\n" msgstr "" #: src/main.c:190 msgid "\t-v print version information and exit\n" msgstr "" #: src/tdbush.c:119 src/tdbush.c:1937 src/tdbush.c:2344 msgid "An internal error has occurred." msgstr "" #: src/tdbush.c:183 msgid "No matching entry found.\n" msgstr "" #: src/tdbush.c:345 #, c-format msgid "There is already a CA with the nickname \"%s\"." msgstr "" #: src/tdbush.c:439 msgid "Certificate storage type not specified." msgstr "" #: src/tdbush.c:452 #, c-format msgid "Certificate storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:489 src/tdbush.c:522 src/tdbush.c:581 src/tdbush.c:766 #: src/tdbush.c:825 src/tdbush.c:928 src/tdbush.c:973 src/tdbush.c:1028 #: src/tdbush.c:1073 src/tdbush.c:1128 src/tdbush.c:1173 src/tdbush.c:1585 #: src/tdbush.c:3185 src/tdbush.c:3329 #, c-format msgid "The location \"%s\" must be an absolute path." msgstr "" #: src/tdbush.c:516 src/tdbush.c:575 src/tdbush.c:644 msgid "Certificate storage location not specified." msgstr "" #: src/tdbush.c:534 src/tdbush.c:778 src/tdbush.c:985 src/tdbush.c:1085 #: src/tdbush.c:1185 #, c-format msgid "" "The parent of location \"%s\" could not be accessed due to insufficient " "permissions." msgstr "" #: src/tdbush.c:542 src/tdbush.c:786 src/tdbush.c:993 src/tdbush.c:1093 #: src/tdbush.c:1193 #, c-format msgid "The parent of location \"%s\" must be a valid directory." msgstr "" #: src/tdbush.c:553 src/tdbush.c:797 src/tdbush.c:1004 src/tdbush.c:1104 #: src/tdbush.c:1204 #, c-format msgid "The location \"%s\" must be a file." msgstr "" #: src/tdbush.c:593 src/tdbush.c:940 src/tdbush.c:1040 src/tdbush.c:1140 #, c-format msgid "" "The location \"%s\" could not be accessed due to insufficient permissions." msgstr "" #: src/tdbush.c:601 src/tdbush.c:834 src/tdbush.c:948 src/tdbush.c:1048 #: src/tdbush.c:1148 #, c-format msgid "The location \"%s\" must be a directory." msgstr "" #: src/tdbush.c:622 msgid "Certificate nickname not specified." msgstr "" #: src/tdbush.c:665 src/tdbush.c:3048 #, c-format msgid "There is already a request with the nickname \"%s\"." msgstr "" #: src/tdbush.c:701 #, c-format msgid "" "Certificate at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:734 #, c-format msgid "Key storage type \"%s\" not supported." msgstr "" #: src/tdbush.c:760 src/tdbush.c:819 msgid "Key storage location not specified." msgstr "" #: src/tdbush.c:853 msgid "Key nickname not specified." msgstr "" #: src/tdbush.c:909 #, c-format msgid "Key at same location is already used by request with nickname \"%s\"." msgstr "" #: src/tdbush.c:1313 #, c-format msgid "No support for key type \"%s\"." msgstr "" #: src/tdbush.c:1400 msgid "No such CA." msgstr "" #: src/tdbush.c:3066 #, c-format msgid "Certificate authority \"%s\" not known." msgstr "" #: src/tdbush.c:3465 msgid "Unrecognized parameter or wrong value type." msgstr "" #: src/tdbush.c:5017 msgid "Error parsing arguments." msgstr "" #: src/tdbush.c:5071 msgid "Unrecognized property name." msgstr "" #: src/tdbusm.c:2153 msgid "Insufficient access. Please retry operation as root.\n" msgstr "" #: src/tdbusm.c:2157 msgid "Please verify that the certmonger service has been started.\n" msgstr "" #: src/tdbusm.c:2160 msgid "Please verify that the certmonger service is still running.\n" msgstr "" certmonger-0.78.6/po/POTFILES.in0000664000175000017500000000022612645513264013107 00000000000000# List of source files which contain translatable strings. src/certmaster.c src/dogtag.c src/getcert.c src/ipa.c src/main.c src/tdbush.c src/tdbusm.c certmonger-0.78.6/po/Makevars0000664000175000017500000000344512645513264013034 00000000000000# Makefile variables for PO directory in any package using GNU gettext. # Usually the message domain is the same as the package name. DOMAIN = $(PACKAGE) # These two variables depend on the location of this directory. subdir = po top_builddir = .. # These options get passed to xgettext. XGETTEXT_OPTIONS = --keyword=_ --keyword=N_ # This is the copyright holder that gets inserted into the header of the # $(DOMAIN).pot file. Set this to the copyright holder of the surrounding # package. (Note that the msgstr strings, extracted from the package's # sources, belong to the copyright holder of the package.) Translators are # expected to transfer the copyright for their translations to this person # or entity, or to disclaim their copyright. The empty string stands for # the public domain; in this case the translators are expected to disclaim # their copyright. COPYRIGHT_HOLDER = Red Hat, Inc. # This is the email address or URL to which the translators shall report # bugs in the untranslated strings: # - Strings which are not entire sentences, see the maintainer guidelines # in the GNU gettext documentation, section 'Preparing Strings'. # - Strings which use unclear terms or require additional context to be # understood. # - Strings which make invalid assumptions about notation of date, time or # money. # - Pluralisation problems. # - Incorrect English spelling. # - Incorrect formatting. # It can be your email address, or a mailing list address where translators # can write to without being subscribed, or the URL of a web page through # which the translators can contact you. MSGID_BUGS_ADDRESS = certmonger-devel@lists.fedorahosted.org # This is the list of locale categories, beyond LC_MESSAGES, for which the # message catalogs shall be used. It is usually empty. EXTRA_LOCALE_CATEGORIES = certmonger-0.78.6/po/Rules-quot0000644000175000017500000000337612645513266013346 00000000000000# Special Makefile rules for English message catalogs with quotation marks. DISTFILES.common.extra1 = quot.sed boldquot.sed en@quot.header en@boldquot.header insert-header.sin Rules-quot .SUFFIXES: .insert-header .po-update-en en@quot.po-create: $(MAKE) en@quot.po-update en@boldquot.po-create: $(MAKE) en@boldquot.po-update en@quot.po-update: en@quot.po-update-en en@boldquot.po-update: en@boldquot.po-update-en .insert-header.po-update-en: @lang=`echo $@ | sed -e 's/\.po-update-en$$//'`; \ if test "$(PACKAGE)" = "gettext"; then PATH=`pwd`/../src:$$PATH; GETTEXTLIBDIR=`cd $(top_srcdir)/src && pwd`; export GETTEXTLIBDIR; fi; \ tmpdir=`pwd`; \ echo "$$lang:"; \ ll=`echo $$lang | sed -e 's/@.*//'`; \ LC_ALL=C; export LC_ALL; \ cd $(srcdir); \ if $(MSGINIT) -i $(DOMAIN).pot --no-translator -l $$ll -o - 2>/dev/null | sed -f $$tmpdir/$$lang.insert-header | $(MSGCONV) -t UTF-8 | $(MSGFILTER) sed -f `echo $$lang | sed -e 's/.*@//'`.sed 2>/dev/null > $$tmpdir/$$lang.new.po; then \ if cmp $$lang.po $$tmpdir/$$lang.new.po >/dev/null 2>&1; then \ rm -f $$tmpdir/$$lang.new.po; \ else \ if mv -f $$tmpdir/$$lang.new.po $$lang.po; then \ :; \ else \ echo "creation of $$lang.po failed: cannot move $$tmpdir/$$lang.new.po to $$lang.po" 1>&2; \ exit 1; \ fi; \ fi; \ else \ echo "creation of $$lang.po failed!" 1>&2; \ rm -f $$tmpdir/$$lang.new.po; \ fi en@quot.insert-header: insert-header.sin sed -e '/^#/d' -e 's/HEADER/en@quot.header/g' $(srcdir)/insert-header.sin > en@quot.insert-header en@boldquot.insert-header: insert-header.sin sed -e '/^#/d' -e 's/HEADER/en@boldquot.header/g' $(srcdir)/insert-header.sin > en@boldquot.insert-header mostlyclean: mostlyclean-quot mostlyclean-quot: rm -f *.insert-header certmonger-0.78.6/po/insert-header.sin0000644000175000017500000000124012645513266014574 00000000000000# Sed script that inserts the file called HEADER before the header entry. # # At each occurrence of a line starting with "msgid ", we execute the following # commands. At the first occurrence, insert the file. At the following # occurrences, do nothing. The distinction between the first and the following # occurrences is achieved by looking at the hold space. /^msgid /{ x # Test if the hold space is empty. s/m/m/ ta # Yes it was empty. First occurrence. Read the file. r HEADER # Output the file's contents by reading the next line. But don't lose the # current line while doing this. g N bb :a # The hold space was nonempty. Following occurrences. Do nothing. x :b } certmonger-0.78.6/po/en@boldquot.header0000644000175000017500000000247112645513266014764 00000000000000# All this catalog "translates" are quotation characters. # The msgids must be ASCII and therefore cannot contain real quotation # characters, only substitutes like grave accent (0x60), apostrophe (0x27) # and double quote (0x22). These substitutes look strange; see # http://www.cl.cam.ac.uk/~mgk25/ucs/quotes.html # # This catalog translates grave accent (0x60) and apostrophe (0x27) to # left single quotation mark (U+2018) and right single quotation mark (U+2019). # It also translates pairs of apostrophe (0x27) to # left single quotation mark (U+2018) and right single quotation mark (U+2019) # and pairs of quotation mark (0x22) to # left double quotation mark (U+201C) and right double quotation mark (U+201D). # # When output to an UTF-8 terminal, the quotation characters appear perfectly. # When output to an ISO-8859-1 terminal, the single quotation marks are # transliterated to apostrophes (by iconv in glibc 2.2 or newer) or to # grave/acute accent (by libiconv), and the double quotation marks are # transliterated to 0x22. # When output to an ASCII terminal, the single quotation marks are # transliterated to apostrophes, and the double quotation marks are # transliterated to 0x22. # # This catalog furthermore displays the text between the quotation marks in # bold face, assuming the VT100/XTerm escape sequences. # certmonger-0.78.6/po/en@quot.header0000644000175000017500000000226312645513266014122 00000000000000# All this catalog "translates" are quotation characters. # The msgids must be ASCII and therefore cannot contain real quotation # characters, only substitutes like grave accent (0x60), apostrophe (0x27) # and double quote (0x22). These substitutes look strange; see # http://www.cl.cam.ac.uk/~mgk25/ucs/quotes.html # # This catalog translates grave accent (0x60) and apostrophe (0x27) to # left single quotation mark (U+2018) and right single quotation mark (U+2019). # It also translates pairs of apostrophe (0x27) to # left single quotation mark (U+2018) and right single quotation mark (U+2019) # and pairs of quotation mark (0x22) to # left double quotation mark (U+201C) and right double quotation mark (U+201D). # # When output to an UTF-8 terminal, the quotation characters appear perfectly. # When output to an ISO-8859-1 terminal, the single quotation marks are # transliterated to apostrophes (by iconv in glibc 2.2 or newer) or to # grave/acute accent (by libiconv), and the double quotation marks are # transliterated to 0x22. # When output to an ASCII terminal, the single quotation marks are # transliterated to apostrophes, and the double quotation marks are # transliterated to 0x22. # certmonger-0.78.6/po/boldquot.sed0000644000175000017500000000033112645513266013655 00000000000000s/"\([^"]*\)"/“\1â€/g s/`\([^`']*\)'/‘\1’/g s/ '\([^`']*\)' / ‘\1’ /g s/ '\([^`']*\)'$/ ‘\1’/g s/^'\([^`']*\)' /‘\1’ /g s/“â€/""/g s/“/“/g s/â€/â€/g s/‘/‘/g s/’/’/g certmonger-0.78.6/po/quot.sed0000644000175000017500000000023112645513266013013 00000000000000s/"\([^"]*\)"/“\1â€/g s/`\([^`']*\)'/‘\1’/g s/ '\([^`']*\)' / ‘\1’ /g s/ '\([^`']*\)'$/ ‘\1’/g s/^'\([^`']*\)' /‘\1’ /g s/“â€/""/g certmonger-0.78.6/po/remove-potcdate.sin0000644000175000017500000000066012645513266015145 00000000000000# Sed script that remove the POT-Creation-Date line in the header entry # from a POT file. # # The distinction between the first and the following occurrences of the # pattern is achieved by looking at the hold space. /^"POT-Creation-Date: .*"$/{ x # Test if the hold space is empty. s/P/P/ ta # Yes it was empty. First occurrence. Remove the line. g d bb :a # The hold space was nonempty. Following occurrences. Do nothing. x :b } certmonger-0.78.6/po/Makefile.in.in0000644000175000017500000003552412645513266014015 00000000000000# Makefile for PO directory in any package using GNU gettext. # Copyright (C) 1995-1997, 2000-2007 by Ulrich Drepper # # This file can be copied and used freely without restrictions. It can # be used in projects which are not available under the GNU General Public # License but which still want to provide support for the GNU gettext # functionality. # Please note that the actual code of GNU gettext is covered by the GNU # General Public License and is *not* in the public domain. # # Origin: gettext-0.17 GETTEXT_MACRO_VERSION = 0.17 PACKAGE = @PACKAGE@ VERSION = @VERSION@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ SHELL = /bin/sh @SET_MAKE@ srcdir = @srcdir@ top_srcdir = @top_srcdir@ VPATH = @srcdir@ prefix = @prefix@ exec_prefix = @exec_prefix@ datarootdir = @datarootdir@ datadir = @datadir@ localedir = @localedir@ gettextsrcdir = $(datadir)/gettext/po INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ # We use $(mkdir_p). # In automake <= 1.9.x, $(mkdir_p) is defined either as "mkdir -p --" or as # "$(mkinstalldirs)" or as "$(install_sh) -d". For these automake versions, # @install_sh@ does not start with $(SHELL), so we add it. # In automake >= 1.10, @mkdir_p@ is derived from ${MKDIR_P}, which is defined # either as "/path/to/mkdir -p" or ".../install-sh -c -d". For these automake # versions, $(mkinstalldirs) and $(install_sh) are unused. mkinstalldirs = $(SHELL) @install_sh@ -d install_sh = $(SHELL) @install_sh@ MKDIR_P = @MKDIR_P@ mkdir_p = @mkdir_p@ GMSGFMT_ = @GMSGFMT@ GMSGFMT_no = @GMSGFMT@ GMSGFMT_yes = @GMSGFMT_015@ GMSGFMT = $(GMSGFMT_$(USE_MSGCTXT)) MSGFMT_ = @MSGFMT@ MSGFMT_no = @MSGFMT@ MSGFMT_yes = @MSGFMT_015@ MSGFMT = $(MSGFMT_$(USE_MSGCTXT)) XGETTEXT_ = @XGETTEXT@ XGETTEXT_no = @XGETTEXT@ XGETTEXT_yes = @XGETTEXT_015@ XGETTEXT = $(XGETTEXT_$(USE_MSGCTXT)) MSGMERGE = msgmerge MSGMERGE_UPDATE = @MSGMERGE@ --update MSGINIT = msginit MSGCONV = msgconv MSGFILTER = msgfilter POFILES = @POFILES@ GMOFILES = @GMOFILES@ UPDATEPOFILES = @UPDATEPOFILES@ DUMMYPOFILES = @DUMMYPOFILES@ DISTFILES.common = Makefile.in.in remove-potcdate.sin \ $(DISTFILES.common.extra1) $(DISTFILES.common.extra2) $(DISTFILES.common.extra3) DISTFILES = $(DISTFILES.common) Makevars POTFILES.in \ $(POFILES) $(GMOFILES) \ $(DISTFILES.extra1) $(DISTFILES.extra2) $(DISTFILES.extra3) POTFILES = \ CATALOGS = @CATALOGS@ # Makevars gets inserted here. (Don't remove this line!) .SUFFIXES: .SUFFIXES: .po .gmo .mo .sed .sin .nop .po-create .po-update .po.mo: @echo "$(MSGFMT) -c -o $@ $<"; \ $(MSGFMT) -c -o t-$@ $< && mv t-$@ $@ .po.gmo: @lang=`echo $* | sed -e 's,.*/,,'`; \ test "$(srcdir)" = . && cdcmd="" || cdcmd="cd $(srcdir) && "; \ echo "$${cdcmd}rm -f $${lang}.gmo && $(GMSGFMT) -c --statistics -o $${lang}.gmo $${lang}.po"; \ cd $(srcdir) && rm -f $${lang}.gmo && $(GMSGFMT) -c --statistics -o t-$${lang}.gmo $${lang}.po && mv t-$${lang}.gmo $${lang}.gmo .sin.sed: sed -e '/^#/d' $< > t-$@ mv t-$@ $@ all: check-macro-version all-@USE_NLS@ all-yes: stamp-po all-no: # Ensure that the gettext macros and this Makefile.in.in are in sync. check-macro-version: @test "$(GETTEXT_MACRO_VERSION)" = "@GETTEXT_MACRO_VERSION@" \ || { echo "*** error: gettext infrastructure mismatch: using a Makefile.in.in from gettext version $(GETTEXT_MACRO_VERSION) but the autoconf macros are from gettext version @GETTEXT_MACRO_VERSION@" 1>&2; \ exit 1; \ } # $(srcdir)/$(DOMAIN).pot is only created when needed. When xgettext finds no # internationalized messages, no $(srcdir)/$(DOMAIN).pot is created (because # we don't want to bother translators with empty POT files). We assume that # LINGUAS is empty in this case, i.e. $(POFILES) and $(GMOFILES) are empty. # In this case, stamp-po is a nop (i.e. a phony target). # stamp-po is a timestamp denoting the last time at which the CATALOGS have # been loosely updated. Its purpose is that when a developer or translator # checks out the package via CVS, and the $(DOMAIN).pot file is not in CVS, # "make" will update the $(DOMAIN).pot and the $(CATALOGS), but subsequent # invocations of "make" will do nothing. This timestamp would not be necessary # if updating the $(CATALOGS) would always touch them; however, the rule for # $(POFILES) has been designed to not touch files that don't need to be # changed. stamp-po: $(srcdir)/$(DOMAIN).pot test ! -f $(srcdir)/$(DOMAIN).pot || \ test -z "$(GMOFILES)" || $(MAKE) $(GMOFILES) @test ! -f $(srcdir)/$(DOMAIN).pot || { \ echo "touch stamp-po" && \ echo timestamp > stamp-poT && \ mv stamp-poT stamp-po; \ } # Note: Target 'all' must not depend on target '$(DOMAIN).pot-update', # otherwise packages like GCC can not be built if only parts of the source # have been downloaded. # This target rebuilds $(DOMAIN).pot; it is an expensive operation. # Note that $(DOMAIN).pot is not touched if it doesn't need to be changed. $(DOMAIN).pot-update: $(POTFILES) $(srcdir)/POTFILES.in remove-potcdate.sed if LC_ALL=C grep 'GNU @PACKAGE@' $(top_srcdir)/* 2>/dev/null | grep -v 'libtool:' >/dev/null; then \ package_gnu='GNU '; \ else \ package_gnu=''; \ fi; \ if test -n '$(MSGID_BUGS_ADDRESS)' || test '$(PACKAGE_BUGREPORT)' = '@'PACKAGE_BUGREPORT'@'; then \ msgid_bugs_address='$(MSGID_BUGS_ADDRESS)'; \ else \ msgid_bugs_address='$(PACKAGE_BUGREPORT)'; \ fi; \ case `$(XGETTEXT) --version | sed 1q | sed -e 's,^[^0-9]*,,'` in \ '' | 0.[0-9] | 0.[0-9].* | 0.1[0-5] | 0.1[0-5].* | 0.16 | 0.16.[0-1]*) \ $(XGETTEXT) --default-domain=$(DOMAIN) --directory=$(top_srcdir) \ --add-comments=TRANSLATORS: $(XGETTEXT_OPTIONS) @XGETTEXT_EXTRA_OPTIONS@ \ --files-from=$(srcdir)/POTFILES.in \ --copyright-holder='$(COPYRIGHT_HOLDER)' \ --msgid-bugs-address="$$msgid_bugs_address" \ ;; \ *) \ $(XGETTEXT) --default-domain=$(DOMAIN) --directory=$(top_srcdir) \ --add-comments=TRANSLATORS: $(XGETTEXT_OPTIONS) @XGETTEXT_EXTRA_OPTIONS@ \ --files-from=$(srcdir)/POTFILES.in \ --copyright-holder='$(COPYRIGHT_HOLDER)' \ --package-name="$${package_gnu}@PACKAGE@" \ --package-version='@VERSION@' \ --msgid-bugs-address="$$msgid_bugs_address" \ ;; \ esac test ! -f $(DOMAIN).po || { \ if test -f $(srcdir)/$(DOMAIN).pot; then \ sed -f remove-potcdate.sed < $(srcdir)/$(DOMAIN).pot > $(DOMAIN).1po && \ sed -f remove-potcdate.sed < $(DOMAIN).po > $(DOMAIN).2po && \ if cmp $(DOMAIN).1po $(DOMAIN).2po >/dev/null 2>&1; then \ rm -f $(DOMAIN).1po $(DOMAIN).2po $(DOMAIN).po; \ else \ rm -f $(DOMAIN).1po $(DOMAIN).2po $(srcdir)/$(DOMAIN).pot && \ mv $(DOMAIN).po $(srcdir)/$(DOMAIN).pot; \ fi; \ else \ mv $(DOMAIN).po $(srcdir)/$(DOMAIN).pot; \ fi; \ } # This rule has no dependencies: we don't need to update $(DOMAIN).pot at # every "make" invocation, only create it when it is missing. # Only "make $(DOMAIN).pot-update" or "make dist" will force an update. $(srcdir)/$(DOMAIN).pot: $(MAKE) $(DOMAIN).pot-update # This target rebuilds a PO file if $(DOMAIN).pot has changed. # Note that a PO file is not touched if it doesn't need to be changed. $(POFILES): $(srcdir)/$(DOMAIN).pot @lang=`echo $@ | sed -e 's,.*/,,' -e 's/\.po$$//'`; \ if test -f "$(srcdir)/$${lang}.po"; then \ test "$(srcdir)" = . && cdcmd="" || cdcmd="cd $(srcdir) && "; \ echo "$${cdcmd}$(MSGMERGE_UPDATE) $${lang}.po $(DOMAIN).pot"; \ cd $(srcdir) && $(MSGMERGE_UPDATE) $${lang}.po $(DOMAIN).pot; \ else \ $(MAKE) $${lang}.po-create; \ fi install: install-exec install-data install-exec: install-data: install-data-@USE_NLS@ if test "$(PACKAGE)" = "gettext-tools"; then \ $(mkdir_p) $(DESTDIR)$(gettextsrcdir); \ for file in $(DISTFILES.common) Makevars.template; do \ $(INSTALL_DATA) $(srcdir)/$$file \ $(DESTDIR)$(gettextsrcdir)/$$file; \ done; \ for file in Makevars; do \ rm -f $(DESTDIR)$(gettextsrcdir)/$$file; \ done; \ else \ : ; \ fi install-data-no: all install-data-yes: all $(mkdir_p) $(DESTDIR)$(datadir) @catalogs='$(CATALOGS)'; \ for cat in $$catalogs; do \ cat=`basename $$cat`; \ lang=`echo $$cat | sed -e 's/\.gmo$$//'`; \ dir=$(localedir)/$$lang/LC_MESSAGES; \ $(mkdir_p) $(DESTDIR)$$dir; \ if test -r $$cat; then realcat=$$cat; else realcat=$(srcdir)/$$cat; fi; \ $(INSTALL_DATA) $$realcat $(DESTDIR)$$dir/$(DOMAIN).mo; \ echo "installing $$realcat as $(DESTDIR)$$dir/$(DOMAIN).mo"; \ for lc in '' $(EXTRA_LOCALE_CATEGORIES); do \ if test -n "$$lc"; then \ if (cd $(DESTDIR)$(localedir)/$$lang && LC_ALL=C ls -l -d $$lc 2>/dev/null) | grep ' -> ' >/dev/null; then \ link=`cd $(DESTDIR)$(localedir)/$$lang && LC_ALL=C ls -l -d $$lc | sed -e 's/^.* -> //'`; \ mv $(DESTDIR)$(localedir)/$$lang/$$lc $(DESTDIR)$(localedir)/$$lang/$$lc.old; \ mkdir $(DESTDIR)$(localedir)/$$lang/$$lc; \ (cd $(DESTDIR)$(localedir)/$$lang/$$lc.old && \ for file in *; do \ if test -f $$file; then \ ln -s ../$$link/$$file $(DESTDIR)$(localedir)/$$lang/$$lc/$$file; \ fi; \ done); \ rm -f $(DESTDIR)$(localedir)/$$lang/$$lc.old; \ else \ if test -d $(DESTDIR)$(localedir)/$$lang/$$lc; then \ :; \ else \ rm -f $(DESTDIR)$(localedir)/$$lang/$$lc; \ mkdir $(DESTDIR)$(localedir)/$$lang/$$lc; \ fi; \ fi; \ rm -f $(DESTDIR)$(localedir)/$$lang/$$lc/$(DOMAIN).mo; \ ln -s ../LC_MESSAGES/$(DOMAIN).mo $(DESTDIR)$(localedir)/$$lang/$$lc/$(DOMAIN).mo 2>/dev/null || \ ln $(DESTDIR)$(localedir)/$$lang/LC_MESSAGES/$(DOMAIN).mo $(DESTDIR)$(localedir)/$$lang/$$lc/$(DOMAIN).mo 2>/dev/null || \ cp -p $(DESTDIR)$(localedir)/$$lang/LC_MESSAGES/$(DOMAIN).mo $(DESTDIR)$(localedir)/$$lang/$$lc/$(DOMAIN).mo; \ echo "installing $$realcat link as $(DESTDIR)$(localedir)/$$lang/$$lc/$(DOMAIN).mo"; \ fi; \ done; \ done install-strip: install installdirs: installdirs-exec installdirs-data installdirs-exec: installdirs-data: installdirs-data-@USE_NLS@ if test "$(PACKAGE)" = "gettext-tools"; then \ $(mkdir_p) $(DESTDIR)$(gettextsrcdir); \ else \ : ; \ fi installdirs-data-no: installdirs-data-yes: $(mkdir_p) $(DESTDIR)$(datadir) @catalogs='$(CATALOGS)'; \ for cat in $$catalogs; do \ cat=`basename $$cat`; \ lang=`echo $$cat | sed -e 's/\.gmo$$//'`; \ dir=$(localedir)/$$lang/LC_MESSAGES; \ $(mkdir_p) $(DESTDIR)$$dir; \ for lc in '' $(EXTRA_LOCALE_CATEGORIES); do \ if test -n "$$lc"; then \ if (cd $(DESTDIR)$(localedir)/$$lang && LC_ALL=C ls -l -d $$lc 2>/dev/null) | grep ' -> ' >/dev/null; then \ link=`cd $(DESTDIR)$(localedir)/$$lang && LC_ALL=C ls -l -d $$lc | sed -e 's/^.* -> //'`; \ mv $(DESTDIR)$(localedir)/$$lang/$$lc $(DESTDIR)$(localedir)/$$lang/$$lc.old; \ mkdir $(DESTDIR)$(localedir)/$$lang/$$lc; \ (cd $(DESTDIR)$(localedir)/$$lang/$$lc.old && \ for file in *; do \ if test -f $$file; then \ ln -s ../$$link/$$file $(DESTDIR)$(localedir)/$$lang/$$lc/$$file; \ fi; \ done); \ rm -f $(DESTDIR)$(localedir)/$$lang/$$lc.old; \ else \ if test -d $(DESTDIR)$(localedir)/$$lang/$$lc; then \ :; \ else \ rm -f $(DESTDIR)$(localedir)/$$lang/$$lc; \ mkdir $(DESTDIR)$(localedir)/$$lang/$$lc; \ fi; \ fi; \ fi; \ done; \ done # Define this as empty until I found a useful application. installcheck: uninstall: uninstall-exec uninstall-data uninstall-exec: uninstall-data: uninstall-data-@USE_NLS@ if test "$(PACKAGE)" = "gettext-tools"; then \ for file in $(DISTFILES.common) Makevars.template; do \ rm -f $(DESTDIR)$(gettextsrcdir)/$$file; \ done; \ else \ : ; \ fi uninstall-data-no: uninstall-data-yes: catalogs='$(CATALOGS)'; \ for cat in $$catalogs; do \ cat=`basename $$cat`; \ lang=`echo $$cat | sed -e 's/\.gmo$$//'`; \ for lc in LC_MESSAGES $(EXTRA_LOCALE_CATEGORIES); do \ rm -f $(DESTDIR)$(localedir)/$$lang/$$lc/$(DOMAIN).mo; \ done; \ done check: all info dvi ps pdf html tags TAGS ctags CTAGS ID: mostlyclean: rm -f remove-potcdate.sed rm -f stamp-poT rm -f core core.* $(DOMAIN).po $(DOMAIN).1po $(DOMAIN).2po *.new.po rm -fr *.o clean: mostlyclean distclean: clean rm -f Makefile Makefile.in POTFILES *.mo maintainer-clean: distclean @echo "This command is intended for maintainers to use;" @echo "it deletes files that may require special tools to rebuild." rm -f stamp-po $(GMOFILES) distdir = $(top_builddir)/$(PACKAGE)-$(VERSION)/$(subdir) dist distdir: $(MAKE) update-po @$(MAKE) dist2 # This is a separate target because 'update-po' must be executed before. dist2: stamp-po $(DISTFILES) dists="$(DISTFILES)"; \ if test "$(PACKAGE)" = "gettext-tools"; then \ dists="$$dists Makevars.template"; \ fi; \ if test -f $(srcdir)/$(DOMAIN).pot; then \ dists="$$dists $(DOMAIN).pot stamp-po"; \ fi; \ if test -f $(srcdir)/ChangeLog; then \ dists="$$dists ChangeLog"; \ fi; \ for i in 0 1 2 3 4 5 6 7 8 9; do \ if test -f $(srcdir)/ChangeLog.$$i; then \ dists="$$dists ChangeLog.$$i"; \ fi; \ done; \ if test -f $(srcdir)/LINGUAS; then dists="$$dists LINGUAS"; fi; \ for file in $$dists; do \ if test -f $$file; then \ cp -p $$file $(distdir) || exit 1; \ else \ cp -p $(srcdir)/$$file $(distdir) || exit 1; \ fi; \ done update-po: Makefile $(MAKE) $(DOMAIN).pot-update test -z "$(UPDATEPOFILES)" || $(MAKE) $(UPDATEPOFILES) $(MAKE) update-gmo # General rule for creating PO files. .nop.po-create: @lang=`echo $@ | sed -e 's/\.po-create$$//'`; \ echo "File $$lang.po does not exist. If you are a translator, you can create it through 'msginit'." 1>&2; \ exit 1 # General rule for updating PO files. .nop.po-update: @lang=`echo $@ | sed -e 's/\.po-update$$//'`; \ if test "$(PACKAGE)" = "gettext-tools"; then PATH=`pwd`/../src:$$PATH; fi; \ tmpdir=`pwd`; \ echo "$$lang:"; \ test "$(srcdir)" = . && cdcmd="" || cdcmd="cd $(srcdir) && "; \ echo "$${cdcmd}$(MSGMERGE) $$lang.po $(DOMAIN).pot -o $$lang.new.po"; \ cd $(srcdir); \ if $(MSGMERGE) $$lang.po $(DOMAIN).pot -o $$tmpdir/$$lang.new.po; then \ if cmp $$lang.po $$tmpdir/$$lang.new.po >/dev/null 2>&1; then \ rm -f $$tmpdir/$$lang.new.po; \ else \ if mv -f $$tmpdir/$$lang.new.po $$lang.po; then \ :; \ else \ echo "msgmerge for $$lang.po failed: cannot move $$tmpdir/$$lang.new.po to $$lang.po" 1>&2; \ exit 1; \ fi; \ fi; \ else \ echo "msgmerge for $$lang.po failed!" 1>&2; \ rm -f $$tmpdir/$$lang.new.po; \ fi $(DUMMYPOFILES): update-gmo: Makefile $(GMOFILES) @: Makefile: Makefile.in.in Makevars $(top_builddir)/config.status @POMAKEFILEDEPS@ cd $(top_builddir) \ && $(SHELL) ./config.status $(subdir)/$@.in po-directories force: # Tell versions [3.59,3.63) of GNU make not to export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/doc/0000775000175000017500000000000012645513264011541 500000000000000certmonger-0.78.6/doc/scep.odp0000664000175000017500000003731212645513264013125 00000000000000PK cF3&¬¨//mimetypeapplication/vnd.oasis.opendocument.presentationPK cFÒ]*|Thumbnails/thumbnail.png‰PNG  IHDRÀÜ3MTfPLTE ###,,,333===CCCJJJRRR[[[ccclllsss~~~ƒƒƒ‹‹‹“““œœœ£££«««³³³½½½ÃÃÃÌÌÌÒÒÒÜÜÜãããëëëóóóþþþÿÿÿë$¢¥cIDATxÚí]‰‚œªµÛ\AQQêÿÿòUÚÓ“L’ÉÍdy‰Þ\gTŠ‚C§Ø&üJ.................Þº6Ç?¾Û/„´½6{ Üë‘~ÛìBÿ­âÏâñ§\ÿ`„Ží#Ÿã›áB‘u]IÁ¼L[%ƒ²© «›àì>}"ã0n½>Gþæµ÷¿õ ¬/v°Ç_—í|aRº÷ @)J²‚T'h¬k¸…ÏãÏŠÜ/î%f6£°f±„±ád[ã¯Ç·CìH >n§ÌÇ ,÷\Ü (ö®òK„u9†Æ%ú¢( áBiMð©¿sÈ)õàÓi¿Í˜±5µZ€ÈP «Õ–l{Bß²‡Ø†¸ú<éî È6Êü ¨ 6<²ÌýL©9¸¹tMš¤]-^ÀKø²(€­à”WÑèg(Ç;ød0Fu+¡¸'nIЀŽ‚ ~;ÅøyH n@`™Ÿa¾JÒÆE"li;G LVAŸ* ±,‡ÃÈ;¸…b™s6 `ypà­#t ¿ÕMŒŠí(±a”9ÄøÊ(sÆôQ”7/ •~˜äÝ£>N‰>ÈÕsƒ< À†O«Àq͹ T×ÁÃ쀨ëÈSãA@QÙ£öäÓô<%§èG ¹@Í=€ ¬—Û€h¹¦,Ç~Rp#æ°&GK_0yŸ4‚g‡ykÌ¢°¯80RTœÍ¼Ü<á}@}XÀ€¥oT± ÓÍv €Ïå4«Ööªœms* AßÇId1—cÒMvȱ¶TŽVÝ)´Røï“4É›E0ÙôúÖ­Ï°ß[ÛÞwbšEßöˆÑ‘£ @!ç1ë†ãïµUE‚¢5©ùh ô¥l¹h)[Ö0¡Ÿ Ëz=˜¬m)k&I^—²¡ϨxÁ®^QF…EfPœ^4nµGRÛRÙ`o”,ûã­¯J0˜YG±(Gß*C¿b[-5åÚµ²š^bú¾ÀŒêÂ}üÍ”ÞkÖÔ_í M·¦Ë‹ð›€"WõmüÀ6èé·çÛ=l—;|pppppppppppppppppppppðìû? ÀV®à ^l3šóö×ö¸ý‚ëKÊ^–}€­.,ÀÀsìJÅ[àEGûgKŽÂØ|¶ Nèg˜Ô‹2'ϧ—ÚîJäÚ¾RÆ 3:Ì*æ){§,*%ÌâbΪT¯PX)M¡• æ^ørV=êµÛ^Íjð=rrLgc*¦¡°Ĭè«iª< ü"¦.NçÛÆÖkcL­Ž6 ŽÖk5×ê¡Ìq8­çÒ[^þQs@Ú¾Øä+eœ°±™MU9s¶aß`_ñŠµŸ¨å «ãßc/0­®Bp)›_úo±«ÙŽ^(¬Á;¼9à<>rX’·Êï=ůb iav¤"~ÞÆáI™§ôìj(¯Gû·핲˜&[àÄ°Ø{‰ÐÁÞ¾L×} OZßÁ0”R?}埙 ^¾À®Ý|„2ýÎ/ã[Üuÿ ¨qüpÞØ ò…NºSf¶Cßë/âsÒf¶ðv+¾¦_Ûi¢ Qáoˆ©\ÞÀ|C¶C´9f¿¡\ÀŠå 9£Æ qL³Œ*5v1½Ÿ12]ÌNïèÓ¤wMAQcoY­ÑØg%Eâ42×ÅÒ>‘¼Þ£¾„ÅqÚØqGKª‘ ÀÔjŽ$¯] #jR|¿,üüŒ¿Z7ñÆ]y]iË UµNÆ·Øh!j?eûžM}“œóŦýt§(ÛvJý\ئѬC¾©bn Ó4£ˆƒDÍÅ8‰¹M mf1AB€áï6Ÿècººtrî铽è}ÔÇb{6E¤£jh`$Õ“°uãó°ÁG¸u–òÏõÄOhß‘Üâç„z›‚2=êÒ&BFŽbÝÚzþvH`ËìR ØÚÊ{Y[$9Ò*mç;²ªªühÅ–c6{H­ŸhÅø}¶XIìÈÜRkHbŒÎ_bYÓ.úŒ•,+ÛÓ@çÛ vc¨Æô…û/ BÈÕ÷û¯å3Õús‰ÐwÎeÝÓ&¢_p¹¦ú³¨°ÿê8äO0¹åò>€0ê}ðxÓB;~ ŒøÃÂóHùsÒgïû–/[9?eÖØ ¿a3§*i-BÙ> 0æãÜ” êÅÚ D¿ÌâÕHtövÞ¾|‰¯õü Ü°øטúŽ!v9œEꨩ»ªL§>Ð…UIsË×Jä=ì’:ºZÄý¥]‘nZ"G. žs€9“´ÛÒ!Uë õ§2Ù3âô‡¥„Pv®#é®&¡FÃZTSf¦ÊFX¹ãûpú´=F~8TÄÏ,•Bh»HÀ„Žœ“¨HêUÅ=·¬i@ê2·‡ð´ï@úÓê±DÖÂCîøDœ®pù®?B&Ä" Þ{ÈBZù4ì5ê®G¢9­ŽZT S&Iïúîã€0wéº[°¨ `£.s)y€ ‹%rÀt*ÅY-£JyP; Áñ.µÌž ðÁ¥Y¶ï·#=B&Ç8h”€ƒP)iŽàmÖMФEŸä+‘"—€':Úép§fIù£ <ê!UËÚ™\E^*íPzäÿèĸ}8Ï:H-tÕ“çÂÞ”‡‘dwŽB5?’ˆ1] RX@åĨ¨…ا¤wÿSÚ€\Íc¶Â˜32Ln——A ý°€Ùe“)!Z€³ºYt„s»s4èÔYy`Kçž«@ÕÎ%»5²0aÈ#¿š'†¢ÄÃ4äƒ&WÐgŽˆZ Û ÚVô‡wƒF¼É¿§ŽÏjÞ÷iÎnÊZ0;¸æþelct@ã"#†¶<1ÇNð¦Ñ£Úy„my¤Ë6˜ë…=Yá!1OÇhdV¨§àžt¯“‰ªû}1ºÝð0¨o~æ5Œ¡éàϹ~9{#»ð/pÍ \\\\\ü±Ðš¸5RËÝ·OüÚT‰Þ‹þÊ ü,Çÿ¦æÊñµ¢ï`ɺZ„袜‹¤^_ÅçIßHÑU¾µrp¬cørz[ÃòÊß·O }Ÿu¿4,4õ±Šgz‰þ†o%ëïi…¦ßµlØkçªB«©û ±0? á̦­ä«"±ÐÊ)W!DçºìŸJ,®°2·¢tŒ òŹlŒAšB‘š(DÉ 4µc‰I`Í0bj¶vMSEë8¡L`*¿:dþJ. ÀcAç:Á<ì-”Châ@,÷Õ§[_ƒ)9—Mè«­¾XKçE õú© Ö XS ø5(Mh4$Ï3•Çô³´hýª!Ü·=S¨i!ÕFBèlqšPsÛEÍKt»Ð4ÕÔÀ~ ±@b0’5÷[ÞÀBò0Õc¥h=¸)U—1|œ$*k¥nÇP™ë]+Ñ÷f4žN;1tf“3ÍV;Í•Íå9súl5x£¥ZhØLaµŒ¦¡hfv¦TÄ4Išœ]S…š¹°x¢2d¡NΠǯ-!ø€qöýy¬‰Æ§l#à6[»>°ÈÞZ{ ” 9>9W5®¶¼oòaûÝØÜb°æ»ëÞÝtBi]ð^k:ÏŠŽ¬ÂFðl~ºrÅäw+(Ùp_†¿âlŠ †ýiò±Rq`¨“f’kGa}[NåhÙ+Ö¯zƒ]Õq0¬[±?3²[å6ɶS;&ƒ‡gäè›ØÇ4‰>6‚ÒÄF5˜ñx£„R죱¬–ï$BÝð‡ƒý„ùÎÙ‚½øa&¸Ê?$ÿÐçEõåüÍɘ1·? Àå \ÛÉþ˜Z!Ü¥¿ €§ÅŠqåÑ+³ÿ!+Ýòk,`!v/º3ç©¬è ”L¯{Ù£œ$;rry{ý–r0ô°w±»l‡.`Hʦ äJõ³Ký bDýÑÕ¡€|Yr?Æz¶Zšùž£›bLSNèNTSûp4>€º%?Òxž‹ÞÓk›{{³’Íœ<†dÞŽÄgé5ÒýL¯ë€ô©R “0»€VxWÚ'—"ê¢ÔÌÌ÷{òr}2ÔC¯»÷¾¨Â¯w˜ùp4>€è Æé/¦ñ\¢7é5ršÂ>H6sòƒðo÷y³ÀVùºÞë¸ïXkôðÊA¢Ï0<»Qðjº„ôD/à‰Ì/CÞ{ª–<3Šwò%ÄÃÑøX–âäøòAã“ÈIRÀƒd3'!Þ>ã­ ZgJXˆ^™­]S¹g—‚u©¹á‹u}€õØûô°àvpèýà*°Q ÒŸÞOuÏyà*plæäÈÆ1ä`‘·#SGòÞ·‹z®˜rö˜ªÐŠq8•Ñ¥ ªjÂUÀç îë^™Ç¦¤ÝC¶ÑÒã€bŒU ¦ðãÁÚ•z*¤ñc‰$[Þ€à£pµìŸ“dGNÎ!é8\”@òn±RW4sÉ­Üäp)ïrÝs7xºÝzôŠ`oIÏ,ëVÁ$syK””›ä£xlemÄÃÑøÅDÈj(¿ÁÉøÒêk_í†ÆõÛ˜`]<Ÿ%þ“Öp©¯‹Âý6þ9_«ºÛ¶o,Gáô°þ}ìØ‚ƒ»ój,ÿóJ›ÅÿDpÿ@¶Ç‰‹ßT ùJÀúd[hqÏ !þ!ÚÓ±Ò6N·¥Hügõß`ªá›Ð†ß@]—íÎ6¸5“6:3bñyWLPÖmÚt\óNð!Šþ¢HÈ•žeó¦M ½ŸÇ¸ÙßdÚâãàaúfÚòÄgÄy zœiIî0,»ÝÁîñ‘Vÿ¼ðKp˜žö[ $;uG<Ì/¶‰vø r£z„½€²]m«8\Æ›JÏ8$ì´Ù£Î=”ÈþAî» U=¯Çöovšy1=ôƒš¼° «› ƒ ÚçÙF…#)ãâNŽ„ÞI{ìÓÈÅØ1-rä/|‰Ÿæ3\ì%MNÑfM¹XÇ‹¼~‘Toìcš‹¥RJ¢@Gh[*Õ•V¨õ'xÿï³€€-À‡Ñjp²dàiچŀêt(E8-%#Á^Ï9:N#É[${Œî‹Ð#ÏE”È [J”ƒûMuU¶Øt;?Ca y›O{Ú5eµÝÍšuÑ_î ¹¾Ô½}l®ªÇ!EÆ;anļ@5aý©G„0ºp¥Ý^°Í\/¦›„šYZÛØjU½-w”˜~|6ú?ô¼³ŸwÜS·¾b#6Þ‰O›òã“£ÍúGǸò†üç7üÂa^±mˆqx’â?×F·ã/P­G_Ážzç°ÙsÎç8>°`uon$ø?]ºî»²ùU]Tøààààààà f=žëhÇè«a² ÑÛ¿€¾´Uw¬¡ÍRMùiÐìïÀ:Z†µÇ£ñýYDÚJÛ7kh!È¿» ì:Ãþ4,=ÐéåüHþò6ÀÓù8qm€JÍÚ(>#$ž"ÿz&GVµŽ™ZzwœóXÀ æ+9ïHUÎ3’Øf7þÍUÀÒ®q@<‹÷…òy° hÇèÜ;ó7ÀW5ÿÛLpU¾¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸¸ø?¿þ°ãUrÌ'sIEND®B`‚PK cFmeta.xml”M›0†ïýˆîlaƒ¬TU=m?¤M¥Þ"Çx‰[°‘m–쿯1’nZåhÏóμžÈNmã½0¥¹…Bè{LPYqQþ÷ݧ`ë?”ïrùüÌ)Õ¤}Ë„ Zfˆg¥Bã)Tø½XÍ5¤eŠeÇÄ"Ák»BÓÍ©áâWáé0Ã0„CJU”epÑ­è™ëzÕ8ª¢€5l¬  XØÑá­¦Fvm©SLÛ(1®)·åXkÖ¹¤”gÓ£lj€³A˜€é¼ÐºåÍ­G6 ²ílÍCsÑS"x{kš‘}ãºVUÕ\ŠõÛubHðÂÙðÞ¿Xƒÿ¿6;¿v^ƒÕâE~¹lÙ8Ž2wCá‚Nì3#Fªò ±ûà}$ÇWr8žƒ«Ô¤u'›=°fYA´ `ÀhAŒîqœ„÷Y´…iŠàœçR‘W_‘ÆF›0ÉÚ¤Û,ÉÁ‚ü?}®b“;VYÏ¢ª^¹šå·J>'ðiöò&~)£¯´aºDÑóõÄž¿V=®¥6œzî^~2jìêôÂ~´ñÁ,¨™`Êy|䞺q€$LBÆw\ô§ýmºOoì;%Ç„ wzÞTA<»ú“/³×þ'åoPKVùÑÝPK cF settings.xmlÝZ[sâ6~ï¯ÈxúÐ>.›MØ!$4̲ dÛí›° FÖñHrýõ•lCY0Ä‘íN§yHˆ,}ßÑÑѹá«O¯>;y!)ò¶S?­9'À]ô(Ÿ·§I¿ré|êüp…³u¡å¡úÀUE‚RzŠ<Ñ˹lÅÛN(x ‰¤²Å‰²¥ÜÀ×ËZÛ³[Y<òÊ(n; ¥‚Vµº\.O—NQÌ«õf³Yž®§¤†"*8áöšmZùŒÎ³¢Ä³·×#âFh³ ÞX$x£V;«Æÿ¯gKŸ²¬\fnÅE?Ð2OÙwº"œúYaÌܽ]ÇR—½¹‘=9¬-i8µ=¬Í s•('þS¡ |c#'É°‘±íhÊÖ …åÆzœ´u߯ùJ¥Q@W™`ପU R®œNåCã쪺ó.ì!ÌT:xó¼™ý7ê©Eü‡óÚE-7üÐù"UüFý¢v‘¿â“ B¹¯àírÁ2ý°¢5ÚÞÄ*‹Ä°x;bJ%´%8cu;Mü"¨7‰>vৈ w:3Â$äÁï ä»:.} Çœ4,‡à•s¢È¾1§\–Gb~)‡)¦‚«úB–M2B}…n%׉X(ï÷È.[’U‰Æk W¸d>Ö•q8·Œú”#d«HmC= º†.Í+Õ?Ö,Þ@îs•qDÉy ÉJ‡½]|"áüìZ !VN§šùç²m'ËH;HEþ+Ò Ñ}ïmQªoCÝcWiï?-ãﱇ ÷EÌoì!Qf¸1®ú³ûrBßË‹3¦]x¼PàŒlá zåx¯ µš{ŒºÏxU·=„ó8þˆ · | ÅÓŒõ@Ž@<â2ý,Y£sc¥ƒ »¦9]Ëó]Cß£Ú Eàš0ˆajòj™þÿ+†üŠ9^1\ÚçÉ=$BÂAéÏ,íåð#²çBïëÌõ˜àùJmmÖHèßïuÝ/ˆBQ"Ç pŒ²¯t–õÛ†ãÛ¿°oåìc £Œ×ÐÜr“°¬çrDDƒ^Bbý¢ÿÀS²ƒ a/ep»-pèqÒiHŸ Aeï)Å¡ˆÂö{šKÝ `«' â†(R|¼¿¦JotbLáéqx ññãO¡àç„ *“~*qjǪ³At®'zè›Æ§iÛM4e¡i_”][ï̵#½!raÍéYrÂŒ„LiÚ±JÏ&ê ÛÞ­?¯E•°‡ûw}SêyÀ7¶‘¿›7Ô¹r˜RM$ÜÖ°BÃõil™úAÉ^û.AÍPª^ÃœrÓÚ²F¸åÞÑõyèÛxTƒYߟ¹æ“ü^Þ¡ iS'¬x?{G”kï¶Ñþ3Þ•Ú®F!wUx´hÌ×.4 kÄgåt · ®‰û\F…½Íq´—ž›Dórz1º KcQeIߧêX–éw‘Q¨1›(å‹€ˆ#­QàBÅö½uF;÷G¾ÄÈÏ0¡ Ê5¤ -E~&u´´ö綴H¼G r¶›}ÕÕÕ¥í„NÆ|’Ú °¬mG:§› ,Æ¡ï—…¢ÿ5$Œª]õäiF° :1o/èeHVûÞi}ê —]Ò Í6sQ¦Ü¾ìÙ\‚1îÖïýdL^àkürÅï1”eÜ©Mç9Ýù'µà¹øSà鈫cº??`G¢ïûzQ º÷¦IõлH¿PK Òú„"Í$PK cF content.xmlÝ[Ínã8¾ïSì{eù'‰½IƒžÝShlÒÀ^i‰’¸-‰’Žíy‰9Îûí“l‘”dê×RâL'Ó tGdYõU±ª(Un<$±õŒ'4½›¸ÓÙÄ©G}’†w“¯Oÿ²o&?Þÿå–ñðƧÞ.Á©°=š øßî”oôìÝdÇÒ EœðMŠÌ7ÂÛÐ §×Ƥި½ôÇx0»"6¹>ˆ¡Ì’¶Â‹¶ÃwVÄ&·ÏÐ~(³¤PMö€e>ðØ( ždHš‡˜¤ßî&‘ÙÆqöûýt¿˜R:îz½vÔl)°WÒe;+*ßspŒåfÜq§®SÐ&X ¡òIZS¤t—l1 ¨aÕŒa$ ®tÌa ™<ÿz{×sس!6ØÏqÕUþpWYø&o‚DÔaßç3Lª>?œüŠ%C÷’´¨d˜9…bŶ©¬`Z+¦/X2ÏÇÆ •$Ep\D®R¥Öe(µŽ –fƒ»šóXr¶œ<¤Ôê+Ö–ÇùB´ùÃÓ¿9gË”I-ßÉ(uæ“û¢®ÑqŒ;å@õ Û>öb~«óS9lég)÷ÝäaçYŸhÊ©tÈ!%œÌãÝäo(£üU2=6±Œ…3"<ô9`âœÙ“@‚U&µ>Ó”voZ¥kÙUÓÛ!N|¯ õ1K/!Ø#JùÁ$ÝÁMP«\ψuGˆKƒd“„´p€‡{Aàøžpþ*Ù´çöÛóD3D¤#8¹LÖ×”À•åìÉ3iÿŸPDe!ЫœxíîNW¼ÊÇÑNP™Ô=[­S2õoEV?sËÍr)ó+‹¡O NsÐÎ .c&æV¥öÞ"ï[ÈdÖT̉ºc ¶ u‘Ñí±'x/¹Ox£#Ü„¨·‹%]q PÌ»!-b[¤ØQbj@Ô‡×ürxÒDùg4{ʇ¬á,!CYD¼RïüÙTYOÀ€Sƒ‡“_Gl™5·4u*æ2Ääû õ`kΟq€v1Œí¶‚• iLx•ðÁí“^Ꙋϔ¦°J9µwLê¼™ükÎ@E ¶Ø_Þàf^Òœ‹0 #‘Ot“´sçS÷z #PjxåH”4D=8Ôd\LW³«q".^)b Ä™ª´L þ´¼ºž‘þKÓ CJ†R¢r¤b!lãÀ´·d5/У‚f06½ªŽn©òr{š5®bBa ÷Hy!+FIêŽzå2]©™ªp*ƒ¨Ô"©S¨²Q|ZE0Èú½‚v~½ÎŽK熻ÝÞVü9Ü:6[шIŠËhdLÉq[DÂÈÎ_š[4‰Ä1«Ñ¨½;ÊÏB5mÀ[ç™0ÆŠíªÊòùò½DC HT˜)Y*‚Ëís¯*ÖËà °íoPT«—ªà1²_ÝMkjÙpFiWÍs¢•:´ZSsR¤|¶*¢!}’D¾fˆñ¡^Öd(©:¤(ç»åè QvÀI!mІ0´>·Ù® ·ÆÉ£G„‡fø5ƒ¾\ŸÜ✋NÍ2\ëfD¥uÝÿoüÔˆÆR‹IW˜ë‹ú]ó›{u1ŸìÕÎ^Îç ×y1wÏß1|“®ÞÙ >ç½'ø¼Gœ9Á]¡¾[ž.,Õ7!òÚr"ˆñ3Ž‹ºY]-=)Ç¡ä-¶‡9¸mÿnÊ2É⸴‚±®a µª¬¦c´…™"M¯ú*ÍucÕ‚îlöW…GŸ†#ôŸ_VéPØÞb`ÂeEþ1‘Y¼%2îtþq‘Y¾-27™Õ["3Ÿ.?.2Wo‰Ìâãârý¦¸|äø{ó–È,?rü]¿-28þº³·„fõ°1=¤6žwÖÆÛ] —‚zm¬õ”-›¸î&ÿûý··(„ å‹kÏ£@ìñ˜liy½ÝrÕVgóWàp¹‚ø=#´¸B¯)Œß3BË "ôòýžZ] ¡×Êï¡«‹!ôò‚ù=ãs}9|þ¤qúæb½¦€~Ï­/ˆÐŸ3NËûB½¦ þ5km§³¯,ŸØRÿX>˜}÷·êsŸìMÒþònxvó/—y¡jGS£ âòͽnj2û@jMM惦ŽÑ‘îŠ?=¸O³I.EÀ`¬Ênn®z¡2‚9%?ðªX\¶Wé=t‹_nÇùjê®e׎lôò¨Ñƒ,k–ÅÓQžµ«ž+By1âünrê\ªÌ‚½Ù©3û¹©s•è[z0<=wICÚ·"p’?gMâ/%1wî¿rlÝ.ž6‰Ÿ€8ÄÂïµïÛÜÙí¡Ü§$Ï}/;\Ü,ʬÁôµíF촀ƈ%(Œ#/²äf MC¸“£-x%"lÅÔÓŸ£h`k0ëÓOº×”[ŸþùÅRÝìªS¥¾’glÙJ‰÷Mî1­ˆ¢Î*GÑ0Ò8£ujTu Ò¤Â)Þ²’ý0˜z –”œ1~°‚ƈòÈ F!Dvjñ {$8* !@¼?°28®{Ê|káÔbø—悤!ØW: ¨ˆ¶öDD/òì|Å1"úÂh@ÄPqOðs-Þ9§?4Þ¿4ªÝíA}6½Y\wõ¢Ñ²-Xgpº¤Û¨ˆ¡¼åk Púô®l©:&Û’ì|bäe[D»d›"7IÃ2%vCä.¦ë«›Fâ›M—×&F‹ék€yq¾(»—*½Ën;rª¿ÚjÚEg*_œ×èz:¿v[R¹î-4VkC%"gk_·¯ÖŠ—2BDãS÷wÍ1œšy¦} OÍþ †j]ç •cÙq¯{3_*¨–oN¥Âs:~#üþÿPKvahÉy R>PK cF styles.xmlí]K“㶾çW¨è²o¤øÒƒãu9I¥*U;Ž+»>» ’à¥HF{Ê?È!‡ü¿ü’àÁ(>DJI£áºÊ»"@÷‡FÝh‚~zÙø£gH"„ƒGÅÐte{(X=*¿}ù›:W~úø§x¹D.|ð°»ÝÀ V£xïÃhD+у(|T¶$xÀ BÑC60zˆÝ ­ô S?ð®ÄÞXÛêœX®׸meF[¨ í{æÄrm€]ÛÊŒ–b*W_ⶕ_"_]bÕÅ›Ä耋_•u‡ãñn·Óv–†Éjl8Ž3æ¥ÃnFn‰Ï©#¸ûN)¬ÍŠà(7­Çªp"Ùö6V0ô1£É¦/U|¡ «l)[âmà‰q—ÄŠ€Ï«=ZGËÇ'4™¬R 3EV\…÷—ŽY™Ê–0j¤“V¤•ÛT>¦ËôÓ%z \¨zÐõ£„yÍÄoÆÜ£òië"Œþ‚ƒ3|© L)©¢ï•@ˆ£‹dâ™2’QìR;µD/ÐSÆGúDt}àžp€ë;-ÒUô*èÕ (ÂÔ:l°IÐcŸAµaŒÑµ`Œà ¨äëÄ5»k´Ée+Þᥙ£x=íPÅ›ÐÜæñÌiÚ°´b¸é‰§Ño¢î£3O¦½_ÀšªE[YÁ¹½ëìUò\x?0CN·Aä+$#þoÁàÏ„àà­@Æ/Š>ÒG¦>²tñœnºž úÌW öpmêßr±=¸[?qfRVW„kä*)mò[ ]iHŒ¨óÃÚb‚¿Bºð1Ýï~gÙÓ °Áäù~V23¥Kçì?ìhS*ÅÎ6À*û3xg…®x3ý*ØÆ8 ó·± ~¸Î$Ün¼åsŒ·MGmBnÚy9õ º P¯òÜ8-aÛ-ꤨ̈>*>QãEaQàA¶·` o…1Â=Å%ð#˜EWj *#6ÆõbeäL®’´ÛªÔeòðNå'HÆd LÕYGŠ4/Ð7ZnÚaÌŸù XmÁŠ>‚àÒÕ:&tÈû\jW¥+TjËš$퀃y|­Pzú0áþ²zCÈz~wÙ="4¿K„&½!djö]"4í !ë.ñ™õ‡ÏÚéyoÙwj§ºO;mè½A4y[†Z*N<¶qãÕN }SogÅ^DâB$S¢øTx)Åg™ƒ’<æA5õ ]ÿž?åÈ!6¤G1åA"F`²~ÞJL@‰®°ÒRWx33ÏN*â¬Çk‚·«µšœHË]”‰â}x@SàÇCuy½8òjó$ò!ž¥’qMÄ’Ä[:lDÄzdLÒævÉX§í%óÆÔV©;ðèPeÌ&ƒT‡BK$Ô§‡DÓêB“iyŽcM´G*òIš”‘@j (Æ~Šñê’8]÷Èu^·„Œ¢†Œ¤ˆ¬¼Š®qp®PÝÒÜ"ÐGpY¡¦ø¹JK«Ó› )v$ †@7Þ¡˜.8"ò\ Kð€d™2j)rnÀL3&513ÿ©ˆ‰eó†hÚ¬9š&&rm0Ͷ½+šÂø¼&œ‰u{Fâ*ý*ñ¯$§ë‹"¾ŽèÇtCD4ùLiÍú?8ë¿›úïŒ}öw€ÙÿY[ìoÊUþÍ·TE¡öªÜ̈µ1 ðˆÕѪìßr¥WœYÂ@œŒ³)oƒËöö×ä´y£—lQ¦t!é, ¥/¬=•¸œtu›lq`W üwSlœoWÈžDÑHÝ«–p Ø¿ªah£È¶ÝI‘™HÆ5dª=ÆÒÅRváe³ý,‘¶ÃavóÕ×âl·¤ççs…1X.]×qnk ÚLrÑËaÀ@3jBYAÅøž5ƒnuZLÖx×Þr´‚>AÓ6ëà4öu›)FW1Uש8I# ì{Ý¡{%³r³ÐÙ1'ÓIîž‹è‚hK.1_ËÎw/.vUÆIe½š<ilS“N ú6@q⟷#³‹ øk’)´î×a ·# ¿}ñZ»-ñ´2¼x†$ÂΨMÊÏåRq.`€cxh½zâĴ<ÛÎ!²æÎ>‡0õ9‡ uò¹/íºÙŸû9¥pË…|-|§5@Üí)EjžSÚ´÷h¡Å–‘®ÒÙ´ËN~‹y³ÔZâÄDk‚‚¯ì7}|$a´$Ç…G&S•œË83¥ô_ÿ9%prÍn5¥ÔlNÄ™¿UªN)=E‡n&™«gê/¥ôe*]!¥tz§)“ý%•Îî4!°¿¤Rç.ñé/¥ÔÐoÅPßnN©a¼-SÝRiJžÔD’‡ÀËe/–9^.xp—: ÞKà¥täW¼ÔŸSUÄ=ºX]û «›jKi½rX±²0¶ÍO9TJDµúAÌ수u>bvb•…ÅùOEÌî1«#bugÄ+eC×å€î©ˆMúAÌîˆX]Ì@lÚb“÷ƒØ¬Ħï±y?ˆÍÞbN?ˆÍßbÑvQ™<ÜûAX–òÌjºyÈyž[žweì¥ ¥ ¥ÜÈ©ÖpQÊpQÊpQÊíi ¥¼™³õ›=Õ.J¹·ôƒë\”ÂïãE¦áô+kn8ýN¿†Ó¯Loÿôë-…Z†8Ëgâ,CœåFâ,Cœeˆ³ q–!ÎrÛ q–â,Á“!NrÁ8‰]ueÇ'y­8‰]Ê |§q’ î$N">Ô}£É{j^ ሟ?é_L–íUø€mèÓ…a}:±F…q]É£²Ô’mxÏ«–£é“yz)ìž¹E3ÛJ'Kˆ¡k“É4}˜¾¯­êši%—·žÇƒA0þ2‡@н«a^ˆk0qåin\ˆÓ˜7ϧŽóÍø¢wžni`³ýd3-ÍÉÇ<•ÊÒ&úìd¥<¶ºá[óV<E¶%°ãƒ1&?Ù­ìûÅ®š¤û»jÐ}Ò• š¦lÃú\ÃŽs¼¿C›8òós¦9BO@5ü+äìÓË 9±Jk0n€y¥ôF£è>Õ‘ BØ,{9Ôþä…¥HXŸ}©Ž5A"?, HB±¨/0ñØñêÉW#S¾J/ètâ«0EÓÛ­Ùuù=é•$KŒã#$¼«`»YHß ¬$ô@Lý Ä//ít…×ÓŠ\ï2ÇÊ+OÅî¾ù>¦ÞT·3#¦Yά`ÄŽK}½{I]{¢%¦ý«c–5¢cJyùB½[ÑÛv:bqîË{·‹Ew½8÷µ¼Kcqí™ôky"¥1/åXDK¾>µ&rP]˜”¥Óû„O¿–5]bÖÇ,¾W7L­Æ¤Ó±—¹¬Ð¥ñi¥„w‹Ò•ß }¥}Õß=IºÝFIË/m^Q ® SS*ÐÓ§‹],øÎs† !hHº„† !hH€®‹Ð4$µOjÞl›Ãf{Øl›ía³}{ ›ía³=l¶‡Íö°Ù¾m„†Í¶”m_›Œ•l@óOŠ§<žïƒ={ÄZÌ‹P¿Ø¦‹œÆPu¹ô À4é¡o-©Kq Øo H¾ùÈRo9ÕøPx’z¨ ¡‹)3uùmj!7;Ì>,gÙkéÙô>;áæID Ó¼N¼Þn@þ(ç° 9CÏÑL'ËLO§?tÎ’(¥,?º»°&B3/Û±¡köܺJÏsmbë™úÎäjˆö~aØKÝb¿$T÷+æO)Ë0 ™ <Ë  ŸÖÔ)¥¬j–3•Õ%ù¿ ÓÝõA‰ÏïB’NQÎ׿$‹M˜, Fü`ÑDfœÃÔúäsXÎÈî"ÃÔL³ LYa¤¬C¤²Vú˼–>™Sm"²¹«Ðœg)•hâ8½¾R5c%¥²vÕ-Qš×ÿøƒÿ(þùÃ*þ1…N"h‰æ¸j·î!’ k¶êʦ‚Q½C0”ÂP’I.Pi?læD3œÒ¸±× ã¦É/aèÚÜšÕ ZÂAÝÛ Éö`8Çõ:{TäüS•çJMµÓ˜9µbÛš#ÞE©;áâ‚‹lÛ^Œ~¦Už´¶=¯EÁp4ƒ/éý-% wÖbp"nÓ.¸Íµùlr 7G›Ì¦­‘ë¾0Lú[NĬÓÑJ×L]Ó;€v‹+DOþ™óFÇ°z_Þ¿¡7,Í™ÎKøSÿ`&[zK›ýEÃl\ŸvöGùN¾ûÞï™fÎŒ S=™™²âhÆÄ‘õÆJ«Uqžpq[}µèm:6'Bõ¾œ&ЬÁÑé ¯Áá©pxÊëYæIþNN>ˆ§=ìn7Ù[>ÑÇÿPK2;+ö=ºPK cFConfigurations2/images/Bitmaps/PK cFConfigurations2/toolpanel/PK cFConfigurations2/progressbar/PK cF'Configurations2/accelerator/current.xmlPKPK cFConfigurations2/floater/PK cFConfigurations2/statusbar/PK cFConfigurations2/toolbar/PK cFConfigurations2/popupmenu/PK cFConfigurations2/menubar/PK cFMETA-INF/manifest.xml­SAnà ¼çwC›S…bç©/H@ñÚA‚Á%¿/¶”ØU•ªQ}b—f†]Øí/ÎVgˆÉxlØ+a öÁ¡aÇ÷úíÛÍÎ)4=$’· *ç0ÝÓ†åˆÒ«d’Då IÒÒÀÎëìI~ÇËIéž- lY»©f½ÞX¨ËùxÑ}¶¶ŠN HæmQ5]4L…`VT`⌟ ó¥O"¤²N&žñr content.xmlPK cF2;+ö=º º'styles.xmlPK cF7Configurations2/images/Bitmaps/PK cFN7Configurations2/toolpanel/PK cF†7Configurations2/progressbar/PK cF'À7Configurations2/accelerator/current.xmlPK cF8Configurations2/floater/PK cFM8Configurations2/statusbar/PK cF…8Configurations2/toolbar/PK cF»8Configurations2/popupmenu/PK cFó8Configurations2/menubar/PK cFf·3Áâ)9META-INF/manifest.xmlPK6~:certmonger-0.78.6/doc/submit.txt0000664000175000017500000001750312645513264013533 00000000000000The CA submission internal API uses child processes to do the heavy lifting. Self-signing is handled internally, but interaction with most CAs is done through external helpers. An external CA helper has a few jobs: * Invoked either with "SUBMIT" or "POLL" as the value of the $CERTMONGER_OPERATION environment variable, with command-line arguments as specified in certmaster's configuration. Some of the data from the request is also provided in the environment. * $CERTMONGER_REQ_SUBJECT -> requested subject name * $CERTMONGER_REQ_EMAIL -> email address subjectAltName values * $CERTMONGER_REQ_HOSTNAME -> DNS name subjectAltName values * $CERTMONGER_REQ_PRINCIPAL -> Kerberos principal name subjectAltName values * $CERTMONGER_REQ_IP_ADDRESS-> IP address subjectAltName values (since 0.78) * $CERTMONGER_CA_PROFILE -> requested enrollment profile/template/certtype * $CERTMONGER_CSR -> certificate signing request * $CERTMONGER_CERTIFICATE -> previously-issued certificate, if there is one * $CERTMONGER_CA_NICKNAME -> nickname of CA (since 0.73) * $CERTMONGER_SPKAC -> signing request as an SPKAC (since 0.73) * $CERTMONGER_SPKI -> request's SubjectPublicKeyInfo (since 0.73) * $CERTMONGER_KEY_TYPE -> client's public key type (since 0.73) * $CERTMONGER_SCEP_CA_IDENTIFIER -> name of an SCEP CA to use when requesting capabilities (since 0.77) * $CERTMONGER_PKCSREQ -> an SCEP PKCSReq pkiMessage (since 0.77) * $CERTMONGER_PKCSREQ_REKEY -> if set, an SCEP PKCSReq pkiMessage, when rekeying (since 0.77) * $CERTMONGER_GETCERTINITIAL-> an SCEP GetCertInitial pkiMessage (since 0.77) * $CERTMONGER_GETCERTINITIAL_REKEY -> if set, an SCEP GetCertInitial pkiMessage, when rekeying (since 0.77) * $CERTMONGER_SCEP_RA_CERTIFICATE -> the SCEP server's RA cert, used in building the SCEP requests (since 0.77) * $CERTMONGER_SCEP_CA_CERTIFICATE -> if set, the SCEP server's CA cert, if the RA cert isn't self-signed (0.77) * $CERTMONGER_SCEP_CERTIFICATES -> if set, the other certificates provided by the SCEP server (0.77) * If in "submit" mode, $CERTMONGER_CSR has as its value a PEM-formatted CSR. * Submit request to CA. * Issued -> output certificate on stdout, exit with status 0. * Wait a bit -> output CA cookie value on stdout, exit with status 1. * Rejected -> output error message on stdout, exit with status 2. * Connect error -> output error message on stdout, exit with status 3. * Underconfigured-> output error message on stdout, exit with status 4. * Wait a bit more-> output recommended delay (seconds) and CA cookie value on stdout, separated by newline, and exit with status 5. * Need SCEP data -> exit with status 16 (since 0.77). * Need to rekey -> exit with status 17 (since 0.78). * If in "poll" mode, $CERTMONGER_CA_COOKIE has as its value a CA cookie value in addition to the PEM-formatted CSR in $CERTMONGER_CSR. * Poll CA for result of previously-started enrollment operation. * Issued -> output certificate on stdout, exit with status 0. * Wait some more -> output CA cookie value on stdout, exit with status 1. * Rejected -> output error message on stdout, exit with status 2. * Connect error -> output error message on stdout, exit with status 3. * Underconfigured-> output error message on stdout, exit with status 4. * Wait some more -> output recommended delay (seconds) and CA cookie value on stdout, separated by newline, and exit with status 5. * Need SCEP data -> exit with status 16 (since 0.77). * Need to rekey -> exit with status 17 (since 0.78). * Invoked with "IDENTIFY" as the value of the $CERTMONGER_OPERATION environment variable: * Output suggested ID for CA, exit with status 0. * Connect error -> exit with status 3. * Invoked with "FETCH-ROOTS" as the value of the $CERTMONGER_OPERATION environment variable: * Output suggested nickname for root certificate when stored in an NSS database (a.k.a FriendlyName), root certificate in PEM format, blank line, set of other trusted roots with nicknames (no separators between them, nicknames first to match the presentation of the root), another blank line, set of "other" known (chain) certificates with nicknames (no separators between them, nicknames first to match the presentation of the root), exit with status 0. * Connect error: exit with status 3. * Poll for this at startup and before any of them become invalid. * Invoked with "GET-NEW-REQUEST-REQUIREMENTS" as the value of the $CERTMONGER_OPERATION environment variable: * Output list of environment variable names which are expected to have non-empty values when the helper is run in SUBMIT or POLL mode, without $s, separated by newlines, exit with status 0. * Connect error: exit with status 3. * Polled at startup. * Invoked with "GET-RENEW-REQUEST-REQUIREMENTS" as the value of the $CERTMONGER_OPERATION environment variable: * Output list of environment variable names which are expected to have non-empty values when the helper is run in SUBMIT or POLL mode, without $s, separated by newlines, exit with status 0. * Connect error: exit with status 3. * Polled at startup. * Invoked with "GET-SUPPORTED-TEMPLATES" as the value of the $CERTMONGER_OPERATION environment variable: * Output list of templates/profiles/certtypes which the server claims to be able to issue, exit with status 0. * Connect error: exit with status 3. * Polled at startup. * Invoked with "GET-DEFAULT-TEMPLATE" as the value of the $CERTMONGER_OPERATION environment variable: * Output a single template/profile/certtype which the server claims to be able to issue, which we'll assign to new requests if there's no value to be recovered from an already-issued certificate and none is specified on the command line, exit with status 0. * Connect error: exit with status 3. * Polled at startup. * Invoked with "FETCH-SCEP-CA-CAPS" as the value of the $CERTMONGER_OPERATION environment variable: * If the helper uses SCEP, connect to the server, issue a GetCACaps request, and output the results. * Connect error: exit with status 3. * Polled at startup. * Invoked with "FETCH-SCEP-CA-CERTS" as the value of the $CERTMONGER_OPERATION environment variable: * If the helper uses SCEP, connect to the server, issue GetCACert and GetCAChain requests, and output the results. * Connect error: exit with status 3. * Polled at startup. * Other operations will be defined later. * Operation not supported by this helper -> exit with status 6. Operations to be added (tentative): * Caching CRLs and delta CRLs. When a certificate is issued, it can be output as a PEM-formatted X.509 certificate, a PEM-formatted "certificates only" PKCS#7 signed-data item, a PEM-formatted PKCS#7 enveloped-data with encapsulated content identified as type "data", containing either an X.509 certificate or PKCS#7 signed-data item in binary form, or any of the previous in binary form. When PEM formatting is used, multiple PEM-formatted items can be output if needed. For testing purposes, a helper can be added by creating a file in the CAs directory (usually /var/lib/certmonger/cas) with these contents: id=Test ca_type=EXTERNAL ca_is_default=0 ca_external_helper=/usr/libexec/certmonger/test-submit-helper Equivalently, this can be accomplished by running: getcert add-ca -c Test -e /usr/libexec/certmonger/test-submit-helper Passing the "-c Test" flag to the "getcert request" command will then use the helper to attempt enrollment. This, with some built-in defaults that provide the same result when no existing CAs file defines a CA named "IPA", is how the daemon knows about IPA. The ipa-getcert client, meanwhile, just assumes that clients want to use the CA nicknamed "IPA". certmonger-0.78.6/doc/selinux.txt0000664000175000017500000001070712645513264013716 00000000000000I'm running SELinux. What is certmonger allowed to access? If your copy of certmonger runs confined, you can read the label which the configuration states should be applied to its binary file with: # matchpathcon /usr/sbin/certmonger /usr/sbin/certmonger system_u:object_r:certmonger_exec_t:s0 Meanwhile, you can read the label which is currently applied to its binary file with: # ls --context /usr/sbin/certmonger system_u:object_r:certmonger_exec_t:s0 /usr/sbin/certmonger If the results differ, use "restorecon" to reset the label of the file to value that your configuration says it should have: # restorecon /usr/sbin/certmonger The domain in which the certmonger process runs, like most daemon processes, will often be decided by a transition rule which is specified for the combination of the domain of the process that starts it and the label of the binary file. You can query which domain certmonger be run in, when the binary is started by the init system (which usually runs as "init_t"), with: # sesearch -T -t certmonger_exec_t Found 2 semantic te rules: type_transition init_t certmonger_exec_t : process certmonger_t; type_transition initrc_t certmonger_exec_t : process certmonger_t; If there weren't rules for the combination, the daemon would simply run as the same domain as the process which started it. That's not the case here, though, because an SELinux policy has already been defined for certmonger. SELinux policy is often specified using the names of types, but permissions in the policy can also be expressed in terms of "attributes" which are applied to multiple types. A policy rule that which refers to an attribute applies to all types to which that attribute applies. You can query which types and attributes of directories a process running as "certmonger_t" will be allowed to create files in, and what sorts of files it will be able to create and write to: # sesearch --allow -s certmonger_t -c dir -p add_name allow certmonger_t cert_type : dir { ioctl read write getattr lock add_name remove_name search open } ; allow certmonger_t certmonger_var_lib_t : dir { ioctl read write create getattr setattr lock unlink link rename add_name remove_name reparent search rmdir open } ; allow certmonger_t certmonger_var_run_t : dir { ioctl read write create getattr setattr lock unlink link rename add_name remove_name reparent search rmdir open } ; ... # sesearch --allow -s certmonger_t -c file -p create,write allow certmonger_t cert_type : file { ioctl read write create getattr setattr lock append unlink link rename open } ; allow certmonger_t certmonger_t : file { ioctl read write getattr lock append open } ; allow certmonger_t certmonger_var_lib_t : file { ioctl read write create getattr setattr lock append unlink link rename open } ; allow certmonger_t certmonger_var_run_t : file { ioctl read write create getattr setattr lock append unlink link rename open } ; ... By convention, type names in policy end with "_t", but attribute names don't. Attribute names can be resolved to the list of types to which they're applied by running: # seinfo -x --attribute=cert_type cert_type pki_tomcat_cert_t dovecot_cert_t home_cert_t cert_t slapd_cert_t Each of those types, in turn, will be applied to one or more files or directories by default when packages are installed, when the system was installed, or when the "restorecon" command is used to relabel files and directories. To obtain a list of which path patterns are configured to receive a particular type, you can use a command like this one: # semanage fcontext -l | grep :cert_t: /etc/httpd/alias(/.*)? all files system_u:object_r:cert_t:s0 /etc/pki(/.*)? all files system_u:object_r:cert_t:s0 /etc/ssl(/.*)? all files system_u:object_r:cert_t:s0 /usr/share/ca-certificates(/.*)? all files system_u:object_r:cert_t:s0 /usr/share/pki/ca-certificates(/.*)? all files system_u:object_r:cert_t:s0 /usr/share/pki/ca-trust-source(/.*)? all files system_u:object_r:cert_t:s0 /usr/share/ssl/certs(/.*)? all files system_u:object_r:cert_t:s0 /usr/share/ssl/private(/.*)? all files system_u:object_r:cert_t:s0 /var/named/chroot/etc/pki(/.*)? all files system_u:object_r:cert_t:s0 In enforcing mode, locations which fit these patterns are the locations which the certmonger daemon will be allowed to read and write. certmonger-0.78.6/doc/scep.txt0000664000175000017500000000346212645513264013161 00000000000000The addition of SCEP support brings with it a couple of new command-line options which are useful for SCEP. Non-SCEP use cases are not affected. Unlike IPA, certmaster, the local signer, or self-signing, there's no concept of a "default" SCEP server for the system, so certmonger doesn't provide a pre-canned configuration which attempts to use a default server. In order to be able to use certmonger with an SCEP server, then, a CA configuration needs to be added. While previously this could only be done either through the D-Bus API or by manually editing certmonger's data files, the "getcert" command now also provides both an "add-ca" command for the general case, and an "add-scep-ca" command, which "knows" both the location of certmonger's bundled SCEP helper and the options it recognizes, for the specific case. The results are the same regardless of which command is used. The general option looks like this: getcert add-ca -c exampleSCEPca -e \ "/usr/libexec/certmonger/scep-submit -u http://ca.example.com/cgi-bin/pkiclient.exe" The more specific option looks like this: getcert add-scep-ca -c exampleSCEPca -u http://ca.example.com/cgi-bin/pkiclient.exe If the URL of the server is an HTTPS URL, the -R option should be used to specify the location of the CA certificate, so that the server's HTTPS certificate can be verified. Once that's done, the CA will be listed by "getcert list-cas", and can be used to request a certificate, as per usual: getcert request -c exampleSCEPca -f /etc/pki/certfile -k /etc/pki/keyfile SCEP servers often expect an enrollment challenge password to be present in the enrollment request. The "getcert request" command now recognizes the -L and -l options for specifying such a value, or the name of a file that contains such a value, to include in the client's request. certmonger-0.78.6/doc/sbexample.txt0000664000175000017500000001107012645513264014201 00000000000000An example chain used for code signing in Secure Boot. The highlights: Signer: Basic Constraints (critical): is not a CA Authority Information Access: CA Issuers (URL) CRL Distribution Point: URL Authority Key Identifier Subject Key Identifier Subject Alt Name: DNS:MOPR Extended Key Usage: Code Signing, 1.3.6.1.4.1.311.10.3.6 (szOID_NT5_CRYPTO) Intermediate CA: Basic Constraints (critical): is a CA, no defined path length Authority Information Access: CA Issuers (URL) CRL Distribution Point: URL Authority Key Identifier Subject Key Identifier Key Usage: Digital Signature, Certificate Signing, CRL Signing 1.3.6.1.4.1.311.21.1 (szOID_CERTSRV_CA_VERSION): 02 01 00 = INTEGER:0 1.3.6.1.4.1.311.20.2: (szOID_ENROLL_CERTTYPE_EXTENSION): 1e 0a 00 53 00 75 00 62 00 43 00 41 = BMP String: (UTF16-BE) "SubCA" -----BEGIN CERTIFICATE----- MIIEuDCCA6CgAwIBAgIKYQu72AAAAAAABTANBgkqhkiG9w0BAQsFADCBhDELMAkG A1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQx HjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEuMCwGA1UEAxMlTWljcm9z b2Z0IFdpbmRvd3MgUHJvZHVjdGlvbiBQQ0EgMjAxMTAeFw0xMjA0MDkyMDU1NTBa Fw0xMzA3MDkyMDU1NTBaMHAxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5n dG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9y YXRpb24xGjAYBgNVBAMTEU1pY3Jvc29mdCBXaW5kb3dzMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEA3Khet89xiozfG0nBujlbYVWuF4nKLqDvCYEaCw4s zMMcTNqoj2C3g39i1C607JNgyR7x1+8aMHjKR9kOP08dJCTZv22Bswp7qPoeMr1a OGkP70U/W7RJ3f2g124hOLn3IEsXl+iMWItRH0c94ku0v+HzCumo9hCWc4KURqN7 uQiguNxKJN0CL4OkGlZOg170h3G/q5YOJd1Fbi7woMtyAENvluQVIxW2ovm7l4vn 4Uppxa6F2+H/kI79SbpcTw6TD4zd/3LtE45Xqdv1YcY6/5JG5dU1dCyhZ/wGeTiN 8pMezmV2IgBkeNhw9nxDteYNvonj1jaIFnd01Pr0Tv/rKQIDAQABo4IBPTCCATkw HwYDVR0lBBgwFgYIKwYBBQUHAwMGCisGAQQBgjcKAwYwHQYDVR0OBBYEFJcyzVfG VHOWC/4D1SmhbYtpD+MEMA8GA1UdEQQIMAaCBE1PUFIwHwYDVR0jBBgwFoAUqSkC OY4WxJd4zZD5nk+a4XxVr1MwVAYDVR0fBE0wSzBJoEegRYZDaHR0cDovL3d3dy5t aWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWljV2luUHJvUENBMjAxMV8yMDExLTEw LTE5LmNybDBhBggrBgEFBQcBAQRVMFMwUQYIKwYBBQUHMAKGRWh0dHA6Ly93d3cu bWljcm9zb2Z0LmNvbS9wa2lvcHMvY2VydHMvTWljV2luUHJvUENBMjAxMV8yMDEx LTEwLTE5LmNydDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4IBAQDH800w 9sBFH7arq9zlIDA1wgt8dbFnhK2wqp7Y9kfALfTOjYJ3uONW4yhuTcDURBct6oO5 r5xhM8SR5TaAAk1rrA2YXW3+d2mIzLM3s1q7MqArUEE1FKV23JMrKkrirvljMAQe BASA47HL8GzWkQz3nq0+zTMqm7cVbC2ZduXfrItbWdguozpIJkcGY9+tWZ4TdGja e9MDckPgI4uWwfmeoSmfqomN2FT4EviDRpe3xZkdLhZW204vVti8IHfnu32IbU+2 kHxVXG1UCJckQ1rDNFsbbbtgUwC6g0ElFzlNzTtsgt9QE8b1f8seA5GbY0ad12Bv P7roJCZY8ZqxdLA8 -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- MIIF1zCCA7+gAwIBAgIKYQd2VgAAAAAACDANBgkqhkiG9w0BAQsFADCBiDELMAkG A1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQx HjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEyMDAGA1UEAxMpTWljcm9z b2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIwMTAwHhcNMTExMDE5MTg0 MTQyWhcNMjYxMDE5MTg1MTQyWjCBhDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldh c2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD b3Jwb3JhdGlvbjEuMCwGA1UEAxMlTWljcm9zb2Z0IFdpbmRvd3MgUHJvZHVjdGlv biBQQ0EgMjAxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN0Mu6Lk Lgnj58X3lmm8ACG9aTMz760Ey1SA7gaDu8UghNn30ovzOLCrpK0tfGJ5Bf/jSj8E NSBw48Tna+CcwDZ16Yox3Y1w5dw3tXRGlihbh2AjLL/cR6Vn91EnnnLrB6bJuR47 UzV85dPsJ7mHHP65ySMJb6hGkcFuljxB08ujP10Cak3saR8lKFw2//1DFQqU4Bm0 z9/CEuLCWyfuJ3gwi1sqCWsiiVNgFizAaB1TuuxJ851hjIVoCXNEXX2iVCvdefcV zzVdbBwrXM68nCOLb261Jtk2E8NP1ieuuTI7QZIs4cfNd+iqVE73XAsEh2W0Qxio suBtGXfsWiT6SAMCAwEAAaOCAUMwggE/MBAGCSsGAQQBgjcVAQQDAgEAMB0GA1Ud DgQWBBSpKQI5jhbEl3jNkPmeT5rhfFWvUzAZBgkrBgEEAYI3FAIEDB4KAFMAdQBi AEMAQTALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV 9lbLj+iiXGJo0T2UkFvXzpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3Js Lm1pY3Jvc29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAx MC0wNi0yMy5jcmwwWgYIKwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8v d3d3Lm1pY3Jvc29mdC5jb20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2 LTIzLmNydDANBgkqhkiG9w0BAQsFAAOCAgEAFPx8cVGlecJusu85Prw8Ug9uKz8Q E3P+qGjQSKY0TYqWBSbuMUaQYXnW/zguRWv0wOUouNodj4rbCdcax0wKNmZqjOwb 1wSQqBgXpJu54kAyNnbEwVrGv+QEwOoW06zDaO9irN1UbFAwWKbrfP6Up06O9Ox8 hnNXwlIhczRa86OKVsgE2gcJ7fiL4870fo6u8PYLigj7P8kdcn9TuOu+Y+DjPTFl sIHl8qzNFqSfPaixm8JC0JCEX1Qd/4nquh1HkG+wc05Bn0CfX+WhKrIRkXOKISjw zt5zOV8+q1xg7N8DEKjTCen09paFtn9RiGZHGY2isBI9gSpoBXe7kUxie7bBB8e6 eoc0Aw5LYnqZ6cr8zko3yS2kV3wc/j3cuA9a+tbEswKFAjrqs9lu5GkhN96B0fZ1 GQVn05NXXikbOcjuLeHN5EVzW9DSznqrFhmCRljQXp2Bs2evbDXyvOU/JOI1ogp1 BvYYVpnUeCzRBRvr0IgBnaoQ8QXfun4sY7cGmyMhxPl4bOJYFwY2K5ESA8yk2fIt uvmUnUDtGEXxzopcaz6rA9NwGCoKauBfR9HVYwoy8q/XNh8qcFrlQlkIcUtXun6D gfAhPPQcwcW5kJMOiEWThumxIJm+mMvFlaRdYtagYwggvXUQd30980W5n5efy1eA bzOpBM93pGIcWX4= -----END CERTIFICATE----- certmonger-0.78.6/doc/local-signer.txt0000664000175000017500000000277012645513264014607 00000000000000Local Signer: Design and Implementation Notes "One step forward from self-signed certificates." "Still basically a toy signer." During the run-up to 0.75, we added several entry points during which we call per-CA code. In addition to "ask the CA to sign this", we are: * called to self-identity * currenty called at daemon startup * called to produce a list of our root certificates * currenty called at daemon startup and at a midpoint between startup and the earliest NotValidAfter date for any known roots, iteratively * called to produce a list of profiles we support * currenty called at daemon startup * called to produce the name of the default profile * currenty called at daemon startup * called to produce a list of required first-time-enrollment attributes * currenty called at daemon startup * called to produce a list of required renewal attributes * currenty called at daemon startup The second one, when we're called to produce a list of our root certificates, seems to be a good time to actually bring up a local signer and, when it becomes necessary, add a new certificate for it. The general idea is: if we-don't-have-a-certificate or not-valid-after-time-is-soon: if we-don't-have-a-private-key-of-the-right-type: generate-a-private-key generate-ca-certificate-using-private-key output all certificates Since we don't pass the current set of certificates in to helpers, we either need to start doing that (ugh, the formatting) or implement it as an internal signer, like SelfSign. certmonger-0.78.6/doc/ipa-submit.txt0000664000175000017500000000322112645513264014272 00000000000000The submission protocol is a set of XMLRPCs. All requests go to https://server/ipa/xml. The server's name is given in /etc/ipa/ipa.conf. The client authenticates using negotiate auth, presumably as a client of the server's realm, which is also named in /etc/ipa/ipa.conf. IPA expects all XMLRPCs to include unnamed arguments first, and then a dictionary (XMLRPC-jargon: "struct") of named arguments, some of which are optional (i.e., because the server defines a default value for them). Initial request method = "cert_request". The unnamed required parameter is the CSR in base64-encoded form, with all whitespace (including newlines) stripped. A required named parameter is 'principal', a string-form principal name for which this certificate will be provisioned. An optional named parameter is 'add', with default False, controlling whether or not an entry in the directory should be created for the principal if no such entry already exists. An optional named parameter is 'type', with default 'pkcs10', and other values undefined. It's possible that 'crmf' would be accepted, too, but we don't generate that (or not yet, anyway). Response is a struct with these members: status: 0 or 2 Response struct may also contain some of these members: subject: issued subject, as a string certificate: issued certificate, base64-encoded, no whitespace serial_number: "0x..." request_id: ??? And John was right: if you have any problems getting those creds for negotiate, xmlrpc-c will not return. Not current versions, anyway. And that includes not having [domain_realm] mappings set up right. - Based on ipalib/plugins/cert.py from ipa 2.0 branch on 2009111917 certmonger-0.78.6/doc/helpers.txt0000664000175000017500000002431012645513264013664 00000000000000Except for when it's self-signing certificates, the certmonger daemon interfaces with CAs by calling out to enrollment helpers. The helpers pass signing requests to CAs, pass issued certificates back, and if they support it, are used to fetch other data about CAs as well. The certmonger daemon passes information to helpers through the environment when it runs them. The helpers communicate results back to the daemon using a combination of exit status and data provided on standard output. When certmonger runs a helper, the $CERTMONGER_OPERATION is used to indicate what the daemon expects the helper to do. If a helper does not implement an operation specified in the $CERTMONGER_OPERATION variable, it should exit with status 6 to indicate that the operation is not supported. I recommend that helpers be written so that they can be run interactively for troubleshooting purposes. The most frequent case is enrollment, so when $CERTMONGER_OPERATION is not set, it's suggested that "SUBMIT" is assumed. For testing purposes, a helper can be added by creating a file in the CAs directory (usually /var/lib/certmonger/cas) with these contents: id=Test ca_type=EXTERNAL ca_is_default=0 ca_external_helper=/usr/libexec/certmonger/my-helper Equivalently, this can be accomplished by running: getcert add-ca -c Test -e "/usr/libexec/certmonger/my-helper" Passing the "-c Test" flag to the "getcert request", "getcert resubmit", or "getcert rekey" commands will then cause the daemon to use your helper to attempt the appropriate operation. Note that the command can include options, but things are less likely to break if the helper has sensible defaults. The following sections describe what should happen for each operation when a helper is called. * "SUBMIT" This is called the first time the daemon attempts to send an enrollment request to a CA. The signing data, in PEM form, is provided in the environment. Some of the data from the request is also broken out and provided in the environment: * CERTMONGER_REQ_SUBJECT The subject name from the request, in text form. * CERTMONGER_REQ_EMAIL Any rfc822Name subject alt name values from the request. * CERTMONGER_REQ_HOSTNAME Any dNSName subject alt name values from the request. * CERTMONGER_REQ_PRINCIPAL Any Kerberos principal name subject alt name values from the request. * CERTMONGER_CA_PROFILE The name of the enrollment profile/template/certtype to use, if one was specified. * CERTMONGER_CSR The actual enrollment request, PKCS#10 format, PEM-encoded. * CERTMONGER_CERTIFICATE An older certificate, if we were previously issued one. These are also present starting with version 0.73: * CERTMONGER_CA_NICKNAME The name by which the CA is known, and would have been specified to the -c option to the "getcert" command. If your helper is called in multiple CA configurations, you may want to use this value to distinguish between them in order to provide different behavior. * CERTMONGER_SPKAC The signing request as a signed public key and challenge (SPKAC). * CERTMONGER_SPKI The subjectPublicKeyInfo field from the signing request. * CERTMONGER_KEY_TYPE The type of key included in the signing request. These may also be present starting with version 0.77, though you probably won't use them: * CERTMONGER_SCEP_CA_IDENTIFIER An identifier to pass to an SCEP server when requesting its capabilities list or copies of it and its CA's certificate. * CERTMONGER_PKCSREQ An SCEP PKCSReq pkiMessage. If the daemon is attempting to change keys, this will be signed with the old key. * CERTMONGER_PKCSREQ_REKEY An SCEP PKCSReq pkiMessage. If the daemon is attempting to change keys, this will be signed with the new key, otherwise it is not set. * CERTMONGER_GETCERTINITIAL An SCEP GetCertInitial pkiMessage. If the daemon is attempting to change keys, this will be signed with the old key. * CERTMONGER_GETCERTINITIAL_REKEY An SCEP GetCertInitial pkiMessage. If the daemon is attempting to change keys, this will be signed with the new key, otherwise it is not set. * CERTMONGER_SCEP_RA_CERTIFICATE The SCEP server's RA certificate. * CERTMONGER_SCEP_CA_CERTIFICATE The SCEP server's CA certificate. * CERTMONGER_SCEP_CERTIFICATES Additional certificates in the SCEP server's certifying chain. These are also present starting with version 0.78: * CERTMONGER_REQ_IP_ADDRESS Any iPAddress subject alt name values from the request. The helper is expected to use this information, along with whatever credentials it has or is passed on the command line, to send the signing request to the CA. * If a certificate is issued, output it in PEM form and exit with status 0. See footnote 1 for information about formatting the result. * If the client should wait for a period of time, output a "cookie" value and exit with status 1. The daemon will try again later at a time of its choosing. * If the request was rejected outright, output an error message, and exit with status 2. * If there was an error connecting to the server, output an error message and exit with status 3. The daemon will try again later. * If the helper requires additional configuration data, output an error message and exit with status 4. * If the client should wait for a specific period of time (for example, if the CA has told it when to try again), output a delay size in seconds, a newline, and a "cookie" value, and exit with status 5. The daemon will try again after the specified amount of time has passed. * If the helper needs SCEP data, exit with status 16. Your helper probably won't need to do this. * If the CA indicates that the client needs to try again using a different key pair in the signing request (for example, if its policy limits the number of times a particular key pair can be enrolled, or the length of time one can be in service), exit with status 17. The daemon will generate a new key pair and try again. * If the helper does not understand what is being asked of it, exit with status 6. You should never return this value for "SUBMIT" or "POLL", but it is mentioned here so that we can refer to this list later. * "POLL" If the helper previously returned with status 1 or 5, this is the daemon trying again. The same information supplied for "SUBMIT" requests will be provided in the environment. Additionally, the "CERTMONGER_CA_COOKIE" variable will hold the cookie value returned by the previous call to the helper. If your process requires multiple steps, the cookie is suitable for keeping track of which step is next. Report results as you would for the "SUBMIT" operation. * "IDENTIFY": Output version information for your helper, and exit with status 0. This information is tracked by the daemon and included in the output of the "getcert list-cas -v" command. * "GET-NEW-REQUEST-REQUIREMENTS" Output a list of environment variable names which are expected to have non-empty values when the helper is run in SUBMIT or POLL mode. The list can be either comma- or newline-separated. At some point, we'll teach getcert to instruct people to supply values that are required by the CA that they intend to use if it finds that they didn't supply one of these. * "GET-RENEW-REQUEST-REQUIREMENTS" Just like "GET-NEW-REQUEST-REQUIREMENTS", except for cases when the client attempts to renew an already-issued certificate. In most cases, your helper will want to do the same thing for "GET-RENEW-REQUEST-REQUIREMENTS" as it does for "GET-NEW-REQUEST-REQUIREMENTS" * "GET-SUPPORTED-TEMPLATES" Output a list of supported profile/template/certtype names offered and recognized by the CA. The list can be either comma- or newline-separated. At some point, we'll teach getcert to validate values it receives for its -T option against this list. * "GET-DEFAULT-TEMPLATE" Output a single supported profile/template/certtype name offered and recognized by the CA. If there is no default, output nothing. At some point, we'll teach getcert to use this value as a default if it is not passed the -T option. * "FETCH-SCEP-CA-CAPS" If your helper uses SCEP, connect to the server, issue a GetCACaps request, and output the results. Most helpers are not expected to implement this, and should exit with status 6 to indicate that they don't support it. * "FETCH-SCEP-CA-CERTS" If your helper uses SCEP, connect to the server, issue a GetCACert and GetCAChain requests, and output the results. Most helpers are not expected to implement these, and should exit with status 6 to indicate that they don't support it. * "FETCH-ROOTS" If the helper has a way to read the CA's root certificate over an authenticated and integrity-protected channel, output a suggested nickname, the certificate in PEM format. If there are other trusted certificates, follow that with a blank line and one or more nickname/certificate sequences. If there are other certificates which the client might need (for example, others in the certifying chain), repeat for those. Note that if there are chain certificates but no supplemental root certificates, the root certificate should be followed by two blank lines. If you can not guarantee that the data produced is authenticated and has not been tampered with, do not implement this. The format described here is recognized to be error-prone and will be replaced with a JSON object in the future. * (not set) To ease troubleshooting, my suggestion is to treat the CERTMONGER_OPERATION not being set as if it was set to SUBMIT, or POLL if a cookie value is passed to your helper via a command-line option. * Anything else. For future-proofing, exit with status 6. Footnotes: 1. When a certificate is issued, it can be output as a PEM-formatted X.509 certificate, a PEM-formatted "certificates only" PKCS#7 signed-data item, a PEM-formatted PKCS#7 enveloped-data with encapsulated content identified as type "data", containing either an X.509 certificate or PKCS#7 signed-data item in binary form, or any of the previous in binary form. When PEM formatting is used, multiple PEM-formatted items can be output if needed. certmonger-0.78.6/doc/gpl-3.0.txt0000664000175000017500000010451312645513264013306 00000000000000 GNU GENERAL PUBLIC LICENSE Version 3, 29 June 2007 Copyright (C) 2007 Free Software Foundation, Inc. Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. Preamble The GNU General Public License is a free, copyleft license for software and other kinds of works. The licenses for most software and other practical works are designed to take away your freedom to share and change the works. By contrast, the GNU General Public License is intended to guarantee your freedom to share and change all versions of a program--to make sure it remains free software for all its users. We, the Free Software Foundation, use the GNU General Public License for most of our software; it applies also to any other work released this way by its authors. You can apply it to your programs, too. When we speak of free software, we are referring to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for them if you wish), that you receive source code or can get it if you want it, that you can change the software or use pieces of it in new free programs, and that you know you can do these things. To protect your rights, we need to prevent others from denying you these rights or asking you to surrender the rights. Therefore, you have certain responsibilities if you distribute copies of the software, or if you modify it: responsibilities to respect the freedom of others. For example, if you distribute copies of such a program, whether gratis or for a fee, you must pass on to the recipients the same freedoms that you received. You must make sure that they, too, receive or can get the source code. And you must show them these terms so they know their rights. Developers that use the GNU GPL protect your rights with two steps: (1) assert copyright on the software, and (2) offer you this License giving you legal permission to copy, distribute and/or modify it. For the developers' and authors' protection, the GPL clearly explains that there is no warranty for this free software. For both users' and authors' sake, the GPL requires that modified versions be marked as changed, so that their problems will not be attributed erroneously to authors of previous versions. Some devices are designed to deny users access to install or run modified versions of the software inside them, although the manufacturer can do so. This is fundamentally incompatible with the aim of protecting users' freedom to change the software. The systematic pattern of such abuse occurs in the area of products for individuals to use, which is precisely where it is most unacceptable. Therefore, we have designed this version of the GPL to prohibit the practice for those products. If such problems arise substantially in other domains, we stand ready to extend this provision to those domains in future versions of the GPL, as needed to protect the freedom of users. Finally, every program is threatened constantly by software patents. States should not allow patents to restrict development and use of software on general-purpose computers, but in those that do, we wish to avoid the special danger that patents applied to a free program could make it effectively proprietary. To prevent this, the GPL assures that patents cannot be used to render the program non-free. The precise terms and conditions for copying, distribution and modification follow. TERMS AND CONDITIONS 0. Definitions. "This License" refers to version 3 of the GNU General Public License. "Copyright" also means copyright-like laws that apply to other kinds of works, such as semiconductor masks. "The Program" refers to any copyrightable work licensed under this License. Each licensee is addressed as "you". "Licensees" and "recipients" may be individuals or organizations. To "modify" a work means to copy from or adapt all or part of the work in a fashion requiring copyright permission, other than the making of an exact copy. The resulting work is called a "modified version" of the earlier work or a work "based on" the earlier work. A "covered work" means either the unmodified Program or a work based on the Program. To "propagate" a work means to do anything with it that, without permission, would make you directly or secondarily liable for infringement under applicable copyright law, except executing it on a computer or modifying a private copy. Propagation includes copying, distribution (with or without modification), making available to the public, and in some countries other activities as well. To "convey" a work means any kind of propagation that enables other parties to make or receive copies. Mere interaction with a user through a computer network, with no transfer of a copy, is not conveying. An interactive user interface displays "Appropriate Legal Notices" to the extent that it includes a convenient and prominently visible feature that (1) displays an appropriate copyright notice, and (2) tells the user that there is no warranty for the work (except to the extent that warranties are provided), that licensees may convey the work under this License, and how to view a copy of this License. If the interface presents a list of user commands or options, such as a menu, a prominent item in the list meets this criterion. 1. Source Code. The "source code" for a work means the preferred form of the work for making modifications to it. "Object code" means any non-source form of a work. A "Standard Interface" means an interface that either is an official standard defined by a recognized standards body, or, in the case of interfaces specified for a particular programming language, one that is widely used among developers working in that language. The "System Libraries" of an executable work include anything, other than the work as a whole, that (a) is included in the normal form of packaging a Major Component, but which is not part of that Major Component, and (b) serves only to enable use of the work with that Major Component, or to implement a Standard Interface for which an implementation is available to the public in source code form. A "Major Component", in this context, means a major essential component (kernel, window system, and so on) of the specific operating system (if any) on which the executable work runs, or a compiler used to produce the work, or an object code interpreter used to run it. The "Corresponding Source" for a work in object code form means all the source code needed to generate, install, and (for an executable work) run the object code and to modify the work, including scripts to control those activities. However, it does not include the work's System Libraries, or general-purpose tools or generally available free programs which are used unmodified in performing those activities but which are not part of the work. For example, Corresponding Source includes interface definition files associated with source files for the work, and the source code for shared libraries and dynamically linked subprograms that the work is specifically designed to require, such as by intimate data communication or control flow between those subprograms and other parts of the work. The Corresponding Source need not include anything that users can regenerate automatically from other parts of the Corresponding Source. The Corresponding Source for a work in source code form is that same work. 2. Basic Permissions. All rights granted under this License are granted for the term of copyright on the Program, and are irrevocable provided the stated conditions are met. This License explicitly affirms your unlimited permission to run the unmodified Program. The output from running a covered work is covered by this License only if the output, given its content, constitutes a covered work. This License acknowledges your rights of fair use or other equivalent, as provided by copyright law. You may make, run and propagate covered works that you do not convey, without conditions so long as your license otherwise remains in force. You may convey covered works to others for the sole purpose of having them make modifications exclusively for you, or provide you with facilities for running those works, provided that you comply with the terms of this License in conveying all material for which you do not control copyright. Those thus making or running the covered works for you must do so exclusively on your behalf, under your direction and control, on terms that prohibit them from making any copies of your copyrighted material outside their relationship with you. Conveying under any other circumstances is permitted solely under the conditions stated below. Sublicensing is not allowed; section 10 makes it unnecessary. 3. Protecting Users' Legal Rights From Anti-Circumvention Law. No covered work shall be deemed part of an effective technological measure under any applicable law fulfilling obligations under article 11 of the WIPO copyright treaty adopted on 20 December 1996, or similar laws prohibiting or restricting circumvention of such measures. When you convey a covered work, you waive any legal power to forbid circumvention of technological measures to the extent such circumvention is effected by exercising rights under this License with respect to the covered work, and you disclaim any intention to limit operation or modification of the work as a means of enforcing, against the work's users, your or third parties' legal rights to forbid circumvention of technological measures. 4. Conveying Verbatim Copies. You may convey verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice; keep intact all notices stating that this License and any non-permissive terms added in accord with section 7 apply to the code; keep intact all notices of the absence of any warranty; and give all recipients a copy of this License along with the Program. You may charge any price or no price for each copy that you convey, and you may offer support or warranty protection for a fee. 5. Conveying Modified Source Versions. You may convey a work based on the Program, or the modifications to produce it from the Program, in the form of source code under the terms of section 4, provided that you also meet all of these conditions: a) The work must carry prominent notices stating that you modified it, and giving a relevant date. b) The work must carry prominent notices stating that it is released under this License and any conditions added under section 7. This requirement modifies the requirement in section 4 to "keep intact all notices". c) You must license the entire work, as a whole, under this License to anyone who comes into possession of a copy. This License will therefore apply, along with any applicable section 7 additional terms, to the whole of the work, and all its parts, regardless of how they are packaged. This License gives no permission to license the work in any other way, but it does not invalidate such permission if you have separately received it. d) If the work has interactive user interfaces, each must display Appropriate Legal Notices; however, if the Program has interactive interfaces that do not display Appropriate Legal Notices, your work need not make them do so. A compilation of a covered work with other separate and independent works, which are not by their nature extensions of the covered work, and which are not combined with it such as to form a larger program, in or on a volume of a storage or distribution medium, is called an "aggregate" if the compilation and its resulting copyright are not used to limit the access or legal rights of the compilation's users beyond what the individual works permit. Inclusion of a covered work in an aggregate does not cause this License to apply to the other parts of the aggregate. 6. Conveying Non-Source Forms. You may convey a covered work in object code form under the terms of sections 4 and 5, provided that you also convey the machine-readable Corresponding Source under the terms of this License, in one of these ways: a) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by the Corresponding Source fixed on a durable physical medium customarily used for software interchange. b) Convey the object code in, or embodied in, a physical product (including a physical distribution medium), accompanied by a written offer, valid for at least three years and valid for as long as you offer spare parts or customer support for that product model, to give anyone who possesses the object code either (1) a copy of the Corresponding Source for all the software in the product that is covered by this License, on a durable physical medium customarily used for software interchange, for a price no more than your reasonable cost of physically performing this conveying of source, or (2) access to copy the Corresponding Source from a network server at no charge. c) Convey individual copies of the object code with a copy of the written offer to provide the Corresponding Source. This alternative is allowed only occasionally and noncommercially, and only if you received the object code with such an offer, in accord with subsection 6b. d) Convey the object code by offering access from a designated place (gratis or for a charge), and offer equivalent access to the Corresponding Source in the same way through the same place at no further charge. You need not require recipients to copy the Corresponding Source along with the object code. If the place to copy the object code is a network server, the Corresponding Source may be on a different server (operated by you or a third party) that supports equivalent copying facilities, provided you maintain clear directions next to the object code saying where to find the Corresponding Source. Regardless of what server hosts the Corresponding Source, you remain obligated to ensure that it is available for as long as needed to satisfy these requirements. e) Convey the object code using peer-to-peer transmission, provided you inform other peers where the object code and Corresponding Source of the work are being offered to the general public at no charge under subsection 6d. A separable portion of the object code, whose source code is excluded from the Corresponding Source as a System Library, need not be included in conveying the object code work. A "User Product" is either (1) a "consumer product", which means any tangible personal property which is normally used for personal, family, or household purposes, or (2) anything designed or sold for incorporation into a dwelling. In determining whether a product is a consumer product, doubtful cases shall be resolved in favor of coverage. For a particular product received by a particular user, "normally used" refers to a typical or common use of that class of product, regardless of the status of the particular user or of the way in which the particular user actually uses, or expects or is expected to use, the product. A product is a consumer product regardless of whether the product has substantial commercial, industrial or non-consumer uses, unless such uses represent the only significant mode of use of the product. "Installation Information" for a User Product means any methods, procedures, authorization keys, or other information required to install and execute modified versions of a covered work in that User Product from a modified version of its Corresponding Source. The information must suffice to ensure that the continued functioning of the modified object code is in no case prevented or interfered with solely because modification has been made. If you convey an object code work under this section in, or with, or specifically for use in, a User Product, and the conveying occurs as part of a transaction in which the right of possession and use of the User Product is transferred to the recipient in perpetuity or for a fixed term (regardless of how the transaction is characterized), the Corresponding Source conveyed under this section must be accompanied by the Installation Information. But this requirement does not apply if neither you nor any third party retains the ability to install modified object code on the User Product (for example, the work has been installed in ROM). The requirement to provide Installation Information does not include a requirement to continue to provide support service, warranty, or updates for a work that has been modified or installed by the recipient, or for the User Product in which it has been modified or installed. Access to a network may be denied when the modification itself materially and adversely affects the operation of the network or violates the rules and protocols for communication across the network. Corresponding Source conveyed, and Installation Information provided, in accord with this section must be in a format that is publicly documented (and with an implementation available to the public in source code form), and must require no special password or key for unpacking, reading or copying. 7. Additional Terms. "Additional permissions" are terms that supplement the terms of this License by making exceptions from one or more of its conditions. Additional permissions that are applicable to the entire Program shall be treated as though they were included in this License, to the extent that they are valid under applicable law. If additional permissions apply only to part of the Program, that part may be used separately under those permissions, but the entire Program remains governed by this License without regard to the additional permissions. When you convey a copy of a covered work, you may at your option remove any additional permissions from that copy, or from any part of it. (Additional permissions may be written to require their own removal in certain cases when you modify the work.) You may place additional permissions on material, added by you to a covered work, for which you have or can give appropriate copyright permission. Notwithstanding any other provision of this License, for material you add to a covered work, you may (if authorized by the copyright holders of that material) supplement the terms of this License with terms: a) Disclaiming warranty or limiting liability differently from the terms of sections 15 and 16 of this License; or b) Requiring preservation of specified reasonable legal notices or author attributions in that material or in the Appropriate Legal Notices displayed by works containing it; or c) Prohibiting misrepresentation of the origin of that material, or requiring that modified versions of such material be marked in reasonable ways as different from the original version; or d) Limiting the use for publicity purposes of names of licensors or authors of the material; or e) Declining to grant rights under trademark law for use of some trade names, trademarks, or service marks; or f) Requiring indemnification of licensors and authors of that material by anyone who conveys the material (or modified versions of it) with contractual assumptions of liability to the recipient, for any liability that these contractual assumptions directly impose on those licensors and authors. All other non-permissive additional terms are considered "further restrictions" within the meaning of section 10. If the Program as you received it, or any part of it, contains a notice stating that it is governed by this License along with a term that is a further restriction, you may remove that term. If a license document contains a further restriction but permits relicensing or conveying under this License, you may add to a covered work material governed by the terms of that license document, provided that the further restriction does not survive such relicensing or conveying. If you add terms to a covered work in accord with this section, you must place, in the relevant source files, a statement of the additional terms that apply to those files, or a notice indicating where to find the applicable terms. Additional terms, permissive or non-permissive, may be stated in the form of a separately written license, or stated as exceptions; the above requirements apply either way. 8. Termination. You may not propagate or modify a covered work except as expressly provided under this License. Any attempt otherwise to propagate or modify it is void, and will automatically terminate your rights under this License (including any patent licenses granted under the third paragraph of section 11). However, if you cease all violation of this License, then your license from a particular copyright holder is reinstated (a) provisionally, unless and until the copyright holder explicitly and finally terminates your license, and (b) permanently, if the copyright holder fails to notify you of the violation by some reasonable means prior to 60 days after the cessation. Moreover, your license from a particular copyright holder is reinstated permanently if the copyright holder notifies you of the violation by some reasonable means, this is the first time you have received notice of violation of this License (for any work) from that copyright holder, and you cure the violation prior to 30 days after your receipt of the notice. Termination of your rights under this section does not terminate the licenses of parties who have received copies or rights from you under this License. If your rights have been terminated and not permanently reinstated, you do not qualify to receive new licenses for the same material under section 10. 9. Acceptance Not Required for Having Copies. You are not required to accept this License in order to receive or run a copy of the Program. Ancillary propagation of a covered work occurring solely as a consequence of using peer-to-peer transmission to receive a copy likewise does not require acceptance. However, nothing other than this License grants you permission to propagate or modify any covered work. These actions infringe copyright if you do not accept this License. Therefore, by modifying or propagating a covered work, you indicate your acceptance of this License to do so. 10. Automatic Licensing of Downstream Recipients. Each time you convey a covered work, the recipient automatically receives a license from the original licensors, to run, modify and propagate that work, subject to this License. You are not responsible for enforcing compliance by third parties with this License. An "entity transaction" is a transaction transferring control of an organization, or substantially all assets of one, or subdividing an organization, or merging organizations. If propagation of a covered work results from an entity transaction, each party to that transaction who receives a copy of the work also receives whatever licenses to the work the party's predecessor in interest had or could give under the previous paragraph, plus a right to possession of the Corresponding Source of the work from the predecessor in interest, if the predecessor has it or can get it with reasonable efforts. You may not impose any further restrictions on the exercise of the rights granted or affirmed under this License. For example, you may not impose a license fee, royalty, or other charge for exercise of rights granted under this License, and you may not initiate litigation (including a cross-claim or counterclaim in a lawsuit) alleging that any patent claim is infringed by making, using, selling, offering for sale, or importing the Program or any portion of it. 11. Patents. A "contributor" is a copyright holder who authorizes use under this License of the Program or a work on which the Program is based. The work thus licensed is called the contributor's "contributor version". A contributor's "essential patent claims" are all patent claims owned or controlled by the contributor, whether already acquired or hereafter acquired, that would be infringed by some manner, permitted by this License, of making, using, or selling its contributor version, but do not include claims that would be infringed only as a consequence of further modification of the contributor version. For purposes of this definition, "control" includes the right to grant patent sublicenses in a manner consistent with the requirements of this License. Each contributor grants you a non-exclusive, worldwide, royalty-free patent license under the contributor's essential patent claims, to make, use, sell, offer for sale, import and otherwise run, modify and propagate the contents of its contributor version. In the following three paragraphs, a "patent license" is any express agreement or commitment, however denominated, not to enforce a patent (such as an express permission to practice a patent or covenant not to sue for patent infringement). To "grant" such a patent license to a party means to make such an agreement or commitment not to enforce a patent against the party. If you convey a covered work, knowingly relying on a patent license, and the Corresponding Source of the work is not available for anyone to copy, free of charge and under the terms of this License, through a publicly available network server or other readily accessible means, then you must either (1) cause the Corresponding Source to be so available, or (2) arrange to deprive yourself of the benefit of the patent license for this particular work, or (3) arrange, in a manner consistent with the requirements of this License, to extend the patent license to downstream recipients. "Knowingly relying" means you have actual knowledge that, but for the patent license, your conveying the covered work in a country, or your recipient's use of the covered work in a country, would infringe one or more identifiable patents in that country that you have reason to believe are valid. If, pursuant to or in connection with a single transaction or arrangement, you convey, or propagate by procuring conveyance of, a covered work, and grant a patent license to some of the parties receiving the covered work authorizing them to use, propagate, modify or convey a specific copy of the covered work, then the patent license you grant is automatically extended to all recipients of the covered work and works based on it. A patent license is "discriminatory" if it does not include within the scope of its coverage, prohibits the exercise of, or is conditioned on the non-exercise of one or more of the rights that are specifically granted under this License. You may not convey a covered work if you are a party to an arrangement with a third party that is in the business of distributing software, under which you make payment to the third party based on the extent of your activity of conveying the work, and under which the third party grants, to any of the parties who would receive the covered work from you, a discriminatory patent license (a) in connection with copies of the covered work conveyed by you (or copies made from those copies), or (b) primarily for and in connection with specific products or compilations that contain the covered work, unless you entered into that arrangement, or that patent license was granted, prior to 28 March 2007. Nothing in this License shall be construed as excluding or limiting any implied license or other defenses to infringement that may otherwise be available to you under applicable patent law. 12. No Surrender of Others' Freedom. If conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot convey a covered work so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not convey it at all. For example, if you agree to terms that obligate you to collect a royalty for further conveying from those to whom you convey the Program, the only way you could satisfy both those terms and this License would be to refrain entirely from conveying the Program. 13. Use with the GNU Affero General Public License. Notwithstanding any other provision of this License, you have permission to link or combine any covered work with a work licensed under version 3 of the GNU Affero General Public License into a single combined work, and to convey the resulting work. The terms of this License will continue to apply to the part which is the covered work, but the special requirements of the GNU Affero General Public License, section 13, concerning interaction through a network will apply to the combination as such. 14. Revised Versions of this License. The Free Software Foundation may publish revised and/or new versions of the GNU General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. Each version is given a distinguishing version number. If the Program specifies that a certain numbered version of the GNU General Public License "or any later version" applies to it, you have the option of following the terms and conditions either of that numbered version or of any later version published by the Free Software Foundation. If the Program does not specify a version number of the GNU General Public License, you may choose any version ever published by the Free Software Foundation. If the Program specifies that a proxy can decide which future versions of the GNU General Public License can be used, that proxy's public statement of acceptance of a version permanently authorizes you to choose that version for the Program. Later license versions may give you additional or different permissions. However, no additional obligations are imposed on any author or copyright holder as a result of your choosing to follow a later version. 15. Disclaimer of Warranty. THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. 16. Limitation of Liability. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. 17. Interpretation of Sections 15 and 16. If the disclaimer of warranty and limitation of liability provided above cannot be given local legal effect according to their terms, reviewing courts shall apply local law that most closely approximates an absolute waiver of all civil liability in connection with the Program, unless a warranty or assumption of liability accompanies a copy of the Program in return for a fee. END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms. To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively state the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. Copyright (C) This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see . Also add information on how to contact you by electronic and paper mail. If the program does terminal interaction, make it output a short notice like this when it starts in an interactive mode: Copyright (C) This program comes with ABSOLUTELY NO WARRANTY; for details type `show w'. This is free software, and you are welcome to redistribute it under certain conditions; type `show c' for details. The hypothetical commands `show w' and `show c' should show the appropriate parts of the General Public License. Of course, your program's commands might be different; for a GUI interface, you would use an "about box". You should also get your employer (if you work as a programmer) or school, if any, to sign a "copyright disclaimer" for the program, if necessary. For more information on this, and how to apply and follow the GNU GPL, see . The GNU General Public License does not permit incorporating your program into proprietary programs. If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. But first, please read . certmonger-0.78.6/doc/getting-started.txt0000664000175000017500000002264312645513264015336 00000000000000Background: Certificates An X.509 certificate (also commonly known as an SSL certificate), basically, contains a public key and an indication of to whom the key belongs (referred to as the certificate's _subject_) that have been cryptographically signed. By signing the certificate, the _issuer_ asserts that the key belongs to the _subject_. If the certificate is being used by an SSL-enabled server, for example, where the public key is used to help set up the encryption, a client who verifies the signature has verified that the issuer asserted that the party on the other end of the connection, who used the public key, has a specific name. If that name doesn't match the hostname that the client intended to connect with, then cleary something has gone wrong. The client may have connected to the wrong server. If the certificate isn't signed by an _issuer_ that the client trusts to be honest about things, then the client can't trust that the _subject_ name in the certificate isn't forged. The _issuer_ who signs certificates is called a _certifying_ _authority_, or alternately, a _certificate_ _authority_ (or more simply as a _CA_). If you're deploying an SSL-enabled service, the certificates it uses need to be _issued_ (verified and signed) by a CA that your clients trust. Background: Certificate Extensions An X.509 certificate minimally needs to contain the subject's name and that subject's public key. An issuer is also free to embed arbitrary data into a certificate in the certificate's _extensions_ field. Extensions are identified by OID and the data they contain is in a format specific to that OID. While this flexibility could allow for all sorts of hijinks, in order to be useful, an extension needs to be understood by all of the parties that will use the certificate in some way, so in practice most certificates will only contain some of a number of widely-used extensions. One of the more commonly-used extensions is the subjectAlternateName (also known as subjectAltName, or SAN) extension. It contains one or more names by which the subject might also be known. Because the _subject_ field of a certificate is formatted as a _distinguished_ _name_, for example, SSL clients typically have to extract the hostname from the subject field, which can be an error-prone process, in order to compare them with the hostname that the client attempted to use. A SAN of type _dnsName_ with the hostname as its value removes all ambiguity. The SAN extension can also contain other types of names, for example IPv4 and IPv6 addresses, email addresses, and Kerberos principal names. Background: Certificate Requests In order to obtain a certificate, the CA needs to obtain a copy of the public key which should be recorded in the certificate. Most often, this key is combined with other requested information, such as a requested subject name, into a _certificate_ _signing_ _request_ (a CSR) and submitted to the CA for processing. The CSR is usually signed with the submitter's private key. A CSR can also contain arbitrary attributes, and one of those attributes can be a set of requested extension values. In this way, a client can supply almost all of the contents of the certificate it desires as part of its request. While this can be very useful in some scenaries, it's important to recognize that in assembling a certificate to be issued, the CA is free to validate, reject, or simply discard any part of the client's request. Where certmonger Fits In The certmonger daemon, along with its command-line clients, attempts to simplify the process of generating public/private key pairs and CSRs and submitting CSRs to CAs for signing. Perhaps the simplest use case is to generate a certificate which is signed by the subject itself. (They're not very useful in production, but they're great for testing.) selfsign-getcert request -f /tmp/server.crt -k /tmp/server.key What we've done above is to tell certmonger that we want a key to be stored in the file /tmp/server.key, to get a corresponding certificate, and to store that certificate in the file /tmp/server.crt. (Using selfsign-getcert to tell it that also implicitly tells it to go ahead and _self-sign_ the CSR, which it generates and uses internally, with the subject's own key.) What certmonger did was to check if there was already a key there, and since there wasn't, to go ahead and generate one. That done, it created a CSR and then used the same key to produce a signed certificate. The daemon usually runs with sufficient privileges to be able to read and write to most locations that we might tell it to use for storing the certificate and key. However, as an added precaution, on systems where a mandatory access control system is in use, the daemon will typically be permitted to read and write only to a narrowly-defined set of locations. For example, on systems using SELinux, certmonger will often not be allowed to use /tmp because the directory is marked with the label "tmp_t". We would first need to create an alternate location with the label "cert_t" for certmonger's use: mkdir -p /tmp/certs chcon -t cert_t /tmp/certs cd /tmp/certs selfsign-getcert request -f ./server.crt -k ./server.key The example above used plain files for holding the key and the certificate, but we could have specified storage using an NSS database by passing the database's location and a nickname to give to the certificate, like so: selfsign-getcert request -d /tmp -n Testing-Certificate Of course, we had to supply a certificate nickname, because certmonger isn't all that creative. We used a nickname of "Testing-Certificate" because, well, why not? We can tell certmonger to embed a specific _subject_ name into the CSR, and we can tell it to include one or more of several types of SAN values, too: -N _subject_ -> specifies a subject name -K _principal_add -> specifies a Kerberos principal name SAN -D _hostname_ -> specifies a dnsName SAN -E _email_ -> specifies an rfc822address (email) SAN Let's create another certificate: selfsign-getcert request -f /tmp/babs.crt -k /tmp/babs.key \ -N "CN=Babs Jensen" -K bjensen@EXAMPLE.COM -E babs@example.com For flat files, we can use OpenSSL to look at the certificate's contents. Have a look at the first certificate we generated: openssl x509 -noout -text -in /tmp/server.crt You'll notice that even though we didn't specify what to put in the certificate, certmonger went ahead and added some things. These are its default settings. Now look at the one we just generated for Babs: openssl x509 -noout -text -in /tmp/babs.crt You'll see that the subject name is the one we requested, and that the email address is being shown correctly. As of this writing, the openssl command doesn't know how to display Kerberos principal names, but that's okay. While we're here, we can use NSS's certutil to examine the second certificate we generated: certutil -d /tmp -L -n Testing-Certificate The output format is a bit different, but the contents of the certificate should be pretty much the same. You may have noticed that in each case, the certificates had a validity time associated with them -- after a certain point, they won't be considered valid any more. That's okay. We can tell certmonger to go ahead and get a new certificate when the existing one expires: selfsign-getcert start-tracking -f /tmp/server.crt -r We could have added the "-r" when we initially requested the certificate and skipped this step, but this is documentation, so sometimes we go the long way. Using certmonger's Built-in "Toy" CA Using a toy CA to sign certificates is slightly more useful than self-signing certificates, because you can issue multiple certificates, all signed by a single signing certificate, and only have to deal with distributing one copy of the signing certificate to the various places where it'll be needed. The certmonger package includes a "local" signer which uses a its own self-signed certificate to sign certificates. Using it instead of self-signing is straightforward: local-getcert request -r \ -f /etc/httpd/conf/ssl.crt/server.crt \ -k /etc/httpd/conf/ssl.key/server.key \ -F /etc/httpd/conf/ssl.crt/ca.crt \ -N CN=`hostname --fqdn` \ -D `hostname --fqdn` \ -U id-kp-serverAuth local-getcert request -r \ -f /etc/ldap/server.crt \ -k /etc/ldap/server.key \ -F /etc/ldap/ca.crt \ -N CN=`hostname --fqdn` \ -D `hostname --fqdn` \ -U id-kp-serverAuth In this example, both /etc/httpd/conf/ssl.crt/ca.crt and /etc/ldap/ca.crt will contain copies of the same certificate, and a client connecting to either of the two services will only need to be given a copy of one of the files in order to verify the certificate used by either service. The "local" signer doesn't support revoking certificates, whether in response to a key compromise or for any of several less catastrophic reasons, so it's not recommended for general use, either. Using certmonger With Real CAs Having certmonger send a CSR to a real CA rather than itself signing everything is supposed to be trivial. For example, certmonger already "knows" how to interact with the CA component of an IPA system, so the only thing you'd do differently is call "ipa-getcert" instead of "selfsign-getcert" or "local-getcert". ipa-getcert request -r \ -f /etc/httpd/conf/ssl.crt/server.crt \ -k /etc/httpd/conf/ssl.key/server.key \ -N CN=`hostname --fqdn` \ -D `hostname --fqdn` \ -U id-kp-serverAuth That's all there is to it. If there's more than that to it, that's a bug. certmonger-0.78.6/doc/ftw.txt0000664000175000017500000001350712645513264013030 00000000000000For The Wiki IPA Client Design To be able to request a certificate from the IPA client automatically there should be a utility tightly integrated with the IPA client that would aid in requesting the certificate for a service running on the host. The following diagram shows all the IPA client components involved in the operation. ┌───────────────┠│ ipa-getcert │ │ utility │ └───────────────┘ │ │ D-Bus interface │ ┌──────────────┠┌──────────┠│ certmonger │ │ │ │ system │────── XML-RPC Connection to IPA ──────│ IPA CA │ │ daemon │ │ │ └──────────────┘ └──────────┘ 1. The cert utility, named ipa-getcert in the diagram, will accept command line parameters and issue requests to certmonger. This is the only thing it will do. 2. The daemon will be event-based, like most other services on the client designed so far. It will respond to requests from the ipa-getcert client, and if necessary, poll for completion of any time-consuming tasks that it has started. Such tasks include: * key generation * generating certificate signing requests (CSRs) * submitting signing requests to CAs 3. The daemon keeps track of its own work items. The client can afford to be rather dumb by comparison. 4. As an implementation detail, the daemon talks to the CA by means of a helper which it runs. The helper can also be run directly for troubleshooting purposes, and even replaced entirely. Command Line Utility Now it's time to talk about how ipa-getcert is used. At its core, the tool's function is analogous to that of ipa-getkeytab, so we're aiming for a command-line interface which feels familiar. There are five general tasks which the tool needs to be able to do: * Request a new certificate and track (by default or not, if told not to) its expiration date. * Resubmit a previously-denied enrollment request. * Start tracking expiration for an already-provisioned certificate. * Stop tracking expiration for an already-provisioned certificate. * Status: list current pending requests and/or currently tracked certs and the set of known CAs. In the case of requesting a certificate the command looks like this: ipa-getcert request [options] Required arguments: * If using an NSS database for storage: -d DIR NSS database for key and cert -n NAME nickname for NSS-based storage (only valid with -d) -t NAME optional token name for NSS-based storage (only valid with -d) * If using files for storage: -k FILE PEM file for private key -f FILE PEM file for certificate (only valid with -k) Optional arguments: * Certificate handling settings: -I NAME nickname to assign to the request -g SIZE size of key to be generated if one is not already in place -r attempt to renew the certificate when expiration nears (default) -R don't attempt to renew the certificate when expiration nears -c CA use the specified CA rather than the default (IPA's) * Parameters for the signing request: -N NAME set requested subject name (default: CN=) -U EXTUSAGE set requested extended key usage OID -K NAME set requested principal name -D DNSNAME set requested DNS name -E EMAIL set requested email address The simplest invocation might look like this: ipa-getcert -d /etc/pki/nssdb -n "ServerCert" In case of starting to track a certificate's expiration, one shall provide the following command line: ipa-getcert start-tracking [options] Required arguments: * If modifying an existing request: -i NAME nickname of an existing tracking request * If using an NSS database for storage: -d DIR NSS database for key and cert -n NAME nickname for NSS-based storage (only valid with -d) -t NAME optional token name for NSS-based storage (only valid with -d) * If using files for storage: -k FILE PEM file for private key -f FILE PEM file for certificate (only valid with -k) Optional arguments: * Certificate handling settings: -I NAME nickname to give to tracking request -r attempt to renew the certificate when expiration nears (default) -R don't attempt to renew the certificate when expiration nears -c CA use the specified CA rather than the default If there's no certificate in the specified location, the daemon will attempt to have one issued. The daemon will cache information about the certificate for bookkeeping. In case of stopping the tracking of a certificate's expiration, it would be more like this: Usage: getcert stop-tracking [options] Required arguments: * By request identifier: -i NAME nickname for tracking request * If using an NSS database for storage: -d DIR NSS database for key and cert -n NAME nickname for NSS-based storage (only valid with -d) -t NAME optional token name for NSS-based storage (only valid with -d) * If using files for storage: -k FILE PEM file for private key -f FILE PEM file for certificate (only valid with -k) The status commands list the work items that the daemon is tracking. Usage: getcert list [options] Optional arguments: * General options: -c CA list only requests and certs associated with this CA -r list only information about in-progress enrollment requests -t list only information about tracked certificates certmonger-0.78.6/doc/fips.txt0000664000175000017500000000104512645513264013163 00000000000000Notes on running in FIPS mode: * All NSS databases need PINs, typically UTF-8 values of 7-255 characters in length, composed of at members of least three of these classes: * Upper-case ASCII character (unless it's the first character) * Lower-case ASCII character * Digit (unless it's the last character) * Other ASCII character * Other character * Attempts to generate keys of certain sizes less than allowed by the underlying crypto libraries will fail. The daemon will attempt to retry using its compile-time default key size. certmonger-0.78.6/doc/dogtag-notes.txt0000664000175000017500000003644012645513264014624 00000000000000http://www.redhat.com/docs/manuals/cert-system/pdf/cms601custom.pdf Use GET http://cats.bos.redhat.com:9180/ca/ee/ca/getBySerial?serialNumber=14 (yes, that's a hex serial number). - older stuff - http://www.redhat.com/docs/manuals/cert-system/8.0/cli/html/SSLGet-Usage.html POST http://cats.bos.redhat.com:9180/ca/ee/ca/profileSubmit profileId=caServerCert&cert_request_type=pkcs10&requestor_name=TPS-server.example.com-7889&cert_request=MIIBGTCBxAIBADBfMSgwJgYDVQQKEx8yMDA2MTEwNngxMiBTZmJheSBSZWRoYXQgRG9tYWluMRIwEAYDVQQLEwlyaHBraS10cHMxHzAdBgNVBAMTFndhdGVyLnNmYmF5LnJlZGhhdC5jb20wXDANBgkqhkiG9w0BAQEFAANLADBIAkEAsMcYjKD2cDJOeKjhuAiyaC0YVh8hUzfcrf7ZJlVyROQx1pQrHiHmBQbcCdQxNzYK7rxWiR62BPDR4dHtQzj8RwIDAQABoAAwDQYJKoZIhvcNAQEEBQADQQAKpuTYGP%2BI1k50tjn6enPV6j%2B2lFFjrYNwlYWBe4qYhm3WoA0tIuplNLpzP0vw6ttIMZkpE8rcfAeMG10doUpp&xmlOutput=true&sessionID=-4771521138734965266&auth_hostname=cats.bos.redhat.com&auth_port=9180 Returns "2Request Deferred - defer request 21" Dig the request ID out of the XML. GET http://cats.bos.redhat.com:9180/ca/ee/ca/checkRequest?requestId=21 You'll get some horrific code with javascript mixed in. snippet: Check header.status (UGH!). "pending";"complete" snippet 2: GET http://cats.bos.redhat.com:9180/ca/ee/ca/displayBySerial?serialNumber=0x14 As of 7.3, all of profileSubmit, checkRequest, and displayBySerial should support XML output of some kind, but it's not until 8.0 that checkRequest gives us the serial number of the issued cert when it tells us that our request succeeded, so if the goal is to avoid scraping Javascript, we have to require 8.0. certmonger-0.78.6/doc/dogtag-notes-2.txt0000664000175000017500000000273012645513264014756 00000000000000Okay, I've worked out some of the logic and which servlets we need to call. * Submit the client request.[[BR]] * if (enrolling-a-new-certificate):[[BR]] submit via HTTP to ''/ca/ee/ca/profileSubmit'':[[BR]] profileId=''profile''[[BR]] cert_request_type=''pkcs10''[[BR]] cert_request=''base64''[[BR]] * if (renewing-an-already-issued-certificate):[[BR]] submit via HTTP to ''/ca/ee/ca/profileSubmit'':[[BR]] renewal=true[[BR]] serial_num=''decimal serial number''[[BR]] profileId=''profile''[[BR]] * Maybe approve the request ourselves.[[BR]] * if (we're-an-agent):[[BR]] read default values via authenticated HTTPS to ''/ca/agent/ca/profileReview''[[BR]] requestId=''decimal''[[BR]] (pick up all ''defId'' and ''defVal'' values with ''defConstraint'' NOT ''readonly''; if ''defSyntax'' is ''choice'' and ''defVal'' is not set, use the first item in the comma-separated ''defConstraint'' list)[[BR]] issue via authenticated HTTPS to ''/ca/agent/ca/profileProcess''[[BR]] requestId=''decimal''[[BR]] op=approve[[BR]] (all ''defId'' and ''defVal'' values as key/value pairs)[[BR]] requestNotes=''free-form text''[[BR]] * Check that the certificate was issued.[[BR]] * HTTP to ''/ca/ee/ca/checkRequest''[[BR]] requestId=''decimal request ID''[[BR]] importCert=true[[BR]] * Retrieve the new certificate.[[BR]] * if (certificate-is-ready):[[BR]] HTTP to ''/ca/ee/ca/displayCertFromRequest''[[BR]] requestId=''decimal request ID''[[BR]] certmonger-0.78.6/doc/design.txt0000664000175000017500000005734012645513264013504 00000000000000The life cycle of a certificate: * Generating a key pair. * Generating a CSR containing public key. * Submitting CSR to a CA. * Checking for response from CA. * Waiting for certificate to near expiration. Administrative action can also add these states: * On hold * Revoked We model that life cycle as a state machine. Now with some arbitrarily-named states for our per-certificate state machine: * Generating a key pair. States: NEED_KEY_PAIR, GENERATING_KEY_PAIR [*], NEED_KEY_GEN_PERMS, NEED_KEY_GEN_TOKEN, NEED_KEY_GEN_PIN, HAVE_KEY_PAIR * Reading info about key pair. NEED_KEYINFO, READING_KEYINFO [*], NEED_KEYINFO_READ_TOKEN, NEED_KEYINFO_READ_PIN, HAVE_KEYINFO * Generating a CSR containing public key. States: NEED_CSR, GENERATING_CSR [*], NEED_CSR_GEN_TOKEN, NEED_CSR_GEN_PIN, HAVE_CSR * Generating SCEP data, if we need it. States: NEED_SCEP_DATA, GENERATING_SCEP_DATA [*], NEED_SCEP_GEN_TOKEN, NEED_SCEP_GEN_PIN, NEED_SCEP_ENCRYPTION_CERT, NEED_SCEP_RSA_CLIENT_KEY, HAVE_SCEP_DATA * Submitting CSR to a CA. States: NEED_TO_SUBMIT, SUBMITTING [*] * Don't know which CA to submit to. States: NEED_CA [*] * Don't have complete information about CA. States: CA_UNCONFIGURED [*] * Can't contact CA. States: CA_UNREACHABLE [*] * Rejected, very sad. States: CA_REJECTED [*] * CA is thinking. States: CA_WORKING [*] * Saving certificate to the desired location and parsing it for the information we think is interesting. States: NEED_TO_SAVE_CERT, PRE_SAVE_CERT[*], START_SAVING_CERT, SAVING_CERT [*], NEED_CERTSAVE_PERMS, NEED_CERTSAVE_TOKEN, NEED_CERTSAVE_PIN, NEED_TO_READ_CERT, READING_CERT [*], SAVED_CERT, POST_SAVED_CERT[*] * Waiting for certificate to near expiration. States: MONITORING * Notifying the admin of impending/passed expiration. States: NEED_TO_NOTIFY_VALIDITY, NOTIFYING_VALIDITY [*] * Notifying the admin of CA rejection. States: NEED_TO_NOTIFY_REJECTION, NOTIFYING_REJECTION [*] * Notifying the admin of CA issued cert, but not saved. States: NEED_TO_NOTIFY_ISSUED_FAILED, NOTIFYING_ISSUED_FAILED [*] * Notifying the admin of that we failed to save CA certs. States: NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED, NOTIFYING_ONLY_CA_SAVE_FAILED * Saving CA certs while saving an issued cert. States: NEED_TO_SAVE_CA_CERTS, START_SAVING_CA_CERTS, SAVING_CA_CERTS [*], NEED_CA_CERT_SAVE_PERMS * Notifying the admin of CA issued cert, and saved. States: NEED_TO_NOTIFY_ISSUED_SAVED, NOTIFYING_ISSUED_SAVED [*] * Saving CA certs while not saving an issued cert. States: NEED_TO_SAVE_ONLY_CA_CERTS, START_SAVING_ONLY_CA_CERTS, SAVING_ONLY_CA_CERTS [*] * Waiting for user input States: NEED_GUIDANCE [*] * Getting our bearings States: NEWLY_ADDED, NEWLY_ADDED_READING_KEYINFO [*], NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN, NEWLY_ADDED_NEED_KEYINFO_READ_PIN, NEWLY_ADDED_START_READING_CERT, NEWLY_ADDED_READING_CERT [*], NEWLY_ADDED_DECIDING [*] [*] Denotes states in which we have to wait for instructions from the user or completion of interaction with external systems. State logic: NEED_KEY_PAIR: start-key-generation state_next = GENERATING_KEY_PAIR state_transition = now break GENERATING_KEY_PAIR: if starting-up state_next = NEED_KEY_PAIR state_transition = now else if keygen-finished if key-was-stored-successfully state_next = HAVE_KEY_PAIR state_transition = now elseif key-store-needs-token state_next = NEED_KEY_GEN_TOKEN state_transition = now elseif key-store-needs-pin state_next = NEED_KEY_GEN_PIN state_transition = now elseif key-store-needs-perms state_next = NEED_KEY_GEN_PERMS state_transition = now else state_next = NEED_KEY_PAIR state_transition = now else state_next = GENERATING_KEY_PAIR state_transition = when-notified break NEED_KEY_GEN_PERMS: if starting-up state_next = NEED_KEY_PAIR state_transition = now break NEED_KEY_GEN_TOKEN: if starting-up state_next = NEED_KEY_PAIR state_transition = soon break NEED_KEY_GEN_PIN: if starting-up state_next = NEED_KEY_PAIR state_transition = now break HAVE_KEY_PAIR: state_next = NEED_KEYINFO state_transition = now break NEED_KEYINFO: start-reading-key-information state_next = READING_KEYINFO state_transition = now break READING_KEYINFO: if starting-up state_next = NEED_KEYINFO state_transition = now else if finished-reading-key-information state_next = HAVE_KEYINFO state_transition = now elseif key-store-needs-token state_next = NEED_KEYINFO_READ_TOKEN state_transition = now elseif key-store-needs-pin state_next = NEED_KEYINFO_READ_PIN state_transition = now else state_next = NEED_KEY_PAIR state_transition = now break NEED_KEYINFO_READ_TOKEN: if starting-up state_next = NEED_KEYINFO state_transition = soon break NEED_KEYINFO_READ_PIN: if starting-up state_next = NEED_KEYINFO state_transition = soon break HAVE_KEYINFO: state_next = NEED_CSR state_transition = now break NEED_CSR: if starting-up state_next = HAVE_KEYINFO state_transition = now else if don't-have-a-full-template fill-in-template-values-based-on-defaults start-csr-generation-using-template-values state_next = GENERATING_CSR state_transition = now break GENERATING_CSR: if starting-up state_next = HAVE_KEYINFO state_transition = now else if csrgen-finished if csr-was-stored state_next = HAVE_CSR state_transition = now elseif key-store-needs-token state_next = NEED_CSR_GEN_TOKEN state_transition = now elseif key-store-needs-pin state_next = NEED_CSR_GEN_PIN state_transition = now else state_next = NEED_CSR state_transition = now else state_next = GENERATING_CSR state_transition = when-notified break NEED_CSR_GEN_TOKEN: if starting-up state_next = HAVE_KEYINFO state_transition = soon break NEED_CSR_GEN_PIN: if starting-up state_next = HAVE_KEYINFO state_transition = now break HAVE_CSR: state_next = NEED_TO_SUBMIT state_transition = now break NEED_SCEP_DATA: if starting-up state_next = HAVE_KEYINFO state_transition = now else if don't-have-a-full-template fill-in-template-values-based-on-defaults start-csr-generation-using-template-values state_next = GENERATING_SCEP_DATA state_transition = now break GENERATING_SCEP_DATA: if starting-up state_next = NEED_SCEP_DATA state_transition = now else if scepgen-finished if scep-data-was-stored state_next = HAVE_SCEP_DATA state_transition = now elseif key-store-needs-token state_next = NEED_SCEP_GEN_TOKEN state_transition = now elseif key-store-needs-pin state_next = NEED_SCEP_GEN_PIN state_transition = now elseif requires-ra-encryption-cert state_next = NEED_SCEP_ENCRYPTION_CERT state_transition = now else state_next = NEED_SCEP_RSA_CLIENT_KEY state_transition = now else state_next = GENERATING_SCEP_DATA state_transition = when-notified break NEED_SCEP_GEN_TOKEN: if starting-up state_next = NEED_SCEP_DATA state_transition = soon break NEED_SCEP_GEN_PIN: if starting-up state_next = NEED_SCEP_DATA state_transition = now break NEED_SCEP_ENCRYPTION_CERT: if starting-up state_next = NEED_SCEP_DATA state_transition = now break NEED_SCEP_RSA_CLIENT_KEY: if starting-up state_next = NEED_SCEP_DATA state_transition = now break HAVE_SCEP_DATA: state_next = NEED_TO_SUBMIT state_transition = now break NEED_TO_SUBMIT: if starting-up state_next = HAVE_CSR state_transition = now else start-csr-submission if csr-submission-started state_next = SUBMITTING state_transition = now else if don't-know-a-ca state_next = NEED_CA state_transition = now break SUBMITTING: if starting-up state_next = HAVE_CSR state_transition = now else if csr-submission-attempt-completed if ca-issued-cert state_next = NEED_TO_SAVE_CERT state_transition = now elseif ca-rejected-us if already-had-a-cert state_next = MONITORING state_transition = now else state_next = CA_NEED_TO_NOTIFY_REJECTION state_transition = later elseif ca-is-unreachable store-ca-cookie state_next = CA_UNREACHABLE state_transition = later elseif ca-is-thinking-about-it-and-have-cookie store-ca-cookie state_next = CA_WORKING state_transition = soon elseif ca-is-underconfigured if already-had-a-cert state_next = MONITORING state_transition = now else store-ca-cookie state_next = CA_UNCONFIGURED state_transition = later elseif need-scep-data state_next = NEED_SCEP_DATA state_transition = now elseif need-rekey state_next = NEED_REKEY state_transition = now else state_next = NEED_GUIDANCE state_transition = now else state_next = SUBMITTING state_transition = when-notified break NEED_TO_SAVE_CERT: if pre-save-command-configured start-configured-pre-save-command state_next = PRE_SAVE_CERT state_transition = now else state_next = START_SAVING_CERT state_transition = now break PRE_SAVE_CERT: if starting-up state_next = NEED_TO_SAVE_CERT state_transition = now else if pre-save-completed state_next = START_SAVING_CERT state_transition = now break START_SAVING_CERT: start-saving-cert state_next = SAVING_CERT state_transition = now break SAVING_CERT: if starting-up state_next = NEED_TO_SAVE_CERT state_transition = now else if cert-save-completed state_next = NEED_TO_SAVE_CA_CERTS state_transition = now else if cert-save-needs-perms state_next = NEED_CERTSAVE_PERMS state_transition = now elseif cert-save-needs-token state_next = NEED_CERTSAVE_TOKEN state_transition = now elseif cert-save-needs-pin state_next = NEED_CERTSAVE_PIN state_transition = now else state_next = NEED_TO_NOTIFY_ISSUED_SAVE_FAILED state_transition = now break NEED_CERTSAVE_PERMS: if starting-up state_next = NEED_TO_SAVE_CERT state_transition = now break NEED_CERTSAVE_TOKEN: if starting-up state_next = NEED_TO_SAVE_CERT state_transition = now break NEED_CERTSAVE_PIN: if starting-up state_next = NEED_TO_SAVE_CERT state_transition = now break NEED_TO_SAVE_CA_CERTS: state_next = START_SAVING_CA_CERTS state_transition = now START_SAVING_CA_CERTS: if starting-up state_next = NEED_TO_SAVE_CA_CERTS state_transition = now else start-saving-ca-certs state_next = SAVING_CA_CERTS state_transition = now break SAVING_CA_CERTS: if starting-up state_next = NEED_TO_SAVE_CA_CERTS state_transition = now else if saving-ca-certs-complete state_next = NEED_TO_READ_CERT state_transition = now else if permissions-problem state_next = NEED_CA_CERT_SAVE_PERMS state_transition = now else state_next = NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED state_transition = now NEED_CA_CERT_SAVE_PERMS: if starting-up state_next = NEED_TO_SAVE_CA_CERTS state_transition = now break NEED_TO_READ_CERT: start-reading-cert state_next = READING_CERT state_transition = now break READING_CERT: if starting-up state_next = NEED_TO_READ_CERT state_transition = now else if cert-read-completed if post-save-command-configured start-configured-post-save-command state_next = POST_SAVED_CERT state_transition = now else state_next = NEED_TO_NOTIFY_ISSUED_SAVED state_transition = now break POST_SAVED_CERT: if starting-up state_next = NEED_TO_NOTIFY_ISSUED_SAVED state_transition = now else if post-save-completed state_next = NEED_TO_NOTIFY_ISSUED_SAVED state_transition = now SAVED_CERT: state_next = NEED_TO_SAVE_CA_CERTS state_transition = now break NEED_TO_SAVE_ONLY_CA_CERTS: state_next = START_SAVING_ONLY_CA_CERTS state_transition = now START_SAVING_ONLY_CA_CERTS: if starting-up state_next = NEED_TO_SAVE_ONLY_CA_CERTS state_transition = now else start-saving-only-ca-certs state_next = SAVING_ONLY_CA_CERTS state_transition = now break SAVING_ONLY_CA_CERTS: if starting-up state_next = NEED_TO_SAVE_ONLY_CA_CERTS state_transition = now else if saving-ca-certs-complete state_next = MONITORING state_transition = now else if permissions-problem state_next = NEED_CA_CERT_SAVE_PERMS state_transition = now else state_next = NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED state_transition = now NEED_TO_NOTIFY_REJECTION: start-notifying state_next = NOTIFYING_REJECTION state_transition = now break NOTIFYING_REJECTION: if starting-up state_next = NEED_TO_NOTIFY_REJECTION state_transition = now else if notification-completed state_next = CA_REJECTED state_transition = now break NEED_TO_NOTIFY_ISSUED_SAVE_FAILED: start-notifying state_next = NOTIFYING_ISSUED_SAVE_FAILED state_transition = now break NOTIFYING_ISSUED_SAVE_FAILED: if starting-up state_next = NEED_TO_NOTIFY_ISSUED_SAVE_FAILED state_transition = now else if notification-completed state_next = START_SAVING_CERT state_transition = soonish break NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED start-notifying state_next = NOTIFYING_ISSUED_CA_SAVE_FAILED state_transition = now break NOTIFYING_ISSUED_CA_SAVE_FAILED if starting-up state_next = NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED state_transition = now else if notification-completed state_next = MONITORING state_transition = soonish break NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED start-notifying state_next = NOTIFYING_ONLY_CA_SAVE_FAILED state_transition = now break NOTIFYING_ONLY_CA_SAVE_FAILED if starting-up state_next = NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED state_transition = now else if notification-completed state_next = MONITORING state_transition = now break NEED_TO_NOTIFY_ISSUED_SAVED: start-notifying state_next = NOTIFYING_ISSUED_SAVED state_transition = now break NOTIFYING_ISSUED_SAVED: if starting-up state_next = NEED_TO_NOTIFY_ISSUED_SAVED state_transition = now else if notification-completed state_next = MONITORING state_transition = now break CA_REJECTED: state_transition = soon break CA_WORKING: if starting-up state_next = HAVE_CSR state_transition = now else state_next = NEED_TO_SUBMIT state_transition = soon break CA_UNREACHABLE: if starting-up state_next = HAVE_CSR state_transition = now else state_next = NEED_TO_SUBMIT state_transition = soon break CA_UNCONFIGURED: if starting-up state_next = HAVE_CSR state_transition = now break NEED_CA: if starting-up state_next = HAVE_CSR state_transition = now break NEED_GUIDANCE: if have-guidance state_next = as-guided state_waitfor = now else state_next = NEED_GUIDANCE state_transition = timeout break MONITORING: if certificate-is-expired or (expiration-time-is-below-notify-threshold-value and expiration-time-was-above-notify-threshold-value) update-template-values-based-on-cert state_next = NEED_TO_NOTIFY_VALIDITY state_transition = now else if (expiration-time-is-below-renewal-threshold-value and expiration-time-was-above-renewal-threshold-value) if due-for-rekey state_next = NEED_KEY_PAIR else state_next = NEED_CSR state_transition = now else state_next = MONITORING state_transition = timeout break NEED_TO_NOTIFY_VALIDITY: if starting-up state_next = MONITORING state_transition = now else start-notifying state_next = NOTIFYING_VALIDITY state_transition = now break NOTIFYING_VALIDITY: if starting-up state_next = NEED_TO_NOTIFY_VALIDITY state_transition = now else if notification-completed if this-cert-gets-autorenew and (expiration-time-is-below-renewal-threshold-value and expiration-time-was-above-renewal-threshold-value) if due-for-rekey state_next = NEED_KEY_PAIR else state_next = NEED_CSR state_transition = now else state_next = MONITORING state_transition = timeout break NEWLY_ADDED: if key-storage-is-known state_next = NEWLY_ADDED_START_READING_KEYINFO state_transition = now else state_next = NEWLY_ADDED_START_READING_CERT state_transition = now break NEWLY_ADDED_START_READING_KEYINFO: start-reading-key-information state_next = NEWLY_ADDED_READING_KEYINFO state_transition = now break NEWLY_ADDED_READING_KEYINFO: if starting-up state_next = NEWLY_ADDED_START_READING_KEYINFO state_transition = now else if finished-reading-key-information state_next = NEWLY_ADDED_START_READING_CERT state_transition = now elseif key-store-needs-token state_next = NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN state_transition = now elseif key-store-needs-pin state_next = NEWLY_ADDED_NEED_KEYINFO_READ_PIN state_transition = now else state_next = NEWLY_ADDED_START_READING_CERT state_transition = now break NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN: if starting-up state_next = NEWLY_ADDED_START_READING_KEYINFO state_transition = now break NEWLY_ADDED_NEED_KEYINFO_READ_PIN: if starting-up state_next = NEWLY_ADDED_START_READING_KEYINFO state_transition = now break NEWLY_ADDED_START_READING_CERT: start-reading-cert state_next = NEWLY_ADDED_READING_CERT state_transition = now break NEWLY_ADDED_READING_CERT: if starting-up state_next = NEWLY_ADDED_START_READING_CERT state_transition = now else if finished-reading-cert state_next = NEWLY_ADDED_DECIDING state_transition = now break NEWLY_ADDED_DECIDING: if entry-has-no-associated-ca try-to-set-ca-using-known-ca-list if we-have-a-cert if we-have-ca-certs-to-save state_next = NEED_TO_SAVE_ONLY_CA_CERTS state_transition = now else state_next = MONITORING state_transition = now else if key-storage-is-known if key-is-present state_next = NEED_CSR state_transition = now else state_next = NEED_KEY_PAIR state_transition = now else state_next = NEED_GUIDANCE state_transition = now break Types of actions and user guidance: Reenroll-from-scratch ("request -g"): state_next = NEED_KEY_PAIR state_transition = now Submit-key ("request", if no csr or arguments alter it): state_next = NEED_CSR state_transition = now Submit-csr (automatic for "request") state_next = HAVE_CSR state_transition = now Resubmit-csr (need to add "resubmit") state_next = HAVE_CSR state_transition = now Start-Tracking-with-AutoRenew ("start-tracking"): add-cert-to-monitoring-list state_next = MONITORING state_transition = now Start-Tracking-without-AutoRenew ("start-tracking"): add-cert-to-monitoring-list state_next = MONITORING state_transition = now Cancel ("stop-tracking"): remove-cert-from-monitoring-list Status ("list"): dump-monitoring-list Data we need to track for each certificate/task/dbentry: * Type of key pair to generate [or use default settings] default: RSA,2048 * Location of key pair [use-once default] default: NSS,/etc/pki/nssdb,,Server-Key-default * Location of certificate [use-once default] default: NSS,/etc/pki/nssdb,,Server-Cert-default * Cached certificate issuer/serial/subject/spki/expiration/host/email * The last time we checked if expiration was imminent. * Interesting TTL values [or use default settings] default: 30*24*60*60,7*24*60*60,3*24*60*60,2*24*60*60,1*24*60*60 * How to notify administrator [or use default settings] syslog(LOG_AUTHPRIV?) or mail to root@? * CSR template information [or imported from existing certificate] * subject (cn=host name) * SANs¹ * DNS * email * principal name * IP addresses * ku¹, eku¹ ¹ Encoded as extensionRequest attributes. * Certificate State (state_current) * Whether to autorenew-at-expiration [or use default settings] * Whether to start monitoring at issue [or use default settings] * Type and location of CA [or use default settings] * Value of CA cookie for in-progress submissions. * Date of submission for in-progress submissions. When we interact with CAs, there are things that we "know" about them, or would like to know: * A nickname by which we refer to the CA. * The certificate which the CA uses as the issuer of certificates for end entities. * The root of the chain of trust, if it's not the CA's issuer certificate, and any other certificates in the chain between them. * A set of mandatory-to-supply pieces of information when we're requesting a new or renewed certificate from the CA. For IPA, for example, during requests for a new certificate (it doesn't distinguish between "new" and "renew" cases), this is the Kerberos principal name of the subject for whom we're requesting the certificate. * If it supports different types of enrollment (known as profiles in Dogtag, or as templates in ADCS), what the options are, and if there's a recommended default. Each of these pieces of information which we might obtain from the CA is essentially either missing, current, in the process of being fetched, or in the process of being disseminated out to the rest of the local system. We can model the states for each of these using roughly the same set of states: * Pulling data from the CA: States: NEED_TO_REFRESH,REFRESHING,UNREACHABLE * Saving the data obtained from the CA to places where it's expected: States: NEED_TO_SAVE_DATA,PRE_SAVE_DATA,START_SAVING_DATA, SAVING_DATA,POST_SAVE_DATA,SAVED_DATA * Figuring out when we'll need to re-fetch data: NEED_TO_ANALYZE, ANALYZING * Waiting until we need to re-fetch data: States: IDLE And this state machine: NEED_TO_REFRESH: start-refresh-submission if refresh-submission-started state_next = REFRESHING state_transition = now else state_transition = later break REFRESHING: if refresh-submission-attempt-completed if ca-gave-us-data state_next = NEED_TO_SAVE_DATA state_transition = now elseif ca-needs-retry state_next = NEED_TO_REFRESH state_transition = later elseif ca-is-unreachable state_next = UNREACHABLE state_transition = now else state_next = DISABLED state_transition = now else state_next = REFRESHING state_transition = when-notified break NEED_TO_SAVE_DATA: if pre-save-command-configured start-configured-pre-save-command state_next = PRE_SAVE_DATA state_transition = now else state_next = START_SAVING_DATA state_transition = now break PRE_SAVE_DATA: if pre-save-completed state_next = START_SAVING_DATA state_transition = now break START_SAVING_DATA: start-saving-data if saving-data-started state_next = SAVING_DATA state_transition = now break SAVING_DATA: if done-saving-data if post-save-command-configured start-configured-post-save-command state_next = POST_SAVE_DATA state_transition = now else state_next = SAVED_DATA state_transition = now break POST_SAVE_DATA: if post-save-completed state_next = SAVED_DATA state_transition = now break SAVED_DATA: state_next = NEED_TO_ANALYZE state_transition = now NEED_TO_ANALYZE: start-analysis if analysis-started state_next = ANALYZING state_transition = now else state_next = IDLE state_transition = now break ANALYZING: if fetched-data-will-need-to-be-refreshed: state_next = NEED_TO_REFRESH state_transition = timeout else: state_next = IDLE state_transition = now UNREACHABLE: state_next = NEED_TO_REFRESH state_transition = now certmonger-0.78.6/doc/certmaster-submit.txt0000664000175000017500000000146112645513264015676 00000000000000The submission protocol is a single XMLRPC. Request to http://server:port/, method = "wait_for_cert". The port, default "51235", is given in the server's certmaster.conf, and both the server and the port number are given in the client's minion.conf. The client does not authenticate. Request parameters are a single argument, PEM-formatted CSR, with the limitation that the header must be for "CERTIFICATE REQUEST" and not "NEW CERTIFICATE REQUEST". (The request as-sent is compared to a rebuilt copy which uses this header to determine if the request matches one which has already been received.) Response is a sequence of (boolean, string, string), either (true, issued-cert, issuer-cert), or (false, '', ''). The issued certificate is returned in PEM format. - Based on certmaster.py from certmaster 0.25. certmonger-0.78.6/doc/api.txt0000664000175000017500000002654712645513264013011 00000000000000This is modeled after the NetworkManager API, which seems to expose quite a bit to unprivileged processes running on the desktop. http://people.redhat.com/dcbw/NetworkManager/NetworkManager%20DBUS%20API.txt Despite efforts, this may not match introspection data and the implementation, since they're only kept in agreement manually. These may not all be implemented yet, but if you find a piece you need, please add a ticket or a patch to do so. Eventually we'll get it all. The D-Bus API: o service name = org.fedorahosted.certmonger o object layout /org/fedorahosted/certmonger interface=org.fedorahosted.certmonger - find_request_by_nickname arguments: nickname -> string of request's nickname returns: path -> object path for request, if found - get_requests returns: array of paths -> object paths for requests - get_supported_key_types returns: array of string -> "RSA" - get_supported_key_storage returns: array of string -> "NSSDB", "FILE" - get_supported_cert_storage returns: array of string -> "NSSDB", "FILE" - add_request arguments: [dict{string,variant{string/path/array-of-string/number/boolean}}] {"NICKNAME"("nickname"),string} {"KEY_TYPE"("key-type"),"RSA"/"DSA"/"EC"} {"KEY_SIZE"("key-size"),integer} {"KEY_STORAGE"("key-storage"),"NSSDB"/"FILE"/"NONE"}* {"KEY_LOCATION"("key-file"/"key-database"),string}* {"KEY_NICKNAME"("key-nickname"),string} {"KEY_TOKEN"("key-token"),string} {"KEY_PIN"("key-pin"),string} {"KEY_PIN_FILE"("key-pin-file"),string} {"CERT_STORAGE"("cert-storage"),"NSSDB"/"FILE"}* {"CERT_LOCATION"("cert-file"/"cert-database"),string}* {"CERT_NICKNAME"("cert-nickname"),string} {"CERT_TOKEN"("cert-token"),string} {"TRACK"("monitoring"),boolean} {"RENEW"("autorenew"),boolean} {"SUBJECT"("template-subject"),string} {"KU"("template-ku"),string (bit field)} {"EKU"("template-eku"),array-of-string (oids)} {"PRINCIPAL"("template-principal"),array-of-string (principal names)} {"DNS"("template-hostname"),array-of-string (dns names)} {"EMAIL"("template-email"),array-of-string (email addresses)} {"CA"("ca"),path (known CA to use)} {("ca-profile"),string (known CA profile to use)} {("template-ip-address"),array-of-string (IP addresses in text form)} (since 0.75) {("template-is-ca"),boolean} {("template-ca-path-length"),integer} {("template-ocsp"),array-of-string (ocsp responder URIs)} {("template-crldp"),array-of-string (CRL distribution point URIs)} {("template-ns-comment"),string (Netscape comment)} {("template-profile"),string (certificate profile)} {("template-challenge-password"),string (password to add to CSR)} {("template-challenge-password-file"),string (password file) {("cert-presave-command"),string} {("cert-postsave-command"),string} * = required values returns: boolean -> succeeded path (optional) -> object path for new request - remove_request arguments: path -> object path for request returns: boolean -> succeeded - find_ca_by_nickname arguments: nickname -> string of ca's nickname returns: path -> object path for ca, if found - get_known_cas returns: array of path -> object paths for known cas - add_known_ca arguments: string -> ca nickname string -> external helper command array of string (optional) -> known issuer names used by ca returns: boolean -> succeeded - remove_known_ca arguments: path -> object path for ca returns: boolean -> succeeded (objects whose names are returned by "get-requests" or "get-defaults") interface=org.fedorahosted.certmonger.request - get_nickname ("nickname" property) returns: string - get_status ("status"/"stuck" property pair) returns: string -> state name boolean -> i-am-stuck - get_key_type_and_size ("key-type"/"key-size" property pair) returns: string -> key algorithm number -> key size - get_key_storage_info ("key-storage"/"key-file"/"key-database"/"key-nickname"/"key-token" property set) returns: string -> "file", "nssdb" string(required for "nssdb" or "file") -> filename (for "file"), or directory (for "nssdb") string(required for "nssdb") -> nssdb nickname string(optional) -> nssdb token name - get_cert_storage_info ("key-storage"/"key-file"/"key-database"/"key-nickname"/"key-token" property set) returns: string -> "file", "nssdb" string -> filename (for "file"), or directory (for "nssdb") string(required for "nssdb") -> nssdb nickname string(optional) -> nssdb token name - get_cert_data ("cert" property) returns: string -> certificate in PEM format - get_cert_info ("issuer"/"serial"/"subject"/"email"/"hostname"/"principal"/"eku" property set) returns: string -> issuer string -> serial number string -> subject number -> expiration (unix time) array of string -> email addresses array of string -> dns names array of string -> principal names number -> key usage as bitfield based on RFC5280's values array of string -> oid values - get_monitoring ("monitoring" property) returns: boolean -> enabled? - get_cert_last_checked ("last-checked" property) returns: number -> time of last check for expiration (unix time) - get_notification_info ("notification-type"/"notification-syslog-priority"/"notification-email" property set) returns: string -> method ("syslog", "email") string -> destination (log level or recipient) - get_autorenew ("autorenew" property) returns: boolean -> enabled? - get_csr_info ("template-subject"/"template-email"/"template-hostname"/"template-principal"/"template-eku" property set) returns: string -> subject array of string -> email addresses array of string -> dns names array of string -> principal names number -> key usage as bitfield based on RFC5280's values array of string -> oid values - get_key_pin ("key-pin" property) returns: string -> key storage PIN - get_key_pin_file ("key-pin-file" property) returns: string -> path of file containing key storage PIN - get_csr_data ("csr" property) returns: string -> signing request in PEM format - get_ca ("ca" property) returns: path(optional) -> path to CA object - get_submitted_date ("submitted-date" property) returns: number(optional) -> time of last submission to a CA (as time_t) - get_submitted_cookie ("ca-cookie" property) returns: string(optional) -> CA-specific value - get_ca_error ("ca-error" property) returns: text(optional) -> error text sent by the CA - modify arguments: [dict{string,variant{string/path/array-of-string/number/boolean}}] {"NICKNAME"("nickname"),string} {"CA"("ca"),path (known CA to use)} {("ca-profile"),string (known CA profile to use)} {"TRACK"("monitoring"),boolean} {"RENEW"("autorenew"),boolean} {"SUBJECT"("template-subject"),string} {"KEY_PIN"("key-pin"),string} {"KEY_PIN_FILE"("key-pin-file"),string} {"KU"("template-ku"),string (bit field)} {"EKU"("template-eku"),array-of-string (oids)} {"PRINCIPAL"("template-principal"),array-of-string (principal names)} {"DNS"("template-hostname"),array-of-string (dns names)} {"EMAIL"("template-email"),array-of-string (email addresses)} {("template-ip-address"),array-of-string (IP addresses in text form)} (since 0.75) {("template-is-ca"),boolean} {("template-ca-path-length"),integer} {("template-ocsp"),array-of-string (ocsp responder URIs)} {("template-crldp"),array-of-string (CRL distribution point URIs)} {("template-ns-comment"),string (Netscape comment)} {("template-profile"),string (certificate profile)} {("template-challenge-password"),string (password to add to CSR)} {("template-challenge-password-file"),string (password file) {("cert-presave-command"),string} {("cert-postsave-command"),string} - nickname for request argument: string -> new ID - pin for key storage argument: string -> PIN used for key storage - pin file for key storage argument: string -> name of file containing PIN used for key storage - requested subject name argument: string -> requested subject - requested subject alternative name(s): email argument: array of string -> new requested addresses - requested subject alternative name(s): dnsname argument: array of string -> new requested hostnames - requested subject alternative name(s): principalname argument: array of string -> new requested principal names - requested new key usage argument: number -> key usage as bitfield based on RFC5280's values - requested new extended key usage argument: array of string -> requested OIDs - known-ca to use argument: path -> object path of CA returns: boolean -> ok path -> object path, in case it changed - refresh returns: boolean -> in progress - resubmit (for requests that have been denied, generates a new csr) returns: boolean -> working-on-it (objects whose names are returned by "get-known-cas") interface=org.fedorahosted.certmonger.ca - get_nickname ("nickname" property) returns: string - get_is_default ("is-default" property) returns: boolean -> is-the-default-ca - get_type returns: string -> "EXTERNAL" if this is implemented by an external helper - get_location returns: string -> path to external helper - get_serial returns: string -> hex value (optional) - get_issuer_names ("issuer-names" property) returns: array of string (optional) -> set of known issuer names - modify - nickname arguments: string -> name of ca returns: boolean -> changed? - is-default arguments: boolean -> should-be-the-default-ca returns: boolean -> is-the-default-ca - helper-location arguments: string -> path to external helper returns: boolean -> changed? - associated issuer names (for when we have to guess which CA to use) arguments: array of string (optional) -> set of issuer names - refresh returns: boolean -> in progress Marshallers needed: Arguments: string path string,string,string,array-of-string string,string boolean array-of-string dict{string,variant{string/array-of-string/number/boolean}} Return: boolean number string path boolean,string boolean,path string,boolean string,number string,string array-of-path array-of-string string,string,string string,string,string,string string,string,string,array-of-string string,string,string,number,array-of-string,array-of-string,array-of-string,number,array-of-string certmonger-0.78.6/STATUS0000664000175000017500000001671112645513264011670 00000000000000Limited local-only support, helpers for external IPA and certmaster-based CAs. Keys can also be self-signed. Complete: * Generating RSA keys of configurable size. * Storing keys in either PEM or NSSDB format. * Generating signing requests for keys in PEM or NSSDB format. * Self-sign requests using keys in PEM or NSSDB format. * Save issued certificate in PEM or NSSDB format. * Refresh certificate parameters from the certificates at startup, parsing and recovering fields and extensions that we care about to refresh the request tracking file (key usage, extended key usage, subject alt name of type email, dns, or kerberos/nt principal name). * Populate requested-extensions in signing requests with as much information as we can. * Locally-signed certificates use the requested extension values. * Locally-signed certificates get a configured validity lifetime. * Locally-signed certificates get a somewhat-useful serial number. * Locally-signed certificates are marked as not being CAs. * Maintaining queued items in an upgrade-proofable format. * Should offer an API over D-Bus which the client uses instead of mutilating the queue directly (see doc/api.txt): * Add new entry. Figure out the state based on what the requester supplies (i.e., if there's a certificate where the request says it should go, assume it's been issued; ditto for private keys). * List entries. * List known CAs. * Resubmit requests after generating a new signing request. * Provide introspection data as a well-behaved D-Bus service would. * D-Feet seems to be happy. * Start and stop tracking (i.e., notification of expiration). * Make certmonger a proper daemon. * Detach from console, foreground for debugging. * Sort out an init script. * Sort out storage for system-local defaults which are consulted before falling back to compiled-in defaults. * Actually do notification of expiration and impending expiration. * Learn to exec a helper to do non-local enrollment. * Detect when network connections go up and "kick" anything that's waiting for a server to become reachable. * Learn to submit to at least one actual CA: IPA via XML-RPC over HTTPS, authenticating using Negotiate with creds obtained using the host's keytab (administrator may have logged off long before we could have contacted the CA). * Learn to submit to a second CA: certmaster via XML-RPC over HTTP. * Learn how certmaster's root gets distributed. It doesn't. * Learn to submit to certmaster's XMLRPC interface, preferably by calling out to the python library it supplies. Ended up reusing large chunks of the IPA client code, so it's in C. * Handle PIN values for encrypted key storage. * Be able to use hashes other than SHA256. * Make certmonger a proper daemon. * Sort out SELinux policy. (unscoped) * Figure out how to let the local deamon's client do key generation. It's either that or force them to give the daemon the PIN for encrypted storage. Or don't support encrypted key storage at all, which is probably not going to be a popular limitation to have. (3 days) DROPPED in favor of giving the daemon the PIN for encrypted storage. * Offer an API over D-Bus which the client can use instead of mutilating the queue directly (per doc/api.txt). * Generate an SPKAC value when generating PKCS#10 CSRs. * Put NSS into FIPS mode. * Offer to store certificates for CAs and their intermediates, potentially in multiple certificate databases and PEM files. * Local signing should support signing with a key other than the one used to generate the CSR. * Add an option to getcert to specify a challenge password and a friendly name to add to a CSR. * Learn to generate SCEP messages. * Learn to parse SCEP responses. To-do: * Also generate a CRMF request (RFC 4211) when we generate CSRs. Not sure if we can do this as easily with PEM keys as OpenSSL doesn't appear to offer APIs for it, and I don't want to just break if the PEM module's not available. (more research needed) * Make certmonger a proper daemon. * Sort out logging levels for log messages. (1 day) MUST * Local signing should track a revocation list for each signing key and maintain a CRL for it. (3 days) COULD * Learn to handle keys and certificates stored in files in virtual guests of the current OS instance (using libguestfs). Would need to refactor some of the current storage code to to it for "file". Not at all sure how to do it for "nssdb". COULD * Learn to "handle" keys and certificates stored in PKCS12 bundles. COULD * Learn to handle keys and certificates stored in PKCS11 modules directly. COULD * Queue management. COULD -> Move entries and CAs from hand-rolled files to simple XML. (2 days) COULD -> Move them to JSON. (2 days) COULD -> Move them to an ldb. (3 days) COULD -> Move them to something that's more end-user-serviceable. (3 days) - IPA mucks with our files directly in their current form, so this is tabled indefinitely. * Lighten build requirements by crafting and parsing XML-RPC ourselves since we already have to deal with non-XML-RPC XML and HTTP for Dogtag. * Add IDENTIFY operations to helpers, so they can output their preferred/default name, and we can cache root and intermediate chain certificates from CAs which provide a way for clients to retrieve them via an integrity-checked path. * Populate/update the known-issuer-names list for the CA using these. * Cache the authorityKeyIdentifier and/or subjectPublicKeyIdentifier from the CA certificate, and use that to match up certificates that need to be renewed with their CAs. * If the CA cert includes a CRL distribution point extension, cache the CRL, too. This'll require a new dependency on a retrieval library (probably libcurl again) and changes to the internal state machine to handle CRL retrieval as another type of task. The local signer's CRL would be regenerated before being "retrieved". * More on this in "doc/submit.txt". * Add a GET_NEW_REQUEST_REQUIREMENTS operation to helpers so that they can list variables which the daemon should supply for them for it to note, so that if they're not specified by a client, we can intelligently decide whether or not they're actually required to be specified for a given CA, rather than sloppily hard-coding it as we do now. * Learn about using SRV records for locating servers, particularly KCA ones. * Learn to talk to KCAs (RFC 6717) * Learn to speak CMP (see http://marc.info/?l=openssl-dev&m=137535536301203) * Learn to talk to puppet CAs. * Check in with awnuk, who's been looking at this combination. * Learn to talk to r509 CAs. * Switch to SSL access methods when submitting end-entity requests to Dogtag CAs (profileSubmit, checkRequest, displayCertFromRequest). * Be able to fill requester contact info when submitting end-entity enrollment requests, particularly for cases when we don't have agent credentials, and make that a client-suppliable value. * Stamp "approved by certmonger $version", or something, on certificates, to help identify certificates that we approve with agent credentials. * Learn to read and create RFC3820 ProxyCertInfo extensions. * Learn to speak ACME (see https://github.com/letsencrypt/acme-spec). * Learn to read and create NameConstraints extensions. certmonger-0.78.6/LICENSE0000664000175000017500000000010712645513264011717 00000000000000GPLv3 or later (with an exception that it can be linked with OpenSSL). certmonger-0.78.6/certmonger.spec0000664000175000017500000014512412645513264013744 00000000000000%if 0%{?fedora} > 15 || 0%{?rhel} > 6 %global systemd 1 %global sysvinit 0 %else %global systemd 0 %global sysvinit 1 %endif %if 0%{?fedora} > 15 && 0%{?fedora} < 20 %global systemdsysv 1 %else %global systemdsysv 0 %endif %if 0%{?fedora} > 14 || 0%{?rhel} > 6 %global tmpfiles 1 %else %global tmpfiles 0 %endif %if 0%{?fedora} > 9 || 0%{?rhel} > 5 %global sysvinitdir %{_initddir} %else %global sysvinitdir %{_initrddir} %endif Name: certmonger Version: 0.78.6 Release: 1%{?dist} Summary: Certificate status monitor and PKI enrollment client Group: System Environment/Daemons License: GPLv3+ URL: http://certmonger.fedorahosted.org Source0: http://fedorahosted.org/released/certmonger/certmonger-%{version}.tar.gz #Source1: http://fedorahosted.org/released/certmonger/certmonger-%{version}.tar.gz.sig BuildRoot: %(mktemp -ud %{_tmppath}/%{name}-%{version}-%{release}-XXXXXX) BuildRequires: openldap-devel BuildRequires: dbus-devel, nspr-devel, nss-devel, openssl-devel, libidn-devel %if 0%{?fedora} >= 12 || 0%{?rhel} >= 6 BuildRequires: libuuid-devel %else BuildRequires: e2fsprogs-devel %endif BuildRequires: libtalloc-devel, libtevent-devel %if 0%{?rhel} >= 6 || 0%{?fedora} >= 9 BuildRequires: libcurl-devel %else BuildRequires: curl-devel %endif BuildRequires: libxml2-devel, xmlrpc-c-devel %if 0%{?rhel} < 6 BuildRequires: bind-libbind-devel %endif # Required for 'make check': # for diff and cmp BuildRequires: diffutils # for expect BuildRequires: expect # for mktemp, which was absorbed into coreutils at some point BuildRequires: mktemp # for certutil and pk12util BuildRequires: nss-tools # for openssl BuildRequires: openssl # for dbus-launch BuildRequires: /usr/bin/dbus-launch # for dos2unix BuildRequires: /usr/bin/dos2unix BuildRequires: /usr/bin/unix2dos # for which BuildRequires: /usr/bin/which # for dbus tests BuildRequires: dbus-python # for popt or popt-devel, depending on the build environment BuildRequires: /usr/include/popt.h # we need a running system bus Requires: dbus %if %{systemd} BuildRequires: systemd-units Requires(post): systemd-units Requires(preun): systemd-units, dbus, sed Requires(postun): systemd-units %endif %if %{systemdsysv} Requires(post): systemd-sysv %global systemdsysvsave \ # Save the current service runlevel info, in case the user wants \ # to apply the enabled status manually later, by running \ # "systemd-sysv-convert --apply certmonger". \ %{_bindir}/systemd-sysv-convert --save certmonger >/dev/null 2>&1 ||: %else %global systemdsysvsave %{nil} %endif %if %{sysvinit} Requires(post): /sbin/chkconfig, /sbin/service Requires(preun): /sbin/chkconfig, /sbin/service, dbus, sed %endif %if 0%{?fedora} >= 15 # Certain versions of libtevent have incorrect internal ABI versions. Conflicts: libtevent < 0.9.13 %endif %description Certmonger is a service which is primarily concerned with getting your system enrolled with a certificate authority (CA) and keeping it enrolled. %prep %setup -q %if 0%{?rhel} > 0 # Enabled by default for RHEL for bug #765600, still disabled by default for # Fedora pending a similar bug report there. sed -i 's,^# chkconfig: - ,# chkconfig: 345 ,g' sysvinit/certmonger.in %endif %build %configure \ %if %{systemd} --enable-systemd \ %endif %if %{sysvinit} --enable-sysvinit=%{sysvinitdir} \ %endif %if %{tmpfiles} --enable-tmpfiles \ %endif --with-homedir=/var/run/certmonger \ --with-tmpdir=/var/run/certmonger --enable-pie --enable-now # For some reason, some versions of xmlrpc-c-config in Fedora and RHEL just # tell us about libxmlrpc_client, but we need more. Work around. make %{?_smp_mflags} XMLRPC_LIBS="-lxmlrpc_client -lxmlrpc_util -lxmlrpc" %install rm -rf $RPM_BUILD_ROOT make install DESTDIR=$RPM_BUILD_ROOT mkdir -p $RPM_BUILD_ROOT/%{_localstatedir}/lib/certmonger/{cas,requests} install -m755 -d $RPM_BUILD_ROOT/var/run/certmonger %{find_lang} %{name} %check make check %clean rm -rf $RPM_BUILD_ROOT %post if test $1 -eq 1 ; then killall -HUP dbus-daemon 2>&1 > /dev/null fi %if %{systemd} if test $1 -eq 1 ; then /bin/systemctl daemon-reload >/dev/null 2>&1 || : fi %endif %if %{sysvinit} /sbin/chkconfig --add certmonger %endif %triggerin -- certmonger < 0.58 if test $1 -gt 1 ; then # If the daemon is running, remove knowledge of the dogtag renewer. objpath=`dbus-send --system --reply-timeout=10000 --dest=org.fedorahosted.certmonger --print-reply=o /org/fedorahosted/certmonger org.fedorahosted.certmonger.find_ca_by_nickname string:dogtag-ipa-renew-agent 2> /dev/null | sed -r 's,^ +,,g' || true` if test -n "$objpath" ; then dbus-send --system --dest=org.fedorahosted.certmonger --print-reply /org/fedorahosted/certmonger org.fedorahosted.certmonger.remove_known_ca objpath:"$objpath" >/dev/null 2> /dev/null fi # Remove the data file, in case it isn't running. for cafile in %{_localstatedir}/lib/certmonger/cas/* ; do if grep -q '^id=dogtag-ipa-renew-agent$' "$cafile" ; then rm -f "$cafile" fi done fi exit 0 %postun %if %{systemd} /bin/systemctl daemon-reload >/dev/null 2>&1 || : if [ $1 -ge 1 ] ; then /bin/systemctl try-restart certmonger.service >/dev/null 2>&1 || : fi %endif %if %{sysvinit} if test $1 -gt 0 ; then /sbin/service certmonger condrestart 2>&1 > /dev/null fi %endif exit 0 %preun %if %{systemd} if test $1 -eq 0 ; then /bin/systemctl --no-reload disable certmonger.service > /dev/null 2>&1 || : /bin/systemctl stop certmonger.service > /dev/null 2>&1 || : fi %endif %if %{sysvinit} if test $1 -eq 0 ; then /sbin/service certmonger stop 2>&1 > /dev/null /sbin/chkconfig --del certmonger fi %endif exit 0 %if %{systemd} %triggerun -- certmonger < 0.43 %{systemdsysvsave} # Do this because the old package's %%postun doesn't know we need to do it. /sbin/chkconfig --del certmonger >/dev/null 2>&1 || : # Do this because the old package's %%postun wouldn't have tried. /bin/systemctl try-restart certmonger.service >/dev/null 2>&1 || : exit 0 %endif %files -f %{name}.lang %defattr(-,root,root,-) %doc README LICENSE STATUS doc/*.txt %config(noreplace) %{_sysconfdir}/dbus-1/system.d/* %{_datadir}/dbus-1/services/* %dir %{_sysconfdir}/certmonger %config(noreplace) %{_sysconfdir}/certmonger/certmonger.conf %dir /var/run/certmonger %{_bindir}/* %{_sbindir}/certmonger %{_mandir}/man*/* %{_libexecdir}/%{name} %{_localstatedir}/lib/certmonger %if %{sysvinit} %{sysvinitdir}/certmonger %endif %if %{tmpfiles} %attr(0644,root,root) %config(noreplace) %{_tmpfilesdir}/certmonger.conf %endif %if %{systemd} %{_unitdir}/* %{_datadir}/dbus-1/system-services/* %endif %changelog * Wed Jan 13 2016 Nalin Dahyabhai 0.78.6-1 - document the -R, -N, -o, and -t flags for dogtag-ipa-renew-agent-submit - stop checking that we can generate 512 bit keys during self-tests * Thu Nov 12 2015 Nalin Dahyabhai 0.78.5-1 - fix a possible uninitialized memory read (possibly #1260871) - log a diagnostic error when we fail to initialize libkrb5 * Tue Aug 4 2015 Nalin Dahyabhai 0.78.4-1 - fix the "getcert start-tracking" -L and -l options (#1249753) - output diagnostics about the second request when scep-submit encounters an error during a second request to the SCEP server * Mon Jul 20 2015 Nalin Dahyabhai 0.78.3-1 - call poptGetOptArg() correctly, to fix parsing of the -R flag to scep-submit and the -O and -o flags to dogtag-submit (#1244914) * Thu Jul 9 2015 Nalin Dahyabhai 0.78.2-1 - tweak initialization so that we set up for providing our D-Bus API before we register our name with the bus, so that we can handle any requests that arrive before the acknowledgement of that registration - on systems that run systemd, add the right data file so that the service gets started when someone tries to talk to the daemon (ticket #38) - correctly check for error responses when sending GetCAChain requests to SCEP servers * Sun Jun 21 2015 Nalin Dahyabhai 0.78.1-1 - self-tests: assume that certutil won't generate DSA keys with more than 1024 bits, and will often short us by a few * Sat Jun 20 2015 Nalin Dahyabhai 0.78-1 - switch to using popt for parsing command line arguments, continuing to use old help text for now so that we can catch up with translations (print old text for --help, new text (with longopts!) for -H) - add some plumbing for eventually receiving per-certificate roots in addition to issued certificates and chain certificates - add a "rekey" command to getcert, for triggering enrollment using a new key pair (#1087932) - scep-submit: check for the Renewal capability, and default to taking advantage of it during rekeying, unless the new -n flag is specified to it - dogtag-submit: add flags for passing user names, UDNs, passwords, and PINs to the helper (part of ticket #12) - dogtag-submit: add a flag for using the agent creds to do TLS client auth while submitting enrollment requests (more of ticket #12) - dogtag-submit: handle cases where we submit a request and the server returns a success code rather than just queuing the request (#12 again) - ipa-submit: pass requested profile names to the server as an argument named "profile_id"; if the server gives us an "unrecognized argument" error, retry without it for compatibility's sake (part of IPA ticket #57) - keygen: fix a possible crash if keygen fails to return a key from NSS - correct the certmonger(8) man page's description of the -c flag, which it used to call the -C flag - add logic for setting ownership and permissions on certificates and keys when saving them to disk - add configuration options "max_key_lifetime" and "max_key_use_count" for making automatic renewal prefer rekeying * Wed Jun 17 2015 Fedora Release Engineering - 0.77.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Thu May 28 2015 Nalin Dahyabhai 0.77.5-1 - pass $CERTMONGER_REQ_IP_ADDRESS to enrollment helpers if the signing request includes IP address subjectAltName values - correctly verify signatures on SCEP server replies when the signer is neither the top-level CA nor the RA (feedback in #1161768) - correctly verify signatures on SCEP server replies when there is more than one certificate in the chain between the RA and the top-level CA (feedback in #1161768) * Fri May 15 2015 Nalin Dahyabhai 0.77.4-1 - don't display PINs in "getcert list" output (#42) - clean up launching of a private instance in "getcert" - expand on the don't-delete-private-key fix from 0.77.3 by letting NSS's own safety checks have an effect - backport record-keeping of key generation dates and counts of how many times we've gotten certificates using a given key pair * Thu May 7 2015 Nalin Dahyabhai 0.77.3-1 - fix a data loss bug when saving renewed certificates to NSS databases - the private key could be removed in error since 0.77 - fixes for bugs found by static analysis - fix self-tests when built with OpenSSL 1.0.2 * Tue Apr 14 2015 Nalin Dahyabhai 0.77.2-1 - expose the certificate's not-valid-before and not-valid-after dates as a property over D-Bus (ticket #41) - give the local signer its own configuration option to set the lifetime of its signing certificate, falling back to the lifetime configured for the self-signer as a default to match the previous behavior - fix a potential read segfault parsing the output of an enrollment helper, introduced in 0.77 (thanks to Steve Neuharth) - read the ns-certtype extension value in certificates - request an enrollment certtype extension to CSRs if we have a profile name that we want to use (ticket #17, possibly part of IPA ticket #57) * Fri Feb 27 2015 Nalin Dahyabhai 0.77.1-1 - update to 0.77 - add initial, still rough, SCEP support (#1140241,#1161768) - add an scep-submit helper to handle part of it - getcert: add add-ca/add-scep-ca/modify-ca/remove-ca commands - getcert: add -l, -L flags to request/resubmit/start-tracking commands to provide a way to set a ChallengePassword in signing requests - lay some groundwork for rekeying support - bundled dogtag enrollment helpers now output debugging info to stderr (#) - ipa-getcert: fix a crash when using DNS discovery to locate servers (#39) - getcert: fix displaying of pre-request pre-/post-save commands (#1178190, #1181022, patch by David Kupka) - use Zanata for translations - getcert list: list the certificate's profile name, if it contains one * Tue Nov 18 2014 Nalin Dahyabhai 0.76.8-1 - dogtag-submit: accept additional options to pass to the server when approving requests using agent creds (#1165155, patch by Jan Cholasta) - getcert: print help output when 'status' isn't given any args (#1163541) * Tue Nov 11 2014 Nalin Dahyabhai 0.76.7-1 - correctly read CA not-valid-after dates on 32-bit machines (also reported by Natxo Asenjo), so that we don't spin on polling them (#1163023) * Mon Nov 10 2014 Nalin Dahyabhai 0.76.6-1 - don't discard the priority value in DNS SRV records * Mon Nov 10 2014 Nalin Dahyabhai 0.76.5-1 - avoid premature exit on CA data analysis failures (should fix an issue reported by Natxo Asenjo) * Mon Nov 10 2014 Nalin Dahyabhai 0.76.4-1 - fix a failure in self-tests * Mon Nov 10 2014 Nalin Dahyabhai 0.76.3-1 - fixes for bugs found by static analysis - handle IDN correctly when doing service location using SRV records - documentation updates * Wed Nov 5 2014 Nalin Dahyabhai - rework the state machine so that we save an issued certificate's associated CA certificates, then re-read the certificate, then run the post hook and issue notifications, in that order, instead of saving CA certificates after running the post hook, which was always a surprising order (#1131700) - add a generic dogtag-submit helper that doesn't include any IPA defaults, to make it easier to know the difference between paramenters it requires and parameters which are optional (#12) * Tue Nov 4 2014 Nalin Dahyabhai 0.76.2-1 - ipa-submit: when we fail to locate/contact LDAP or XML-RPC servers, use discovery to find them (#1136900) * Fri Oct 31 2014 Nalin Dahyabhai 0.76.1-1 - allow for 'certmonger -P abstract:...' to work, too * Fri Oct 31 2014 Nalin Dahyabhai 0.76-1 - require a single certificate to be specified to 'getcert status' (#1148001, #1163541, #1163539) - shorten the default help message which getcert prints when it's not given a specific command (#1131704) - add private listener (-l, -L, -P) mode to certmonger, to allow it to listen for connections directly from clients running under the same UID - add a command mode (-c) to certmonger, in which once it's started, it launches a specified command, and after that command exits, the daemon exits - when getcert is invoked with no bus running, if it's running as root, run certmonger in private listener mode with the same invocation of getcert as the command to start and wait for (#1134497) * Thu Aug 28 2014 Nalin Dahyabhai 0.75.14-1 - make pathname canonicalization slightly smarter, to handle ".." in locations (#1131758) - updates to self-tests (#1144082) * Thu Aug 21 2014 Kevin Fenzi - 0.75.13-2 - Rebuild for rpm bug 1131960 * Mon Aug 18 2014 Nalin Dahyabhai 0.75.13-1 - add a missing test case file (whoops) * Mon Aug 18 2014 Nalin Dahyabhai 0.75.12-1 - correct encoding/decoding of variant-typed data which we receive and send as part of the org.freedesktop.DBus.Properties interface over the bus, and add some tests for them (based on patch from David Kupka, ticket #36) * Fri Aug 15 2014 Fedora Release Engineering - 0.75.10-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Tue Aug 12 2014 Nalin Dahyabhai 0.75.11-1 - when getcert is passed a -a flag, to indicate that CA root certificates should be stored in the specified database, don't ignore locations which don't include a storage scheme (#1129537) - when called to 'start-tracking' with the -a or -F flags, if we have applicable certificates on-hand for a CA that we're either told to use or which we decide is the correct one, save the certificates (#1129696) * Tue Aug 5 2014 Nalin Dahyabhai 0.75.10-1 - when attempting to contact an IPA LDAP server, if no "ldap_uri" is set in default.conf, and no "host" is set either, try to construct the server URI using the "server" setting (#1126985) * Thu Jul 31 2014 Nalin Dahyabhai 0.75.9-1 - avoid potential use-after-free after a CA is removed dynamically (thanks to Keenan Brock) (#1125342) - add a "external-helper" property to CA objects * Mon Jul 21 2014 Nalin Dahyabhai 0.75.8-1 - add a 'refresh' option to the getcert command - add a '-a' flag to the getcert command's 'refresh-ca' option * Thu Jul 17 2014 Nalin Dahyabhai 0.75.7-2 - reintroduce package Requires: on systemd-sysv on F19 and EL6 and older, conditionalized it so that it's ignored on newer releases, and make whether or not we call systemd-sysv-convert in triggers depend on that, too (#1104138) * Thu Jul 17 2014 Nalin Dahyabhai 0.75.7-1 - fix an inconsistency in how we parse cookie values returned by CA helpers, in that single-line values would lose the end-of-line after a daemon restart, but not before - handle timeout values and exit status values when calling CA helpers in non-SUBMIT, non-POLL modes (#1118468) - rework how we save CA certificates so that we save CA certificates associated with end-entity certificates when we save that end-entity certificate, which requires running all of the involved pre- and post-save commands - drop package Requires: on systemd-sysv (#1104138) * Thu Jun 26 2014 Nalin Dahyabhai 0.75.6-1 - avoid potential use-after-free and read overrun after a CA is added dynamically (thanks to Jan Cholasta) * Fri Jun 20 2014 Nalin Dahyabhai 0.75.5-1 - documentation updates * Fri Jun 20 2014 Nalin Dahyabhai 0.75.4-2 - add a %%trigger to remove knowledge of the "dogtag-ipa-renew-agent" CA when we detect certmonger versions prior to 0.58 being installed, to avoid cases where some older versions choke on CAs with nicknames that contain characters that can't legally be part of a D-Bus name (#948993) * Thu Jun 19 2014 Nalin Dahyabhai 0.75.4-1 - fix creation and packaging of the "local" CA's data directory * Wed Jun 18 2014 Nalin Dahyabhai 0.75.3-1 - read and cache whether or not we saw a noOCSPcheck extension in certificates - documentation updates * Mon Jun 16 2014 Nalin Dahyabhai 0.75.2-1 - when generating keys using OpenSSL, if key generation fails, try again with the default key size, in case we're in FIPS mode - documentation updates * Sat Jun 14 2014 Nalin Dahyabhai 0.75.1-1 - log the state in 'getcert status' verbose mode * Fri Jun 13 2014 Nalin Dahyabhai 0.75-1 - add a -w (wait) flag to the getcert's request/resubmit/start-tracking commands, and add a non-waiting status command * Wed Jun 11 2014 Nalin Dahyabhai 0.74.96-1 - make the trust settings we apply to CA-supplied certificates while saving them to NSS databases run-time configurable - fix compiling against EL5-era OpenSSL - when saving CA certificates we pull from an IPA server, nickname it using the realm name with " IPA CA" appended rather than just naming it "IPA CA" - fix the local signer so that when it issues itself a new certificate, it uses the same subject name - add a -w flag to getcert's request, resubmit, and start-tracking commands, telling it to wait until either the certificate is issued, we get to a state where we know that we won't be able to get one, or we are waiting for a CA * Mon Jun 9 2014 Nalin Dahyabhai 0.74.95-1 - add the "local" signer, a local toy CA that signs anything you'll ask it to sign * Sat Jun 07 2014 Fedora Release Engineering - 0.74-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri Jun 6 2014 Nalin Dahyabhai 0.74.94-1 - fix self-test errors that we trigger with new OpenSSL - fix a build error that would sometimes happen when we're told to build PIE binaries - quiet a compile warning * Thu Jun 5 2014 Nalin Dahyabhai 0.74.93-1 - add some self-tests - simplify the internal submit-to-CA logic - fixes for more problems found through static analysis * Tue Jun 3 2014 Nalin Dahyabhai 0.74.92-1 - retrieve CA information from CAs, if the helpers can do so, and add a command to explicitly refresh that data: "getcert refresh-ca" - offer to save CA certificates to files and databases, when specified with new -a and -F flags to getcert request/resubmit/start-tracking (#1098208, trac #31) - add IP address subject alternate names when getcert request/resubmit is passed the -A option (trac #35) - read and cache the freshestCRL extension in certificates - properly interpret KDC-unreachable errors encountered in the IPA submission error as a server-unreachable error that we will retry, rather than a misconfiguration error which we won't - don't let tests get tripped up by new formatting used in dos2unix status messages (#1099080) - updated translations - be explicit that we are going to use bashisms in test scripts by calling the shell interpreter as 'bash' rather than 'sh' (trac #27) * Thu Apr 3 2014 Nalin Dahyabhai 0.74-1 - also save state when we exit due to SIGHUP - don't get tripped up when enrollment helpers hand us certificates which include CRLF line terminators (ticket #25) - be tolerant of certificate issuer names, subject names, DNS, email, and Kerberos principal namem subjectAltNames, and crl distribution point URLs that contain newlines - read and cache the certificate template extension in certificates - enforce different minimum key sizes depending on the type of key we're trying to generate - store DER versions of subject, issuer and template subject, if we have them (Jan Cholasta, ticket #26) - when generating signing requests with subject names that don't quite parse as subject names, encode what we're given as PrintableString rather than as a UTF8String - always chdir() to a known location at startup, even if we're not becoming a daemon - fix a couple of memory leaks (static analysis) - add missing buildrequires: on which * Thu Feb 20 2014 Nalin Dahyabhai 0.73-1 - updates to 0.73 - getcert no longer claims to be stuck when a CA is unreachable, because the daemon isn't actually stuck * Mon Feb 17 2014 Nalin Dahyabhai - updates to 0.73 - also pass the key type to enrollment helpers in the environment as a the value of "CERTMONGER_KEY_TYPE" * Mon Feb 10 2014 Nalin Dahyabhai - move the tmpfiles.d file from /etc/tmpfiles.d to %%{_tmpfilesdir}, where it belongs (#1180978) * Mon Feb 10 2014 Nalin Dahyabhai - updates for 0.73 - set the flag to encode EC public key parameters using named curves instead of the default of all-the-details when using OpenSSL - don't break when NSS supports secp521r1 but OpenSSL doesn't - also pass the CA nickname to enrollment helpers in the environment as a text value in "CERTMONGER_CA_NICKNAME", so they can use that value when reading configuration settings - also pass the SPKAC value to enrollment helpers in the environment as a base64 value in "CERTMONGER_SPKAC" - also pass the request's SubjectPublicKeyInfo value to enrollment helpers in the environment as a base64 value in "CERTMONGER_SPKI" (part of #16) - when generating signing requests using NSS, be more accommodating of requested subject names that don't parse properly * Mon Feb 3 2014 Nalin Dahyabhai 0.72-1 - update to 0.72 - support generating DSA parameters and keys on sufficiently-new OpenSSL and NSS - support generating EC keys when OpenSSL and NSS support it, using key size to select the curve to use from among secp256r1, secp384r1, secp521r1 (which are the ones that are usually available, though secp521r1 isn't always, even if the other two are) - stop trying to cache public key parameters at all and instead cache public key info properly - encode the friendlyName attribute in signing requests as a BMPString, not as a PrintableString - catch more filesystem permissions problems earlier (more of #996581) * Mon Jan 27 2014 Nalin Dahyabhai 0.71-1 - check for cases where we fail to allocate memory while reading a request or CA entry from disk (John Haxby) - only handle one watch at a time, which should avoid abort() during attempts to reconnect to the message bus after losing our connection to it (#1055521) * Fri Jan 24 2014 Daniel Mach - 0.70-2 - Mass rebuild 2014-01-24 * Thu Jan 2 2014 Nalin Dahyabhai 0.70-1 - add a --with-homedir option to configure, and use it, since subprocesses which we run and which use NSS may attempt to write to $HOME/.pki, and 0.69's strategy of setting that to "/" was rightly hitting SELinux policy denials (#1047798) * Fri Dec 27 2013 Daniel Mach - 0.69-2 - Mass rebuild 2013-12-27 * Mon Dec 9 2013 Nalin Dahyabhai 0.69-1 - tweak how we decide whether we're on the master or a minion when we're told to use certmaster as a CA - clean up one of the tests so that it doesn't have to work around internal logging producing duplicate messages - when logging errors while setting up to contact xmlrpc servers, explicitly note that the error is client-side - don't abort() due to incorrect locking when an attempt to save an issued certificate to the designated location fails (part of #1032760/#1033333, ticket #22) - when reading an issued certificate from an enrollment helper, ignore noise before or after the certificate itself (more of #1032760/1033333, ticket #22) - run subprocesses in a cleaned-up environment (more of #1032760/1033333, ticket #22) - clear the ca-error that we saved when we had an error talking to the CA if we subsequently succeed in talking to the CA - various other static-analysis fixes * Thu Aug 29 2013 Nalin Dahyabhai 0.68-1 - notice when the OpenSSL RNG isn't seeded - notice when saving certificates or keys fails due to filesystem-related permission denial (#996581) * Tue Aug 6 2013 Nalin Dahyabhai 0.67-3 - pull up a patch from master to adapt self-tests to certutil's diagnostic output having changed (#992050) * Sat Aug 03 2013 Fedora Release Engineering - 0.67-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Mon Mar 11 2013 Nalin Dahyabhai 0.67-1 - when saving certificates to NSS databases, try to preserve the trust value assigned to a previously-present certificate with the same nickname and subject, if one is found - when saving certificates to NSS databases, also prune certificates from the database which have both the same nickname and subject as the one we're adding, to avoid tripping up tools that only fetch one certificate by nickname * Wed Feb 13 2013 Fedora Release Engineering - 0.65-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Wed Jan 23 2013 Nalin Dahyabhai 0.66-1 - build as position-independent executables with early binding (#883966) - also don't tag the unit file as a configuration file (internal tooling) * Wed Jan 23 2013 Nalin Dahyabhai 0.65-2 - don't tag the D-Bus session .service file as a configuration file (internal tooling) * Tue Jan 8 2013 Nalin Dahyabhai 0.65-1 - fix a crash in the self-tests * Tue Jan 8 2013 Nalin Dahyabhai 0.64-1 - at startup, if we resume the state machine for a given certificate to a state which expects to have the newly-added lock already acquired, acquire it before moving on with the certificate's work (still aimed at fixing #883484) * Tue Dec 18 2012 Nalin Dahyabhai 0.63-1 - serialize access to NSS databases and the running of pre- and post-save commands which might also access them (possibly fixing part of #883484) * Thu Nov 29 2012 Nalin Dahyabhai 0.62-1 - add a -u flag to getcert to enable requesting a keyUsage extension value - request subjectKeyIdentifier extensions from CAs, and include them in self-signed certificates - request basicConstraints from CAs, defaulting to requests for end-entity certificates - when requesting CA certificates, also request authorityKeyIdentifier - add support for requesting CRL distribution point and authorityInfoAccess extensions that specify OCSP responder locations - don't crash when OpenSSL can't build a template certificate from a request when we're in FIPS mode - put NSS in FIPS mode, when the system booted that way, except when we're trying to write certificates to a database - fix CSR generation and self-signing in FIPS mode with NSS - fix self-signing in FIPS mode with OpenSSL - new languages from the translation team: mai, ml, nn, ga * Tue Nov 27 2012 Nalin Dahyabhai 0.61-3 - backport change from git to not choke if X509_REQ_to_X509() fails when we're self-signing using OpenSSL - backport another change from git to represent this as a CA-rejected error * Mon Sep 24 2012 Nalin Dahyabhai 0.61-1 - fix a regression in reading old request tracking files where the request was in state NEED_TO_NOTIFY or NOTIFYING * Wed Sep 5 2012 Nalin Dahyabhai 0.60-1 - adjust internals of logic for talking to dogtag to at least have a concept of non-agent cases - when talking to an IPA server's internal Dogtag instance, infer which ports the CA is listening on from the "dogtag_version" setting in the IPA configuration (Ade Lee) - send a notification (or log a message, whatever) when we save a new certificate (#766167) * Mon Jul 30 2012 Nalin Dahyabhai - fix a bad %%preun scriptlet * Wed Jul 18 2012 Fedora Release Engineering - 0.59-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jun 29 2012 Nalin Dahyabhai 0.59-1 - mostly documentation updates * Fri Jun 29 2012 Nalin Dahyabhai 0.58-1 - add a "dogtag-ipa-renew-agent" CA so that we can renew certificates using an IPA server's internal Dogtag instance - export the requested profile and old certificate to enrollment helpers - make libxml and libcurl into hard build-time requirements - serialize all pre/save/post sequences to make sure that stop/save/start doesn't become stop1/save1/stop2/start1/save2/start2 when we're stopping a service while we muck with more than one of its certificates * Fri Jun 15 2012 Nalin Dahyabhai - add a command option (-T) to getcert for specifying which enrollment profile to tell a CA that we're using, in case it cares (#10) * Thu Jun 14 2012 Nalin Dahyabhai 0.57-1 - clarify that the command passed to getcert -C is a "post"-save command - add a "pre"-save command option to getcert, specified with the -B flag (#9) - after we notify of an impending not-valid-after approaching, don't do it again immediately * Sat Mar 3 2012 Nalin Dahyabhai 0.56-1 - when a caller sets the is-default flag on a CA, and another CA is no longer the default, emit the PropertiesChanged signal on the CA which is not the default, instead on the new default a second time - drop some dead code from the D-Bus message handlers (static analysis, #796813) - cache public keys when we read private keys - go back to printing an error indicating that we're missing a required argument when we're missing a required argument, not that the option is invalid (broken since 0.51, #796542) * Wed Feb 15 2012 Nalin Dahyabhai 0.55-1 - allow root to use our implementation of org.freedesktop.DBus.Properties - take more care to not emit useless PropertiesChanged signals * Wed Feb 15 2012 Nalin Dahyabhai 0.54-1 - fix setting the group ID when spawning the post-save command * Tue Feb 14 2012 Nalin Dahyabhai 0.53-1 - large changes to the D-Bus glue, exposing a lot of data which we were providing via D-Bus getter methods as properties, and providing more accurate introspection data - emit a signal when the daemon saves a certificate to the destination location, and provide an option to have the daemon spawn an arbitrary command at that point, too (#766167) - enable starting the service by default on RHEL (#765600) * Thu Jan 12 2012 Fedora Release Engineering - 0.52-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Fri Dec 16 2011 Nalin Dahyabhai 0.52-1 - note that SELinux usually confines us to writing only to cert_t in doc/getting-started.txt (#765599) - fix crashes when we add a request during our first run when we're populating the hard-coded CA list - properly deal with cases where a path is passed to us is "./XXX" - in session mode, create our data directories as we go * Tue Dec 6 2011 Nalin Dahyabhai 0.51-1 - api: lift restrictions on characters used in request and CA nicknames by making their object names not incorporate their nicknames - api: add find_request_by_nickname and find_ca_by_nickname - certmonger-ipa-submit.8: list -k, -K, -t in the summary, document -K - getcert: print "invalid option" error messages ourselves (#756291) - ipa-submit: supply a Referer: header when submitting requests to IPA (#750617, needed for #747710) * Fri Oct 14 2011 Nalin Dahyabhai 0.50-1 - really fix these this time: - getcert: error out when "list -c" finds no matching CA (#743488) - getcert: error out when "list -i" finds no matching request (#743485) * Wed Oct 12 2011 Nalin Dahyabhai 0.49-1 - when using an NSS database, skip loading the module database (#743042) - when using an NSS database, skip loading root certs - generate SPKAC values when generating CSRs, though we don't do anything with SPKAC values yet - internally maintain and use challenge passwords, if we have them - behave better when certificates have shorter lifetimes - add/recognize/handle notification type "none" - getcert: error out when "list -c" finds no matching CA (#743488) - getcert: error out when "list -i" finds no matching request (#743485) * Thu Sep 29 2011 Nalin Dahyabhai 0.48-1 - don't incorrectly assume that CERT_ImportCerts() returns a NULL-terminated array (#742348) * Tue Sep 27 2011 Nalin Dahyabhai 0.47-1 - getcert: distinguish between {stat() succeeds but isn't a directory} and {stat() failed} when printing an error message (#739903) - getcert resubmit/start-tracking: when we're looking for an existing request by ID, and we don't find one, note that specifically (#741262) * Mon Aug 29 2011 Stephen Gallagher - 0.46-1.1 - Rebuild against fixed libtevent version * Mon Aug 15 2011 Nalin Dahyabhai 0.46-1 - treat the ability to access keys in an NSS database without using a PIN, when we've been told we need one, as an error (#692766, really this time) * Thu Aug 11 2011 Nalin Dahyabhai 0.45-1 - modify the systemd .service file to be a proper 'dbus' service (more of #718172) * Thu Aug 11 2011 Nalin Dahyabhai 0.44-1 - check specifically for cases where a specified token that we need to use just isn't present for whatever reason (#697058) * Wed Aug 10 2011 Nalin Dahyabhai 0.43-1 - add a -K option to ipa-submit, to use the current ccache, which makes it easier to test * Fri Aug 5 2011 Nalin Dahyabhai - if xmlrpc-c's struct xmlrpc_curl_xportparms has a gss_delegate field, set it to TRUE when we're doing Negotiate auth (#727864, #727863, #727866) * Wed Jul 13 2011 Nalin Dahyabhai - treat the ability to access keys in an NSS database without using a PIN, when we've been told we need one, as an error (#692766) - when handling "getcert resubmit" requests, if we don't have a key yet, make sure we go all the way back to generating one (#694184) - getcert: try to clean up tests for NSS and PEM file locations (#699059) - don't try to set reconnect-on-exit policy unless we managed to connect to the bus (#712500) - handle cases where we specify a token but the storage token isn't known (#699552) - getcert: recognize -i and storage options to narrow down which requests the user wants to know about (#698772) - output hints when the daemon has startup problems, too (#712075) - add flags to specify whether we're bus-activated or not, so that we can exit if we have nothing to do after handling a request received over the bus if some specified amount of time has passed - explicitly disallow non-root access in the D-Bus configuration (#712072) - migrate to systemd on releases newer than Fedora 15 or RHEL 6 (#718172) - fix a couple of incorrect calls to talloc_asprintf() (#721392) * Wed Apr 13 2011 Nalin Dahyabhai 0.42-1 - getcert: fix a buffer overrun preparing a request for the daemon when there are more parameters to encode than space in the array (#696185) - updated translations: de, es, id, pl, ru, uk * Mon Apr 11 2011 Nalin Dahyabhai 0.41-1 - read information about the keys we've just generated before proceeding to generating a CSR (part of #694184, part of #695675) - when processing a "resubmit" request from getcert, go back to key generation if we don't have keys yet, else go back to CSR generation as before (#694184, #695675) - configure with --with-tmpdir=/var/run/certmonger and own /var/run/certmonger (#687899), and add a systemd tmpfiles.d control file for creating /var/run/certmonger on Fedora 15 and later - let session instances exit when they get disconnected from the bus - use a lock file to make sure there's only one session instance messing around with the user's files at a time - fix errors saving certificates to NSS databases when there's already a certificate there with the same nickname (#695672) - make key and certificate location output from 'getcert list' more properly translatable (#7) * Mon Mar 28 2011 Nalin Dahyabhai 0.40-1 - update to 0.40 - fix validation check on EKU OIDs in getcert (#691351) - get session bus mode sorted - add a list of recognized EKU values to the getcert-request man page * Fri Mar 25 2011 Nalin Dahyabhai 0.39-1 - update to 0.39 - fix use of an uninitialized variable in the xmlrpc-based submission helpers (#690886) * Thu Mar 24 2011 Nalin Dahyabhai 0.38-1 - update to 0.38 - catch cases where we can't read a PIN file, but we never have to log in to the token to access the private key (more of #688229) * Tue Mar 22 2011 Nalin Dahyabhai 0.37-1 - update to 0.37 - be more careful about checking if we can read a PIN file successfully before we even call an API that might need us to try (#688229) - fix strict aliasing warnings * Tue Mar 22 2011 Nalin Dahyabhai 0.36-1 - update to 0.36 - fix some use-after-free bugs in the daemon (#689776) - fix a copy/paste error in certmonger-ipa-submit(8) - getcert now suppresses error details when not given its new -v option (#683926, more of #681641/#652047) - updated translations - de, es, pl, ru, uk - indonesian translation is now for "id" rather than "in" * Wed Mar 2 2011 Nalin Dahyabhai 0.35.1-1 - fix a self-test that broke because one-year-from-now is now a day's worth of seconds further out than it was a few days ago * Mon Feb 14 2011 Nalin Dahyabhai 0.35-1 - update to 0.35 - self-test fixes to rebuild properly in mock (#670322) * Tue Feb 08 2011 Fedora Release Engineering - 0.34-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Fri Jan 14 2011 Nalin Dahyabhai 0.34-1 - update to 0.34 - explicitly note the number of requests we're tracking in the output of "getcert list" (#652049) - try to offer some suggestions when we get certain specific errors back in "getcert" (#652047) - updated translations - es * Thu Dec 23 2010 Nalin Dahyabhai 0.33-1 - update to 0.33 - new translations - id by Okta Purnama Rahadian! - updated translations - pl, uk - roll up assorted fixes for defects * Fri Nov 12 2010 Nalin Dahyabhai 0.32-2 - depend on the e2fsprogs libuuid on Fedora and RHEL releases where it's not part of util-linux-ng * Wed Oct 13 2010 Nalin Dahyabhai 0.32-1 - oops, rfc5280 says we shouldn't be populating unique identifiers, so make it a configuration option and default the behavior to off * Tue Oct 12 2010 Nalin Dahyabhai 0.31-1 - start populating the optional unique identifier fields in self-signed certificates * Thu Sep 30 2010 Nalin Dahyabhai 0.30-4 - explicitly require "dbus" to try to ensure we have a running system bus when we get started (#639126) * Wed Sep 29 2010 jkeating - 0.30-3 - Rebuilt for gcc bug 634757 * Thu Sep 23 2010 Nalin Dahyabhai 0.30-2 - try to SIGHUP the messagebus daemon at first install so that it'll let us claim our service name if it isn't restarted before we are first started (#636876) * Wed Aug 25 2010 Nalin Dahyabhai 0.30-1 - update to 0.30 - fix errors computing the time at the end of an interval that were caught by self-tests * Mon Aug 23 2010 Nalin Dahyabhai 0.29-1 - update to 0.29 - fix 64-bit cleanliness issue using libdbus - actually include the full set of tests in tarballs * Tue Aug 17 2010 Nalin Dahyabhai 0.28-1 - update to 0.28 - fix self-signing certificate notBefore and notAfter values on 32-bit machines * Tue Aug 17 2010 Nalin Dahyabhai 0.27-1 - update to 0.27 - portability and test fixes * Fri Aug 13 2010 Nalin Dahyabhai 0.26-1 - update to 0.26 - when canceling a submission request that's being handled by a helper, reap the child process's status after killing it (#624120) * Fri Aug 13 2010 Nalin Dahyabhai 0.25-1 - update to 0.25 - new translations - in by Okta Purnama Rahadian! - fix detection of cases where we can't access a private key in an NSS database because we don't have the PIN - teach '*getcert start-tracking' about the -p and -P options which the '*getcert request' commands already understand (#621670), and also the -U, -K, -E, and -D flags - double-check that the nicknames of keys we get back from PK11_ListPrivKeysInSlot() match the desired nickname before accepting them as matches, so that our tests won't all blow up on EL5 - fix dynamic addition and removal of CAs implemented through helpers * Mon Jun 28 2010 Nalin Dahyabhai 0.24-4 - init script: ensure that the subsys lock is created whenever we're called to "start" when we're already running (even more of #596719) * Tue Jun 15 2010 Nalin Dahyabhai 0.24-3 - more gracefully handle manual daemon startups and cleaning up of unexpected crashes (still more of #596719) * Thu Jun 10 2010 Nalin Dahyabhai 0.24-2 - don't create the daemon pidfile until after we've connected to the D-Bus (still more of #596719) * Tue Jun 8 2010 Nalin Dahyabhai 0.24-1 - update to 0.24 - keep the lock on the pid file, if we have one, when we fork, and cancel daemon startup if we can't gain ownership of the lock (the rest of #596719) - make the man pages note which external configuration files we consult when submitting requests to certmaster and ipa CAs * Thu May 27 2010 Nalin Dahyabhai 0.23-1 - update to 0.23 - new translations - pl by Piotr DrÄ…g! - cancel daemon startup if we can't gain ownership of our well-known service name on the DBus (#596719) * Fri May 14 2010 Nalin Dahyabhai 0.22-1 - update to 0.22 - new translations - de by Fabian Affolter! - certmaster-submit: don't fall over when we can't find a certmaster.conf or a minion.conf (i.e., certmaster isn't installed) (#588932) - when reading extension values from certificates, prune out duplicate principal names, email addresses, and hostnames * Tue May 4 2010 Nalin Dahyabhai 0.21-1 - update to 0.21 - getcert/*-getcert: relay the desired CA to the local service, whether specified on the command line (in getcert) or as a built-in hard-wired default (in *-getcert) (#584983) - flesh out the default certmonger.conf so that people can get a feel for the expected formatting (Jenny Galipeau) * Wed Apr 21 2010 Nalin Dahyabhai 0.20-1 - update to 0.20 - correctly parse certificate validity periods given in years (spotted by Stephen Gallagher) - setup for translation - es by Héctor Daniel Cabrera! - ru by Yulia Poyarkova! - uk by Yuri Chornoivan! - fix unpreprocessed defaults in certmonger.conf's man page - tweak the IPA-specific message that indicates a principal name also needs to be specified if we're not using the default subject name (#579542) - make the validity period of self-signed certificates into a configuration setting and not a piece of the state information we track about the signer - init script: exit with status 2 instead of 1 when invoked with an unrecognized argument (#584517) * Tue Mar 23 2010 Nalin Dahyabhai 0.19-1 - update to 0.19 - correctly initialize NSS databases that need to be using a PIN - add certmonger.conf, for customizing notification timings and settings, and use of digests other than the previously-hard-coded SHA256, and drop those settings from individual requests - up the default self-sign validity interval from 30 days to 365 days - drop the first default notification interval from 30 days to 28 days (these two combined to create a fun always-reissuing loop earlier) - record the token which contains the key or certificate when we're storing them in an NSS database, and report it - improve handling of cases where we're supposed to use a PIN but we either don't have one or we have the wrong one - teach getcert to accept a PIN file's name or a PIN value when adding a new entry - update the IPA submission helper to use the new 'request_cert' signature that's landing soon - more tests * Fri Feb 12 2010 Nalin Dahyabhai 0.18-1 - update to 0.18 - add support for using encrypted storage for keys, using PIN values supplied directly or read from files whose names are supplied - don't choke on NSS database locations that use the "sql:" or "dbm:" prefix * Mon Jan 25 2010 Nalin Dahyabhai 0.17-2 - make the D-Bus configuration file (noreplace) (#541072) - make the %%check section and the deps we have just for it conditional on the same macro (#541072) * Wed Jan 6 2010 Nalin Dahyabhai 0.17-1 - update to 0.17 - fix a hang in the daemon (Rob Crittenden) - documentation updates - fix parsing of submission results from IPA (Rob Crittenden) * Fri Dec 11 2009 Nalin Dahyabhai 0.16-1 - update to 0.16 - set a umask at startup (Dan Walsh) * Tue Dec 8 2009 Nalin Dahyabhai 0.15-1 - update to 0.15 - notice that a directory with a trailing '/' is the same location as the directory without it - fix handling of the pid file when we write one (by actually giving it contents) * Wed Nov 25 2009 Nalin Dahyabhai 0.14-1 - update to 0.14 - check key and certificate location at add-time to make sure they're absolute paths to files or directories, as appropriate - IPA: dig into the 'result' item if the named result value we're looking for isn't in the result struct * Tue Nov 24 2009 Nalin Dahyabhai 0.13-1 - update to 0.13 - change the default so that we default to trying to auto-refresh certificates unless told otherwise - preemptively enforce limitations on request nicknames so that they make valid D-Bus object path components * Tue Nov 24 2009 Nalin Dahyabhai 0.12-1 - update to 0.12 - add a crucial bit of error reporting when CAs reject our requests - count the number of configured CAs correctly * Mon Nov 23 2009 Nalin Dahyabhai 0.11-1 - update to 0.11 - add XML-RPC submission for certmaster and IPA - prune entries with duplicate names from the data store * Fri Nov 13 2009 Nalin Dahyabhai 0.10-1 - update to 0.10 - add some compiler warnings and then fix them * Fri Nov 13 2009 Nalin Dahyabhai 0.9-1 - update to 0.9 - run external submission helpers correctly - fix signing of signing requests generated for keys stored in files - only care about new interface and route notifications from netlink, and ignore notifications that don't come from pid 0 - fix logic for determining expiration status - correct the version number in self-signed certificates * Tue Nov 10 2009 Nalin Dahyabhai 0.8-1 - update to 0.8 - encode windows UPN values in requests correctly - watch for netlink routing changes and restart stalled submission requests - 'getcert resubmit' can force a regeneration of the CSR and submission * Fri Nov 6 2009 Nalin Dahyabhai 0.7-1 - update to 0.7 - first cut at a getting-started document - refactor some internal key handling with NSS - check for duplicate request nicknames at add-time * Tue Nov 3 2009 Nalin Dahyabhai 0.6-1 - update to 0.6 - man pages - 'getcert stop-tracking' actually makes the server forget now - 'getcert request -e' was redundant, dropped the -e option - 'getcert request -i' now sets the request nickname - 'getcert start-tracking -i' now sets the request nickname * Mon Nov 2 2009 Nalin Dahyabhai 0.5-1 - update to 0.5 - packaging fixes - add a selfsign-getcert client - self-signed certs now get basic constraints and their own serial numbers - accept id-ms-kp-sc-logon as a named EKU value in a request * Thu Oct 29 2009 Nalin Dahyabhai 0.4-1 - update to 0.4 * Thu Oct 22 2009 Nalin Dahyabhai 0.1-1 - update to 0.1 * Sun Oct 18 2009 Nalin Dahyabhai 0.0-1 - initial package certmonger-0.78.6/missing0000755000175000017500000001533012645513271012311 00000000000000#! /bin/sh # Common wrapper for a few potentially missing GNU programs. scriptversion=2013-10-28.13; # UTC # Copyright (C) 1996-2014 Free Software Foundation, Inc. # Originally written by Fran,cois Pinard , 1996. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. if test $# -eq 0; then echo 1>&2 "Try '$0 --help' for more information" exit 1 fi case $1 in --is-lightweight) # Used by our autoconf macros to check whether the available missing # script is modern enough. exit 0 ;; --run) # Back-compat with the calling convention used by older automake. shift ;; -h|--h|--he|--hel|--help) echo "\ $0 [OPTION]... PROGRAM [ARGUMENT]... Run 'PROGRAM [ARGUMENT]...', returning a proper advice when this fails due to PROGRAM being missing or too old. Options: -h, --help display this help and exit -v, --version output version information and exit Supported PROGRAM values: aclocal autoconf autoheader autom4te automake makeinfo bison yacc flex lex help2man Version suffixes to PROGRAM as well as the prefixes 'gnu-', 'gnu', and 'g' are ignored when checking the name. Send bug reports to ." exit $? ;; -v|--v|--ve|--ver|--vers|--versi|--versio|--version) echo "missing $scriptversion (GNU Automake)" exit $? ;; -*) echo 1>&2 "$0: unknown '$1' option" echo 1>&2 "Try '$0 --help' for more information" exit 1 ;; esac # Run the given program, remember its exit status. "$@"; st=$? # If it succeeded, we are done. test $st -eq 0 && exit 0 # Also exit now if we it failed (or wasn't found), and '--version' was # passed; such an option is passed most likely to detect whether the # program is present and works. case $2 in --version|--help) exit $st;; esac # Exit code 63 means version mismatch. This often happens when the user # tries to use an ancient version of a tool on a file that requires a # minimum version. if test $st -eq 63; then msg="probably too old" elif test $st -eq 127; then # Program was missing. msg="missing on your system" else # Program was found and executed, but failed. Give up. exit $st fi perl_URL=http://www.perl.org/ flex_URL=http://flex.sourceforge.net/ gnu_software_URL=http://www.gnu.org/software program_details () { case $1 in aclocal|automake) echo "The '$1' program is part of the GNU Automake package:" echo "<$gnu_software_URL/automake>" echo "It also requires GNU Autoconf, GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/autoconf>" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; autoconf|autom4te|autoheader) echo "The '$1' program is part of the GNU Autoconf package:" echo "<$gnu_software_URL/autoconf/>" echo "It also requires GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; esac } give_advice () { # Normalize program name to check for. normalized_program=`echo "$1" | sed ' s/^gnu-//; t s/^gnu//; t s/^g//; t'` printf '%s\n' "'$1' is $msg." configure_deps="'configure.ac' or m4 files included by 'configure.ac'" case $normalized_program in autoconf*) echo "You should only need it if you modified 'configure.ac'," echo "or m4 files included by it." program_details 'autoconf' ;; autoheader*) echo "You should only need it if you modified 'acconfig.h' or" echo "$configure_deps." program_details 'autoheader' ;; automake*) echo "You should only need it if you modified 'Makefile.am' or" echo "$configure_deps." program_details 'automake' ;; aclocal*) echo "You should only need it if you modified 'acinclude.m4' or" echo "$configure_deps." program_details 'aclocal' ;; autom4te*) echo "You might have modified some maintainer files that require" echo "the 'autom4te' program to be rebuilt." program_details 'autom4te' ;; bison*|yacc*) echo "You should only need it if you modified a '.y' file." echo "You may want to install the GNU Bison package:" echo "<$gnu_software_URL/bison/>" ;; lex*|flex*) echo "You should only need it if you modified a '.l' file." echo "You may want to install the Fast Lexical Analyzer package:" echo "<$flex_URL>" ;; help2man*) echo "You should only need it if you modified a dependency" \ "of a man page." echo "You may want to install the GNU Help2man package:" echo "<$gnu_software_URL/help2man/>" ;; makeinfo*) echo "You should only need it if you modified a '.texi' file, or" echo "any other file indirectly affecting the aspect of the manual." echo "You might want to install the Texinfo package:" echo "<$gnu_software_URL/texinfo/>" echo "The spurious makeinfo call might also be the consequence of" echo "using a buggy 'make' (AIX, DU, IRIX), in which case you might" echo "want to install GNU make:" echo "<$gnu_software_URL/make/>" ;; *) echo "You might have modified some files without having the proper" echo "tools for further handling them. Check the 'README' file, it" echo "often tells you about the needed prerequisites for installing" echo "this package. You may also peek at any GNU archive site, in" echo "case some other package contains this missing '$1' program." ;; esac } give_advice "$1" | sed -e '1s/^/WARNING: /' \ -e '2,$s/^/ /' >&2 # Propagate the correct exit status (expected to be 127 for a program # not found, 63 for a program that failed due to version mismatch). exit $st # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: certmonger-0.78.6/install-sh0000755000175000017500000003452312645513271012723 00000000000000#!/bin/sh # install - install a program, script, or datafile scriptversion=2013-12-25.23; # UTC # This originates from X11R5 (mit/util/scripts/install.sh), which was # later released in X11R6 (xc/config/util/install.sh) with the # following copyright and license. # # Copyright (C) 1994 X Consortium # # Permission is hereby granted, free of charge, to any person obtaining a copy # of this software and associated documentation files (the "Software"), to # deal in the Software without restriction, including without limitation the # rights to use, copy, modify, merge, publish, distribute, sublicense, and/or # sell copies of the Software, and to permit persons to whom the Software is # furnished to do so, subject to the following conditions: # # The above copyright notice and this permission notice shall be included in # all copies or substantial portions of the Software. # # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE # X CONSORTIUM BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN # AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNEC- # TION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. # # Except as contained in this notice, the name of the X Consortium shall not # be used in advertising or otherwise to promote the sale, use or other deal- # ings in this Software without prior written authorization from the X Consor- # tium. # # # FSF changes to this file are in the public domain. # # Calling this script install-sh is preferred over install.sh, to prevent # 'make' implicit rules from creating a file called install from it # when there is no Makefile. # # This script is compatible with the BSD install script, but was written # from scratch. tab=' ' nl=' ' IFS=" $tab$nl" # Set DOITPROG to "echo" to test this script. doit=${DOITPROG-} doit_exec=${doit:-exec} # Put in absolute file names if you don't have them in your path; # or use environment vars. chgrpprog=${CHGRPPROG-chgrp} chmodprog=${CHMODPROG-chmod} chownprog=${CHOWNPROG-chown} cmpprog=${CMPPROG-cmp} cpprog=${CPPROG-cp} mkdirprog=${MKDIRPROG-mkdir} mvprog=${MVPROG-mv} rmprog=${RMPROG-rm} stripprog=${STRIPPROG-strip} posix_mkdir= # Desired mode of installed file. mode=0755 chgrpcmd= chmodcmd=$chmodprog chowncmd= mvcmd=$mvprog rmcmd="$rmprog -f" stripcmd= src= dst= dir_arg= dst_arg= copy_on_change=false is_target_a_directory=possibly usage="\ Usage: $0 [OPTION]... [-T] SRCFILE DSTFILE or: $0 [OPTION]... SRCFILES... DIRECTORY or: $0 [OPTION]... -t DIRECTORY SRCFILES... or: $0 [OPTION]... -d DIRECTORIES... In the 1st form, copy SRCFILE to DSTFILE. In the 2nd and 3rd, copy all SRCFILES to DIRECTORY. In the 4th, create DIRECTORIES. Options: --help display this help and exit. --version display version info and exit. -c (ignored) -C install only if different (preserve the last data modification time) -d create directories instead of installing files. -g GROUP $chgrpprog installed files to GROUP. -m MODE $chmodprog installed files to MODE. -o USER $chownprog installed files to USER. -s $stripprog installed files. -t DIRECTORY install into DIRECTORY. -T report an error if DSTFILE is a directory. Environment variables override the default commands: CHGRPPROG CHMODPROG CHOWNPROG CMPPROG CPPROG MKDIRPROG MVPROG RMPROG STRIPPROG " while test $# -ne 0; do case $1 in -c) ;; -C) copy_on_change=true;; -d) dir_arg=true;; -g) chgrpcmd="$chgrpprog $2" shift;; --help) echo "$usage"; exit $?;; -m) mode=$2 case $mode in *' '* | *"$tab"* | *"$nl"* | *'*'* | *'?'* | *'['*) echo "$0: invalid mode: $mode" >&2 exit 1;; esac shift;; -o) chowncmd="$chownprog $2" shift;; -s) stripcmd=$stripprog;; -t) is_target_a_directory=always dst_arg=$2 # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac shift;; -T) is_target_a_directory=never;; --version) echo "$0 $scriptversion"; exit $?;; --) shift break;; -*) echo "$0: invalid option: $1" >&2 exit 1;; *) break;; esac shift done # We allow the use of options -d and -T together, by making -d # take the precedence; this is for compatibility with GNU install. if test -n "$dir_arg"; then if test -n "$dst_arg"; then echo "$0: target directory not allowed when installing a directory." >&2 exit 1 fi fi if test $# -ne 0 && test -z "$dir_arg$dst_arg"; then # When -d is used, all remaining arguments are directories to create. # When -t is used, the destination is already specified. # Otherwise, the last argument is the destination. Remove it from $@. for arg do if test -n "$dst_arg"; then # $@ is not empty: it contains at least $arg. set fnord "$@" "$dst_arg" shift # fnord fi shift # arg dst_arg=$arg # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac done fi if test $# -eq 0; then if test -z "$dir_arg"; then echo "$0: no input file specified." >&2 exit 1 fi # It's OK to call 'install-sh -d' without argument. # This can happen when creating conditional directories. exit 0 fi if test -z "$dir_arg"; then if test $# -gt 1 || test "$is_target_a_directory" = always; then if test ! -d "$dst_arg"; then echo "$0: $dst_arg: Is not a directory." >&2 exit 1 fi fi fi if test -z "$dir_arg"; then do_exit='(exit $ret); exit $ret' trap "ret=129; $do_exit" 1 trap "ret=130; $do_exit" 2 trap "ret=141; $do_exit" 13 trap "ret=143; $do_exit" 15 # Set umask so as not to create temps with too-generous modes. # However, 'strip' requires both read and write access to temps. case $mode in # Optimize common cases. *644) cp_umask=133;; *755) cp_umask=22;; *[0-7]) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw='% 200' fi cp_umask=`expr '(' 777 - $mode % 1000 ')' $u_plus_rw`;; *) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw=,u+rw fi cp_umask=$mode$u_plus_rw;; esac fi for src do # Protect names problematic for 'test' and other utilities. case $src in -* | [=\(\)!]) src=./$src;; esac if test -n "$dir_arg"; then dst=$src dstdir=$dst test -d "$dstdir" dstdir_status=$? else # Waiting for this to be detected by the "$cpprog $src $dsttmp" command # might cause directories to be created, which would be especially bad # if $src (and thus $dsttmp) contains '*'. if test ! -f "$src" && test ! -d "$src"; then echo "$0: $src does not exist." >&2 exit 1 fi if test -z "$dst_arg"; then echo "$0: no destination specified." >&2 exit 1 fi dst=$dst_arg # If destination is a directory, append the input filename; won't work # if double slashes aren't ignored. if test -d "$dst"; then if test "$is_target_a_directory" = never; then echo "$0: $dst_arg: Is a directory" >&2 exit 1 fi dstdir=$dst dst=$dstdir/`basename "$src"` dstdir_status=0 else dstdir=`dirname "$dst"` test -d "$dstdir" dstdir_status=$? fi fi obsolete_mkdir_used=false if test $dstdir_status != 0; then case $posix_mkdir in '') # Create intermediate dirs using mode 755 as modified by the umask. # This is like FreeBSD 'install' as of 1997-10-28. umask=`umask` case $stripcmd.$umask in # Optimize common cases. *[2367][2367]) mkdir_umask=$umask;; .*0[02][02] | .[02][02] | .[02]) mkdir_umask=22;; *[0-7]) mkdir_umask=`expr $umask + 22 \ - $umask % 100 % 40 + $umask % 20 \ - $umask % 10 % 4 + $umask % 2 `;; *) mkdir_umask=$umask,go-w;; esac # With -d, create the new directory with the user-specified mode. # Otherwise, rely on $mkdir_umask. if test -n "$dir_arg"; then mkdir_mode=-m$mode else mkdir_mode= fi posix_mkdir=false case $umask in *[123567][0-7][0-7]) # POSIX mkdir -p sets u+wx bits regardless of umask, which # is incompatible with FreeBSD 'install' when (umask & 300) != 0. ;; *) tmpdir=${TMPDIR-/tmp}/ins$RANDOM-$$ trap 'ret=$?; rmdir "$tmpdir/d" "$tmpdir" 2>/dev/null; exit $ret' 0 if (umask $mkdir_umask && exec $mkdirprog $mkdir_mode -p -- "$tmpdir/d") >/dev/null 2>&1 then if test -z "$dir_arg" || { # Check for POSIX incompatibilities with -m. # HP-UX 11.23 and IRIX 6.5 mkdir -m -p sets group- or # other-writable bit of parent directory when it shouldn't. # FreeBSD 6.1 mkdir -m -p sets mode of existing directory. ls_ld_tmpdir=`ls -ld "$tmpdir"` case $ls_ld_tmpdir in d????-?r-*) different_mode=700;; d????-?--*) different_mode=755;; *) false;; esac && $mkdirprog -m$different_mode -p -- "$tmpdir" && { ls_ld_tmpdir_1=`ls -ld "$tmpdir"` test "$ls_ld_tmpdir" = "$ls_ld_tmpdir_1" } } then posix_mkdir=: fi rmdir "$tmpdir/d" "$tmpdir" else # Remove any dirs left behind by ancient mkdir implementations. rmdir ./$mkdir_mode ./-p ./-- 2>/dev/null fi trap '' 0;; esac;; esac if $posix_mkdir && ( umask $mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir" ) then : else # The umask is ridiculous, or mkdir does not conform to POSIX, # or it failed possibly due to a race condition. Create the # directory the slow way, step by step, checking for races as we go. case $dstdir in /*) prefix='/';; [-=\(\)!]*) prefix='./';; *) prefix='';; esac oIFS=$IFS IFS=/ set -f set fnord $dstdir shift set +f IFS=$oIFS prefixes= for d do test X"$d" = X && continue prefix=$prefix$d if test -d "$prefix"; then prefixes= else if $posix_mkdir; then (umask=$mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir") && break # Don't fail if two instances are running concurrently. test -d "$prefix" || exit 1 else case $prefix in *\'*) qprefix=`echo "$prefix" | sed "s/'/'\\\\\\\\''/g"`;; *) qprefix=$prefix;; esac prefixes="$prefixes '$qprefix'" fi fi prefix=$prefix/ done if test -n "$prefixes"; then # Don't fail if two instances are running concurrently. (umask $mkdir_umask && eval "\$doit_exec \$mkdirprog $prefixes") || test -d "$dstdir" || exit 1 obsolete_mkdir_used=true fi fi fi if test -n "$dir_arg"; then { test -z "$chowncmd" || $doit $chowncmd "$dst"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dst"; } && { test "$obsolete_mkdir_used$chowncmd$chgrpcmd" = false || test -z "$chmodcmd" || $doit $chmodcmd $mode "$dst"; } || exit 1 else # Make a couple of temp file names in the proper directory. dsttmp=$dstdir/_inst.$$_ rmtmp=$dstdir/_rm.$$_ # Trap to clean up those temp files at exit. trap 'ret=$?; rm -f "$dsttmp" "$rmtmp" && exit $ret' 0 # Copy the file name to the temp name. (umask $cp_umask && $doit_exec $cpprog "$src" "$dsttmp") && # and set any options; do chmod last to preserve setuid bits. # # If any of these fail, we abort the whole thing. If we want to # ignore errors from any of these, just make sure not to ignore # errors from the above "$doit $cpprog $src $dsttmp" command. # { test -z "$chowncmd" || $doit $chowncmd "$dsttmp"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dsttmp"; } && { test -z "$stripcmd" || $doit $stripcmd "$dsttmp"; } && { test -z "$chmodcmd" || $doit $chmodcmd $mode "$dsttmp"; } && # If -C, don't bother to copy if it wouldn't change the file. if $copy_on_change && old=`LC_ALL=C ls -dlL "$dst" 2>/dev/null` && new=`LC_ALL=C ls -dlL "$dsttmp" 2>/dev/null` && set -f && set X $old && old=:$2:$4:$5:$6 && set X $new && new=:$2:$4:$5:$6 && set +f && test "$old" = "$new" && $cmpprog "$dst" "$dsttmp" >/dev/null 2>&1 then rm -f "$dsttmp" else # Rename the file to the real destination. $doit $mvcmd -f "$dsttmp" "$dst" 2>/dev/null || # The rename failed, perhaps because mv can't rename something else # to itself, or perhaps because mv is so ancient that it does not # support -f. { # Now remove or move aside any old file at destination location. # We try this two ways since rm can't unlink itself on some # systems and the destination file might be busy for other # reasons. In this case, the final cleanup might fail but the new # file should still install successfully. { test ! -f "$dst" || $doit $rmcmd -f "$dst" 2>/dev/null || { $doit $mvcmd -f "$dst" "$rmtmp" 2>/dev/null && { $doit $rmcmd -f "$rmtmp" 2>/dev/null; :; } } || { echo "$0: cannot unlink or rename $dst" >&2 (exit 1); exit 1 } } && # Now rename the file to the real destination. $doit $mvcmd "$dsttmp" "$dst" } fi || exit 1 trap '' 0 fi done # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: certmonger-0.78.6/config.sub0000755000175000017500000010624612645513271012704 00000000000000#! /bin/sh # Configuration validation subroutine script. # Copyright 1992-2015 Free Software Foundation, Inc. timestamp='2015-01-01' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # Please send patches to . # # Configuration subroutine to validate and canonicalize a configuration type. # Supply the specified configuration type as an argument. # If it is invalid, we print an error message on stderr and exit with code 1. # Otherwise, we print the canonical config type on stdout and succeed. # You can get the latest version of this script from: # http://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.sub;hb=HEAD # This file is supposed to be the same for all GNU packages # and recognize all the CPU types, system types and aliases # that are meaningful with *any* GNU software. # Each package is responsible for reporting which valid configurations # it does not support. The user should be able to distinguish # a failure to support a valid configuration from a meaningless # configuration. # The goal of this file is to map all the various variations of a given # machine specification into a single specification in the form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or in some cases, the newer four-part form: # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # It is wrong to echo any other type of specification. me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] CPU-MFR-OPSYS $0 [OPTION] ALIAS Canonicalize a configuration name. Operation modes: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.sub ($timestamp) Copyright 1992-2015 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" exit 1 ;; *local*) # First pass through any local machine types. echo $1 exit ;; * ) break ;; esac done case $# in 0) echo "$me: missing argument$help" >&2 exit 1;; 1) ;; *) echo "$me: too many arguments$help" >&2 exit 1;; esac # Separate what the user gave into CPU-COMPANY and OS or KERNEL-OS (if any). # Here we must recognize all the valid KERNEL-OS combinations. maybe_os=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\2/'` case $maybe_os in nto-qnx* | linux-gnu* | linux-android* | linux-dietlibc | linux-newlib* | \ linux-musl* | linux-uclibc* | uclinux-uclibc* | uclinux-gnu* | kfreebsd*-gnu* | \ knetbsd*-gnu* | netbsd*-gnu* | \ kopensolaris*-gnu* | \ storm-chaos* | os2-emx* | rtmk-nova*) os=-$maybe_os basic_machine=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\1/'` ;; android-linux) os=-linux-android basic_machine=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\1/'`-unknown ;; *) basic_machine=`echo $1 | sed 's/-[^-]*$//'` if [ $basic_machine != $1 ] then os=`echo $1 | sed 's/.*-/-/'` else os=; fi ;; esac ### Let's recognize common machines as not being operating systems so ### that things like config.sub decstation-3100 work. We also ### recognize some manufacturers as not being operating systems, so we ### can provide default operating systems below. case $os in -sun*os*) # Prevent following clause from handling this invalid input. ;; -dec* | -mips* | -sequent* | -encore* | -pc532* | -sgi* | -sony* | \ -att* | -7300* | -3300* | -delta* | -motorola* | -sun[234]* | \ -unicom* | -ibm* | -next | -hp | -isi* | -apollo | -altos* | \ -convergent* | -ncr* | -news | -32* | -3600* | -3100* | -hitachi* |\ -c[123]* | -convex* | -sun | -crds | -omron* | -dg | -ultra | -tti* | \ -harris | -dolphin | -highlevel | -gould | -cbm | -ns | -masscomp | \ -apple | -axis | -knuth | -cray | -microblaze*) os= basic_machine=$1 ;; -bluegene*) os=-cnk ;; -sim | -cisco | -oki | -wec | -winbond) os= basic_machine=$1 ;; -scout) ;; -wrs) os=-vxworks basic_machine=$1 ;; -chorusos*) os=-chorusos basic_machine=$1 ;; -chorusrdb) os=-chorusrdb basic_machine=$1 ;; -hiux*) os=-hiuxwe2 ;; -sco6) os=-sco5v6 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco5) os=-sco3.2v5 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco4) os=-sco3.2v4 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco3.2.[4-9]*) os=`echo $os | sed -e 's/sco3.2./sco3.2v/'` basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco3.2v[4-9]*) # Don't forget version if it is 3.2v4 or newer. basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco5v6*) # Don't forget version if it is 3.2v4 or newer. basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco*) os=-sco3.2v2 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -udk*) basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -isc) os=-isc2.2 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -clix*) basic_machine=clipper-intergraph ;; -isc*) basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -lynx*178) os=-lynxos178 ;; -lynx*5) os=-lynxos5 ;; -lynx*) os=-lynxos ;; -ptx*) basic_machine=`echo $1 | sed -e 's/86-.*/86-sequent/'` ;; -windowsnt*) os=`echo $os | sed -e 's/windowsnt/winnt/'` ;; -psos*) os=-psos ;; -mint | -mint[0-9]*) basic_machine=m68k-atari os=-mint ;; esac # Decode aliases for certain CPU-COMPANY combinations. case $basic_machine in # Recognize the basic CPU types without company name. # Some are omitted here because they have special meanings below. 1750a | 580 \ | a29k \ | aarch64 | aarch64_be \ | alpha | alphaev[4-8] | alphaev56 | alphaev6[78] | alphapca5[67] \ | alpha64 | alpha64ev[4-8] | alpha64ev56 | alpha64ev6[78] | alpha64pca5[67] \ | am33_2.0 \ | arc | arceb \ | arm | arm[bl]e | arme[lb] | armv[2-8] | armv[3-8][lb] | armv7[arm] \ | avr | avr32 \ | be32 | be64 \ | bfin \ | c4x | c8051 | clipper \ | d10v | d30v | dlx | dsp16xx \ | epiphany \ | fido | fr30 | frv | ft32 \ | h8300 | h8500 | hppa | hppa1.[01] | hppa2.0 | hppa2.0[nw] | hppa64 \ | hexagon \ | i370 | i860 | i960 | ia64 \ | ip2k | iq2000 \ | k1om \ | le32 | le64 \ | lm32 \ | m32c | m32r | m32rle | m68000 | m68k | m88k \ | maxq | mb | microblaze | microblazeel | mcore | mep | metag \ | mips | mipsbe | mipseb | mipsel | mipsle \ | mips16 \ | mips64 | mips64el \ | mips64octeon | mips64octeonel \ | mips64orion | mips64orionel \ | mips64r5900 | mips64r5900el \ | mips64vr | mips64vrel \ | mips64vr4100 | mips64vr4100el \ | mips64vr4300 | mips64vr4300el \ | mips64vr5000 | mips64vr5000el \ | mips64vr5900 | mips64vr5900el \ | mipsisa32 | mipsisa32el \ | mipsisa32r2 | mipsisa32r2el \ | mipsisa32r6 | mipsisa32r6el \ | mipsisa64 | mipsisa64el \ | mipsisa64r2 | mipsisa64r2el \ | mipsisa64r6 | mipsisa64r6el \ | mipsisa64sb1 | mipsisa64sb1el \ | mipsisa64sr71k | mipsisa64sr71kel \ | mipsr5900 | mipsr5900el \ | mipstx39 | mipstx39el \ | mn10200 | mn10300 \ | moxie \ | mt \ | msp430 \ | nds32 | nds32le | nds32be \ | nios | nios2 | nios2eb | nios2el \ | ns16k | ns32k \ | open8 | or1k | or1knd | or32 \ | pdp10 | pdp11 | pj | pjl \ | powerpc | powerpc64 | powerpc64le | powerpcle \ | pyramid \ | riscv32 | riscv64 \ | rl78 | rx \ | score \ | sh | sh[1234] | sh[24]a | sh[24]aeb | sh[23]e | sh[34]eb | sheb | shbe | shle | sh[1234]le | sh3ele \ | sh64 | sh64le \ | sparc | sparc64 | sparc64b | sparc64v | sparc86x | sparclet | sparclite \ | sparcv8 | sparcv9 | sparcv9b | sparcv9v \ | spu \ | tahoe | tic4x | tic54x | tic55x | tic6x | tic80 | tron \ | ubicom32 \ | v850 | v850e | v850e1 | v850e2 | v850es | v850e2v3 \ | visium \ | we32k \ | x86 | xc16x | xstormy16 | xtensa \ | z8k | z80) basic_machine=$basic_machine-unknown ;; c54x) basic_machine=tic54x-unknown ;; c55x) basic_machine=tic55x-unknown ;; c6x) basic_machine=tic6x-unknown ;; leon|leon[3-9]) basic_machine=sparc-$basic_machine ;; m6811 | m68hc11 | m6812 | m68hc12 | m68hcs12x | nvptx | picochip) basic_machine=$basic_machine-unknown os=-none ;; m88110 | m680[12346]0 | m683?2 | m68360 | m5200 | v70 | w65 | z8k) ;; ms1) basic_machine=mt-unknown ;; strongarm | thumb | xscale) basic_machine=arm-unknown ;; xgate) basic_machine=$basic_machine-unknown os=-none ;; xscaleeb) basic_machine=armeb-unknown ;; xscaleel) basic_machine=armel-unknown ;; # We use `pc' rather than `unknown' # because (1) that's what they normally are, and # (2) the word "unknown" tends to confuse beginning users. i*86 | x86_64) basic_machine=$basic_machine-pc ;; # Object if more than one company name word. *-*-*) echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 exit 1 ;; # Recognize the basic CPU types with company name. 580-* \ | a29k-* \ | aarch64-* | aarch64_be-* \ | alpha-* | alphaev[4-8]-* | alphaev56-* | alphaev6[78]-* \ | alpha64-* | alpha64ev[4-8]-* | alpha64ev56-* | alpha64ev6[78]-* \ | alphapca5[67]-* | alpha64pca5[67]-* | arc-* | arceb-* \ | arm-* | armbe-* | armle-* | armeb-* | armv*-* \ | avr-* | avr32-* \ | be32-* | be64-* \ | bfin-* | bs2000-* \ | c[123]* | c30-* | [cjt]90-* | c4x-* \ | c8051-* | clipper-* | craynv-* | cydra-* \ | d10v-* | d30v-* | dlx-* \ | elxsi-* \ | f30[01]-* | f700-* | fido-* | fr30-* | frv-* | fx80-* \ | h8300-* | h8500-* \ | hppa-* | hppa1.[01]-* | hppa2.0-* | hppa2.0[nw]-* | hppa64-* \ | hexagon-* \ | i*86-* | i860-* | i960-* | ia64-* \ | ip2k-* | iq2000-* \ | k1om-* \ | le32-* | le64-* \ | lm32-* \ | m32c-* | m32r-* | m32rle-* \ | m68000-* | m680[012346]0-* | m68360-* | m683?2-* | m68k-* \ | m88110-* | m88k-* | maxq-* | mcore-* | metag-* \ | microblaze-* | microblazeel-* \ | mips-* | mipsbe-* | mipseb-* | mipsel-* | mipsle-* \ | mips16-* \ | mips64-* | mips64el-* \ | mips64octeon-* | mips64octeonel-* \ | mips64orion-* | mips64orionel-* \ | mips64r5900-* | mips64r5900el-* \ | mips64vr-* | mips64vrel-* \ | mips64vr4100-* | mips64vr4100el-* \ | mips64vr4300-* | mips64vr4300el-* \ | mips64vr5000-* | mips64vr5000el-* \ | mips64vr5900-* | mips64vr5900el-* \ | mipsisa32-* | mipsisa32el-* \ | mipsisa32r2-* | mipsisa32r2el-* \ | mipsisa32r6-* | mipsisa32r6el-* \ | mipsisa64-* | mipsisa64el-* \ | mipsisa64r2-* | mipsisa64r2el-* \ | mipsisa64r6-* | mipsisa64r6el-* \ | mipsisa64sb1-* | mipsisa64sb1el-* \ | mipsisa64sr71k-* | mipsisa64sr71kel-* \ | mipsr5900-* | mipsr5900el-* \ | mipstx39-* | mipstx39el-* \ | mmix-* \ | mt-* \ | msp430-* \ | nds32-* | nds32le-* | nds32be-* \ | nios-* | nios2-* | nios2eb-* | nios2el-* \ | none-* | np1-* | ns16k-* | ns32k-* \ | open8-* \ | or1k*-* \ | orion-* \ | pdp10-* | pdp11-* | pj-* | pjl-* | pn-* | power-* \ | powerpc-* | powerpc64-* | powerpc64le-* | powerpcle-* \ | pyramid-* \ | rl78-* | romp-* | rs6000-* | rx-* \ | sh-* | sh[1234]-* | sh[24]a-* | sh[24]aeb-* | sh[23]e-* | sh[34]eb-* | sheb-* | shbe-* \ | shle-* | sh[1234]le-* | sh3ele-* | sh64-* | sh64le-* \ | sparc-* | sparc64-* | sparc64b-* | sparc64v-* | sparc86x-* | sparclet-* \ | sparclite-* \ | sparcv8-* | sparcv9-* | sparcv9b-* | sparcv9v-* | sv1-* | sx?-* \ | tahoe-* \ | tic30-* | tic4x-* | tic54x-* | tic55x-* | tic6x-* | tic80-* \ | tile*-* \ | tron-* \ | ubicom32-* \ | v850-* | v850e-* | v850e1-* | v850es-* | v850e2-* | v850e2v3-* \ | vax-* \ | visium-* \ | we32k-* \ | x86-* | x86_64-* | xc16x-* | xps100-* \ | xstormy16-* | xtensa*-* \ | ymp-* \ | z8k-* | z80-*) ;; # Recognize the basic CPU types without company name, with glob match. xtensa*) basic_machine=$basic_machine-unknown ;; # Recognize the various machine names and aliases which stand # for a CPU type and a company and sometimes even an OS. 386bsd) basic_machine=i386-unknown os=-bsd ;; 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) basic_machine=m68000-att ;; 3b*) basic_machine=we32k-att ;; a29khif) basic_machine=a29k-amd os=-udi ;; abacus) basic_machine=abacus-unknown ;; adobe68k) basic_machine=m68010-adobe os=-scout ;; alliant | fx80) basic_machine=fx80-alliant ;; altos | altos3068) basic_machine=m68k-altos ;; am29k) basic_machine=a29k-none os=-bsd ;; amd64) basic_machine=x86_64-pc ;; amd64-*) basic_machine=x86_64-`echo $basic_machine | sed 's/^[^-]*-//'` ;; amdahl) basic_machine=580-amdahl os=-sysv ;; amiga | amiga-*) basic_machine=m68k-unknown ;; amigaos | amigados) basic_machine=m68k-unknown os=-amigaos ;; amigaunix | amix) basic_machine=m68k-unknown os=-sysv4 ;; apollo68) basic_machine=m68k-apollo os=-sysv ;; apollo68bsd) basic_machine=m68k-apollo os=-bsd ;; aros) basic_machine=i386-pc os=-aros ;; aux) basic_machine=m68k-apple os=-aux ;; balance) basic_machine=ns32k-sequent os=-dynix ;; blackfin) basic_machine=bfin-unknown os=-linux ;; blackfin-*) basic_machine=bfin-`echo $basic_machine | sed 's/^[^-]*-//'` os=-linux ;; bluegene*) basic_machine=powerpc-ibm os=-cnk ;; c54x-*) basic_machine=tic54x-`echo $basic_machine | sed 's/^[^-]*-//'` ;; c55x-*) basic_machine=tic55x-`echo $basic_machine | sed 's/^[^-]*-//'` ;; c6x-*) basic_machine=tic6x-`echo $basic_machine | sed 's/^[^-]*-//'` ;; c90) basic_machine=c90-cray os=-unicos ;; cegcc) basic_machine=arm-unknown os=-cegcc ;; convex-c1) basic_machine=c1-convex os=-bsd ;; convex-c2) basic_machine=c2-convex os=-bsd ;; convex-c32) basic_machine=c32-convex os=-bsd ;; convex-c34) basic_machine=c34-convex os=-bsd ;; convex-c38) basic_machine=c38-convex os=-bsd ;; cray | j90) basic_machine=j90-cray os=-unicos ;; craynv) basic_machine=craynv-cray os=-unicosmp ;; cr16 | cr16-*) basic_machine=cr16-unknown os=-elf ;; crds | unos) basic_machine=m68k-crds ;; crisv32 | crisv32-* | etraxfs*) basic_machine=crisv32-axis ;; cris | cris-* | etrax*) basic_machine=cris-axis ;; crx) basic_machine=crx-unknown os=-elf ;; da30 | da30-*) basic_machine=m68k-da30 ;; decstation | decstation-3100 | pmax | pmax-* | pmin | dec3100 | decstatn) basic_machine=mips-dec ;; decsystem10* | dec10*) basic_machine=pdp10-dec os=-tops10 ;; decsystem20* | dec20*) basic_machine=pdp10-dec os=-tops20 ;; delta | 3300 | motorola-3300 | motorola-delta \ | 3300-motorola | delta-motorola) basic_machine=m68k-motorola ;; delta88) basic_machine=m88k-motorola os=-sysv3 ;; dicos) basic_machine=i686-pc os=-dicos ;; djgpp) basic_machine=i586-pc os=-msdosdjgpp ;; dpx20 | dpx20-*) basic_machine=rs6000-bull os=-bosx ;; dpx2* | dpx2*-bull) basic_machine=m68k-bull os=-sysv3 ;; ebmon29k) basic_machine=a29k-amd os=-ebmon ;; elxsi) basic_machine=elxsi-elxsi os=-bsd ;; encore | umax | mmax) basic_machine=ns32k-encore ;; es1800 | OSE68k | ose68k | ose | OSE) basic_machine=m68k-ericsson os=-ose ;; fx2800) basic_machine=i860-alliant ;; genix) basic_machine=ns32k-ns ;; gmicro) basic_machine=tron-gmicro os=-sysv ;; go32) basic_machine=i386-pc os=-go32 ;; h3050r* | hiux*) basic_machine=hppa1.1-hitachi os=-hiuxwe2 ;; h8300hms) basic_machine=h8300-hitachi os=-hms ;; h8300xray) basic_machine=h8300-hitachi os=-xray ;; h8500hms) basic_machine=h8500-hitachi os=-hms ;; harris) basic_machine=m88k-harris os=-sysv3 ;; hp300-*) basic_machine=m68k-hp ;; hp300bsd) basic_machine=m68k-hp os=-bsd ;; hp300hpux) basic_machine=m68k-hp os=-hpux ;; hp3k9[0-9][0-9] | hp9[0-9][0-9]) basic_machine=hppa1.0-hp ;; hp9k2[0-9][0-9] | hp9k31[0-9]) basic_machine=m68000-hp ;; hp9k3[2-9][0-9]) basic_machine=m68k-hp ;; hp9k6[0-9][0-9] | hp6[0-9][0-9]) basic_machine=hppa1.0-hp ;; hp9k7[0-79][0-9] | hp7[0-79][0-9]) basic_machine=hppa1.1-hp ;; hp9k78[0-9] | hp78[0-9]) # FIXME: really hppa2.0-hp basic_machine=hppa1.1-hp ;; hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) # FIXME: really hppa2.0-hp basic_machine=hppa1.1-hp ;; hp9k8[0-9][13679] | hp8[0-9][13679]) basic_machine=hppa1.1-hp ;; hp9k8[0-9][0-9] | hp8[0-9][0-9]) basic_machine=hppa1.0-hp ;; hppa-next) os=-nextstep3 ;; hppaosf) basic_machine=hppa1.1-hp os=-osf ;; hppro) basic_machine=hppa1.1-hp os=-proelf ;; i370-ibm* | ibm*) basic_machine=i370-ibm ;; i*86v32) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-sysv32 ;; i*86v4*) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-sysv4 ;; i*86v) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-sysv ;; i*86sol2) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-solaris2 ;; i386mach) basic_machine=i386-mach os=-mach ;; i386-vsta | vsta) basic_machine=i386-unknown os=-vsta ;; iris | iris4d) basic_machine=mips-sgi case $os in -irix*) ;; *) os=-irix4 ;; esac ;; isi68 | isi) basic_machine=m68k-isi os=-sysv ;; leon-*|leon[3-9]-*) basic_machine=sparc-`echo $basic_machine | sed 's/-.*//'` ;; m68knommu) basic_machine=m68k-unknown os=-linux ;; m68knommu-*) basic_machine=m68k-`echo $basic_machine | sed 's/^[^-]*-//'` os=-linux ;; m88k-omron*) basic_machine=m88k-omron ;; magnum | m3230) basic_machine=mips-mips os=-sysv ;; merlin) basic_machine=ns32k-utek os=-sysv ;; microblaze*) basic_machine=microblaze-xilinx ;; mingw64) basic_machine=x86_64-pc os=-mingw64 ;; mingw32) basic_machine=i686-pc os=-mingw32 ;; mingw32ce) basic_machine=arm-unknown os=-mingw32ce ;; miniframe) basic_machine=m68000-convergent ;; *mint | -mint[0-9]* | *MiNT | *MiNT[0-9]*) basic_machine=m68k-atari os=-mint ;; mips3*-*) basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'` ;; mips3*) basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'`-unknown ;; monitor) basic_machine=m68k-rom68k os=-coff ;; morphos) basic_machine=powerpc-unknown os=-morphos ;; moxiebox) basic_machine=moxie-unknown os=-moxiebox ;; msdos) basic_machine=i386-pc os=-msdos ;; ms1-*) basic_machine=`echo $basic_machine | sed -e 's/ms1-/mt-/'` ;; msys) basic_machine=i686-pc os=-msys ;; mvs) basic_machine=i370-ibm os=-mvs ;; nacl) basic_machine=le32-unknown os=-nacl ;; ncr3000) basic_machine=i486-ncr os=-sysv4 ;; netbsd386) basic_machine=i386-unknown os=-netbsd ;; netwinder) basic_machine=armv4l-rebel os=-linux ;; news | news700 | news800 | news900) basic_machine=m68k-sony os=-newsos ;; news1000) basic_machine=m68030-sony os=-newsos ;; news-3600 | risc-news) basic_machine=mips-sony os=-newsos ;; necv70) basic_machine=v70-nec os=-sysv ;; next | m*-next ) basic_machine=m68k-next case $os in -nextstep* ) ;; -ns2*) os=-nextstep2 ;; *) os=-nextstep3 ;; esac ;; nh3000) basic_machine=m68k-harris os=-cxux ;; nh[45]000) basic_machine=m88k-harris os=-cxux ;; nindy960) basic_machine=i960-intel os=-nindy ;; mon960) basic_machine=i960-intel os=-mon960 ;; nonstopux) basic_machine=mips-compaq os=-nonstopux ;; np1) basic_machine=np1-gould ;; neo-tandem) basic_machine=neo-tandem ;; nse-tandem) basic_machine=nse-tandem ;; nsr-tandem) basic_machine=nsr-tandem ;; op50n-* | op60c-*) basic_machine=hppa1.1-oki os=-proelf ;; openrisc | openrisc-*) basic_machine=or32-unknown ;; os400) basic_machine=powerpc-ibm os=-os400 ;; OSE68000 | ose68000) basic_machine=m68000-ericsson os=-ose ;; os68k) basic_machine=m68k-none os=-os68k ;; pa-hitachi) basic_machine=hppa1.1-hitachi os=-hiuxwe2 ;; paragon) basic_machine=i860-intel os=-osf ;; parisc) basic_machine=hppa-unknown os=-linux ;; parisc-*) basic_machine=hppa-`echo $basic_machine | sed 's/^[^-]*-//'` os=-linux ;; pbd) basic_machine=sparc-tti ;; pbb) basic_machine=m68k-tti ;; pc532 | pc532-*) basic_machine=ns32k-pc532 ;; pc98) basic_machine=i386-pc ;; pc98-*) basic_machine=i386-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentium | p5 | k5 | k6 | nexgen | viac3) basic_machine=i586-pc ;; pentiumpro | p6 | 6x86 | athlon | athlon_*) basic_machine=i686-pc ;; pentiumii | pentium2 | pentiumiii | pentium3) basic_machine=i686-pc ;; pentium4) basic_machine=i786-pc ;; pentium-* | p5-* | k5-* | k6-* | nexgen-* | viac3-*) basic_machine=i586-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentiumpro-* | p6-* | 6x86-* | athlon-*) basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentiumii-* | pentium2-* | pentiumiii-* | pentium3-*) basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentium4-*) basic_machine=i786-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pn) basic_machine=pn-gould ;; power) basic_machine=power-ibm ;; ppc | ppcbe) basic_machine=powerpc-unknown ;; ppc-* | ppcbe-*) basic_machine=powerpc-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ppcle | powerpclittle | ppc-le | powerpc-little) basic_machine=powerpcle-unknown ;; ppcle-* | powerpclittle-*) basic_machine=powerpcle-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ppc64) basic_machine=powerpc64-unknown ;; ppc64-* | ppc64p7-*) basic_machine=powerpc64-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ppc64le | powerpc64little | ppc64-le | powerpc64-little) basic_machine=powerpc64le-unknown ;; ppc64le-* | powerpc64little-*) basic_machine=powerpc64le-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ps2) basic_machine=i386-ibm ;; pw32) basic_machine=i586-unknown os=-pw32 ;; rdos | rdos64) basic_machine=x86_64-pc os=-rdos ;; rdos32) basic_machine=i386-pc os=-rdos ;; rom68k) basic_machine=m68k-rom68k os=-coff ;; rm[46]00) basic_machine=mips-siemens ;; rtpc | rtpc-*) basic_machine=romp-ibm ;; s390 | s390-*) basic_machine=s390-ibm ;; s390x | s390x-*) basic_machine=s390x-ibm ;; sa29200) basic_machine=a29k-amd os=-udi ;; sb1) basic_machine=mipsisa64sb1-unknown ;; sb1el) basic_machine=mipsisa64sb1el-unknown ;; sde) basic_machine=mipsisa32-sde os=-elf ;; sei) basic_machine=mips-sei os=-seiux ;; sequent) basic_machine=i386-sequent ;; sh) basic_machine=sh-hitachi os=-hms ;; sh5el) basic_machine=sh5le-unknown ;; sh64) basic_machine=sh64-unknown ;; sparclite-wrs | simso-wrs) basic_machine=sparclite-wrs os=-vxworks ;; sps7) basic_machine=m68k-bull os=-sysv2 ;; spur) basic_machine=spur-unknown ;; st2000) basic_machine=m68k-tandem ;; stratus) basic_machine=i860-stratus os=-sysv4 ;; strongarm-* | thumb-*) basic_machine=arm-`echo $basic_machine | sed 's/^[^-]*-//'` ;; sun2) basic_machine=m68000-sun ;; sun2os3) basic_machine=m68000-sun os=-sunos3 ;; sun2os4) basic_machine=m68000-sun os=-sunos4 ;; sun3os3) basic_machine=m68k-sun os=-sunos3 ;; sun3os4) basic_machine=m68k-sun os=-sunos4 ;; sun4os3) basic_machine=sparc-sun os=-sunos3 ;; sun4os4) basic_machine=sparc-sun os=-sunos4 ;; sun4sol2) basic_machine=sparc-sun os=-solaris2 ;; sun3 | sun3-*) basic_machine=m68k-sun ;; sun4) basic_machine=sparc-sun ;; sun386 | sun386i | roadrunner) basic_machine=i386-sun ;; sv1) basic_machine=sv1-cray os=-unicos ;; symmetry) basic_machine=i386-sequent os=-dynix ;; t3e) basic_machine=alphaev5-cray os=-unicos ;; t90) basic_machine=t90-cray os=-unicos ;; tile*) basic_machine=$basic_machine-unknown os=-linux-gnu ;; tx39) basic_machine=mipstx39-unknown ;; tx39el) basic_machine=mipstx39el-unknown ;; toad1) basic_machine=pdp10-xkl os=-tops20 ;; tower | tower-32) basic_machine=m68k-ncr ;; tpf) basic_machine=s390x-ibm os=-tpf ;; udi29k) basic_machine=a29k-amd os=-udi ;; ultra3) basic_machine=a29k-nyu os=-sym1 ;; v810 | necv810) basic_machine=v810-nec os=-none ;; vaxv) basic_machine=vax-dec os=-sysv ;; vms) basic_machine=vax-dec os=-vms ;; vpp*|vx|vx-*) basic_machine=f301-fujitsu ;; vxworks960) basic_machine=i960-wrs os=-vxworks ;; vxworks68) basic_machine=m68k-wrs os=-vxworks ;; vxworks29k) basic_machine=a29k-wrs os=-vxworks ;; w65*) basic_machine=w65-wdc os=-none ;; w89k-*) basic_machine=hppa1.1-winbond os=-proelf ;; xbox) basic_machine=i686-pc os=-mingw32 ;; xps | xps100) basic_machine=xps100-honeywell ;; xscale-* | xscalee[bl]-*) basic_machine=`echo $basic_machine | sed 's/^xscale/arm/'` ;; ymp) basic_machine=ymp-cray os=-unicos ;; z8k-*-coff) basic_machine=z8k-unknown os=-sim ;; z80-*-coff) basic_machine=z80-unknown os=-sim ;; none) basic_machine=none-none os=-none ;; # Here we handle the default manufacturer of certain CPU types. It is in # some cases the only manufacturer, in others, it is the most popular. w89k) basic_machine=hppa1.1-winbond ;; op50n) basic_machine=hppa1.1-oki ;; op60c) basic_machine=hppa1.1-oki ;; romp) basic_machine=romp-ibm ;; mmix) basic_machine=mmix-knuth ;; rs6000) basic_machine=rs6000-ibm ;; vax) basic_machine=vax-dec ;; pdp10) # there are many clones, so DEC is not a safe bet basic_machine=pdp10-unknown ;; pdp11) basic_machine=pdp11-dec ;; we32k) basic_machine=we32k-att ;; sh[1234] | sh[24]a | sh[24]aeb | sh[34]eb | sh[1234]le | sh[23]ele) basic_machine=sh-unknown ;; sparc | sparcv8 | sparcv9 | sparcv9b | sparcv9v) basic_machine=sparc-sun ;; cydra) basic_machine=cydra-cydrome ;; orion) basic_machine=orion-highlevel ;; orion105) basic_machine=clipper-highlevel ;; mac | mpw | mac-mpw) basic_machine=m68k-apple ;; pmac | pmac-mpw) basic_machine=powerpc-apple ;; *-unknown) # Make sure to match an already-canonicalized machine name. ;; *) echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 exit 1 ;; esac # Here we canonicalize certain aliases for manufacturers. case $basic_machine in *-digital*) basic_machine=`echo $basic_machine | sed 's/digital.*/dec/'` ;; *-commodore*) basic_machine=`echo $basic_machine | sed 's/commodore.*/cbm/'` ;; *) ;; esac # Decode manufacturer-specific aliases for certain operating systems. if [ x"$os" != x"" ] then case $os in # First match some system type aliases # that might get confused with valid system types. # -solaris* is a basic system type, with this one exception. -auroraux) os=-auroraux ;; -solaris1 | -solaris1.*) os=`echo $os | sed -e 's|solaris1|sunos4|'` ;; -solaris) os=-solaris2 ;; -svr4*) os=-sysv4 ;; -unixware*) os=-sysv4.2uw ;; -gnu/linux*) os=`echo $os | sed -e 's|gnu/linux|linux-gnu|'` ;; # First accept the basic system types. # The portable systems comes first. # Each alternative MUST END IN A *, to match a version number. # -sysv* is not here because it comes later, after sysvr4. -gnu* | -bsd* | -mach* | -minix* | -genix* | -ultrix* | -irix* \ | -*vms* | -sco* | -esix* | -isc* | -aix* | -cnk* | -sunos | -sunos[34]*\ | -hpux* | -unos* | -osf* | -luna* | -dgux* | -auroraux* | -solaris* \ | -sym* | -kopensolaris* | -plan9* \ | -amigaos* | -amigados* | -msdos* | -newsos* | -unicos* | -aof* \ | -aos* | -aros* \ | -nindy* | -vxsim* | -vxworks* | -ebmon* | -hms* | -mvs* \ | -clix* | -riscos* | -uniplus* | -iris* | -rtu* | -xenix* \ | -hiux* | -386bsd* | -knetbsd* | -mirbsd* | -netbsd* \ | -bitrig* | -openbsd* | -solidbsd* \ | -ekkobsd* | -kfreebsd* | -freebsd* | -riscix* | -lynxos* \ | -bosx* | -nextstep* | -cxux* | -aout* | -elf* | -oabi* \ | -ptx* | -coff* | -ecoff* | -winnt* | -domain* | -vsta* \ | -udi* | -eabi* | -lites* | -ieee* | -go32* | -aux* \ | -chorusos* | -chorusrdb* | -cegcc* \ | -cygwin* | -msys* | -pe* | -psos* | -moss* | -proelf* | -rtems* \ | -mingw32* | -mingw64* | -linux-gnu* | -linux-android* \ | -linux-newlib* | -linux-musl* | -linux-uclibc* \ | -uxpv* | -beos* | -mpeix* | -udk* | -moxiebox* \ | -interix* | -uwin* | -mks* | -rhapsody* | -darwin* | -opened* \ | -openstep* | -oskit* | -conix* | -pw32* | -nonstopux* \ | -storm-chaos* | -tops10* | -tenex* | -tops20* | -its* \ | -os2* | -vos* | -palmos* | -uclinux* | -nucleus* \ | -morphos* | -superux* | -rtmk* | -rtmk-nova* | -windiss* \ | -powermax* | -dnix* | -nx6 | -nx7 | -sei* | -dragonfly* \ | -skyos* | -haiku* | -rdos* | -toppers* | -drops* | -es* | -tirtos*) # Remember, each alternative MUST END IN *, to match a version number. ;; -qnx*) case $basic_machine in x86-* | i*86-*) ;; *) os=-nto$os ;; esac ;; -nto-qnx*) ;; -nto*) os=`echo $os | sed -e 's|nto|nto-qnx|'` ;; -sim | -es1800* | -hms* | -xray | -os68k* | -none* | -v88r* \ | -windows* | -osx | -abug | -netware* | -os9* | -beos* | -haiku* \ | -macos* | -mpw* | -magic* | -mmixware* | -mon960* | -lnews*) ;; -mac*) os=`echo $os | sed -e 's|mac|macos|'` ;; -linux-dietlibc) os=-linux-dietlibc ;; -linux*) os=`echo $os | sed -e 's|linux|linux-gnu|'` ;; -sunos5*) os=`echo $os | sed -e 's|sunos5|solaris2|'` ;; -sunos6*) os=`echo $os | sed -e 's|sunos6|solaris3|'` ;; -opened*) os=-openedition ;; -os400*) os=-os400 ;; -wince*) os=-wince ;; -osfrose*) os=-osfrose ;; -osf*) os=-osf ;; -utek*) os=-bsd ;; -dynix*) os=-bsd ;; -acis*) os=-aos ;; -atheos*) os=-atheos ;; -syllable*) os=-syllable ;; -386bsd) os=-bsd ;; -ctix* | -uts*) os=-sysv ;; -nova*) os=-rtmk-nova ;; -ns2 ) os=-nextstep2 ;; -nsk*) os=-nsk ;; # Preserve the version number of sinix5. -sinix5.*) os=`echo $os | sed -e 's|sinix|sysv|'` ;; -sinix*) os=-sysv4 ;; -tpf*) os=-tpf ;; -triton*) os=-sysv3 ;; -oss*) os=-sysv3 ;; -svr4) os=-sysv4 ;; -svr3) os=-sysv3 ;; -sysvr4) os=-sysv4 ;; # This must come after -sysvr4. -sysv*) ;; -ose*) os=-ose ;; -es1800*) os=-ose ;; -xenix) os=-xenix ;; -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) os=-mint ;; -aros*) os=-aros ;; -zvmoe) os=-zvmoe ;; -dicos*) os=-dicos ;; -nacl*) ;; -none) ;; *) # Get rid of the `-' at the beginning of $os. os=`echo $os | sed 's/[^-]*-//'` echo Invalid configuration \`$1\': system \`$os\' not recognized 1>&2 exit 1 ;; esac else # Here we handle the default operating systems that come with various machines. # The value should be what the vendor currently ships out the door with their # machine or put another way, the most popular os provided with the machine. # Note that if you're going to try to match "-MANUFACTURER" here (say, # "-sun"), then you have to tell the case statement up towards the top # that MANUFACTURER isn't an operating system. Otherwise, code above # will signal an error saying that MANUFACTURER isn't an operating # system, and we'll never get to this point. case $basic_machine in score-*) os=-elf ;; spu-*) os=-elf ;; *-acorn) os=-riscix1.2 ;; arm*-rebel) os=-linux ;; arm*-semi) os=-aout ;; c4x-* | tic4x-*) os=-coff ;; c8051-*) os=-elf ;; hexagon-*) os=-elf ;; tic54x-*) os=-coff ;; tic55x-*) os=-coff ;; tic6x-*) os=-coff ;; # This must come before the *-dec entry. pdp10-*) os=-tops20 ;; pdp11-*) os=-none ;; *-dec | vax-*) os=-ultrix4.2 ;; m68*-apollo) os=-domain ;; i386-sun) os=-sunos4.0.2 ;; m68000-sun) os=-sunos3 ;; m68*-cisco) os=-aout ;; mep-*) os=-elf ;; mips*-cisco) os=-elf ;; mips*-*) os=-elf ;; or32-*) os=-coff ;; *-tti) # must be before sparc entry or we get the wrong os. os=-sysv3 ;; sparc-* | *-sun) os=-sunos4.1.1 ;; *-be) os=-beos ;; *-haiku) os=-haiku ;; *-ibm) os=-aix ;; *-knuth) os=-mmixware ;; *-wec) os=-proelf ;; *-winbond) os=-proelf ;; *-oki) os=-proelf ;; *-hp) os=-hpux ;; *-hitachi) os=-hiux ;; i860-* | *-att | *-ncr | *-altos | *-motorola | *-convergent) os=-sysv ;; *-cbm) os=-amigaos ;; *-dg) os=-dgux ;; *-dolphin) os=-sysv3 ;; m68k-ccur) os=-rtu ;; m88k-omron*) os=-luna ;; *-next ) os=-nextstep ;; *-sequent) os=-ptx ;; *-crds) os=-unos ;; *-ns) os=-genix ;; i370-*) os=-mvs ;; *-next) os=-nextstep3 ;; *-gould) os=-sysv ;; *-highlevel) os=-bsd ;; *-encore) os=-bsd ;; *-sgi) os=-irix ;; *-siemens) os=-sysv4 ;; *-masscomp) os=-rtu ;; f30[01]-fujitsu | f700-fujitsu) os=-uxpv ;; *-rom68k) os=-coff ;; *-*bug) os=-coff ;; *-apple) os=-macos ;; *-atari*) os=-mint ;; *) os=-none ;; esac fi # Here we handle the case where we know the os, and the CPU type, but not the # manufacturer. We pick the logical manufacturer. vendor=unknown case $basic_machine in *-unknown) case $os in -riscix*) vendor=acorn ;; -sunos*) vendor=sun ;; -cnk*|-aix*) vendor=ibm ;; -beos*) vendor=be ;; -hpux*) vendor=hp ;; -mpeix*) vendor=hp ;; -hiux*) vendor=hitachi ;; -unos*) vendor=crds ;; -dgux*) vendor=dg ;; -luna*) vendor=omron ;; -genix*) vendor=ns ;; -mvs* | -opened*) vendor=ibm ;; -os400*) vendor=ibm ;; -ptx*) vendor=sequent ;; -tpf*) vendor=ibm ;; -vxsim* | -vxworks* | -windiss*) vendor=wrs ;; -aux*) vendor=apple ;; -hms*) vendor=hitachi ;; -mpw* | -macos*) vendor=apple ;; -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) vendor=atari ;; -vos*) vendor=stratus ;; esac basic_machine=`echo $basic_machine | sed "s/unknown/$vendor/"` ;; esac echo $basic_machine$os exit # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: certmonger-0.78.6/config.rpath0000755000175000017500000004364712645513265013241 00000000000000#! /bin/sh # Output a system dependent set of variables, describing how to set the # run time search path of shared libraries in an executable. # # Copyright 1996-2007 Free Software Foundation, Inc. # Taken from GNU libtool, 2001 # Originally by Gordon Matzigkeit , 1996 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # # The first argument passed to this file is the canonical host specification, # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # The environment variables CC, GCC, LDFLAGS, LD, with_gnu_ld # should be set by the caller. # # The set of defined variables is at the end of this script. # Known limitations: # - On IRIX 6.5 with CC="cc", the run time search patch must not be longer # than 256 bytes, otherwise the compiler driver will dump core. The only # known workaround is to choose shorter directory names for the build # directory and/or the installation directory. # All known linkers require a `.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a shrext=.so host="$1" host_cpu=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\1/'` host_vendor=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\2/'` host_os=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\3/'` # Code taken from libtool.m4's _LT_CC_BASENAME. for cc_temp in $CC""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done cc_basename=`echo "$cc_temp" | sed -e 's%^.*/%%'` # Code taken from libtool.m4's AC_LIBTOOL_PROG_COMPILER_PIC. wl= if test "$GCC" = yes; then wl='-Wl,' else case "$host_os" in aix*) wl='-Wl,' ;; darwin*) case $cc_basename in xlc*) wl='-Wl,' ;; esac ;; mingw* | cygwin* | pw32* | os2*) ;; hpux9* | hpux10* | hpux11*) wl='-Wl,' ;; irix5* | irix6* | nonstopux*) wl='-Wl,' ;; newsos6) ;; linux* | k*bsd*-gnu) case $cc_basename in icc* | ecc*) wl='-Wl,' ;; pgcc | pgf77 | pgf90) wl='-Wl,' ;; ccc*) wl='-Wl,' ;; como) wl='-lopt=' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) wl='-Wl,' ;; esac ;; esac ;; osf3* | osf4* | osf5*) wl='-Wl,' ;; rdos*) ;; solaris*) wl='-Wl,' ;; sunos4*) wl='-Qoption ld ' ;; sysv4 | sysv4.2uw2* | sysv4.3*) wl='-Wl,' ;; sysv4*MP*) ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) wl='-Wl,' ;; unicos*) wl='-Wl,' ;; uts4*) ;; esac fi # Code taken from libtool.m4's AC_LIBTOOL_PROG_LD_SHLIBS. hardcode_libdir_flag_spec= hardcode_libdir_separator= hardcode_direct=no hardcode_minus_L=no case "$host_os" in cygwin* | mingw* | pw32*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test "$GCC" != yes; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd*) with_gnu_ld=no ;; esac ld_shlibs=yes if test "$with_gnu_ld" = yes; then # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. # Unlike libtool, we use -rpath here, not --rpath, since the documented # option of GNU ld is called -rpath, not --rpath. hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' case "$host_os" in aix3* | aix4* | aix5*) # On AIX/PPC, the GNU linker is very broken if test "$host_cpu" != ia64; then ld_shlibs=no fi ;; amigaos*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes # Samuel A. Falvo II reports # that the semantics of dynamic libraries on AmigaOS, at least up # to version 4, is to share data among multiple programs linked # with the same dynamic library. Since this doesn't match the # behavior of shared libraries on other platforms, we cannot use # them. ld_shlibs=no ;; beos*) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; cygwin* | mingw* | pw32*) # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec='-L$libdir' if $LD --help 2>&1 | grep 'auto-import' > /dev/null; then : else ld_shlibs=no fi ;; interix[3-9]*) hardcode_direct=no hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; gnu* | linux* | k*bsd*-gnu) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; netbsd*) ;; solaris*) if $LD -v 2>&1 | grep 'BFD 2\.8' > /dev/null; then ld_shlibs=no elif $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [01].* | *\ 2.[0-9].* | *\ 2.1[0-5].*) ld_shlibs=no ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-rpath,$libdir`' else ld_shlibs=no fi ;; esac ;; sunos4*) hardcode_direct=yes ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; esac if test "$ld_shlibs" = no; then hardcode_libdir_flag_spec= fi else case "$host_os" in aix3*) # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. hardcode_minus_L=yes if test "$GCC" = yes; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. hardcode_direct=unsupported fi ;; aix4* | aix5*) if test "$host_cpu" = ia64; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no else aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # need to do runtime linking. case $host_os in aix4.[23]|aix4.[23].*|aix5*) for ld_flag in $LDFLAGS; do if (test $ld_flag = "-brtl" || test $ld_flag = "-Wl,-brtl"); then aix_use_runtimelinking=yes break fi done ;; esac fi hardcode_direct=yes hardcode_libdir_separator=':' if test "$GCC" = yes; then case $host_os in aix4.[012]|aix4.[012].*) collect2name=`${CC} -print-prog-name=collect2` if test -f "$collect2name" && \ strings "$collect2name" | grep resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 hardcode_direct=unsupported hardcode_minus_L=yes hardcode_libdir_flag_spec='-L$libdir' hardcode_libdir_separator= fi ;; esac fi # Begin _LT_AC_SYS_LIBPATH_AIX. echo 'int main () { return 0; }' > conftest.c ${CC} ${LDFLAGS} conftest.c -o conftest aix_libpath=`dump -H conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` if test -z "$aix_libpath"; then aix_libpath=`dump -HX64 conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` fi if test -z "$aix_libpath"; then aix_libpath="/usr/lib:/lib" fi rm -f conftest.c conftest # End _LT_AC_SYS_LIBPATH_AIX. if test "$aix_use_runtimelinking" = yes; then hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" else if test "$host_cpu" = ia64; then hardcode_libdir_flag_spec='${wl}-R $libdir:/usr/lib:/lib' else hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" fi fi ;; amigaos*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes # see comment about different semantics on the GNU ld section ld_shlibs=no ;; bsdi[45]*) ;; cygwin* | mingw* | pw32*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec=' ' libext=lib ;; darwin* | rhapsody*) hardcode_direct=no if test "$GCC" = yes ; then : else case $cc_basename in xlc*) ;; *) ld_shlibs=no ;; esac fi ;; dgux*) hardcode_libdir_flag_spec='-L$libdir' ;; freebsd1*) ld_shlibs=no ;; freebsd2.2*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; freebsd2*) hardcode_direct=yes hardcode_minus_L=yes ;; freebsd* | dragonfly*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; hpux9*) hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; hpux10*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes fi ;; hpux11*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: case $host_cpu in hppa*64*|ia64*) hardcode_direct=no ;; *) hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; netbsd*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; newsos6) hardcode_direct=yes hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; openbsd*) if test -f /usr/libexec/ld.so; then hardcode_direct=yes if test -z "`echo __ELF__ | $CC -E - | grep __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then hardcode_libdir_flag_spec='${wl}-rpath,$libdir' else case "$host_os" in openbsd[01].* | openbsd2.[0-7] | openbsd2.[0-7].*) hardcode_libdir_flag_spec='-R$libdir' ;; *) hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; esac fi else ld_shlibs=no fi ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; osf3*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; osf4* | osf5*) if test "$GCC" = yes; then hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' else # Both cc and cxx compiler support -rpath directly hardcode_libdir_flag_spec='-rpath $libdir' fi hardcode_libdir_separator=: ;; solaris*) hardcode_libdir_flag_spec='-R$libdir' ;; sunos4*) hardcode_libdir_flag_spec='-L$libdir' hardcode_direct=yes hardcode_minus_L=yes ;; sysv4) case $host_vendor in sni) hardcode_direct=yes # is this really true??? ;; siemens) hardcode_direct=no ;; motorola) hardcode_direct=no #Motorola manual says yes, but my tests say they lie ;; esac ;; sysv4.3*) ;; sysv4*MP*) if test -d /usr/nec; then ld_shlibs=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[01].[10]* | unixware7* | sco3.2v5.0.[024]*) ;; sysv5* | sco3.2v5* | sco5v6*) hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-R,$libdir`' hardcode_libdir_separator=':' ;; uts4*) hardcode_libdir_flag_spec='-L$libdir' ;; *) ld_shlibs=no ;; esac fi # Check dynamic linker characteristics # Code taken from libtool.m4's AC_LIBTOOL_SYS_DYNAMIC_LINKER. # Unlike libtool.m4, here we don't care about _all_ names of the library, but # only about the one the linker finds when passed -lNAME. This is the last # element of library_names_spec in libtool.m4, or possibly two of them if the # linker has special search rules. library_names_spec= # the last element of library_names_spec in libtool.m4 libname_spec='lib$name' case "$host_os" in aix3*) library_names_spec='$libname.a' ;; aix4* | aix5*) library_names_spec='$libname$shrext' ;; amigaos*) library_names_spec='$libname.a' ;; beos*) library_names_spec='$libname$shrext' ;; bsdi[45]*) library_names_spec='$libname$shrext' ;; cygwin* | mingw* | pw32*) shrext=.dll library_names_spec='$libname.dll.a $libname.lib' ;; darwin* | rhapsody*) shrext=.dylib library_names_spec='$libname$shrext' ;; dgux*) library_names_spec='$libname$shrext' ;; freebsd1*) ;; freebsd* | dragonfly*) case "$host_os" in freebsd[123]*) library_names_spec='$libname$shrext$versuffix' ;; *) library_names_spec='$libname$shrext' ;; esac ;; gnu*) library_names_spec='$libname$shrext' ;; hpux9* | hpux10* | hpux11*) case $host_cpu in ia64*) shrext=.so ;; hppa*64*) shrext=.sl ;; *) shrext=.sl ;; esac library_names_spec='$libname$shrext' ;; interix[3-9]*) library_names_spec='$libname$shrext' ;; irix5* | irix6* | nonstopux*) library_names_spec='$libname$shrext' case "$host_os" in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= ;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 ;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 ;; *) libsuff= shlibsuff= ;; esac ;; esac ;; linux*oldld* | linux*aout* | linux*coff*) ;; linux* | k*bsd*-gnu) library_names_spec='$libname$shrext' ;; knetbsd*-gnu) library_names_spec='$libname$shrext' ;; netbsd*) library_names_spec='$libname$shrext' ;; newsos6) library_names_spec='$libname$shrext' ;; nto-qnx*) library_names_spec='$libname$shrext' ;; openbsd*) library_names_spec='$libname$shrext$versuffix' ;; os2*) libname_spec='$name' shrext=.dll library_names_spec='$libname.a' ;; osf3* | osf4* | osf5*) library_names_spec='$libname$shrext' ;; rdos*) ;; solaris*) library_names_spec='$libname$shrext' ;; sunos4*) library_names_spec='$libname$shrext$versuffix' ;; sysv4 | sysv4.3*) library_names_spec='$libname$shrext' ;; sysv4*MP*) library_names_spec='$libname$shrext' ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) library_names_spec='$libname$shrext' ;; uts4*) library_names_spec='$libname$shrext' ;; esac sed_quote_subst='s/\(["`$\\]\)/\\\1/g' escaped_wl=`echo "X$wl" | sed -e 's/^X//' -e "$sed_quote_subst"` shlibext=`echo "$shrext" | sed -e 's,^\.,,'` escaped_libname_spec=`echo "X$libname_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_library_names_spec=`echo "X$library_names_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_hardcode_libdir_flag_spec=`echo "X$hardcode_libdir_flag_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` LC_ALL=C sed -e 's/^\([a-zA-Z0-9_]*\)=/acl_cv_\1=/' <. # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # # Originally written by Per Bothner; maintained since 2000 by Ben Elliston. # # You can get the latest version of this script from: # http://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.guess;hb=HEAD # # Please send patches to . me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] Output the configuration name of the system \`$me' is run on. Operation modes: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.guess ($timestamp) Originally written by Per Bothner. Copyright 1992-2015 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" >&2 exit 1 ;; * ) break ;; esac done if test $# != 0; then echo "$me: too many arguments$help" >&2 exit 1 fi trap 'exit 1' 1 2 15 # CC_FOR_BUILD -- compiler used by this script. Note that the use of a # compiler to aid in system detection is discouraged as it requires # temporary files to be created and, as you can see below, it is a # headache to deal with in a portable fashion. # Historically, `CC_FOR_BUILD' used to be named `HOST_CC'. We still # use `HOST_CC' if defined, but it is deprecated. # Portable tmp directory creation inspired by the Autoconf team. set_cc_for_build=' trap "exitcode=\$?; (rm -f \$tmpfiles 2>/dev/null; rmdir \$tmp 2>/dev/null) && exit \$exitcode" 0 ; trap "rm -f \$tmpfiles 2>/dev/null; rmdir \$tmp 2>/dev/null; exit 1" 1 2 13 15 ; : ${TMPDIR=/tmp} ; { tmp=`(umask 077 && mktemp -d "$TMPDIR/cgXXXXXX") 2>/dev/null` && test -n "$tmp" && test -d "$tmp" ; } || { test -n "$RANDOM" && tmp=$TMPDIR/cg$$-$RANDOM && (umask 077 && mkdir $tmp) ; } || { tmp=$TMPDIR/cg-$$ && (umask 077 && mkdir $tmp) && echo "Warning: creating insecure temp directory" >&2 ; } || { echo "$me: cannot create a temporary directory in $TMPDIR" >&2 ; exit 1 ; } ; dummy=$tmp/dummy ; tmpfiles="$dummy.c $dummy.o $dummy.rel $dummy" ; case $CC_FOR_BUILD,$HOST_CC,$CC in ,,) echo "int x;" > $dummy.c ; for c in cc gcc c89 c99 ; do if ($c -c -o $dummy.o $dummy.c) >/dev/null 2>&1 ; then CC_FOR_BUILD="$c"; break ; fi ; done ; if test x"$CC_FOR_BUILD" = x ; then CC_FOR_BUILD=no_compiler_found ; fi ;; ,,*) CC_FOR_BUILD=$CC ;; ,*,*) CC_FOR_BUILD=$HOST_CC ;; esac ; set_cc_for_build= ;' # This is needed to find uname on a Pyramid OSx when run in the BSD universe. # (ghazi@noc.rutgers.edu 1994-08-24) if (test -f /.attbin/uname) >/dev/null 2>&1 ; then PATH=$PATH:/.attbin ; export PATH fi UNAME_MACHINE=`(uname -m) 2>/dev/null` || UNAME_MACHINE=unknown UNAME_RELEASE=`(uname -r) 2>/dev/null` || UNAME_RELEASE=unknown UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown UNAME_VERSION=`(uname -v) 2>/dev/null` || UNAME_VERSION=unknown case "${UNAME_SYSTEM}" in Linux|GNU|GNU/*) # If the system lacks a compiler, then just pick glibc. # We could probably try harder. LIBC=gnu eval $set_cc_for_build cat <<-EOF > $dummy.c #include #if defined(__UCLIBC__) LIBC=uclibc #elif defined(__dietlibc__) LIBC=dietlibc #else LIBC=gnu #endif EOF eval `$CC_FOR_BUILD -E $dummy.c 2>/dev/null | grep '^LIBC' | sed 's, ,,g'` ;; esac # Note: order is significant - the case branches are not exclusive. case "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" in *:NetBSD:*:*) # NetBSD (nbsd) targets should (where applicable) match one or # more of the tuples: *-*-netbsdelf*, *-*-netbsdaout*, # *-*-netbsdecoff* and *-*-netbsd*. For targets that recently # switched to ELF, *-*-netbsd* would select the old # object file format. This provides both forward # compatibility and a consistent mechanism for selecting the # object file format. # # Note: NetBSD doesn't particularly care about the vendor # portion of the name. We always set it to "unknown". sysctl="sysctl -n hw.machine_arch" UNAME_MACHINE_ARCH=`(/sbin/$sysctl 2>/dev/null || \ /usr/sbin/$sysctl 2>/dev/null || echo unknown)` case "${UNAME_MACHINE_ARCH}" in armeb) machine=armeb-unknown ;; arm*) machine=arm-unknown ;; sh3el) machine=shl-unknown ;; sh3eb) machine=sh-unknown ;; sh5el) machine=sh5le-unknown ;; *) machine=${UNAME_MACHINE_ARCH}-unknown ;; esac # The Operating System including object format, if it has switched # to ELF recently, or will in the future. case "${UNAME_MACHINE_ARCH}" in arm*|i386|m68k|ns32k|sh3*|sparc|vax) eval $set_cc_for_build if echo __ELF__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ELF__ then # Once all utilities can be ECOFF (netbsdecoff) or a.out (netbsdaout). # Return netbsd for either. FIX? os=netbsd else os=netbsdelf fi ;; *) os=netbsd ;; esac # The OS release # Debian GNU/NetBSD machines have a different userland, and # thus, need a distinct triplet. However, they do not need # kernel version information, so it can be replaced with a # suitable tag, in the style of linux-gnu. case "${UNAME_VERSION}" in Debian*) release='-gnu' ;; *) release=`echo ${UNAME_RELEASE}|sed -e 's/[-_].*/\./'` ;; esac # Since CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM: # contains redundant information, the shorter form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM is used. echo "${machine}-${os}${release}" exit ;; *:Bitrig:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/Bitrig.//'` echo ${UNAME_MACHINE_ARCH}-unknown-bitrig${UNAME_RELEASE} exit ;; *:OpenBSD:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/OpenBSD.//'` echo ${UNAME_MACHINE_ARCH}-unknown-openbsd${UNAME_RELEASE} exit ;; *:ekkoBSD:*:*) echo ${UNAME_MACHINE}-unknown-ekkobsd${UNAME_RELEASE} exit ;; *:SolidBSD:*:*) echo ${UNAME_MACHINE}-unknown-solidbsd${UNAME_RELEASE} exit ;; macppc:MirBSD:*:*) echo powerpc-unknown-mirbsd${UNAME_RELEASE} exit ;; *:MirBSD:*:*) echo ${UNAME_MACHINE}-unknown-mirbsd${UNAME_RELEASE} exit ;; alpha:OSF1:*:*) case $UNAME_RELEASE in *4.0) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $3}'` ;; *5.*) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $4}'` ;; esac # According to Compaq, /usr/sbin/psrinfo has been available on # OSF/1 and Tru64 systems produced since 1995. I hope that # covers most systems running today. This code pipes the CPU # types through head -n 1, so we only detect the type of CPU 0. ALPHA_CPU_TYPE=`/usr/sbin/psrinfo -v | sed -n -e 's/^ The alpha \(.*\) processor.*$/\1/p' | head -n 1` case "$ALPHA_CPU_TYPE" in "EV4 (21064)") UNAME_MACHINE="alpha" ;; "EV4.5 (21064)") UNAME_MACHINE="alpha" ;; "LCA4 (21066/21068)") UNAME_MACHINE="alpha" ;; "EV5 (21164)") UNAME_MACHINE="alphaev5" ;; "EV5.6 (21164A)") UNAME_MACHINE="alphaev56" ;; "EV5.6 (21164PC)") UNAME_MACHINE="alphapca56" ;; "EV5.7 (21164PC)") UNAME_MACHINE="alphapca57" ;; "EV6 (21264)") UNAME_MACHINE="alphaev6" ;; "EV6.7 (21264A)") UNAME_MACHINE="alphaev67" ;; "EV6.8CB (21264C)") UNAME_MACHINE="alphaev68" ;; "EV6.8AL (21264B)") UNAME_MACHINE="alphaev68" ;; "EV6.8CX (21264D)") UNAME_MACHINE="alphaev68" ;; "EV6.9A (21264/EV69A)") UNAME_MACHINE="alphaev69" ;; "EV7 (21364)") UNAME_MACHINE="alphaev7" ;; "EV7.9 (21364A)") UNAME_MACHINE="alphaev79" ;; esac # A Pn.n version is a patched version. # A Vn.n version is a released version. # A Tn.n version is a released field test version. # A Xn.n version is an unreleased experimental baselevel. # 1.2 uses "1.2" for uname -r. echo ${UNAME_MACHINE}-dec-osf`echo ${UNAME_RELEASE} | sed -e 's/^[PVTX]//' | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` # Reset EXIT trap before exiting to avoid spurious non-zero exit code. exitcode=$? trap '' 0 exit $exitcode ;; Alpha\ *:Windows_NT*:*) # How do we know it's Interix rather than the generic POSIX subsystem? # Should we change UNAME_MACHINE based on the output of uname instead # of the specific Alpha model? echo alpha-pc-interix exit ;; 21064:Windows_NT:50:3) echo alpha-dec-winnt3.5 exit ;; Amiga*:UNIX_System_V:4.0:*) echo m68k-unknown-sysv4 exit ;; *:[Aa]miga[Oo][Ss]:*:*) echo ${UNAME_MACHINE}-unknown-amigaos exit ;; *:[Mm]orph[Oo][Ss]:*:*) echo ${UNAME_MACHINE}-unknown-morphos exit ;; *:OS/390:*:*) echo i370-ibm-openedition exit ;; *:z/VM:*:*) echo s390-ibm-zvmoe exit ;; *:OS400:*:*) echo powerpc-ibm-os400 exit ;; arm:RISC*:1.[012]*:*|arm:riscix:1.[012]*:*) echo arm-acorn-riscix${UNAME_RELEASE} exit ;; arm*:riscos:*:*|arm*:RISCOS:*:*) echo arm-unknown-riscos exit ;; SR2?01:HI-UX/MPP:*:* | SR8000:HI-UX/MPP:*:*) echo hppa1.1-hitachi-hiuxmpp exit ;; Pyramid*:OSx*:*:* | MIS*:OSx*:*:* | MIS*:SMP_DC-OSx*:*:*) # akee@wpdis03.wpafb.af.mil (Earle F. Ake) contributed MIS and NILE. if test "`(/bin/universe) 2>/dev/null`" = att ; then echo pyramid-pyramid-sysv3 else echo pyramid-pyramid-bsd fi exit ;; NILE*:*:*:dcosx) echo pyramid-pyramid-svr4 exit ;; DRS?6000:unix:4.0:6*) echo sparc-icl-nx6 exit ;; DRS?6000:UNIX_SV:4.2*:7* | DRS?6000:isis:4.2*:7*) case `/usr/bin/uname -p` in sparc) echo sparc-icl-nx7; exit ;; esac ;; s390x:SunOS:*:*) echo ${UNAME_MACHINE}-ibm-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4H:SunOS:5.*:*) echo sparc-hal-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4*:SunOS:5.*:* | tadpole*:SunOS:5.*:*) echo sparc-sun-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; i86pc:AuroraUX:5.*:* | i86xen:AuroraUX:5.*:*) echo i386-pc-auroraux${UNAME_RELEASE} exit ;; i86pc:SunOS:5.*:* | i86xen:SunOS:5.*:*) eval $set_cc_for_build SUN_ARCH="i386" # If there is a compiler, see if it is configured for 64-bit objects. # Note that the Sun cc does not turn __LP64__ into 1 like gcc does. # This test works for both compilers. if [ "$CC_FOR_BUILD" != 'no_compiler_found' ]; then if (echo '#ifdef __amd64'; echo IS_64BIT_ARCH; echo '#endif') | \ (CCOPTS= $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_64BIT_ARCH >/dev/null then SUN_ARCH="x86_64" fi fi echo ${SUN_ARCH}-pc-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4*:SunOS:6*:*) # According to config.sub, this is the proper way to canonicalize # SunOS6. Hard to guess exactly what SunOS6 will be like, but # it's likely to be more like Solaris than SunOS4. echo sparc-sun-solaris3`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4*:SunOS:*:*) case "`/usr/bin/arch -k`" in Series*|S4*) UNAME_RELEASE=`uname -v` ;; esac # Japanese Language versions have a version number like `4.1.3-JL'. echo sparc-sun-sunos`echo ${UNAME_RELEASE}|sed -e 's/-/_/'` exit ;; sun3*:SunOS:*:*) echo m68k-sun-sunos${UNAME_RELEASE} exit ;; sun*:*:4.2BSD:*) UNAME_RELEASE=`(sed 1q /etc/motd | awk '{print substr($5,1,3)}') 2>/dev/null` test "x${UNAME_RELEASE}" = "x" && UNAME_RELEASE=3 case "`/bin/arch`" in sun3) echo m68k-sun-sunos${UNAME_RELEASE} ;; sun4) echo sparc-sun-sunos${UNAME_RELEASE} ;; esac exit ;; aushp:SunOS:*:*) echo sparc-auspex-sunos${UNAME_RELEASE} exit ;; # The situation for MiNT is a little confusing. The machine name # can be virtually everything (everything which is not # "atarist" or "atariste" at least should have a processor # > m68000). The system name ranges from "MiNT" over "FreeMiNT" # to the lowercase version "mint" (or "freemint"). Finally # the system name "TOS" denotes a system which is actually not # MiNT. But MiNT is downward compatible to TOS, so this should # be no problem. atarist[e]:*MiNT:*:* | atarist[e]:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint${UNAME_RELEASE} exit ;; atari*:*MiNT:*:* | atari*:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint${UNAME_RELEASE} exit ;; *falcon*:*MiNT:*:* | *falcon*:*mint:*:* | *falcon*:*TOS:*:*) echo m68k-atari-mint${UNAME_RELEASE} exit ;; milan*:*MiNT:*:* | milan*:*mint:*:* | *milan*:*TOS:*:*) echo m68k-milan-mint${UNAME_RELEASE} exit ;; hades*:*MiNT:*:* | hades*:*mint:*:* | *hades*:*TOS:*:*) echo m68k-hades-mint${UNAME_RELEASE} exit ;; *:*MiNT:*:* | *:*mint:*:* | *:*TOS:*:*) echo m68k-unknown-mint${UNAME_RELEASE} exit ;; m68k:machten:*:*) echo m68k-apple-machten${UNAME_RELEASE} exit ;; powerpc:machten:*:*) echo powerpc-apple-machten${UNAME_RELEASE} exit ;; RISC*:Mach:*:*) echo mips-dec-mach_bsd4.3 exit ;; RISC*:ULTRIX:*:*) echo mips-dec-ultrix${UNAME_RELEASE} exit ;; VAX*:ULTRIX*:*:*) echo vax-dec-ultrix${UNAME_RELEASE} exit ;; 2020:CLIX:*:* | 2430:CLIX:*:*) echo clipper-intergraph-clix${UNAME_RELEASE} exit ;; mips:*:*:UMIPS | mips:*:*:RISCos) eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #ifdef __cplusplus #include /* for printf() prototype */ int main (int argc, char *argv[]) { #else int main (argc, argv) int argc; char *argv[]; { #endif #if defined (host_mips) && defined (MIPSEB) #if defined (SYSTYPE_SYSV) printf ("mips-mips-riscos%ssysv\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_SVR4) printf ("mips-mips-riscos%ssvr4\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_BSD43) || defined(SYSTYPE_BSD) printf ("mips-mips-riscos%sbsd\n", argv[1]); exit (0); #endif #endif exit (-1); } EOF $CC_FOR_BUILD -o $dummy $dummy.c && dummyarg=`echo "${UNAME_RELEASE}" | sed -n 's/\([0-9]*\).*/\1/p'` && SYSTEM_NAME=`$dummy $dummyarg` && { echo "$SYSTEM_NAME"; exit; } echo mips-mips-riscos${UNAME_RELEASE} exit ;; Motorola:PowerMAX_OS:*:*) echo powerpc-motorola-powermax exit ;; Motorola:*:4.3:PL8-*) echo powerpc-harris-powermax exit ;; Night_Hawk:*:*:PowerMAX_OS | Synergy:PowerMAX_OS:*:*) echo powerpc-harris-powermax exit ;; Night_Hawk:Power_UNIX:*:*) echo powerpc-harris-powerunix exit ;; m88k:CX/UX:7*:*) echo m88k-harris-cxux7 exit ;; m88k:*:4*:R4*) echo m88k-motorola-sysv4 exit ;; m88k:*:3*:R3*) echo m88k-motorola-sysv3 exit ;; AViiON:dgux:*:*) # DG/UX returns AViiON for all architectures UNAME_PROCESSOR=`/usr/bin/uname -p` if [ $UNAME_PROCESSOR = mc88100 ] || [ $UNAME_PROCESSOR = mc88110 ] then if [ ${TARGET_BINARY_INTERFACE}x = m88kdguxelfx ] || \ [ ${TARGET_BINARY_INTERFACE}x = x ] then echo m88k-dg-dgux${UNAME_RELEASE} else echo m88k-dg-dguxbcs${UNAME_RELEASE} fi else echo i586-dg-dgux${UNAME_RELEASE} fi exit ;; M88*:DolphinOS:*:*) # DolphinOS (SVR3) echo m88k-dolphin-sysv3 exit ;; M88*:*:R3*:*) # Delta 88k system running SVR3 echo m88k-motorola-sysv3 exit ;; XD88*:*:*:*) # Tektronix XD88 system running UTekV (SVR3) echo m88k-tektronix-sysv3 exit ;; Tek43[0-9][0-9]:UTek:*:*) # Tektronix 4300 system running UTek (BSD) echo m68k-tektronix-bsd exit ;; *:IRIX*:*:*) echo mips-sgi-irix`echo ${UNAME_RELEASE}|sed -e 's/-/_/g'` exit ;; ????????:AIX?:[12].1:2) # AIX 2.2.1 or AIX 2.1.1 is RT/PC AIX. echo romp-ibm-aix # uname -m gives an 8 hex-code CPU id exit ;; # Note that: echo "'`uname -s`'" gives 'AIX ' i*86:AIX:*:*) echo i386-ibm-aix exit ;; ia64:AIX:*:*) if [ -x /usr/bin/oslevel ] ; then IBM_REV=`/usr/bin/oslevel` else IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} fi echo ${UNAME_MACHINE}-ibm-aix${IBM_REV} exit ;; *:AIX:2:3) if grep bos325 /usr/include/stdio.h >/dev/null 2>&1; then eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #include main() { if (!__power_pc()) exit(1); puts("powerpc-ibm-aix3.2.5"); exit(0); } EOF if $CC_FOR_BUILD -o $dummy $dummy.c && SYSTEM_NAME=`$dummy` then echo "$SYSTEM_NAME" else echo rs6000-ibm-aix3.2.5 fi elif grep bos324 /usr/include/stdio.h >/dev/null 2>&1; then echo rs6000-ibm-aix3.2.4 else echo rs6000-ibm-aix3.2 fi exit ;; *:AIX:*:[4567]) IBM_CPU_ID=`/usr/sbin/lsdev -C -c processor -S available | sed 1q | awk '{ print $1 }'` if /usr/sbin/lsattr -El ${IBM_CPU_ID} | grep ' POWER' >/dev/null 2>&1; then IBM_ARCH=rs6000 else IBM_ARCH=powerpc fi if [ -x /usr/bin/lslpp ] ; then IBM_REV=`/usr/bin/lslpp -Lqc bos.rte.libc | awk -F: '{ print $3 }' | sed s/[0-9]*$/0/` else IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} fi echo ${IBM_ARCH}-ibm-aix${IBM_REV} exit ;; *:AIX:*:*) echo rs6000-ibm-aix exit ;; ibmrt:4.4BSD:*|romp-ibm:BSD:*) echo romp-ibm-bsd4.4 exit ;; ibmrt:*BSD:*|romp-ibm:BSD:*) # covers RT/PC BSD and echo romp-ibm-bsd${UNAME_RELEASE} # 4.3 with uname added to exit ;; # report: romp-ibm BSD 4.3 *:BOSX:*:*) echo rs6000-bull-bosx exit ;; DPX/2?00:B.O.S.:*:*) echo m68k-bull-sysv3 exit ;; 9000/[34]??:4.3bsd:1.*:*) echo m68k-hp-bsd exit ;; hp300:4.4BSD:*:* | 9000/[34]??:4.3bsd:2.*:*) echo m68k-hp-bsd4.4 exit ;; 9000/[34678]??:HP-UX:*:*) HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` case "${UNAME_MACHINE}" in 9000/31? ) HP_ARCH=m68000 ;; 9000/[34]?? ) HP_ARCH=m68k ;; 9000/[678][0-9][0-9]) if [ -x /usr/bin/getconf ]; then sc_cpu_version=`/usr/bin/getconf SC_CPU_VERSION 2>/dev/null` sc_kernel_bits=`/usr/bin/getconf SC_KERNEL_BITS 2>/dev/null` case "${sc_cpu_version}" in 523) HP_ARCH="hppa1.0" ;; # CPU_PA_RISC1_0 528) HP_ARCH="hppa1.1" ;; # CPU_PA_RISC1_1 532) # CPU_PA_RISC2_0 case "${sc_kernel_bits}" in 32) HP_ARCH="hppa2.0n" ;; 64) HP_ARCH="hppa2.0w" ;; '') HP_ARCH="hppa2.0" ;; # HP-UX 10.20 esac ;; esac fi if [ "${HP_ARCH}" = "" ]; then eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #define _HPUX_SOURCE #include #include int main () { #if defined(_SC_KERNEL_BITS) long bits = sysconf(_SC_KERNEL_BITS); #endif long cpu = sysconf (_SC_CPU_VERSION); switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0"); break; case CPU_PA_RISC1_1: puts ("hppa1.1"); break; case CPU_PA_RISC2_0: #if defined(_SC_KERNEL_BITS) switch (bits) { case 64: puts ("hppa2.0w"); break; case 32: puts ("hppa2.0n"); break; default: puts ("hppa2.0"); break; } break; #else /* !defined(_SC_KERNEL_BITS) */ puts ("hppa2.0"); break; #endif default: puts ("hppa1.0"); break; } exit (0); } EOF (CCOPTS= $CC_FOR_BUILD -o $dummy $dummy.c 2>/dev/null) && HP_ARCH=`$dummy` test -z "$HP_ARCH" && HP_ARCH=hppa fi ;; esac if [ ${HP_ARCH} = "hppa2.0w" ] then eval $set_cc_for_build # hppa2.0w-hp-hpux* has a 64-bit kernel and a compiler generating # 32-bit code. hppa64-hp-hpux* has the same kernel and a compiler # generating 64-bit code. GNU and HP use different nomenclature: # # $ CC_FOR_BUILD=cc ./config.guess # => hppa2.0w-hp-hpux11.23 # $ CC_FOR_BUILD="cc +DA2.0w" ./config.guess # => hppa64-hp-hpux11.23 if echo __LP64__ | (CCOPTS= $CC_FOR_BUILD -E - 2>/dev/null) | grep -q __LP64__ then HP_ARCH="hppa2.0w" else HP_ARCH="hppa64" fi fi echo ${HP_ARCH}-hp-hpux${HPUX_REV} exit ;; ia64:HP-UX:*:*) HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` echo ia64-hp-hpux${HPUX_REV} exit ;; 3050*:HI-UX:*:*) eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #include int main () { long cpu = sysconf (_SC_CPU_VERSION); /* The order matters, because CPU_IS_HP_MC68K erroneously returns true for CPU_PA_RISC1_0. CPU_IS_PA_RISC returns correct results, however. */ if (CPU_IS_PA_RISC (cpu)) { switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0-hitachi-hiuxwe2"); break; case CPU_PA_RISC1_1: puts ("hppa1.1-hitachi-hiuxwe2"); break; case CPU_PA_RISC2_0: puts ("hppa2.0-hitachi-hiuxwe2"); break; default: puts ("hppa-hitachi-hiuxwe2"); break; } } else if (CPU_IS_HP_MC68K (cpu)) puts ("m68k-hitachi-hiuxwe2"); else puts ("unknown-hitachi-hiuxwe2"); exit (0); } EOF $CC_FOR_BUILD -o $dummy $dummy.c && SYSTEM_NAME=`$dummy` && { echo "$SYSTEM_NAME"; exit; } echo unknown-hitachi-hiuxwe2 exit ;; 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:* ) echo hppa1.1-hp-bsd exit ;; 9000/8??:4.3bsd:*:*) echo hppa1.0-hp-bsd exit ;; *9??*:MPE/iX:*:* | *3000*:MPE/iX:*:*) echo hppa1.0-hp-mpeix exit ;; hp7??:OSF1:*:* | hp8?[79]:OSF1:*:* ) echo hppa1.1-hp-osf exit ;; hp8??:OSF1:*:*) echo hppa1.0-hp-osf exit ;; i*86:OSF1:*:*) if [ -x /usr/sbin/sysversion ] ; then echo ${UNAME_MACHINE}-unknown-osf1mk else echo ${UNAME_MACHINE}-unknown-osf1 fi exit ;; parisc*:Lites*:*:*) echo hppa1.1-hp-lites exit ;; C1*:ConvexOS:*:* | convex:ConvexOS:C1*:*) echo c1-convex-bsd exit ;; C2*:ConvexOS:*:* | convex:ConvexOS:C2*:*) if getsysinfo -f scalar_acc then echo c32-convex-bsd else echo c2-convex-bsd fi exit ;; C34*:ConvexOS:*:* | convex:ConvexOS:C34*:*) echo c34-convex-bsd exit ;; C38*:ConvexOS:*:* | convex:ConvexOS:C38*:*) echo c38-convex-bsd exit ;; C4*:ConvexOS:*:* | convex:ConvexOS:C4*:*) echo c4-convex-bsd exit ;; CRAY*Y-MP:*:*:*) echo ymp-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*[A-Z]90:*:*:*) echo ${UNAME_MACHINE}-cray-unicos${UNAME_RELEASE} \ | sed -e 's/CRAY.*\([A-Z]90\)/\1/' \ -e y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/ \ -e 's/\.[^.]*$/.X/' exit ;; CRAY*TS:*:*:*) echo t90-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*T3E:*:*:*) echo alphaev5-cray-unicosmk${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*SV1:*:*:*) echo sv1-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; *:UNICOS/mp:*:*) echo craynv-cray-unicosmp${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; F30[01]:UNIX_System_V:*:* | F700:UNIX_System_V:*:*) FUJITSU_PROC=`uname -m | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` FUJITSU_SYS=`uname -p | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/\///'` FUJITSU_REL=`echo ${UNAME_RELEASE} | sed -e 's/ /_/'` echo "${FUJITSU_PROC}-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; 5000:UNIX_System_V:4.*:*) FUJITSU_SYS=`uname -p | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/\///'` FUJITSU_REL=`echo ${UNAME_RELEASE} | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/ /_/'` echo "sparc-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; i*86:BSD/386:*:* | i*86:BSD/OS:*:* | *:Ascend\ Embedded/OS:*:*) echo ${UNAME_MACHINE}-pc-bsdi${UNAME_RELEASE} exit ;; sparc*:BSD/OS:*:*) echo sparc-unknown-bsdi${UNAME_RELEASE} exit ;; *:BSD/OS:*:*) echo ${UNAME_MACHINE}-unknown-bsdi${UNAME_RELEASE} exit ;; *:FreeBSD:*:*) UNAME_PROCESSOR=`/usr/bin/uname -p` case ${UNAME_PROCESSOR} in amd64) echo x86_64-unknown-freebsd`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` ;; *) echo ${UNAME_PROCESSOR}-unknown-freebsd`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` ;; esac exit ;; i*:CYGWIN*:*) echo ${UNAME_MACHINE}-pc-cygwin exit ;; *:MINGW64*:*) echo ${UNAME_MACHINE}-pc-mingw64 exit ;; *:MINGW*:*) echo ${UNAME_MACHINE}-pc-mingw32 exit ;; *:MSYS*:*) echo ${UNAME_MACHINE}-pc-msys exit ;; i*:windows32*:*) # uname -m includes "-pc" on this system. echo ${UNAME_MACHINE}-mingw32 exit ;; i*:PW*:*) echo ${UNAME_MACHINE}-pc-pw32 exit ;; *:Interix*:*) case ${UNAME_MACHINE} in x86) echo i586-pc-interix${UNAME_RELEASE} exit ;; authenticamd | genuineintel | EM64T) echo x86_64-unknown-interix${UNAME_RELEASE} exit ;; IA64) echo ia64-unknown-interix${UNAME_RELEASE} exit ;; esac ;; [345]86:Windows_95:* | [345]86:Windows_98:* | [345]86:Windows_NT:*) echo i${UNAME_MACHINE}-pc-mks exit ;; 8664:Windows_NT:*) echo x86_64-pc-mks exit ;; i*:Windows_NT*:* | Pentium*:Windows_NT*:*) # How do we know it's Interix rather than the generic POSIX subsystem? # It also conflicts with pre-2.0 versions of AT&T UWIN. Should we # UNAME_MACHINE based on the output of uname instead of i386? echo i586-pc-interix exit ;; i*:UWIN*:*) echo ${UNAME_MACHINE}-pc-uwin exit ;; amd64:CYGWIN*:*:* | x86_64:CYGWIN*:*:*) echo x86_64-unknown-cygwin exit ;; p*:CYGWIN*:*) echo powerpcle-unknown-cygwin exit ;; prep*:SunOS:5.*:*) echo powerpcle-unknown-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; *:GNU:*:*) # the GNU system echo `echo ${UNAME_MACHINE}|sed -e 's,[-/].*$,,'`-unknown-${LIBC}`echo ${UNAME_RELEASE}|sed -e 's,/.*$,,'` exit ;; *:GNU/*:*:*) # other systems with GNU libc and userland echo ${UNAME_MACHINE}-unknown-`echo ${UNAME_SYSTEM} | sed 's,^[^/]*/,,' | tr '[A-Z]' '[a-z]'``echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'`-${LIBC} exit ;; i*86:Minix:*:*) echo ${UNAME_MACHINE}-pc-minix exit ;; aarch64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; aarch64_be:Linux:*:*) UNAME_MACHINE=aarch64_be echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; alpha:Linux:*:*) case `sed -n '/^cpu model/s/^.*: \(.*\)/\1/p' < /proc/cpuinfo` in EV5) UNAME_MACHINE=alphaev5 ;; EV56) UNAME_MACHINE=alphaev56 ;; PCA56) UNAME_MACHINE=alphapca56 ;; PCA57) UNAME_MACHINE=alphapca56 ;; EV6) UNAME_MACHINE=alphaev6 ;; EV67) UNAME_MACHINE=alphaev67 ;; EV68*) UNAME_MACHINE=alphaev68 ;; esac objdump --private-headers /bin/sh | grep -q ld.so.1 if test "$?" = 0 ; then LIBC="gnulibc1" ; fi echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; arc:Linux:*:* | arceb:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; arm*:Linux:*:*) eval $set_cc_for_build if echo __ARM_EABI__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_EABI__ then echo ${UNAME_MACHINE}-unknown-linux-${LIBC} else if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_PCS_VFP then echo ${UNAME_MACHINE}-unknown-linux-${LIBC}eabi else echo ${UNAME_MACHINE}-unknown-linux-${LIBC}eabihf fi fi exit ;; avr32*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; cris:Linux:*:*) echo ${UNAME_MACHINE}-axis-linux-${LIBC} exit ;; crisv32:Linux:*:*) echo ${UNAME_MACHINE}-axis-linux-${LIBC} exit ;; frv:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; hexagon:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; i*86:Linux:*:*) echo ${UNAME_MACHINE}-pc-linux-${LIBC} exit ;; ia64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; m32r*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; m68*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; mips:Linux:*:* | mips64:Linux:*:*) eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #undef CPU #undef ${UNAME_MACHINE} #undef ${UNAME_MACHINE}el #if defined(__MIPSEL__) || defined(__MIPSEL) || defined(_MIPSEL) || defined(MIPSEL) CPU=${UNAME_MACHINE}el #else #if defined(__MIPSEB__) || defined(__MIPSEB) || defined(_MIPSEB) || defined(MIPSEB) CPU=${UNAME_MACHINE} #else CPU= #endif #endif EOF eval `$CC_FOR_BUILD -E $dummy.c 2>/dev/null | grep '^CPU'` test x"${CPU}" != x && { echo "${CPU}-unknown-linux-${LIBC}"; exit; } ;; openrisc*:Linux:*:*) echo or1k-unknown-linux-${LIBC} exit ;; or32:Linux:*:* | or1k*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; padre:Linux:*:*) echo sparc-unknown-linux-${LIBC} exit ;; parisc64:Linux:*:* | hppa64:Linux:*:*) echo hppa64-unknown-linux-${LIBC} exit ;; parisc:Linux:*:* | hppa:Linux:*:*) # Look for CPU level case `grep '^cpu[^a-z]*:' /proc/cpuinfo 2>/dev/null | cut -d' ' -f2` in PA7*) echo hppa1.1-unknown-linux-${LIBC} ;; PA8*) echo hppa2.0-unknown-linux-${LIBC} ;; *) echo hppa-unknown-linux-${LIBC} ;; esac exit ;; ppc64:Linux:*:*) echo powerpc64-unknown-linux-${LIBC} exit ;; ppc:Linux:*:*) echo powerpc-unknown-linux-${LIBC} exit ;; ppc64le:Linux:*:*) echo powerpc64le-unknown-linux-${LIBC} exit ;; ppcle:Linux:*:*) echo powerpcle-unknown-linux-${LIBC} exit ;; s390:Linux:*:* | s390x:Linux:*:*) echo ${UNAME_MACHINE}-ibm-linux-${LIBC} exit ;; sh64*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; sh*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; sparc:Linux:*:* | sparc64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; tile*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; vax:Linux:*:*) echo ${UNAME_MACHINE}-dec-linux-${LIBC} exit ;; x86_64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; xtensa*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; i*86:DYNIX/ptx:4*:*) # ptx 4.0 does uname -s correctly, with DYNIX/ptx in there. # earlier versions are messed up and put the nodename in both # sysname and nodename. echo i386-sequent-sysv4 exit ;; i*86:UNIX_SV:4.2MP:2.*) # Unixware is an offshoot of SVR4, but it has its own version # number series starting with 2... # I am not positive that other SVR4 systems won't match this, # I just have to hope. -- rms. # Use sysv4.2uw... so that sysv4* matches it. echo ${UNAME_MACHINE}-pc-sysv4.2uw${UNAME_VERSION} exit ;; i*86:OS/2:*:*) # If we were able to find `uname', then EMX Unix compatibility # is probably installed. echo ${UNAME_MACHINE}-pc-os2-emx exit ;; i*86:XTS-300:*:STOP) echo ${UNAME_MACHINE}-unknown-stop exit ;; i*86:atheos:*:*) echo ${UNAME_MACHINE}-unknown-atheos exit ;; i*86:syllable:*:*) echo ${UNAME_MACHINE}-pc-syllable exit ;; i*86:LynxOS:2.*:* | i*86:LynxOS:3.[01]*:* | i*86:LynxOS:4.[02]*:*) echo i386-unknown-lynxos${UNAME_RELEASE} exit ;; i*86:*DOS:*:*) echo ${UNAME_MACHINE}-pc-msdosdjgpp exit ;; i*86:*:4.*:* | i*86:SYSTEM_V:4.*:*) UNAME_REL=`echo ${UNAME_RELEASE} | sed 's/\/MP$//'` if grep Novell /usr/include/link.h >/dev/null 2>/dev/null; then echo ${UNAME_MACHINE}-univel-sysv${UNAME_REL} else echo ${UNAME_MACHINE}-pc-sysv${UNAME_REL} fi exit ;; i*86:*:5:[678]*) # UnixWare 7.x, OpenUNIX and OpenServer 6. case `/bin/uname -X | grep "^Machine"` in *486*) UNAME_MACHINE=i486 ;; *Pentium) UNAME_MACHINE=i586 ;; *Pent*|*Celeron) UNAME_MACHINE=i686 ;; esac echo ${UNAME_MACHINE}-unknown-sysv${UNAME_RELEASE}${UNAME_SYSTEM}${UNAME_VERSION} exit ;; i*86:*:3.2:*) if test -f /usr/options/cb.name; then UNAME_REL=`sed -n 's/.*Version //p' /dev/null >/dev/null ; then UNAME_REL=`(/bin/uname -X|grep Release|sed -e 's/.*= //')` (/bin/uname -X|grep i80486 >/dev/null) && UNAME_MACHINE=i486 (/bin/uname -X|grep '^Machine.*Pentium' >/dev/null) \ && UNAME_MACHINE=i586 (/bin/uname -X|grep '^Machine.*Pent *II' >/dev/null) \ && UNAME_MACHINE=i686 (/bin/uname -X|grep '^Machine.*Pentium Pro' >/dev/null) \ && UNAME_MACHINE=i686 echo ${UNAME_MACHINE}-pc-sco$UNAME_REL else echo ${UNAME_MACHINE}-pc-sysv32 fi exit ;; pc:*:*:*) # Left here for compatibility: # uname -m prints for DJGPP always 'pc', but it prints nothing about # the processor, so we play safe by assuming i586. # Note: whatever this is, it MUST be the same as what config.sub # prints for the "djgpp" host, or else GDB configury will decide that # this is a cross-build. echo i586-pc-msdosdjgpp exit ;; Intel:Mach:3*:*) echo i386-pc-mach3 exit ;; paragon:*:*:*) echo i860-intel-osf1 exit ;; i860:*:4.*:*) # i860-SVR4 if grep Stardent /usr/include/sys/uadmin.h >/dev/null 2>&1 ; then echo i860-stardent-sysv${UNAME_RELEASE} # Stardent Vistra i860-SVR4 else # Add other i860-SVR4 vendors below as they are discovered. echo i860-unknown-sysv${UNAME_RELEASE} # Unknown i860-SVR4 fi exit ;; mini*:CTIX:SYS*5:*) # "miniframe" echo m68010-convergent-sysv exit ;; mc68k:UNIX:SYSTEM5:3.51m) echo m68k-convergent-sysv exit ;; M680?0:D-NIX:5.3:*) echo m68k-diab-dnix exit ;; M68*:*:R3V[5678]*:*) test -r /sysV68 && { echo 'm68k-motorola-sysv'; exit; } ;; 3[345]??:*:4.0:3.0 | 3[34]??A:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 3[34]??/*:*:4.0:3.0 | 4400:*:4.0:3.0 | 4850:*:4.0:3.0 | SKA40:*:4.0:3.0 | SDS2:*:4.0:3.0 | SHG2:*:4.0:3.0 | S7501*:*:4.0:3.0) OS_REL='' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3${OS_REL}; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3${OS_REL}; exit; } ;; 3[34]??:*:4.0:* | 3[34]??,*:*:4.0:*) /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4; exit; } ;; NCR*:*:4.2:* | MPRAS*:*:4.2:*) OS_REL='.3' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3${OS_REL}; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3${OS_REL}; exit; } /bin/uname -p 2>/dev/null | /bin/grep pteron >/dev/null \ && { echo i586-ncr-sysv4.3${OS_REL}; exit; } ;; m68*:LynxOS:2.*:* | m68*:LynxOS:3.0*:*) echo m68k-unknown-lynxos${UNAME_RELEASE} exit ;; mc68030:UNIX_System_V:4.*:*) echo m68k-atari-sysv4 exit ;; TSUNAMI:LynxOS:2.*:*) echo sparc-unknown-lynxos${UNAME_RELEASE} exit ;; rs6000:LynxOS:2.*:*) echo rs6000-unknown-lynxos${UNAME_RELEASE} exit ;; PowerPC:LynxOS:2.*:* | PowerPC:LynxOS:3.[01]*:* | PowerPC:LynxOS:4.[02]*:*) echo powerpc-unknown-lynxos${UNAME_RELEASE} exit ;; SM[BE]S:UNIX_SV:*:*) echo mips-dde-sysv${UNAME_RELEASE} exit ;; RM*:ReliantUNIX-*:*:*) echo mips-sni-sysv4 exit ;; RM*:SINIX-*:*:*) echo mips-sni-sysv4 exit ;; *:SINIX-*:*:*) if uname -p 2>/dev/null >/dev/null ; then UNAME_MACHINE=`(uname -p) 2>/dev/null` echo ${UNAME_MACHINE}-sni-sysv4 else echo ns32k-sni-sysv fi exit ;; PENTIUM:*:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort # says echo i586-unisys-sysv4 exit ;; *:UNIX_System_V:4*:FTX*) # From Gerald Hewes . # How about differentiating between stratus architectures? -djm echo hppa1.1-stratus-sysv4 exit ;; *:*:*:FTX*) # From seanf@swdc.stratus.com. echo i860-stratus-sysv4 exit ;; i*86:VOS:*:*) # From Paul.Green@stratus.com. echo ${UNAME_MACHINE}-stratus-vos exit ;; *:VOS:*:*) # From Paul.Green@stratus.com. echo hppa1.1-stratus-vos exit ;; mc68*:A/UX:*:*) echo m68k-apple-aux${UNAME_RELEASE} exit ;; news*:NEWS-OS:6*:*) echo mips-sony-newsos6 exit ;; R[34]000:*System_V*:*:* | R4000:UNIX_SYSV:*:* | R*000:UNIX_SV:*:*) if [ -d /usr/nec ]; then echo mips-nec-sysv${UNAME_RELEASE} else echo mips-unknown-sysv${UNAME_RELEASE} fi exit ;; BeBox:BeOS:*:*) # BeOS running on hardware made by Be, PPC only. echo powerpc-be-beos exit ;; BeMac:BeOS:*:*) # BeOS running on Mac or Mac clone, PPC only. echo powerpc-apple-beos exit ;; BePC:BeOS:*:*) # BeOS running on Intel PC compatible. echo i586-pc-beos exit ;; BePC:Haiku:*:*) # Haiku running on Intel PC compatible. echo i586-pc-haiku exit ;; x86_64:Haiku:*:*) echo x86_64-unknown-haiku exit ;; SX-4:SUPER-UX:*:*) echo sx4-nec-superux${UNAME_RELEASE} exit ;; SX-5:SUPER-UX:*:*) echo sx5-nec-superux${UNAME_RELEASE} exit ;; SX-6:SUPER-UX:*:*) echo sx6-nec-superux${UNAME_RELEASE} exit ;; SX-7:SUPER-UX:*:*) echo sx7-nec-superux${UNAME_RELEASE} exit ;; SX-8:SUPER-UX:*:*) echo sx8-nec-superux${UNAME_RELEASE} exit ;; SX-8R:SUPER-UX:*:*) echo sx8r-nec-superux${UNAME_RELEASE} exit ;; Power*:Rhapsody:*:*) echo powerpc-apple-rhapsody${UNAME_RELEASE} exit ;; *:Rhapsody:*:*) echo ${UNAME_MACHINE}-apple-rhapsody${UNAME_RELEASE} exit ;; *:Darwin:*:*) UNAME_PROCESSOR=`uname -p` || UNAME_PROCESSOR=unknown eval $set_cc_for_build if test "$UNAME_PROCESSOR" = unknown ; then UNAME_PROCESSOR=powerpc fi if test `echo "$UNAME_RELEASE" | sed -e 's/\..*//'` -le 10 ; then if [ "$CC_FOR_BUILD" != 'no_compiler_found' ]; then if (echo '#ifdef __LP64__'; echo IS_64BIT_ARCH; echo '#endif') | \ (CCOPTS= $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_64BIT_ARCH >/dev/null then case $UNAME_PROCESSOR in i386) UNAME_PROCESSOR=x86_64 ;; powerpc) UNAME_PROCESSOR=powerpc64 ;; esac fi fi elif test "$UNAME_PROCESSOR" = i386 ; then # Avoid executing cc on OS X 10.9, as it ships with a stub # that puts up a graphical alert prompting to install # developer tools. Any system running Mac OS X 10.7 or # later (Darwin 11 and later) is required to have a 64-bit # processor. This is not true of the ARM version of Darwin # that Apple uses in portable devices. UNAME_PROCESSOR=x86_64 fi echo ${UNAME_PROCESSOR}-apple-darwin${UNAME_RELEASE} exit ;; *:procnto*:*:* | *:QNX:[0123456789]*:*) UNAME_PROCESSOR=`uname -p` if test "$UNAME_PROCESSOR" = "x86"; then UNAME_PROCESSOR=i386 UNAME_MACHINE=pc fi echo ${UNAME_PROCESSOR}-${UNAME_MACHINE}-nto-qnx${UNAME_RELEASE} exit ;; *:QNX:*:4*) echo i386-pc-qnx exit ;; NEO-?:NONSTOP_KERNEL:*:*) echo neo-tandem-nsk${UNAME_RELEASE} exit ;; NSE-*:NONSTOP_KERNEL:*:*) echo nse-tandem-nsk${UNAME_RELEASE} exit ;; NSR-?:NONSTOP_KERNEL:*:*) echo nsr-tandem-nsk${UNAME_RELEASE} exit ;; *:NonStop-UX:*:*) echo mips-compaq-nonstopux exit ;; BS2000:POSIX*:*:*) echo bs2000-siemens-sysv exit ;; DS/*:UNIX_System_V:*:*) echo ${UNAME_MACHINE}-${UNAME_SYSTEM}-${UNAME_RELEASE} exit ;; *:Plan9:*:*) # "uname -m" is not consistent, so use $cputype instead. 386 # is converted to i386 for consistency with other x86 # operating systems. if test "$cputype" = "386"; then UNAME_MACHINE=i386 else UNAME_MACHINE="$cputype" fi echo ${UNAME_MACHINE}-unknown-plan9 exit ;; *:TOPS-10:*:*) echo pdp10-unknown-tops10 exit ;; *:TENEX:*:*) echo pdp10-unknown-tenex exit ;; KS10:TOPS-20:*:* | KL10:TOPS-20:*:* | TYPE4:TOPS-20:*:*) echo pdp10-dec-tops20 exit ;; XKL-1:TOPS-20:*:* | TYPE5:TOPS-20:*:*) echo pdp10-xkl-tops20 exit ;; *:TOPS-20:*:*) echo pdp10-unknown-tops20 exit ;; *:ITS:*:*) echo pdp10-unknown-its exit ;; SEI:*:*:SEIUX) echo mips-sei-seiux${UNAME_RELEASE} exit ;; *:DragonFly:*:*) echo ${UNAME_MACHINE}-unknown-dragonfly`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` exit ;; *:*VMS:*:*) UNAME_MACHINE=`(uname -p) 2>/dev/null` case "${UNAME_MACHINE}" in A*) echo alpha-dec-vms ; exit ;; I*) echo ia64-dec-vms ; exit ;; V*) echo vax-dec-vms ; exit ;; esac ;; *:XENIX:*:SysV) echo i386-pc-xenix exit ;; i*86:skyos:*:*) echo ${UNAME_MACHINE}-pc-skyos`echo ${UNAME_RELEASE}` | sed -e 's/ .*$//' exit ;; i*86:rdos:*:*) echo ${UNAME_MACHINE}-pc-rdos exit ;; i*86:AROS:*:*) echo ${UNAME_MACHINE}-pc-aros exit ;; x86_64:VMkernel:*:*) echo ${UNAME_MACHINE}-unknown-esx exit ;; esac cat >&2 < in order to provide the needed information to handle your system. config.guess timestamp = $timestamp uname -m = `(uname -m) 2>/dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null` /bin/uname -X = `(/bin/uname -X) 2>/dev/null` hostinfo = `(hostinfo) 2>/dev/null` /bin/universe = `(/bin/universe) 2>/dev/null` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null` /bin/arch = `(/bin/arch) 2>/dev/null` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null` UNAME_MACHINE = ${UNAME_MACHINE} UNAME_RELEASE = ${UNAME_RELEASE} UNAME_SYSTEM = ${UNAME_SYSTEM} UNAME_VERSION = ${UNAME_VERSION} EOF exit 1 # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: certmonger-0.78.6/compile0000755000175000017500000001624512645513271012276 00000000000000#! /bin/sh # Wrapper for compilers which do not understand '-c -o'. scriptversion=2012-10-14.11; # UTC # Copyright (C) 1999-2014 Free Software Foundation, Inc. # Written by Tom Tromey . # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # This file is maintained in Automake, please report # bugs to or send patches to # . nl=' ' # We need space, tab and new line, in precisely that order. Quoting is # there to prevent tools from complaining about whitespace usage. IFS=" "" $nl" file_conv= # func_file_conv build_file lazy # Convert a $build file to $host form and store it in $file # Currently only supports Windows hosts. If the determined conversion # type is listed in (the comma separated) LAZY, no conversion will # take place. func_file_conv () { file=$1 case $file in / | /[!/]*) # absolute file, and not a UNC file if test -z "$file_conv"; then # lazily determine how to convert abs files case `uname -s` in MINGW*) file_conv=mingw ;; CYGWIN*) file_conv=cygwin ;; *) file_conv=wine ;; esac fi case $file_conv/,$2, in *,$file_conv,*) ;; mingw/*) file=`cmd //C echo "$file " | sed -e 's/"\(.*\) " *$/\1/'` ;; cygwin/*) file=`cygpath -m "$file" || echo "$file"` ;; wine/*) file=`winepath -w "$file" || echo "$file"` ;; esac ;; esac } # func_cl_dashL linkdir # Make cl look for libraries in LINKDIR func_cl_dashL () { func_file_conv "$1" if test -z "$lib_path"; then lib_path=$file else lib_path="$lib_path;$file" fi linker_opts="$linker_opts -LIBPATH:$file" } # func_cl_dashl library # Do a library search-path lookup for cl func_cl_dashl () { lib=$1 found=no save_IFS=$IFS IFS=';' for dir in $lib_path $LIB do IFS=$save_IFS if $shared && test -f "$dir/$lib.dll.lib"; then found=yes lib=$dir/$lib.dll.lib break fi if test -f "$dir/$lib.lib"; then found=yes lib=$dir/$lib.lib break fi if test -f "$dir/lib$lib.a"; then found=yes lib=$dir/lib$lib.a break fi done IFS=$save_IFS if test "$found" != yes; then lib=$lib.lib fi } # func_cl_wrapper cl arg... # Adjust compile command to suit cl func_cl_wrapper () { # Assume a capable shell lib_path= shared=: linker_opts= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. eat=1 case $2 in *.o | *.[oO][bB][jJ]) func_file_conv "$2" set x "$@" -Fo"$file" shift ;; *) func_file_conv "$2" set x "$@" -Fe"$file" shift ;; esac ;; -I) eat=1 func_file_conv "$2" mingw set x "$@" -I"$file" shift ;; -I*) func_file_conv "${1#-I}" mingw set x "$@" -I"$file" shift ;; -l) eat=1 func_cl_dashl "$2" set x "$@" "$lib" shift ;; -l*) func_cl_dashl "${1#-l}" set x "$@" "$lib" shift ;; -L) eat=1 func_cl_dashL "$2" ;; -L*) func_cl_dashL "${1#-L}" ;; -static) shared=false ;; -Wl,*) arg=${1#-Wl,} save_ifs="$IFS"; IFS=',' for flag in $arg; do IFS="$save_ifs" linker_opts="$linker_opts $flag" done IFS="$save_ifs" ;; -Xlinker) eat=1 linker_opts="$linker_opts $2" ;; -*) set x "$@" "$1" shift ;; *.cc | *.CC | *.cxx | *.CXX | *.[cC]++) func_file_conv "$1" set x "$@" -Tp"$file" shift ;; *.c | *.cpp | *.CPP | *.lib | *.LIB | *.Lib | *.OBJ | *.obj | *.[oO]) func_file_conv "$1" mingw set x "$@" "$file" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -n "$linker_opts"; then linker_opts="-link$linker_opts" fi exec "$@" $linker_opts exit 1 } eat= case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: compile [--help] [--version] PROGRAM [ARGS] Wrapper for compilers which do not understand '-c -o'. Remove '-o dest.o' from ARGS, run PROGRAM with the remaining arguments, and rename the output as expected. If you are trying to build a whole package this is not the right script to run: please start by reading the file 'INSTALL'. Report bugs to . EOF exit $? ;; -v | --v*) echo "compile $scriptversion" exit $? ;; cl | *[/\\]cl | cl.exe | *[/\\]cl.exe ) func_cl_wrapper "$@" # Doesn't return... ;; esac ofile= cfile= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. # So we strip '-o arg' only if arg is an object. eat=1 case $2 in *.o | *.obj) ofile=$2 ;; *) set x "$@" -o "$2" shift ;; esac ;; *.c) cfile=$1 set x "$@" "$1" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -z "$ofile" || test -z "$cfile"; then # If no '-o' option was seen then we might have been invoked from a # pattern rule where we don't need one. That is ok -- this is a # normal compilation that the losing compiler can handle. If no # '.c' file was seen then we are probably linking. That is also # ok. exec "$@" fi # Name of file we expect compiler to create. cofile=`echo "$cfile" | sed 's|^.*[\\/]||; s|^[a-zA-Z]:||; s/\.c$/.o/'` # Create the lock directory. # Note: use '[/\\:.-]' here to ensure that we don't use the same name # that we are using for the .o file. Also, base the name on the expected # object file name, since that is what matters with a parallel build. lockdir=`echo "$cofile" | sed -e 's|[/\\:.-]|_|g'`.d while true; do if mkdir "$lockdir" >/dev/null 2>&1; then break fi sleep 1 done # FIXME: race condition here if user kills between mkdir and trap. trap "rmdir '$lockdir'; exit 1" 1 2 15 # Run the compile. "$@" ret=$? if test -f "$cofile"; then test "$cofile" = "$ofile" || mv "$cofile" "$ofile" elif test -f "${cofile}bj"; then test "${cofile}bj" = "$ofile" || mv "${cofile}bj" "$ofile" fi rmdir "$lockdir" exit $ret # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: certmonger-0.78.6/README0000664000175000017500000000317412645513264011601 00000000000000Certmonger is primarily concerned with getting you or your system enrolled with a certificate authority (CA) and keeping you enrolled. To do this, the certmonger daemon runs in the background, taking guidance from client tools (via a D-Bus API, a command-line tool is provided which uses it). The daemon: * can generate key pairs if you don't already have one * can use a key pair to generate a certificate signing request * can submit the signing request to a CA * can wait for the CA to decide whether or not to issue the certificate * can store an issued certificate in a specified location * can monitor the certificate to see if it's about to expire * can warn you or simply log that a certificate is about to expire * can attempt to get a new certificate when a certificate is about to expire The goal is to have certmonger do what you need it to do based on what you've told it you need. If you already have a certificate, it will be happy to just check on it periodically and warn you when it's about to expire. If you tell it where the private key is, and where the CA is, it can go ahead and try to re-enroll if you like. Keys and certificates can be stored and read in any of these formats: * PEM-formatted files * NSS database (dbm or sql) The certmonger daemon knows how to self-sign certificates, and will be able to submit requests to: * self-signing [implemented] * IPA [implemented] * certmaster [implemented] I'd like for it to also be able to submit requests to: * Dogtag/RHCS * ADCS And perhaps also: * KMIP-compatible systems * SCEP This package is hosted at http://certmonger.fedorahosted.org/. certmonger-0.78.6/ABOUT-NLS0000644000175000017500000022532612645513265012154 000000000000001 Notes on the Free Translation Project *************************************** Free software is going international! The Free Translation Project is a way to get maintainers of free software, translators, and users all together, so that free software will gradually become able to speak many languages. A few packages already provide translations for their messages. If you found this `ABOUT-NLS' file inside a distribution, you may assume that the distributed package does use GNU `gettext' internally, itself available at your nearest GNU archive site. But you do _not_ need to install GNU `gettext' prior to configuring, installing or using this package with messages translated. Installers will find here some useful hints. These notes also explain how users should proceed for getting the programs to use the available translations. They tell how people wanting to contribute and work on translations can contact the appropriate team. When reporting bugs in the `intl/' directory or bugs which may be related to internationalization, you should tell about the version of `gettext' which is used. The information can be found in the `intl/VERSION' file, in internationalized packages. 1.1 Quick configuration advice ============================== If you want to exploit the full power of internationalization, you should configure it using ./configure --with-included-gettext to force usage of internationalizing routines provided within this package, despite the existence of internationalizing capabilities in the operating system where this package is being installed. So far, only the `gettext' implementation in the GNU C library version 2 provides as many features (such as locale alias, message inheritance, automatic charset conversion or plural form handling) as the implementation here. It is also not possible to offer this additional functionality on top of a `catgets' implementation. Future versions of GNU `gettext' will very likely convey even more functionality. So it might be a good idea to change to GNU `gettext' as soon as possible. So you need _not_ provide this option if you are using GNU libc 2 or you have installed a recent copy of the GNU gettext package with the included `libintl'. 1.2 INSTALL Matters =================== Some packages are "localizable" when properly installed; the programs they contain can be made to speak your own native language. Most such packages use GNU `gettext'. Other packages have their own ways to internationalization, predating GNU `gettext'. By default, this package will be installed to allow translation of messages. It will automatically detect whether the system already provides the GNU `gettext' functions. If not, the included GNU `gettext' library will be used. This library is wholly contained within this package, usually in the `intl/' subdirectory, so prior installation of the GNU `gettext' package is _not_ required. Installers may use special options at configuration time for changing the default behaviour. The commands: ./configure --with-included-gettext ./configure --disable-nls will, respectively, bypass any pre-existing `gettext' to use the internationalizing routines provided within this package, or else, _totally_ disable translation of messages. When you already have GNU `gettext' installed on your system and run configure without an option for your new package, `configure' will probably detect the previously built and installed `libintl.a' file and will decide to use this. This might not be desirable. You should use the more recent version of the GNU `gettext' library. I.e. if the file `intl/VERSION' shows that the library which comes with this package is more recent, you should use ./configure --with-included-gettext to prevent auto-detection. The configuration process will not test for the `catgets' function and therefore it will not be used. The reason is that even an emulation of `gettext' on top of `catgets' could not provide all the extensions of the GNU `gettext' library. Internationalized packages usually have many `po/LL.po' files, where LL gives an ISO 639 two-letter code identifying the language. Unless translations have been forbidden at `configure' time by using the `--disable-nls' switch, all available translations are installed together with the package. However, the environment variable `LINGUAS' may be set, prior to configuration, to limit the installed set. `LINGUAS' should then contain a space separated list of two-letter codes, stating which languages are allowed. 1.3 Using This Package ====================== As a user, if your language has been installed for this package, you only have to set the `LANG' environment variable to the appropriate `LL_CC' combination. If you happen to have the `LC_ALL' or some other `LC_xxx' environment variables set, you should unset them before setting `LANG', otherwise the setting of `LANG' will not have the desired effect. Here `LL' is an ISO 639 two-letter language code, and `CC' is an ISO 3166 two-letter country code. For example, let's suppose that you speak German and live in Germany. At the shell prompt, merely execute `setenv LANG de_DE' (in `csh'), `export LANG; LANG=de_DE' (in `sh') or `export LANG=de_DE' (in `bash'). This can be done from your `.login' or `.profile' file, once and for all. You might think that the country code specification is redundant. But in fact, some languages have dialects in different countries. For example, `de_AT' is used for Austria, and `pt_BR' for Brazil. The country code serves to distinguish the dialects. The locale naming convention of `LL_CC', with `LL' denoting the language and `CC' denoting the country, is the one use on systems based on GNU libc. On other systems, some variations of this scheme are used, such as `LL' or `LL_CC.ENCODING'. You can get the list of locales supported by your system for your language by running the command `locale -a | grep '^LL''. Not all programs have translations for all languages. By default, an English message is shown in place of a nonexistent translation. If you understand other languages, you can set up a priority list of languages. This is done through a different environment variable, called `LANGUAGE'. GNU `gettext' gives preference to `LANGUAGE' over `LANG' for the purpose of message handling, but you still need to have `LANG' set to the primary language; this is required by other parts of the system libraries. For example, some Swedish users who would rather read translations in German than English for when Swedish is not available, set `LANGUAGE' to `sv:de' while leaving `LANG' to `sv_SE'. Special advice for Norwegian users: The language code for Norwegian bokma*l changed from `no' to `nb' recently (in 2003). During the transition period, while some message catalogs for this language are installed under `nb' and some older ones under `no', it's recommended for Norwegian users to set `LANGUAGE' to `nb:no' so that both newer and older translations are used. In the `LANGUAGE' environment variable, but not in the `LANG' environment variable, `LL_CC' combinations can be abbreviated as `LL' to denote the language's main dialect. For example, `de' is equivalent to `de_DE' (German as spoken in Germany), and `pt' to `pt_PT' (Portuguese as spoken in Portugal) in this context. 1.4 Translating Teams ===================== For the Free Translation Project to be a success, we need interested people who like their own language and write it well, and who are also able to synergize with other translators speaking the same language. Each translation team has its own mailing list. The up-to-date list of teams can be found at the Free Translation Project's homepage, `http://translationproject.org/', in the "Teams" area. If you'd like to volunteer to _work_ at translating messages, you should become a member of the translating team for your own language. The subscribing address is _not_ the same as the list itself, it has `-request' appended. For example, speakers of Swedish can send a message to `sv-request@li.org', having this message body: subscribe Keep in mind that team members are expected to participate _actively_ in translations, or at solving translational difficulties, rather than merely lurking around. If your team does not exist yet and you want to start one, or if you are unsure about what to do or how to get started, please write to `coordinator@translationproject.org' to reach the coordinator for all translator teams. The English team is special. It works at improving and uniformizing the terminology in use. Proven linguistic skills are praised more than programming skills, here. 1.5 Available Packages ====================== Languages are not equally supported in all packages. The following matrix shows the current state of internationalization, as of November 2007. The matrix shows, in regard of each package, for which languages PO files have been submitted to translation coordination, with a translation percentage of at least 50%. Ready PO files af am ar az be bg bs ca cs cy da de el en en_GB eo +----------------------------------------------------+ Compendium | [] [] [] [] | a2ps | [] [] [] [] [] | aegis | () | ant-phone | () | anubis | [] | ap-utils | | aspell | [] [] [] [] [] | bash | [] | bfd | | bibshelf | [] | binutils | | bison | [] [] | bison-runtime | [] | bluez-pin | [] [] [] [] [] | cflow | [] | clisp | [] [] [] | console-tools | [] [] | coreutils | [] [] [] [] | cpio | | cpplib | [] [] [] | cryptonit | [] | dialog | | diffutils | [] [] [] [] [] [] | doodle | [] | e2fsprogs | [] [] | enscript | [] [] [] [] | fetchmail | [] [] () [] [] | findutils | [] | findutils_stable | [] [] [] | flex | [] [] [] | fslint | | gas | | gawk | [] [] [] | gcal | [] | gcc | [] | gettext-examples | [] [] [] [] [] | gettext-runtime | [] [] [] [] [] | gettext-tools | [] [] | gip | [] | gliv | [] [] | glunarclock | [] | gmult | [] [] | gnubiff | () | gnucash | [] [] () () [] | gnuedu | | gnulib | [] | gnunet | | gnunet-gtk | | gnutls | [] | gpe-aerial | [] [] | gpe-beam | [] [] | gpe-calendar | | gpe-clock | [] [] | gpe-conf | [] [] | gpe-contacts | | gpe-edit | [] | gpe-filemanager | | gpe-go | [] | gpe-login | [] [] | gpe-ownerinfo | [] [] | gpe-package | | gpe-sketchbook | [] [] | gpe-su | [] [] | gpe-taskmanager | [] [] | gpe-timesheet | [] | gpe-today | [] [] | gpe-todo | | gphoto2 | [] [] [] [] | gprof | [] [] | gpsdrive | | gramadoir | [] [] | grep | [] [] | gretl | () | gsasl | | gss | | gst-plugins-bad | [] [] | gst-plugins-base | [] [] | gst-plugins-good | [] [] [] | gst-plugins-ugly | [] [] | gstreamer | [] [] [] [] [] [] [] | gtick | () | gtkam | [] [] [] [] | gtkorphan | [] [] | gtkspell | [] [] [] [] | gutenprint | [] | hello | [] [] [] [] [] | herrie | [] | hylafax | | idutils | [] [] | indent | [] [] [] [] | iso_15924 | | iso_3166 | [] [] [] [] [] [] [] [] [] [] [] | iso_3166_2 | | iso_4217 | [] [] [] | iso_639 | [] [] [] [] | jpilot | [] | jtag | | jwhois | | kbd | [] [] [] [] | keytouch | [] [] | keytouch-editor | [] | keytouch-keyboa... | [] | latrine | () | ld | [] | leafpad | [] [] [] [] [] | libc | [] [] [] [] | libexif | [] | libextractor | [] | libgpewidget | [] [] [] | libgpg-error | [] | libgphoto2 | [] [] | libgphoto2_port | [] [] | libgsasl | | libiconv | [] [] | libidn | [] [] [] | lifelines | [] () | lilypond | [] | lingoteach | | lprng | | lynx | [] [] [] [] | m4 | [] [] [] [] | mailfromd | | mailutils | [] | make | [] [] | man-db | [] [] [] | minicom | [] [] [] | nano | [] [] [] | opcodes | [] | parted | [] [] | pilot-qof | | popt | [] [] [] | psmisc | [] | pwdutils | | qof | | radius | [] | recode | [] [] [] [] [] [] | rpm | [] | screem | | scrollkeeper | [] [] [] [] [] [] [] [] | sed | [] [] [] | shared-mime-info | [] [] [] [] () [] [] [] | sharutils | [] [] [] [] [] [] | shishi | | skencil | [] () | solfege | | soundtracker | [] [] | sp | [] | system-tools-ba... | [] [] [] [] [] [] [] [] [] | tar | [] [] | texinfo | [] [] [] | tin | () () | tuxpaint | [] [] [] [] [] [] | unicode-han-tra... | | unicode-transla... | | util-linux | [] [] [] [] | util-linux-ng | [] [] [] [] | vorbis-tools | [] | wastesedge | () | wdiff | [] [] [] [] | wget | [] [] [] | xchat | [] [] [] [] [] [] [] | xkeyboard-config | [] | xpad | [] [] [] | +----------------------------------------------------+ af am ar az be bg bs ca cs cy da de el en en_GB eo 6 0 2 1 8 26 2 40 48 2 56 88 15 1 15 18 es et eu fa fi fr ga gl gu he hi hr hu id is it +--------------------------------------------------+ Compendium | [] [] [] [] [] | a2ps | [] [] [] () | aegis | | ant-phone | [] | anubis | [] | ap-utils | [] [] | aspell | [] [] [] | bash | [] | bfd | [] [] | bibshelf | [] [] [] | binutils | [] [] [] | bison | [] [] [] [] [] [] | bison-runtime | [] [] [] [] [] | bluez-pin | [] [] [] [] [] | cflow | [] | clisp | [] [] | console-tools | | coreutils | [] [] [] [] [] [] | cpio | [] [] [] | cpplib | [] [] | cryptonit | [] | dialog | [] [] [] | diffutils | [] [] [] [] [] [] [] [] [] | doodle | [] [] | e2fsprogs | [] [] [] | enscript | [] [] [] | fetchmail | [] | findutils | [] [] [] | findutils_stable | [] [] [] [] | flex | [] [] [] | fslint | | gas | [] [] | gawk | [] [] [] [] () | gcal | [] [] | gcc | [] | gettext-examples | [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] | gettext-tools | [] [] [] [] | gip | [] [] [] [] | gliv | () | glunarclock | [] [] [] | gmult | [] [] [] | gnubiff | () () | gnucash | () () () | gnuedu | [] | gnulib | [] [] [] | gnunet | | gnunet-gtk | | gnutls | | gpe-aerial | [] [] | gpe-beam | [] [] | gpe-calendar | | gpe-clock | [] [] [] [] | gpe-conf | [] | gpe-contacts | [] [] | gpe-edit | [] [] [] [] | gpe-filemanager | [] | gpe-go | [] [] [] | gpe-login | [] [] [] | gpe-ownerinfo | [] [] [] [] [] | gpe-package | [] | gpe-sketchbook | [] [] | gpe-su | [] [] [] [] | gpe-taskmanager | [] [] [] | gpe-timesheet | [] [] [] [] | gpe-today | [] [] [] [] | gpe-todo | [] | gphoto2 | [] [] [] [] [] | gprof | [] [] [] [] [] | gpsdrive | [] | gramadoir | [] [] | grep | [] [] [] | gretl | [] [] [] () | gsasl | [] [] | gss | [] [] | gst-plugins-bad | [] [] [] [] | gst-plugins-base | [] [] [] [] | gst-plugins-good | [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] | gstreamer | [] [] [] | gtick | [] [] [] | gtkam | [] [] [] [] | gtkorphan | [] [] | gtkspell | [] [] [] [] [] [] [] | gutenprint | [] | hello | [] [] [] [] [] [] [] [] [] [] [] [] [] | herrie | [] | hylafax | | idutils | [] [] [] [] [] | indent | [] [] [] [] [] [] [] [] [] [] | iso_15924 | [] | iso_3166 | [] [] [] [] [] [] [] [] [] [] [] [] [] | iso_3166_2 | [] | iso_4217 | [] [] [] [] [] [] | iso_639 | [] [] [] [] [] [] | jpilot | [] [] | jtag | [] | jwhois | [] [] [] [] [] | kbd | [] [] | keytouch | [] [] [] | keytouch-editor | [] | keytouch-keyboa... | [] [] | latrine | [] [] | ld | [] [] [] [] | leafpad | [] [] [] [] [] [] | libc | [] [] [] [] [] | libexif | [] | libextractor | [] | libgpewidget | [] [] [] [] [] | libgpg-error | [] | libgphoto2 | [] [] [] | libgphoto2_port | [] [] | libgsasl | [] [] | libiconv | [] [] [] | libidn | [] [] | lifelines | () | lilypond | [] [] [] | lingoteach | [] [] [] | lprng | | lynx | [] [] [] | m4 | [] [] [] [] | mailfromd | | mailutils | [] [] | make | [] [] [] [] [] [] [] [] | man-db | [] | minicom | [] [] [] [] | nano | [] [] [] [] [] [] [] | opcodes | [] [] [] [] | parted | [] [] [] | pilot-qof | | popt | [] [] [] [] | psmisc | [] [] | pwdutils | | qof | [] | radius | [] [] | recode | [] [] [] [] [] [] [] [] | rpm | [] [] | screem | | scrollkeeper | [] [] [] | sed | [] [] [] [] [] | shared-mime-info | [] [] [] [] [] [] | sharutils | [] [] [] [] [] [] [] [] | shishi | [] | skencil | [] [] | solfege | [] | soundtracker | [] [] [] | sp | [] | system-tools-ba... | [] [] [] [] [] [] [] [] [] | tar | [] [] [] [] [] | texinfo | [] [] [] | tin | [] () | tuxpaint | [] [] | unicode-han-tra... | | unicode-transla... | [] [] | util-linux | [] [] [] [] [] [] [] | util-linux-ng | [] [] [] [] [] [] [] | vorbis-tools | | wastesedge | () | wdiff | [] [] [] [] [] [] [] [] | wget | [] [] [] [] [] [] [] [] | xchat | [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] [] | xpad | [] [] [] | +--------------------------------------------------+ es et eu fa fi fr ga gl gu he hi hr hu id is it 85 22 14 2 48 101 61 12 2 8 2 6 53 29 1 52 ja ka ko ku ky lg lt lv mk mn ms mt nb ne nl nn +--------------------------------------------------+ Compendium | [] | a2ps | () [] [] | aegis | () | ant-phone | [] | anubis | [] [] [] | ap-utils | [] | aspell | [] [] | bash | [] | bfd | | bibshelf | [] | binutils | | bison | [] [] [] | bison-runtime | [] [] [] | bluez-pin | [] [] [] | cflow | | clisp | [] | console-tools | | coreutils | [] | cpio | [] | cpplib | [] | cryptonit | [] | dialog | [] [] | diffutils | [] [] [] | doodle | | e2fsprogs | [] | enscript | [] | fetchmail | [] [] | findutils | [] | findutils_stable | [] | flex | [] [] | fslint | | gas | | gawk | [] [] | gcal | | gcc | | gettext-examples | [] [] [] | gettext-runtime | [] [] [] | gettext-tools | [] [] | gip | [] [] | gliv | [] | glunarclock | [] [] | gmult | [] [] [] | gnubiff | | gnucash | () () () | gnuedu | | gnulib | [] [] | gnunet | | gnunet-gtk | | gnutls | [] | gpe-aerial | [] | gpe-beam | [] | gpe-calendar | [] | gpe-clock | [] [] [] | gpe-conf | [] [] [] | gpe-contacts | [] | gpe-edit | [] [] [] | gpe-filemanager | [] [] | gpe-go | [] [] [] | gpe-login | [] [] [] | gpe-ownerinfo | [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] | gpe-su | [] [] [] | gpe-taskmanager | [] [] [] [] | gpe-timesheet | [] | gpe-today | [] [] | gpe-todo | [] | gphoto2 | [] [] | gprof | [] | gpsdrive | [] | gramadoir | () | grep | [] [] | gretl | | gsasl | [] | gss | | gst-plugins-bad | [] | gst-plugins-base | [] | gst-plugins-good | [] | gst-plugins-ugly | [] | gstreamer | [] | gtick | [] | gtkam | [] [] | gtkorphan | [] | gtkspell | [] [] | gutenprint | [] | hello | [] [] [] [] [] [] [] | herrie | [] | hylafax | | idutils | [] | indent | [] [] | iso_15924 | [] | iso_3166 | [] [] [] [] [] [] [] [] | iso_3166_2 | [] | iso_4217 | [] [] [] | iso_639 | [] [] [] [] | jpilot | () () | jtag | | jwhois | [] | kbd | [] | keytouch | [] | keytouch-editor | [] | keytouch-keyboa... | | latrine | [] | ld | | leafpad | [] [] | libc | [] [] [] | libexif | | libextractor | | libgpewidget | [] | libgpg-error | | libgphoto2 | [] | libgphoto2_port | [] | libgsasl | [] | libiconv | [] | libidn | [] [] | lifelines | [] | lilypond | [] | lingoteach | [] | lprng | | lynx | [] [] | m4 | [] [] | mailfromd | | mailutils | | make | [] [] [] | man-db | | minicom | [] | nano | [] [] [] | opcodes | [] | parted | [] [] | pilot-qof | | popt | [] [] [] | psmisc | [] [] [] | pwdutils | | qof | | radius | | recode | [] | rpm | [] [] | screem | [] | scrollkeeper | [] [] [] [] | sed | [] [] | shared-mime-info | [] [] [] [] [] [] [] | sharutils | [] [] | shishi | | skencil | | solfege | () () | soundtracker | | sp | () | system-tools-ba... | [] [] [] [] | tar | [] [] [] | texinfo | [] [] | tin | | tuxpaint | () [] [] | unicode-han-tra... | | unicode-transla... | | util-linux | [] [] | util-linux-ng | [] [] | vorbis-tools | | wastesedge | [] | wdiff | [] [] | wget | [] [] | xchat | [] [] [] [] | xkeyboard-config | [] [] [] | xpad | [] [] [] | +--------------------------------------------------+ ja ka ko ku ky lg lt lv mk mn ms mt nb ne nl nn 51 2 25 3 2 0 6 0 2 2 20 0 11 1 103 6 or pa pl pt pt_BR rm ro ru rw sk sl sq sr sv ta +--------------------------------------------------+ Compendium | [] [] [] [] [] | a2ps | () [] [] [] [] [] [] | aegis | () () | ant-phone | [] [] | anubis | [] [] [] | ap-utils | () | aspell | [] [] [] | bash | [] [] | bfd | | bibshelf | [] | binutils | [] [] | bison | [] [] [] [] [] | bison-runtime | [] [] [] [] [] | bluez-pin | [] [] [] [] [] [] [] [] [] | cflow | [] | clisp | [] | console-tools | [] | coreutils | [] [] [] [] | cpio | [] [] [] | cpplib | [] | cryptonit | [] [] | dialog | [] | diffutils | [] [] [] [] [] [] | doodle | [] [] | e2fsprogs | [] [] | enscript | [] [] [] [] [] | fetchmail | [] [] [] | findutils | [] [] [] | findutils_stable | [] [] [] [] [] [] | flex | [] [] [] [] [] | fslint | [] | gas | | gawk | [] [] [] [] | gcal | [] | gcc | [] [] | gettext-examples | [] [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] [] [] | gettext-tools | [] [] [] [] [] [] [] | gip | [] [] [] [] | gliv | [] [] [] [] [] [] | glunarclock | [] [] [] [] [] [] | gmult | [] [] [] [] | gnubiff | () [] | gnucash | () [] | gnuedu | | gnulib | [] [] [] | gnunet | | gnunet-gtk | [] | gnutls | [] [] | gpe-aerial | [] [] [] [] [] [] [] | gpe-beam | [] [] [] [] [] [] [] | gpe-calendar | [] [] [] [] | gpe-clock | [] [] [] [] [] [] [] [] | gpe-conf | [] [] [] [] [] [] [] | gpe-contacts | [] [] [] [] [] | gpe-edit | [] [] [] [] [] [] [] [] [] | gpe-filemanager | [] [] | gpe-go | [] [] [] [] [] [] [] [] | gpe-login | [] [] [] [] [] [] [] [] | gpe-ownerinfo | [] [] [] [] [] [] [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] [] [] [] [] [] [] | gpe-su | [] [] [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] [] [] [] | gpe-timesheet | [] [] [] [] [] [] [] [] | gpe-today | [] [] [] [] [] [] [] [] | gpe-todo | [] [] [] [] | gphoto2 | [] [] [] [] [] [] | gprof | [] [] [] | gpsdrive | [] [] | gramadoir | [] [] | grep | [] [] [] [] | gretl | [] [] [] | gsasl | [] [] [] | gss | [] [] [] [] | gst-plugins-bad | [] [] [] | gst-plugins-base | [] [] | gst-plugins-good | [] [] | gst-plugins-ugly | [] [] [] | gstreamer | [] [] [] [] | gtick | [] | gtkam | [] [] [] [] [] | gtkorphan | [] | gtkspell | [] [] [] [] [] [] [] [] | gutenprint | [] | hello | [] [] [] [] [] [] [] [] | herrie | [] [] [] | hylafax | | idutils | [] [] [] [] [] | indent | [] [] [] [] [] [] [] | iso_15924 | | iso_3166 | [] [] [] [] [] [] [] [] [] [] [] [] [] | iso_3166_2 | | iso_4217 | [] [] [] [] [] [] [] | iso_639 | [] [] [] [] [] [] [] | jpilot | | jtag | [] | jwhois | [] [] [] [] | kbd | [] [] [] | keytouch | [] | keytouch-editor | [] | keytouch-keyboa... | [] | latrine | | ld | [] | leafpad | [] [] [] [] [] [] | libc | [] [] [] [] | libexif | [] [] | libextractor | [] [] | libgpewidget | [] [] [] [] [] [] [] [] | libgpg-error | [] [] [] | libgphoto2 | [] | libgphoto2_port | [] [] [] | libgsasl | [] [] [] [] | libiconv | [] [] [] | libidn | [] [] () | lifelines | [] [] | lilypond | | lingoteach | [] | lprng | [] | lynx | [] [] [] | m4 | [] [] [] [] [] | mailfromd | [] | mailutils | [] [] [] | make | [] [] [] [] | man-db | [] [] [] [] | minicom | [] [] [] [] [] | nano | [] [] [] [] | opcodes | [] [] | parted | [] | pilot-qof | | popt | [] [] [] [] | psmisc | [] [] | pwdutils | [] [] | qof | [] [] | radius | [] [] | recode | [] [] [] [] [] [] [] | rpm | [] [] [] [] | screem | | scrollkeeper | [] [] [] [] [] [] [] | sed | [] [] [] [] [] [] [] [] [] | shared-mime-info | [] [] [] [] [] [] | sharutils | [] [] [] [] | shishi | [] | skencil | [] [] [] | solfege | [] | soundtracker | [] [] | sp | | system-tools-ba... | [] [] [] [] [] [] [] [] [] | tar | [] [] [] [] | texinfo | [] [] [] [] | tin | () | tuxpaint | [] [] [] [] [] [] | unicode-han-tra... | | unicode-transla... | | util-linux | [] [] [] [] | util-linux-ng | [] [] [] [] | vorbis-tools | [] | wastesedge | | wdiff | [] [] [] [] [] [] [] | wget | [] [] [] [] | xchat | [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] | xpad | [] [] [] | +--------------------------------------------------+ or pa pl pt pt_BR rm ro ru rw sk sl sq sr sv ta 0 5 77 31 53 4 58 72 3 45 46 9 45 122 3 tg th tk tr uk ven vi wa xh zh_CN zh_HK zh_TW zu +---------------------------------------------------+ Compendium | [] [] [] [] | 19 a2ps | [] [] [] | 19 aegis | [] | 1 ant-phone | [] [] | 6 anubis | [] [] [] | 11 ap-utils | () [] | 4 aspell | [] [] [] | 16 bash | [] | 6 bfd | | 2 bibshelf | [] | 7 binutils | [] [] [] [] | 9 bison | [] [] [] [] | 20 bison-runtime | [] [] [] [] | 18 bluez-pin | [] [] [] [] [] [] | 28 cflow | [] [] | 5 clisp | | 9 console-tools | [] [] | 5 coreutils | [] [] [] | 18 cpio | [] [] [] [] | 11 cpplib | [] [] [] [] [] | 12 cryptonit | [] | 6 dialog | [] [] [] | 9 diffutils | [] [] [] [] [] | 29 doodle | [] | 6 e2fsprogs | [] [] | 10 enscript | [] [] [] | 16 fetchmail | [] [] | 12 findutils | [] [] [] | 11 findutils_stable | [] [] [] [] | 18 flex | [] [] | 15 fslint | [] | 2 gas | [] | 3 gawk | [] [] [] | 16 gcal | [] | 5 gcc | [] [] [] | 7 gettext-examples | [] [] [] [] [] [] | 29 gettext-runtime | [] [] [] [] [] [] | 28 gettext-tools | [] [] [] [] [] | 20 gip | [] [] | 13 gliv | [] [] | 11 glunarclock | [] [] [] | 15 gmult | [] [] [] [] | 16 gnubiff | [] | 2 gnucash | () [] | 5 gnuedu | [] | 2 gnulib | [] | 10 gnunet | | 0 gnunet-gtk | [] [] | 3 gnutls | | 4 gpe-aerial | [] [] | 14 gpe-beam | [] [] | 14 gpe-calendar | [] [] | 7 gpe-clock | [] [] [] [] | 21 gpe-conf | [] [] [] | 16 gpe-contacts | [] [] | 10 gpe-edit | [] [] [] [] [] | 22 gpe-filemanager | [] [] | 7 gpe-go | [] [] [] [] | 19 gpe-login | [] [] [] [] [] | 21 gpe-ownerinfo | [] [] [] [] | 21 gpe-package | [] | 6 gpe-sketchbook | [] [] | 16 gpe-su | [] [] [] [] | 21 gpe-taskmanager | [] [] [] [] | 21 gpe-timesheet | [] [] [] [] | 18 gpe-today | [] [] [] [] [] | 21 gpe-todo | [] [] | 8 gphoto2 | [] [] [] [] | 21 gprof | [] [] | 13 gpsdrive | [] | 5 gramadoir | [] | 7 grep | [] | 12 gretl | | 6 gsasl | [] [] [] | 9 gss | [] | 7 gst-plugins-bad | [] [] [] | 13 gst-plugins-base | [] [] | 11 gst-plugins-good | [] [] [] [] [] | 16 gst-plugins-ugly | [] [] [] | 13 gstreamer | [] [] [] | 18 gtick | [] [] | 7 gtkam | [] | 16 gtkorphan | [] | 7 gtkspell | [] [] [] [] [] [] | 27 gutenprint | | 4 hello | [] [] [] [] [] | 38 herrie | [] [] | 8 hylafax | | 0 idutils | [] [] | 15 indent | [] [] [] [] [] | 28 iso_15924 | [] [] | 4 iso_3166 | [] [] [] [] [] [] [] [] [] | 54 iso_3166_2 | [] [] | 4 iso_4217 | [] [] [] [] [] | 24 iso_639 | [] [] [] [] [] | 26 jpilot | [] [] [] [] | 7 jtag | [] | 3 jwhois | [] [] [] | 13 kbd | [] [] [] | 13 keytouch | [] | 8 keytouch-editor | [] | 5 keytouch-keyboa... | [] | 5 latrine | [] [] | 5 ld | [] [] [] [] | 10 leafpad | [] [] [] [] [] | 24 libc | [] [] [] | 19 libexif | [] | 5 libextractor | [] | 5 libgpewidget | [] [] [] | 20 libgpg-error | [] | 6 libgphoto2 | [] [] | 9 libgphoto2_port | [] [] [] | 11 libgsasl | [] | 8 libiconv | [] [] | 11 libidn | [] [] | 11 lifelines | | 4 lilypond | [] | 6 lingoteach | [] | 6 lprng | [] | 2 lynx | [] [] [] | 15 m4 | [] [] [] | 18 mailfromd | [] [] | 3 mailutils | [] [] | 8 make | [] [] [] | 20 man-db | [] | 9 minicom | [] | 14 nano | [] [] [] | 20 opcodes | [] [] | 10 parted | [] [] [] | 11 pilot-qof | [] | 1 popt | [] [] [] [] | 18 psmisc | [] [] | 10 pwdutils | [] | 3 qof | [] | 4 radius | [] [] | 7 recode | [] [] [] | 25 rpm | [] [] [] [] | 13 screem | [] | 2 scrollkeeper | [] [] [] [] | 26 sed | [] [] [] [] | 23 shared-mime-info | [] [] [] | 29 sharutils | [] [] [] | 23 shishi | [] | 3 skencil | [] | 7 solfege | [] | 3 soundtracker | [] [] | 9 sp | [] | 3 system-tools-ba... | [] [] [] [] [] [] [] | 38 tar | [] [] [] | 17 texinfo | [] [] [] | 15 tin | | 1 tuxpaint | [] [] [] | 19 unicode-han-tra... | | 0 unicode-transla... | | 2 util-linux | [] [] [] | 20 util-linux-ng | [] [] [] | 20 vorbis-tools | [] [] | 4 wastesedge | | 1 wdiff | [] [] | 23 wget | [] [] [] | 20 xchat | [] [] [] [] | 29 xkeyboard-config | [] [] [] | 14 xpad | [] [] [] | 15 +---------------------------------------------------+ 76 teams tg th tk tr uk ven vi wa xh zh_CN zh_HK zh_TW zu 163 domains 0 3 1 74 51 0 143 21 1 57 7 45 0 2036 Some counters in the preceding matrix are higher than the number of visible blocks let us expect. This is because a few extra PO files are used for implementing regional variants of languages, or language dialects. For a PO file in the matrix above to be effective, the package to which it applies should also have been internationalized and distributed as such by its maintainer. There might be an observable lag between the mere existence a PO file and its wide availability in a distribution. If November 2007 seems to be old, you may fetch a more recent copy of this `ABOUT-NLS' file on most GNU archive sites. The most up-to-date matrix with full percentage details can be found at `http://translationproject.org/extra/matrix.html'. 1.6 Using `gettext' in new packages =================================== If you are writing a freely available program and want to internationalize it you are welcome to use GNU `gettext' in your package. Of course you have to respect the GNU Library General Public License which covers the use of the GNU `gettext' library. This means in particular that even non-free programs can use `libintl' as a shared library, whereas only free software can use `libintl' as a static library or use modified versions of `libintl'. Once the sources are changed appropriately and the setup can handle the use of `gettext' the only thing missing are the translations. The Free Translation Project is also available for packages which are not developed inside the GNU project. Therefore the information given above applies also for every other Free Software Project. Contact `coordinator@translationproject.org' to make the `.pot' files available to the translation teams. certmonger-0.78.6/Makefile.in0000664000175000017500000007171312645513271012770 00000000000000# Makefile.in generated by automake 1.15 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2014 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = . ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/intlmacosx.m4 \ $(top_srcdir)/m4/lib-ld.m4 $(top_srcdir)/m4/lib-link.m4 \ $(top_srcdir)/m4/lib-prefix.m4 $(top_srcdir)/m4/nls.m4 \ $(top_srcdir)/m4/po.m4 $(top_srcdir)/m4/progtest.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(top_srcdir)/configure \ $(am__configure_deps) $(am__DIST_COMMON) am__CONFIG_DISTCLEAN_FILES = config.status config.cache config.log \ configure.lineno config.status.lineno mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/src/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ cscope distdir dist dist-all distcheck am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags CSCOPE = cscope DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in ABOUT-NLS README compile \ config.guess config.rpath config.sub install-sh missing DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) distdir = $(PACKAGE)-$(VERSION) top_distdir = $(distdir) am__remove_distdir = \ if test -d "$(distdir)"; then \ find "$(distdir)" -type d ! -perm -200 -exec chmod u+w {} ';' \ && rm -rf "$(distdir)" \ || { sleep 5 && rm -rf "$(distdir)"; }; \ else :; fi am__post_remove_distdir = $(am__remove_distdir) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" DIST_ARCHIVES = $(distdir).tar.gz GZIP_ENV = --best DIST_TARGETS = dist-gzip distuninstallcheck_listfiles = find . -type f -print am__distuninstallcheck_listfiles = $(distuninstallcheck_listfiles) \ | sed 's|^\./|$(prefix)/|' | grep -v '$(infodir)/dir$$' distcleancheck_listfiles = find . -type f -print ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CERTMONGER_CFLAGS = @CERTMONGER_CFLAGS@ CERTMONGER_LIBS = @CERTMONGER_LIBS@ CERTMONGER_PVT_ADDRESS_ENV = @CERTMONGER_PVT_ADDRESS_ENV@ CFLAGS = @CFLAGS@ CM_CERTMASTER_CA_NAME = @CM_CERTMASTER_CA_NAME@ CM_DBUS_NAME = @CM_DBUS_NAME@ CM_DEFAULT_CERT_LIFETIME = @CM_DEFAULT_CERT_LIFETIME@ CM_DEFAULT_IDLE_TIMEOUT = @CM_DEFAULT_IDLE_TIMEOUT@ CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ CM_DEFAULT_POPULATE_UNIQUE_ID = @CM_DEFAULT_POPULATE_UNIQUE_ID@ CM_DEFAULT_PUBKEY_SIZE = @CM_DEFAULT_PUBKEY_SIZE@ CM_DEFAULT_TTL_LIST = @CM_DEFAULT_TTL_LIST@ CM_HOMEDIR = @CM_HOMEDIR@ CM_IPA_CA_NAME = @CM_IPA_CA_NAME@ CM_LOCAL_CA_NAME = @CM_LOCAL_CA_NAME@ CM_MINIMUM_DSA_KEY_SIZE = @CM_MINIMUM_DSA_KEY_SIZE@ CM_MINIMUM_EC_KEY_SIZE = @CM_MINIMUM_EC_KEY_SIZE@ CM_MINIMUM_RSA_KEY_SIZE = @CM_MINIMUM_RSA_KEY_SIZE@ CM_NOTIFICATION_ENV = @CM_NOTIFICATION_ENV@ CM_SELF_SIGN_CA_NAME = @CM_SELF_SIGN_CA_NAME@ CM_STORE_CAS_DIRECTORY = @CM_STORE_CAS_DIRECTORY@ CM_STORE_CAS_DIRECTORY_ENV = @CM_STORE_CAS_DIRECTORY_ENV@ CM_STORE_CONFIG_DIRECTORY_ENV = @CM_STORE_CONFIG_DIRECTORY_ENV@ CM_STORE_LOCAL_CA_DIRECTORY = @CM_STORE_LOCAL_CA_DIRECTORY@ CM_STORE_LOCAL_CA_DIRECTORY_ENV = @CM_STORE_LOCAL_CA_DIRECTORY_ENV@ CM_STORE_REQUESTS_DIRECTORY = @CM_STORE_REQUESTS_DIRECTORY@ CM_STORE_REQUESTS_DIRECTORY_ENV = @CM_STORE_REQUESTS_DIRECTORY_ENV@ CM_STORE_SYSTEM_LOCK_FILE = @CM_STORE_SYSTEM_LOCK_FILE@ CM_STORE_SYSTEM_LOCK_FILE_ENV = @CM_STORE_SYSTEM_LOCK_FILE_ENV@ CM_TMPDIR = @CM_TMPDIR@ CM_TMPDIR_ENV = @CM_TMPDIR_ENV@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CURL_CFLAGS = @CURL_CFLAGS@ CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ GETCERT_CFLAGS = @GETCERT_CFLAGS@ GETCERT_LIBS = @GETCERT_LIBS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GMP_CFLAGS = @GMP_CFLAGS@ GMP_LIBS = @GMP_LIBS@ GMSGFMT = @GMSGFMT@ GMSGFMT_015 = @GMSGFMT_015@ GREP = @GREP@ IDN_CFLAGS = @IDN_CFLAGS@ IDN_LIBS = @IDN_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTLLIBS = @INTLLIBS@ INTL_MACOSX_LIBS = @INTL_MACOSX_LIBS@ KRB5_CFLAGS = @KRB5_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ KRB5_LIBS = @KRB5_LIBS@ LDAP_CFLAGS = @LDAP_CFLAGS@ LDAP_LIBS = @LDAP_LIBS@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBINTL = @LIBINTL@ LIBOBJS = @LIBOBJS@ LIBS = @LIBS@ LTLIBICONV = @LTLIBICONV@ LTLIBINTL = @LTLIBINTL@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAN_DSA = @MAN_DSA@ MAN_EC = @MAN_EC@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ NO_MAN_DSA = @NO_MAN_DSA@ NO_MAN_EC = @NO_MAN_EC@ NSS_CFLAGS = @NSS_CFLAGS@ NSS_LIBS = @NSS_LIBS@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OPENSSL_SSL_CFLAGS = @OPENSSL_SSL_CFLAGS@ OPENSSL_SSL_LIBS = @OPENSSL_SSL_LIBS@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ POPT_CFLAGS = @POPT_CFLAGS@ POPT_LIBS = @POPT_LIBS@ POSUB = @POSUB@ RANLIB = @RANLIB@ RESOLV_LIBS = @RESOLV_LIBS@ SESSIONBUSSERVICESDIR = @SESSIONBUSSERVICESDIR@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ STRIP = @STRIP@ SYSTEMBUSSERVICESDIR = @SYSTEMBUSSERVICESDIR@ SYSTEMD = @SYSTEMD@ SYSTEMDSYSTEMUNITDIR = @SYSTEMDSYSTEMUNITDIR@ SYSVINIT = @SYSVINIT@ TALLOC_CFLAGS = @TALLOC_CFLAGS@ TALLOC_LIBS = @TALLOC_LIBS@ TEVENT_CFLAGS = @TEVENT_CFLAGS@ TEVENT_LIBS = @TEVENT_LIBS@ TMPFILES = @TMPFILES@ USE_NLS = @USE_NLS@ UUID_CFLAGS = @UUID_CFLAGS@ UUID_LIBS = @UUID_LIBS@ VERSION = $(PACKAGE_VERSION) XGETTEXT = @XGETTEXT@ XGETTEXT_015 = @XGETTEXT_015@ XGETTEXT_EXTRA_OPTIONS = @XGETTEXT_EXTRA_OPTIONS@ XMLRPC_CFLAGS = @XMLRPC_CFLAGS@ XMLRPC_C_CONFIG = @XMLRPC_C_CONFIG@ XMLRPC_LIBS = @XMLRPC_LIBS@ XML_CFLAGS = @XML_CFLAGS@ XML_LIBS = @XML_LIBS@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_CC = @ac_ct_CC@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ mybindir = @mybindir@ mylibexecdir = @mylibexecdir@ mysbindir = @mysbindir@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ ACLOCAL_AMFLAGS = -I m4 EXTRA_FILES = doc/*.txt SUBDIRS = po src dbus systemd sysvinit tests EXTRA_DIST = config.rpath \ certmonger.spec LICENSE README STATUS doc src/certmonger.conf.in DISTCHECK_CONFIGURE_FLAGS = --enable-systemd --enable-sysvinit=/etc/rc.d/init.d --with-tmpdir=/var/run/certmonger RELEASE = GITTAG = certmonger-$(VERSION) ORIGIN = $(shell git config remote.origin.url 2> /dev/null || /bin/pwd) ARCHIVEOUTDIR = $(shell cd $(top_srcdir) && pwd) all: all-recursive .SUFFIXES: am--refresh: Makefile @: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ echo ' cd $(srcdir) && $(AUTOMAKE) --foreign'; \ $(am__cd) $(srcdir) && $(AUTOMAKE) --foreign \ && exit 0; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ echo ' $(SHELL) ./config.status'; \ $(SHELL) ./config.status;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) $(SHELL) ./config.status --recheck $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) $(am__cd) $(srcdir) && $(AUTOCONF) $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) $(am__cd) $(srcdir) && $(ACLOCAL) $(ACLOCAL_AMFLAGS) $(am__aclocal_m4_deps): # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscope: cscope.files test ! -s cscope.files \ || $(CSCOPE) -b -q $(AM_CSCOPEFLAGS) $(CSCOPEFLAGS) -i cscope.files $(CSCOPE_ARGS) clean-cscope: -rm -f cscope.files cscope.files: clean-cscope cscopelist cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags -rm -f cscope.out cscope.in.out cscope.po.out cscope.files distdir: $(DISTFILES) $(am__remove_distdir) test -d "$(distdir)" || mkdir "$(distdir)" @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done -test -n "$(am__skip_mode_fix)" \ || find "$(distdir)" -type d ! -perm -755 \ -exec chmod u+rwx,go+rx {} \; -o \ ! -type d ! -perm -444 -links 1 -exec chmod a+r {} \; -o \ ! -type d ! -perm -400 -exec chmod a+r {} \; -o \ ! -type d ! -perm -444 -exec $(install_sh) -c -m a+r {} {} \; \ || chmod -R a+r "$(distdir)" dist-gzip: distdir tardir=$(distdir) && $(am__tar) | GZIP=$(GZIP_ENV) gzip -c >$(distdir).tar.gz $(am__post_remove_distdir) dist-bzip2: distdir tardir=$(distdir) && $(am__tar) | BZIP2=$${BZIP2--9} bzip2 -c >$(distdir).tar.bz2 $(am__post_remove_distdir) dist-lzip: distdir tardir=$(distdir) && $(am__tar) | lzip -c $${LZIP_OPT--9} >$(distdir).tar.lz $(am__post_remove_distdir) dist-xz: distdir tardir=$(distdir) && $(am__tar) | XZ_OPT=$${XZ_OPT--e} xz -c >$(distdir).tar.xz $(am__post_remove_distdir) dist-tarZ: distdir @echo WARNING: "Support for distribution archives compressed with" \ "legacy program 'compress' is deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 tardir=$(distdir) && $(am__tar) | compress -c >$(distdir).tar.Z $(am__post_remove_distdir) dist-shar: distdir @echo WARNING: "Support for shar distribution archives is" \ "deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 shar $(distdir) | GZIP=$(GZIP_ENV) gzip -c >$(distdir).shar.gz $(am__post_remove_distdir) dist-zip: distdir -rm -f $(distdir).zip zip -rq $(distdir).zip $(distdir) $(am__post_remove_distdir) dist dist-all: $(MAKE) $(AM_MAKEFLAGS) $(DIST_TARGETS) am__post_remove_distdir='@:' $(am__post_remove_distdir) # This target untars the dist file and tries a VPATH configuration. Then # it guarantees that the distribution is self-contained by making another # tarfile. distcheck: dist case '$(DIST_ARCHIVES)' in \ *.tar.gz*) \ GZIP=$(GZIP_ENV) gzip -dc $(distdir).tar.gz | $(am__untar) ;;\ *.tar.bz2*) \ bzip2 -dc $(distdir).tar.bz2 | $(am__untar) ;;\ *.tar.lz*) \ lzip -dc $(distdir).tar.lz | $(am__untar) ;;\ *.tar.xz*) \ xz -dc $(distdir).tar.xz | $(am__untar) ;;\ *.tar.Z*) \ uncompress -c $(distdir).tar.Z | $(am__untar) ;;\ *.shar.gz*) \ GZIP=$(GZIP_ENV) gzip -dc $(distdir).shar.gz | unshar ;;\ *.zip*) \ unzip $(distdir).zip ;;\ esac chmod -R a-w $(distdir) chmod u+w $(distdir) mkdir $(distdir)/_build $(distdir)/_build/sub $(distdir)/_inst chmod a-w $(distdir) test -d $(distdir)/_build || exit 0; \ dc_install_base=`$(am__cd) $(distdir)/_inst && pwd | sed -e 's,^[^:\\/]:[\\/],/,'` \ && dc_destdir="$${TMPDIR-/tmp}/am-dc-$$$$/" \ && am__cwd=`pwd` \ && $(am__cd) $(distdir)/_build/sub \ && ../../configure \ $(AM_DISTCHECK_CONFIGURE_FLAGS) \ $(DISTCHECK_CONFIGURE_FLAGS) \ --srcdir=../.. --prefix="$$dc_install_base" \ && $(MAKE) $(AM_MAKEFLAGS) \ && $(MAKE) $(AM_MAKEFLAGS) dvi \ && $(MAKE) $(AM_MAKEFLAGS) check \ && $(MAKE) $(AM_MAKEFLAGS) install \ && $(MAKE) $(AM_MAKEFLAGS) installcheck \ && $(MAKE) $(AM_MAKEFLAGS) uninstall \ && $(MAKE) $(AM_MAKEFLAGS) distuninstallcheck_dir="$$dc_install_base" \ distuninstallcheck \ && chmod -R a-w "$$dc_install_base" \ && ({ \ (cd ../.. && umask 077 && mkdir "$$dc_destdir") \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" install \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" uninstall \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" \ distuninstallcheck_dir="$$dc_destdir" distuninstallcheck; \ } || { rm -rf "$$dc_destdir"; exit 1; }) \ && rm -rf "$$dc_destdir" \ && $(MAKE) $(AM_MAKEFLAGS) dist \ && rm -rf $(DIST_ARCHIVES) \ && $(MAKE) $(AM_MAKEFLAGS) distcleancheck \ && cd "$$am__cwd" \ || exit 1 $(am__post_remove_distdir) @(echo "$(distdir) archives ready for distribution: "; \ list='$(DIST_ARCHIVES)'; for i in $$list; do echo $$i; done) | \ sed -e 1h -e 1s/./=/g -e 1p -e 1x -e '$$p' -e '$$x' distuninstallcheck: @test -n '$(distuninstallcheck_dir)' || { \ echo 'ERROR: trying to run $@ with an empty' \ '$$(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ $(am__cd) '$(distuninstallcheck_dir)' || { \ echo 'ERROR: cannot chdir into $(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ test `$(am__distuninstallcheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left after uninstall:" ; \ if test -n "$(DESTDIR)"; then \ echo " (check DESTDIR support)"; \ fi ; \ $(distuninstallcheck_listfiles) ; \ exit 1; } >&2 distcleancheck: distclean @if test '$(srcdir)' = . ; then \ echo "ERROR: distcleancheck can only run from a VPATH build" ; \ exit 1 ; \ fi @test `$(distcleancheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left in build directory after distclean:" ; \ $(distcleancheck_listfiles) ; \ exit 1; } >&2 check-am: all-am check: check-recursive all-am: Makefile installdirs: installdirs-recursive installdirs-am: install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic mostlyclean-am distclean: distclean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -f Makefile distclean-am: clean-am distclean-generic distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -rf $(top_srcdir)/autom4te.cache -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-generic pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: .MAKE: $(am__recursive_targets) install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am \ am--refresh check check-am clean clean-cscope clean-generic \ cscope cscopelist-am ctags ctags-am dist dist-all dist-bzip2 \ dist-gzip dist-lzip dist-shar dist-tarZ dist-xz dist-zip \ distcheck distclean distclean-generic distclean-tags \ distcleancheck distdir distuninstallcheck dvi dvi-am html \ html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-man install-pdf install-pdf-am \ install-ps install-ps-am install-strip installcheck \ installcheck-am installdirs installdirs-am maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic pdf \ pdf-am ps ps-am tags tags-am uninstall uninstall-am .PRECIOUS: Makefile all-gmo: zanata-cli pull -B cd po ; for po in *.po ; do make `basename $$po .po`.gmo ; done $(MAKE) -C po update-po zanata-cli push -B tag: all-gmo git tag $(GITTAG) force-tag: all-gmo git tag -f $(GITTAG) local-archive: $(MAKE) archive ORIGIN=$(ARCHIVEOUTDIR) srpm: repo=`pwd`; \ tmpdir=`mktemp -d /tmp/make_archive_XXXXXX`; \ if test -d "$$tmpdir" ; then \ git clone $(ORIGIN) $$tmpdir/certmonger;\ cd $$tmpdir/certmonger;\ git checkout $(GITTAG);\ ./make-srpm.sh;\ cp -v $(distdir)-*.src.rpm $(ARCHIVEOUTDIR)/;\ chmod -R u+rw $$tmpdir;\ rm -fr $$tmpdir;\ fi archive: srpm repo=`pwd`; \ tmpdir=`mktemp -d /tmp/make_archive_XXXXXX`; \ if test -d "$$tmpdir" ; then \ git clone $(ORIGIN) $$tmpdir/certmonger;\ cd $$tmpdir/certmonger;\ git checkout $(GITTAG);\ ./autogen.sh --disable-systemd --disable-sysvinit ;\ make distcheck;\ mkdir -p $$tmpdir/rpm-build-top;\ rpmbuild \ --define "_topdir $$tmpdir/rpm-build-top" \ --define "_sourcedir $$tmpdir/rpm-build-top" \ --define "_specdir $$tmpdir/rpm-build-top" \ --define "_builddir $$tmpdir/rpm-build-top" \ --define "_buildrootdir $$tmpdir/rpm-build-top" \ --define "_srpmdir $$tmpdir/rpm-build-top" \ --define "_srcrpmdir $$tmpdir/rpm-build-top" \ --define "_rpmdir $$tmpdir/rpm-build-top" \ -tb $(distdir).tar.gz;\ cp -v $(distdir).tar.gz $(ARCHIVEOUTDIR)/;\ chmod -R u+rw $$tmpdir;\ rm -fr $$tmpdir;\ fi # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/aclocal.m40000664000175000017500000015441512645513270012563 00000000000000# generated automatically by aclocal 1.15 -*- Autoconf -*- # Copyright (C) 1996-2014 Free Software Foundation, Inc. # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. m4_ifndef([AC_CONFIG_MACRO_DIRS], [m4_defun([_AM_CONFIG_MACRO_DIRS], [])m4_defun([AC_CONFIG_MACRO_DIRS], [_AM_CONFIG_MACRO_DIRS($@)])]) m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl m4_if(m4_defn([AC_AUTOCONF_VERSION]), [2.69],, [m4_warning([this file was generated for autoconf 2.69. You have another version of autoconf. It may work, but is not guaranteed to. If you have problems, you may need to regenerate the build system entirely. To do so, use the procedure documented by the package, typically 'autoreconf'.])]) dnl pkg.m4 - Macros to locate and utilise pkg-config. -*- Autoconf -*- dnl serial 11 (pkg-config-0.29) dnl dnl Copyright © 2004 Scott James Remnant . dnl Copyright © 2012-2015 Dan Nicholson dnl dnl This program is free software; you can redistribute it and/or modify dnl it under the terms of the GNU General Public License as published by dnl the Free Software Foundation; either version 2 of the License, or dnl (at your option) any later version. dnl dnl This program is distributed in the hope that it will be useful, but dnl WITHOUT ANY WARRANTY; without even the implied warranty of dnl MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU dnl General Public License for more details. dnl dnl You should have received a copy of the GNU General Public License dnl along with this program; if not, write to the Free Software dnl Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA dnl 02111-1307, USA. dnl dnl As a special exception to the GNU General Public License, if you dnl distribute this file as part of a program that contains a dnl configuration script generated by Autoconf, you may include it under dnl the same distribution terms that you use for the rest of that dnl program. dnl PKG_PREREQ(MIN-VERSION) dnl ----------------------- dnl Since: 0.29 dnl dnl Verify that the version of the pkg-config macros are at least dnl MIN-VERSION. Unlike PKG_PROG_PKG_CONFIG, which checks the user's dnl installed version of pkg-config, this checks the developer's version dnl of pkg.m4 when generating configure. dnl dnl To ensure that this macro is defined, also add: dnl m4_ifndef([PKG_PREREQ], dnl [m4_fatal([must install pkg-config 0.29 or later before running autoconf/autogen])]) dnl dnl See the "Since" comment for each macro you use to see what version dnl of the macros you require. m4_defun([PKG_PREREQ], [m4_define([PKG_MACROS_VERSION], [0.29]) m4_if(m4_version_compare(PKG_MACROS_VERSION, [$1]), -1, [m4_fatal([pkg.m4 version $1 or higher is required but ]PKG_MACROS_VERSION[ found])]) ])dnl PKG_PREREQ dnl PKG_PROG_PKG_CONFIG([MIN-VERSION]) dnl ---------------------------------- dnl Since: 0.16 dnl dnl Search for the pkg-config tool and set the PKG_CONFIG variable to dnl first found in the path. Checks that the version of pkg-config found dnl is at least MIN-VERSION. If MIN-VERSION is not specified, 0.9.0 is dnl used since that's the first version where most current features of dnl pkg-config existed. AC_DEFUN([PKG_PROG_PKG_CONFIG], [m4_pattern_forbid([^_?PKG_[A-Z_]+$]) m4_pattern_allow([^PKG_CONFIG(_(PATH|LIBDIR|SYSROOT_DIR|ALLOW_SYSTEM_(CFLAGS|LIBS)))?$]) m4_pattern_allow([^PKG_CONFIG_(DISABLE_UNINSTALLED|TOP_BUILD_DIR|DEBUG_SPEW)$]) AC_ARG_VAR([PKG_CONFIG], [path to pkg-config utility]) AC_ARG_VAR([PKG_CONFIG_PATH], [directories to add to pkg-config's search path]) AC_ARG_VAR([PKG_CONFIG_LIBDIR], [path overriding pkg-config's built-in search path]) if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then AC_PATH_TOOL([PKG_CONFIG], [pkg-config]) fi if test -n "$PKG_CONFIG"; then _pkg_min_version=m4_default([$1], [0.9.0]) AC_MSG_CHECKING([pkg-config is at least version $_pkg_min_version]) if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) PKG_CONFIG="" fi fi[]dnl ])dnl PKG_PROG_PKG_CONFIG dnl PKG_CHECK_EXISTS(MODULES, [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ------------------------------------------------------------------- dnl Since: 0.18 dnl dnl Check to see whether a particular set of modules exists. Similar to dnl PKG_CHECK_MODULES(), but does not set variables or print errors. dnl dnl Please remember that m4 expands AC_REQUIRE([PKG_PROG_PKG_CONFIG]) dnl only at the first occurence in configure.ac, so if the first place dnl it's called might be skipped (such as if it is within an "if", you dnl have to call PKG_CHECK_EXISTS manually AC_DEFUN([PKG_CHECK_EXISTS], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl if test -n "$PKG_CONFIG" && \ AC_RUN_LOG([$PKG_CONFIG --exists --print-errors "$1"]); then m4_default([$2], [:]) m4_ifvaln([$3], [else $3])dnl fi]) dnl _PKG_CONFIG([VARIABLE], [COMMAND], [MODULES]) dnl --------------------------------------------- dnl Internal wrapper calling pkg-config via PKG_CONFIG and setting dnl pkg_failed based on the result. m4_define([_PKG_CONFIG], [if test -n "$$1"; then pkg_cv_[]$1="$$1" elif test -n "$PKG_CONFIG"; then PKG_CHECK_EXISTS([$3], [pkg_cv_[]$1=`$PKG_CONFIG --[]$2 "$3" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes ], [pkg_failed=yes]) else pkg_failed=untried fi[]dnl ])dnl _PKG_CONFIG dnl _PKG_SHORT_ERRORS_SUPPORTED dnl --------------------------- dnl Internal check to see if pkg-config supports short errors. AC_DEFUN([_PKG_SHORT_ERRORS_SUPPORTED], [AC_REQUIRE([PKG_PROG_PKG_CONFIG]) if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi[]dnl ])dnl _PKG_SHORT_ERRORS_SUPPORTED dnl PKG_CHECK_MODULES(VARIABLE-PREFIX, MODULES, [ACTION-IF-FOUND], dnl [ACTION-IF-NOT-FOUND]) dnl -------------------------------------------------------------- dnl Since: 0.4.0 dnl dnl Note that if there is a possibility the first call to dnl PKG_CHECK_MODULES might not happen, you should be sure to include an dnl explicit call to PKG_PROG_PKG_CONFIG in your configure.ac AC_DEFUN([PKG_CHECK_MODULES], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1][_CFLAGS], [C compiler flags for $1, overriding pkg-config])dnl AC_ARG_VAR([$1][_LIBS], [linker flags for $1, overriding pkg-config])dnl pkg_failed=no AC_MSG_CHECKING([for $1]) _PKG_CONFIG([$1][_CFLAGS], [cflags], [$2]) _PKG_CONFIG([$1][_LIBS], [libs], [$2]) m4_define([_PKG_TEXT], [Alternatively, you may set the environment variables $1[]_CFLAGS and $1[]_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details.]) if test $pkg_failed = yes; then AC_MSG_RESULT([no]) _PKG_SHORT_ERRORS_SUPPORTED if test $_pkg_short_errors_supported = yes; then $1[]_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "$2" 2>&1` else $1[]_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "$2" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$$1[]_PKG_ERRORS" >&AS_MESSAGE_LOG_FD m4_default([$4], [AC_MSG_ERROR( [Package requirements ($2) were not met: $$1_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. _PKG_TEXT])[]dnl ]) elif test $pkg_failed = untried; then AC_MSG_RESULT([no]) m4_default([$4], [AC_MSG_FAILURE( [The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. _PKG_TEXT To get pkg-config, see .])[]dnl ]) else $1[]_CFLAGS=$pkg_cv_[]$1[]_CFLAGS $1[]_LIBS=$pkg_cv_[]$1[]_LIBS AC_MSG_RESULT([yes]) $3 fi[]dnl ])dnl PKG_CHECK_MODULES dnl PKG_CHECK_MODULES_STATIC(VARIABLE-PREFIX, MODULES, [ACTION-IF-FOUND], dnl [ACTION-IF-NOT-FOUND]) dnl --------------------------------------------------------------------- dnl Since: 0.29 dnl dnl Checks for existence of MODULES and gathers its build flags with dnl static libraries enabled. Sets VARIABLE-PREFIX_CFLAGS from --cflags dnl and VARIABLE-PREFIX_LIBS from --libs. dnl dnl Note that if there is a possibility the first call to dnl PKG_CHECK_MODULES_STATIC might not happen, you should be sure to dnl include an explicit call to PKG_PROG_PKG_CONFIG in your dnl configure.ac. AC_DEFUN([PKG_CHECK_MODULES_STATIC], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl _save_PKG_CONFIG=$PKG_CONFIG PKG_CONFIG="$PKG_CONFIG --static" PKG_CHECK_MODULES($@) PKG_CONFIG=$_save_PKG_CONFIG[]dnl ])dnl PKG_CHECK_MODULES_STATIC dnl PKG_INSTALLDIR([DIRECTORY]) dnl ------------------------- dnl Since: 0.27 dnl dnl Substitutes the variable pkgconfigdir as the location where a module dnl should install pkg-config .pc files. By default the directory is dnl $libdir/pkgconfig, but the default can be changed by passing dnl DIRECTORY. The user can override through the --with-pkgconfigdir dnl parameter. AC_DEFUN([PKG_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${libdir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([pkgconfigdir], [AS_HELP_STRING([--with-pkgconfigdir], pkg_description)],, [with_pkgconfigdir=]pkg_default) AC_SUBST([pkgconfigdir], [$with_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ])dnl PKG_INSTALLDIR dnl PKG_NOARCH_INSTALLDIR([DIRECTORY]) dnl -------------------------------- dnl Since: 0.27 dnl dnl Substitutes the variable noarch_pkgconfigdir as the location where a dnl module should install arch-independent pkg-config .pc files. By dnl default the directory is $datadir/pkgconfig, but the default can be dnl changed by passing DIRECTORY. The user can override through the dnl --with-noarch-pkgconfigdir parameter. AC_DEFUN([PKG_NOARCH_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${datadir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config arch-independent installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([noarch-pkgconfigdir], [AS_HELP_STRING([--with-noarch-pkgconfigdir], pkg_description)],, [with_noarch_pkgconfigdir=]pkg_default) AC_SUBST([noarch_pkgconfigdir], [$with_noarch_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ])dnl PKG_NOARCH_INSTALLDIR dnl PKG_CHECK_VAR(VARIABLE, MODULE, CONFIG-VARIABLE, dnl [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ------------------------------------------- dnl Since: 0.28 dnl dnl Retrieves the value of the pkg-config variable for the given module. AC_DEFUN([PKG_CHECK_VAR], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1], [value of $3 for $2, overriding pkg-config])dnl _PKG_CONFIG([$1], [variable="][$3]["], [$2]) AS_VAR_COPY([$1], [pkg_cv_][$1]) AS_VAR_IF([$1], [""], [$5], [$4])dnl ])dnl PKG_CHECK_VAR # Copyright (C) 2002-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_AUTOMAKE_VERSION(VERSION) # ---------------------------- # Automake X.Y traces this macro to ensure aclocal.m4 has been # generated from the m4 files accompanying Automake X.Y. # (This private macro should not be called outside this file.) AC_DEFUN([AM_AUTOMAKE_VERSION], [am__api_version='1.15' dnl Some users find AM_AUTOMAKE_VERSION and mistake it for a way to dnl require some minimum version. Point them to the right macro. m4_if([$1], [1.15], [], [AC_FATAL([Do not call $0, use AM_INIT_AUTOMAKE([$1]).])])dnl ]) # _AM_AUTOCONF_VERSION(VERSION) # ----------------------------- # aclocal traces this macro to find the Autoconf version. # This is a private macro too. Using m4_define simplifies # the logic in aclocal, which can simply ignore this definition. m4_define([_AM_AUTOCONF_VERSION], []) # AM_SET_CURRENT_AUTOMAKE_VERSION # ------------------------------- # Call AM_AUTOMAKE_VERSION and AM_AUTOMAKE_VERSION so they can be traced. # This function is AC_REQUIREd by AM_INIT_AUTOMAKE. AC_DEFUN([AM_SET_CURRENT_AUTOMAKE_VERSION], [AM_AUTOMAKE_VERSION([1.15])dnl m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl _AM_AUTOCONF_VERSION(m4_defn([AC_AUTOCONF_VERSION]))]) # AM_AUX_DIR_EXPAND -*- Autoconf -*- # Copyright (C) 2001-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # For projects using AC_CONFIG_AUX_DIR([foo]), Autoconf sets # $ac_aux_dir to '$srcdir/foo'. In other projects, it is set to # '$srcdir', '$srcdir/..', or '$srcdir/../..'. # # Of course, Automake must honor this variable whenever it calls a # tool from the auxiliary directory. The problem is that $srcdir (and # therefore $ac_aux_dir as well) can be either absolute or relative, # depending on how configure is run. This is pretty annoying, since # it makes $ac_aux_dir quite unusable in subdirectories: in the top # source directory, any form will work fine, but in subdirectories a # relative path needs to be adjusted first. # # $ac_aux_dir/missing # fails when called from a subdirectory if $ac_aux_dir is relative # $top_srcdir/$ac_aux_dir/missing # fails if $ac_aux_dir is absolute, # fails when called from a subdirectory in a VPATH build with # a relative $ac_aux_dir # # The reason of the latter failure is that $top_srcdir and $ac_aux_dir # are both prefixed by $srcdir. In an in-source build this is usually # harmless because $srcdir is '.', but things will broke when you # start a VPATH build or use an absolute $srcdir. # # So we could use something similar to $top_srcdir/$ac_aux_dir/missing, # iff we strip the leading $srcdir from $ac_aux_dir. That would be: # am_aux_dir='\$(top_srcdir)/'`expr "$ac_aux_dir" : "$srcdir//*\(.*\)"` # and then we would define $MISSING as # MISSING="\${SHELL} $am_aux_dir/missing" # This will work as long as MISSING is not called from configure, because # unfortunately $(top_srcdir) has no meaning in configure. # However there are other variables, like CC, which are often used in # configure, and could therefore not use this "fixed" $ac_aux_dir. # # Another solution, used here, is to always expand $ac_aux_dir to an # absolute PATH. The drawback is that using absolute paths prevent a # configured tree to be moved without reconfiguration. AC_DEFUN([AM_AUX_DIR_EXPAND], [AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT])dnl # Expand $ac_aux_dir to an absolute path. am_aux_dir=`cd "$ac_aux_dir" && pwd` ]) # AM_CONDITIONAL -*- Autoconf -*- # Copyright (C) 1997-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_CONDITIONAL(NAME, SHELL-CONDITION) # ------------------------------------- # Define a conditional. AC_DEFUN([AM_CONDITIONAL], [AC_PREREQ([2.52])dnl m4_if([$1], [TRUE], [AC_FATAL([$0: invalid condition: $1])], [$1], [FALSE], [AC_FATAL([$0: invalid condition: $1])])dnl AC_SUBST([$1_TRUE])dnl AC_SUBST([$1_FALSE])dnl _AM_SUBST_NOTMAKE([$1_TRUE])dnl _AM_SUBST_NOTMAKE([$1_FALSE])dnl m4_define([_AM_COND_VALUE_$1], [$2])dnl if $2; then $1_TRUE= $1_FALSE='#' else $1_TRUE='#' $1_FALSE= fi AC_CONFIG_COMMANDS_PRE( [if test -z "${$1_TRUE}" && test -z "${$1_FALSE}"; then AC_MSG_ERROR([[conditional "$1" was never defined. Usually this means the macro was only invoked conditionally.]]) fi])]) # Copyright (C) 1999-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # There are a few dirty hacks below to avoid letting 'AC_PROG_CC' be # written in clear, in which case automake, when reading aclocal.m4, # will think it sees a *use*, and therefore will trigger all it's # C support machinery. Also note that it means that autoscan, seeing # CC etc. in the Makefile, will ask for an AC_PROG_CC use... # _AM_DEPENDENCIES(NAME) # ---------------------- # See how the compiler implements dependency checking. # NAME is "CC", "CXX", "OBJC", "OBJCXX", "UPC", or "GJC". # We try a few techniques and use that to set a single cache variable. # # We don't AC_REQUIRE the corresponding AC_PROG_CC since the latter was # modified to invoke _AM_DEPENDENCIES(CC); we would have a circular # dependency, and given that the user is not expected to run this macro, # just rely on AC_PROG_CC. AC_DEFUN([_AM_DEPENDENCIES], [AC_REQUIRE([AM_SET_DEPDIR])dnl AC_REQUIRE([AM_OUTPUT_DEPENDENCY_COMMANDS])dnl AC_REQUIRE([AM_MAKE_INCLUDE])dnl AC_REQUIRE([AM_DEP_TRACK])dnl m4_if([$1], [CC], [depcc="$CC" am_compiler_list=], [$1], [CXX], [depcc="$CXX" am_compiler_list=], [$1], [OBJC], [depcc="$OBJC" am_compiler_list='gcc3 gcc'], [$1], [OBJCXX], [depcc="$OBJCXX" am_compiler_list='gcc3 gcc'], [$1], [UPC], [depcc="$UPC" am_compiler_list=], [$1], [GCJ], [depcc="$GCJ" am_compiler_list='gcc3 gcc'], [depcc="$$1" am_compiler_list=]) AC_CACHE_CHECK([dependency style of $depcc], [am_cv_$1_dependencies_compiler_type], [if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_$1_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n ['s/^#*\([a-zA-Z0-9]*\))$/\1/p'] < ./depcomp` fi am__universal=false m4_case([$1], [CC], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac], [CXX], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac]) for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_$1_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_$1_dependencies_compiler_type=none fi ]) AC_SUBST([$1DEPMODE], [depmode=$am_cv_$1_dependencies_compiler_type]) AM_CONDITIONAL([am__fastdep$1], [ test "x$enable_dependency_tracking" != xno \ && test "$am_cv_$1_dependencies_compiler_type" = gcc3]) ]) # AM_SET_DEPDIR # ------------- # Choose a directory name for dependency files. # This macro is AC_REQUIREd in _AM_DEPENDENCIES. AC_DEFUN([AM_SET_DEPDIR], [AC_REQUIRE([AM_SET_LEADING_DOT])dnl AC_SUBST([DEPDIR], ["${am__leading_dot}deps"])dnl ]) # AM_DEP_TRACK # ------------ AC_DEFUN([AM_DEP_TRACK], [AC_ARG_ENABLE([dependency-tracking], [dnl AS_HELP_STRING( [--enable-dependency-tracking], [do not reject slow dependency extractors]) AS_HELP_STRING( [--disable-dependency-tracking], [speeds up one-time build])]) if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi AM_CONDITIONAL([AMDEP], [test "x$enable_dependency_tracking" != xno]) AC_SUBST([AMDEPBACKSLASH])dnl _AM_SUBST_NOTMAKE([AMDEPBACKSLASH])dnl AC_SUBST([am__nodep])dnl _AM_SUBST_NOTMAKE([am__nodep])dnl ]) # Generate code to set up dependency tracking. -*- Autoconf -*- # Copyright (C) 1999-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_OUTPUT_DEPENDENCY_COMMANDS # ------------------------------ AC_DEFUN([_AM_OUTPUT_DEPENDENCY_COMMANDS], [{ # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. case $CONFIG_FILES in *\'*) eval set x "$CONFIG_FILES" ;; *) set x $CONFIG_FILES ;; esac shift for mf do # Strip MF so we end up with the name of the file. mf=`echo "$mf" | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile or not. # We used to match only the files named 'Makefile.in', but # some people rename them; so instead we look at the file content. # Grep'ing the first line is not enough: some people post-process # each Makefile.in and add a new line on top of each file to say so. # Grep'ing the whole file is not good either: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. if sed -n 's,^#.*generated by automake.*,X,p' "$mf" | grep X >/dev/null 2>&1; then dirpart=`AS_DIRNAME("$mf")` else continue fi # Extract the definition of DEPDIR, am__include, and am__quote # from the Makefile without running 'make'. DEPDIR=`sed -n 's/^DEPDIR = //p' < "$mf"` test -z "$DEPDIR" && continue am__include=`sed -n 's/^am__include = //p' < "$mf"` test -z "$am__include" && continue am__quote=`sed -n 's/^am__quote = //p' < "$mf"` # Find all dependency output files, they are included files with # $(DEPDIR) in their names. We invoke sed twice because it is the # simplest approach to changing $(DEPDIR) to its actual value in the # expansion. for file in `sed -n " s/^$am__include $am__quote\(.*(DEPDIR).*\)$am__quote"'$/\1/p' <"$mf" | \ sed -e 's/\$(DEPDIR)/'"$DEPDIR"'/g'`; do # Make sure the directory exists. test -f "$dirpart/$file" && continue fdir=`AS_DIRNAME(["$file"])` AS_MKDIR_P([$dirpart/$fdir]) # echo "creating $dirpart/$file" echo '# dummy' > "$dirpart/$file" done done } ])# _AM_OUTPUT_DEPENDENCY_COMMANDS # AM_OUTPUT_DEPENDENCY_COMMANDS # ----------------------------- # This macro should only be invoked once -- use via AC_REQUIRE. # # This code is only required when automatic dependency tracking # is enabled. FIXME. This creates each '.P' file that we will # need in order to bootstrap the dependency handling code. AC_DEFUN([AM_OUTPUT_DEPENDENCY_COMMANDS], [AC_CONFIG_COMMANDS([depfiles], [test x"$AMDEP_TRUE" != x"" || _AM_OUTPUT_DEPENDENCY_COMMANDS], [AMDEP_TRUE="$AMDEP_TRUE" ac_aux_dir="$ac_aux_dir"]) ]) # Do all the work for Automake. -*- Autoconf -*- # Copyright (C) 1996-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This macro actually does too much. Some checks are only needed if # your package does certain things. But this isn't really a big deal. dnl Redefine AC_PROG_CC to automatically invoke _AM_PROG_CC_C_O. m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC]) [_AM_PROG_CC_C_O ]) # AM_INIT_AUTOMAKE(PACKAGE, VERSION, [NO-DEFINE]) # AM_INIT_AUTOMAKE([OPTIONS]) # ----------------------------------------------- # The call with PACKAGE and VERSION arguments is the old style # call (pre autoconf-2.50), which is being phased out. PACKAGE # and VERSION should now be passed to AC_INIT and removed from # the call to AM_INIT_AUTOMAKE. # We support both call styles for the transition. After # the next Automake release, Autoconf can make the AC_INIT # arguments mandatory, and then we can depend on a new Autoconf # release and drop the old call support. AC_DEFUN([AM_INIT_AUTOMAKE], [AC_PREREQ([2.65])dnl dnl Autoconf wants to disallow AM_ names. We explicitly allow dnl the ones we care about. m4_pattern_allow([^AM_[A-Z]+FLAGS$])dnl AC_REQUIRE([AM_SET_CURRENT_AUTOMAKE_VERSION])dnl AC_REQUIRE([AC_PROG_INSTALL])dnl if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." AC_SUBST([am__isrc], [' -I$(srcdir)'])_AM_SUBST_NOTMAKE([am__isrc])dnl # test to see if srcdir already configured if test -f $srcdir/config.status; then AC_MSG_ERROR([source directory already configured; run "make distclean" there first]) fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi AC_SUBST([CYGPATH_W]) # Define the identity of the package. dnl Distinguish between old-style and new-style calls. m4_ifval([$2], [AC_DIAGNOSE([obsolete], [$0: two- and three-arguments forms are deprecated.]) m4_ifval([$3], [_AM_SET_OPTION([no-define])])dnl AC_SUBST([PACKAGE], [$1])dnl AC_SUBST([VERSION], [$2])], [_AM_SET_OPTIONS([$1])dnl dnl Diagnose old-style AC_INIT with new-style AM_AUTOMAKE_INIT. m4_if( m4_ifdef([AC_PACKAGE_NAME], [ok]):m4_ifdef([AC_PACKAGE_VERSION], [ok]), [ok:ok],, [m4_fatal([AC_INIT should be called with package and version arguments])])dnl AC_SUBST([PACKAGE], ['AC_PACKAGE_TARNAME'])dnl AC_SUBST([VERSION], ['AC_PACKAGE_VERSION'])])dnl _AM_IF_OPTION([no-define],, [AC_DEFINE_UNQUOTED([PACKAGE], ["$PACKAGE"], [Name of package]) AC_DEFINE_UNQUOTED([VERSION], ["$VERSION"], [Version number of package])])dnl # Some tools Automake needs. AC_REQUIRE([AM_SANITY_CHECK])dnl AC_REQUIRE([AC_ARG_PROGRAM])dnl AM_MISSING_PROG([ACLOCAL], [aclocal-${am__api_version}]) AM_MISSING_PROG([AUTOCONF], [autoconf]) AM_MISSING_PROG([AUTOMAKE], [automake-${am__api_version}]) AM_MISSING_PROG([AUTOHEADER], [autoheader]) AM_MISSING_PROG([MAKEINFO], [makeinfo]) AC_REQUIRE([AM_PROG_INSTALL_SH])dnl AC_REQUIRE([AM_PROG_INSTALL_STRIP])dnl AC_REQUIRE([AC_PROG_MKDIR_P])dnl # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # AC_SUBST([mkdir_p], ['$(MKDIR_P)']) # We need awk for the "check" target (and possibly the TAP driver). The # system "awk" is bad on some platforms. AC_REQUIRE([AC_PROG_AWK])dnl AC_REQUIRE([AC_PROG_MAKE_SET])dnl AC_REQUIRE([AM_SET_LEADING_DOT])dnl _AM_IF_OPTION([tar-ustar], [_AM_PROG_TAR([ustar])], [_AM_IF_OPTION([tar-pax], [_AM_PROG_TAR([pax])], [_AM_PROG_TAR([v7])])]) _AM_IF_OPTION([no-dependencies],, [AC_PROVIDE_IFELSE([AC_PROG_CC], [_AM_DEPENDENCIES([CC])], [m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC])[_AM_DEPENDENCIES([CC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_CXX], [_AM_DEPENDENCIES([CXX])], [m4_define([AC_PROG_CXX], m4_defn([AC_PROG_CXX])[_AM_DEPENDENCIES([CXX])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJC], [_AM_DEPENDENCIES([OBJC])], [m4_define([AC_PROG_OBJC], m4_defn([AC_PROG_OBJC])[_AM_DEPENDENCIES([OBJC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJCXX], [_AM_DEPENDENCIES([OBJCXX])], [m4_define([AC_PROG_OBJCXX], m4_defn([AC_PROG_OBJCXX])[_AM_DEPENDENCIES([OBJCXX])])])dnl ]) AC_REQUIRE([AM_SILENT_RULES])dnl dnl The testsuite driver may need to know about EXEEXT, so add the dnl 'am__EXEEXT' conditional if _AM_COMPILER_EXEEXT was seen. This dnl macro is hooked onto _AC_COMPILER_EXEEXT early, see below. AC_CONFIG_COMMANDS_PRE(dnl [m4_provide_if([_AM_COMPILER_EXEEXT], [AM_CONDITIONAL([am__EXEEXT], [test -n "$EXEEXT"])])])dnl # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END AC_MSG_ERROR([Your 'rm' program is bad, sorry.]) fi fi dnl The trailing newline in this macro's definition is deliberate, for dnl backward compatibility and to allow trailing 'dnl'-style comments dnl after the AM_INIT_AUTOMAKE invocation. See automake bug#16841. ]) dnl Hook into '_AC_COMPILER_EXEEXT' early to learn its expansion. Do not dnl add the conditional right here, as _AC_COMPILER_EXEEXT may be further dnl mangled by Autoconf and run in a shell conditional statement. m4_define([_AC_COMPILER_EXEEXT], m4_defn([_AC_COMPILER_EXEEXT])[m4_provide([_AM_COMPILER_EXEEXT])]) # When config.status generates a header, we must update the stamp-h file. # This file resides in the same directory as the config header # that is generated. The stamp files are numbered to have different names. # Autoconf calls _AC_AM_CONFIG_HEADER_HOOK (when defined) in the # loop where config.status creates the headers, so we can generate # our stamp files there. AC_DEFUN([_AC_AM_CONFIG_HEADER_HOOK], [# Compute $1's index in $config_headers. _am_arg=$1 _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`AS_DIRNAME(["$_am_arg"])`/stamp-h[]$_am_stamp_count]) # Copyright (C) 2001-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_SH # ------------------ # Define $install_sh. AC_DEFUN([AM_PROG_INSTALL_SH], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl if test x"${install_sh+set}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi AC_SUBST([install_sh])]) # Copyright (C) 2003-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # Check whether the underlying file-system supports filenames # with a leading dot. For instance MS-DOS doesn't. AC_DEFUN([AM_SET_LEADING_DOT], [rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null AC_SUBST([am__leading_dot])]) # Add --enable-maintainer-mode option to configure. -*- Autoconf -*- # From Jim Meyering # Copyright (C) 1996-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAINTAINER_MODE([DEFAULT-MODE]) # ---------------------------------- # Control maintainer-specific portions of Makefiles. # Default is to disable them, unless 'enable' is passed literally. # For symmetry, 'disable' may be passed as well. Anyway, the user # can override the default with the --enable/--disable switch. AC_DEFUN([AM_MAINTAINER_MODE], [m4_case(m4_default([$1], [disable]), [enable], [m4_define([am_maintainer_other], [disable])], [disable], [m4_define([am_maintainer_other], [enable])], [m4_define([am_maintainer_other], [enable]) m4_warn([syntax], [unexpected argument to AM@&t@_MAINTAINER_MODE: $1])]) AC_MSG_CHECKING([whether to enable maintainer-specific portions of Makefiles]) dnl maintainer-mode's default is 'disable' unless 'enable' is passed AC_ARG_ENABLE([maintainer-mode], [AS_HELP_STRING([--]am_maintainer_other[-maintainer-mode], am_maintainer_other[ make rules and dependencies not useful (and sometimes confusing) to the casual installer])], [USE_MAINTAINER_MODE=$enableval], [USE_MAINTAINER_MODE=]m4_if(am_maintainer_other, [enable], [no], [yes])) AC_MSG_RESULT([$USE_MAINTAINER_MODE]) AM_CONDITIONAL([MAINTAINER_MODE], [test $USE_MAINTAINER_MODE = yes]) MAINT=$MAINTAINER_MODE_TRUE AC_SUBST([MAINT])dnl ] ) # Check to see how 'make' treats includes. -*- Autoconf -*- # Copyright (C) 2001-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAKE_INCLUDE() # ----------------- # Check to see how make treats includes. AC_DEFUN([AM_MAKE_INCLUDE], [am_make=${MAKE-make} cat > confinc << 'END' am__doit: @echo this is the am__doit target .PHONY: am__doit END # If we don't find an include directive, just comment out the code. AC_MSG_CHECKING([for style of include used by $am_make]) am__include="#" am__quote= _am_result=none # First try GNU make style include. echo "include confinc" > confmf # Ignore all kinds of additional output from 'make'. case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=include am__quote= _am_result=GNU ;; esac # Now try BSD make style include. if test "$am__include" = "#"; then echo '.include "confinc"' > confmf case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=.include am__quote="\"" _am_result=BSD ;; esac fi AC_SUBST([am__include]) AC_SUBST([am__quote]) AC_MSG_RESULT([$_am_result]) rm -f confinc confmf ]) # Fake the existence of programs that GNU maintainers use. -*- Autoconf -*- # Copyright (C) 1997-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MISSING_PROG(NAME, PROGRAM) # ------------------------------ AC_DEFUN([AM_MISSING_PROG], [AC_REQUIRE([AM_MISSING_HAS_RUN]) $1=${$1-"${am_missing_run}$2"} AC_SUBST($1)]) # AM_MISSING_HAS_RUN # ------------------ # Define MISSING if not defined so far and test if it is modern enough. # If it is, set am_missing_run to use it, otherwise, to nothing. AC_DEFUN([AM_MISSING_HAS_RUN], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([missing])dnl if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= AC_MSG_WARN(['missing' script is too old or missing]) fi ]) # Copyright (C) 2003-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_MKDIR_P # --------------- # Check for 'mkdir -p'. AC_DEFUN([AM_PROG_MKDIR_P], [AC_PREREQ([2.60])dnl AC_REQUIRE([AC_PROG_MKDIR_P])dnl dnl FIXME we are no longer going to remove this! adjust warning dnl FIXME message accordingly. AC_DIAGNOSE([obsolete], [$0: this macro is deprecated, and will soon be removed. You should use the Autoconf-provided 'AC][_PROG_MKDIR_P' macro instead, and use '$(MKDIR_P)' instead of '$(mkdir_p)'in your Makefile.am files.]) dnl Automake 1.8 to 1.9.6 used to define mkdir_p. We now use MKDIR_P, dnl while keeping a definition of mkdir_p for backward compatibility. dnl @MKDIR_P@ is magic: AC_OUTPUT adjusts its value for each Makefile. dnl However we cannot define mkdir_p as $(MKDIR_P) for the sake of dnl Makefile.ins that do not define MKDIR_P, so we do our own dnl adjustment using top_builddir (which is defined more often than dnl MKDIR_P). AC_SUBST([mkdir_p], ["$MKDIR_P"])dnl case $mkdir_p in [[\\/$]]* | ?:[[\\/]]*) ;; */*) mkdir_p="\$(top_builddir)/$mkdir_p" ;; esac ]) # Helper functions for option handling. -*- Autoconf -*- # Copyright (C) 2001-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_MANGLE_OPTION(NAME) # ----------------------- AC_DEFUN([_AM_MANGLE_OPTION], [[_AM_OPTION_]m4_bpatsubst($1, [[^a-zA-Z0-9_]], [_])]) # _AM_SET_OPTION(NAME) # -------------------- # Set option NAME. Presently that only means defining a flag for this option. AC_DEFUN([_AM_SET_OPTION], [m4_define(_AM_MANGLE_OPTION([$1]), [1])]) # _AM_SET_OPTIONS(OPTIONS) # ------------------------ # OPTIONS is a space-separated list of Automake options. AC_DEFUN([_AM_SET_OPTIONS], [m4_foreach_w([_AM_Option], [$1], [_AM_SET_OPTION(_AM_Option)])]) # _AM_IF_OPTION(OPTION, IF-SET, [IF-NOT-SET]) # ------------------------------------------- # Execute IF-SET if OPTION is set, IF-NOT-SET otherwise. AC_DEFUN([_AM_IF_OPTION], [m4_ifset(_AM_MANGLE_OPTION([$1]), [$2], [$3])]) # Copyright (C) 1999-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_CC_C_O # --------------- # Like AC_PROG_CC_C_O, but changed for automake. We rewrite AC_PROG_CC # to automatically call this. AC_DEFUN([_AM_PROG_CC_C_O], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([compile])dnl AC_LANG_PUSH([C])dnl AC_CACHE_CHECK( [whether $CC understands -c and -o together], [am_cv_prog_cc_c_o], [AC_LANG_CONFTEST([AC_LANG_PROGRAM([])]) # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if AM_RUN_LOG([$CC -c conftest.$ac_ext -o conftest2.$ac_objext]) \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i]) if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi AC_LANG_POP([C])]) # For backward compatibility. AC_DEFUN_ONCE([AM_PROG_CC_C_O], [AC_REQUIRE([AC_PROG_CC])]) # Copyright (C) 2001-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_RUN_LOG(COMMAND) # ------------------- # Run COMMAND, save the exit status in ac_status, and log it. # (This has been adapted from Autoconf's _AC_RUN_LOG macro.) AC_DEFUN([AM_RUN_LOG], [{ echo "$as_me:$LINENO: $1" >&AS_MESSAGE_LOG_FD ($1) >&AS_MESSAGE_LOG_FD 2>&AS_MESSAGE_LOG_FD ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD (exit $ac_status); }]) # Check to make sure that the build environment is sane. -*- Autoconf -*- # Copyright (C) 1996-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SANITY_CHECK # --------------- AC_DEFUN([AM_SANITY_CHECK], [AC_MSG_CHECKING([whether build environment is sane]) # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[[\\\"\#\$\&\'\`$am_lf]]*) AC_MSG_ERROR([unsafe absolute working directory name]);; esac case $srcdir in *[[\\\"\#\$\&\'\`$am_lf\ \ ]]*) AC_MSG_ERROR([unsafe srcdir value: '$srcdir']);; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$[*]" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$[*]" != "X $srcdir/configure conftest.file" \ && test "$[*]" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". AC_MSG_ERROR([ls -t appears to fail. Make sure there is not a broken alias in your environment]) fi if test "$[2]" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$[2]" = conftest.file ) then # Ok. : else AC_MSG_ERROR([newly created file is older than distributed files! Check your system clock]) fi AC_MSG_RESULT([yes]) # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi AC_CONFIG_COMMANDS_PRE( [AC_MSG_CHECKING([that generated files are newer than configure]) if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi AC_MSG_RESULT([done])]) rm -f conftest.file ]) # Copyright (C) 2009-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SILENT_RULES([DEFAULT]) # -------------------------- # Enable less verbose build rules; with the default set to DEFAULT # ("yes" being less verbose, "no" or empty being verbose). AC_DEFUN([AM_SILENT_RULES], [AC_ARG_ENABLE([silent-rules], [dnl AS_HELP_STRING( [--enable-silent-rules], [less verbose build output (undo: "make V=1")]) AS_HELP_STRING( [--disable-silent-rules], [verbose build output (undo: "make V=0")])dnl ]) case $enable_silent_rules in @%:@ ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=m4_if([$1], [yes], [0], [1]);; esac dnl dnl A few 'make' implementations (e.g., NonStop OS and NextStep) dnl do not support nested variable expansions. dnl See automake bug#9928 and bug#10237. am_make=${MAKE-make} AC_CACHE_CHECK([whether $am_make supports nested variables], [am_cv_make_support_nested_variables], [if AS_ECHO([['TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit']]) | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi]) if test $am_cv_make_support_nested_variables = yes; then dnl Using '$V' instead of '$(V)' breaks IRIX make. AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AC_SUBST([AM_V])dnl AM_SUBST_NOTMAKE([AM_V])dnl AC_SUBST([AM_DEFAULT_V])dnl AM_SUBST_NOTMAKE([AM_DEFAULT_V])dnl AC_SUBST([AM_DEFAULT_VERBOSITY])dnl AM_BACKSLASH='\' AC_SUBST([AM_BACKSLASH])dnl _AM_SUBST_NOTMAKE([AM_BACKSLASH])dnl ]) # Copyright (C) 2001-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_STRIP # --------------------- # One issue with vendor 'install' (even GNU) is that you can't # specify the program used to strip binaries. This is especially # annoying in cross-compiling environments, where the build's strip # is unlikely to handle the host's binaries. # Fortunately install-sh will honor a STRIPPROG variable, so we # always use install-sh in "make install-strip", and initialize # STRIPPROG with the value of the STRIP variable (set by the user). AC_DEFUN([AM_PROG_INSTALL_STRIP], [AC_REQUIRE([AM_PROG_INSTALL_SH])dnl # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. dnl Don't test for $cross_compiling = yes, because it might be 'maybe'. if test "$cross_compiling" != no; then AC_CHECK_TOOL([STRIP], [strip], :) fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" AC_SUBST([INSTALL_STRIP_PROGRAM])]) # Copyright (C) 2006-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_SUBST_NOTMAKE(VARIABLE) # --------------------------- # Prevent Automake from outputting VARIABLE = @VARIABLE@ in Makefile.in. # This macro is traced by Automake. AC_DEFUN([_AM_SUBST_NOTMAKE]) # AM_SUBST_NOTMAKE(VARIABLE) # -------------------------- # Public sister of _AM_SUBST_NOTMAKE. AC_DEFUN([AM_SUBST_NOTMAKE], [_AM_SUBST_NOTMAKE($@)]) # Check how to create a tarball. -*- Autoconf -*- # Copyright (C) 2004-2014 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_TAR(FORMAT) # -------------------- # Check how to create a tarball in format FORMAT. # FORMAT should be one of 'v7', 'ustar', or 'pax'. # # Substitute a variable $(am__tar) that is a command # writing to stdout a FORMAT-tarball containing the directory # $tardir. # tardir=directory && $(am__tar) > result.tar # # Substitute a variable $(am__untar) that extract such # a tarball read from stdin. # $(am__untar) < result.tar # AC_DEFUN([_AM_PROG_TAR], [# Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AC_SUBST([AMTAR], ['$${TAR-tar}']) # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar m4_if([$1], [ustar], [plaintar]) pax cpio none' m4_if([$1], [v7], [am__tar='$${TAR-tar} chof - "$$tardir"' am__untar='$${TAR-tar} xf -'], [m4_case([$1], [ustar], [# The POSIX 1988 'ustar' format is defined with fixed-size fields. # There is notably a 21 bits limit for the UID and the GID. In fact, # the 'pax' utility can hang on bigger UID/GID (see automake bug#8343 # and bug#13588). am_max_uid=2097151 # 2^21 - 1 am_max_gid=$am_max_uid # The $UID and $GID variables are not portable, so we need to resort # to the POSIX-mandated id(1) utility. Errors in the 'id' calls # below are definitely unexpected, so allow the users to see them # (that is, avoid stderr redirection). am_uid=`id -u || echo unknown` am_gid=`id -g || echo unknown` AC_MSG_CHECKING([whether UID '$am_uid' is supported by ustar format]) if test $am_uid -le $am_max_uid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi AC_MSG_CHECKING([whether GID '$am_gid' is supported by ustar format]) if test $am_gid -le $am_max_gid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi], [pax], [], [m4_fatal([Unknown tar format])]) AC_MSG_CHECKING([how to create a $1 tar archive]) # Go ahead even if we have the value already cached. We do so because we # need to set the values for the 'am__tar' and 'am__untar' variables. _am_tools=${am_cv_prog_tar_$1-$_am_tools} for _am_tool in $_am_tools; do case $_am_tool in gnutar) for _am_tar in tar gnutar gtar; do AM_RUN_LOG([$_am_tar --version]) && break done am__tar="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$$tardir"' am__tar_="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$tardir"' am__untar="$_am_tar -xf -" ;; plaintar) # Must skip GNU tar: if it does not support --format= it doesn't create # ustar tarball either. (tar --version) >/dev/null 2>&1 && continue am__tar='tar chf - "$$tardir"' am__tar_='tar chf - "$tardir"' am__untar='tar xf -' ;; pax) am__tar='pax -L -x $1 -w "$$tardir"' am__tar_='pax -L -x $1 -w "$tardir"' am__untar='pax -r' ;; cpio) am__tar='find "$$tardir" -print | cpio -o -H $1 -L' am__tar_='find "$tardir" -print | cpio -o -H $1 -L' am__untar='cpio -i -H $1 -d' ;; none) am__tar=false am__tar_=false am__untar=false ;; esac # If the value was cached, stop now. We just wanted to have am__tar # and am__untar set. test -n "${am_cv_prog_tar_$1}" && break # tar/untar a dummy directory, and stop if the command works. rm -rf conftest.dir mkdir conftest.dir echo GrepMe > conftest.dir/file AM_RUN_LOG([tardir=conftest.dir && eval $am__tar_ >conftest.tar]) rm -rf conftest.dir if test -s conftest.tar; then AM_RUN_LOG([$am__untar /dev/null 2>&1 && break fi done rm -rf conftest.dir AC_CACHE_VAL([am_cv_prog_tar_$1], [am_cv_prog_tar_$1=$_am_tool]) AC_MSG_RESULT([$am_cv_prog_tar_$1])]) AC_SUBST([am__tar]) AC_SUBST([am__untar]) ]) # _AM_PROG_TAR m4_include([m4/gettext.m4]) m4_include([m4/iconv.m4]) m4_include([m4/intlmacosx.m4]) m4_include([m4/lib-ld.m4]) m4_include([m4/lib-link.m4]) m4_include([m4/lib-prefix.m4]) m4_include([m4/nls.m4]) m4_include([m4/po.m4]) m4_include([m4/progtest.m4]) certmonger-0.78.6/configure.ac0000664000175000017500000007751012645513264013214 00000000000000AC_INIT(certmonger,0.78.6) AM_INIT_AUTOMAKE([foreign subdir-objects]) AC_CONFIG_MACRO_DIR(m4) AM_MAINTAINER_MODE([enable]) AC_PROG_CC AM_PROG_CC_C_O AC_PROG_RANLIB AM_GNU_GETTEXT([external]) AM_GNU_GETTEXT_VERSION(0.17) AM_ICONV ALL_LINGUAS="`ls -1 $srcdir/po/*.po | xargs -n 1 basename | xargs -n 1 -I'{}' basename '{}' .po`" if test x$GCC = xyes ; then CFLAGS="$CFLAGS -Wall -Wextra" fi AC_CONFIG_HEADER(src/config.h) mybindir="$bindir" mybindir=`eval echo $mybindir | sed "s,NONE,$prefix,g"` mybindir=`eval echo $mybindir | sed "s,NONE,$exec_prefix,g"` mybindir=`eval echo $mybindir | sed "s,NONE,$ac_default_prefix,g"` mybindir=`eval echo $mybindir | sed "s,NONE,,g"` AC_SUBST(mybindir) AC_DEFINE_UNQUOTED(CM_GETCERT_DIR,"${mybindir}", [Define to the directory holding various getcert commands after installation.]) mysbindir="$sbindir" mysbindir=`eval echo $mysbindir | sed "s,NONE,$prefix,g"` mysbindir=`eval echo $mysbindir | sed "s,NONE,$exec_prefix,g"` mysbindir=`eval echo $mysbindir | sed "s,NONE,$ac_default_prefix,g"` mysbindir=`eval echo $mysbindir | sed "s,NONE,,g"` AC_SUBST(mysbindir) AC_DEFINE_UNQUOTED(CM_CERTMONGER_DAEMON_PATH,"${mysbindir}/certmonger", [Define to the path of the certmonger daemon after installation.]) UPCASE_PACKAGE_NAME=`echo "${PACKAGE_NAME}" | tr '[a-z]' '[A-Z]'` mysysconfdir="$sysconfdir" mysysconfdir=`eval echo $mysysconfdir | sed "s,NONE,$prefix,g"` mysysconfdir=`eval echo $mysysconfdir | sed "s,NONE,$ac_default_prefix,g"` mysysconfdir=`eval echo $mysysconfdir | sed "s,NONE,,g"` AC_DEFINE_UNQUOTED(CM_STORE_CONFIG_DIRECTORY,"$mysysconfdir/${PACKAGE_NAME}", [Define to the directory which holds configuration files.]) AC_DEFINE_UNQUOTED(CM_STORE_SESSION_CONFIG_DIRECTORY,".config/" PACKAGE_NAME, [Define to the directory which holds user configuration files.]) AC_DEFINE_UNQUOTED(CM_STORE_CONFIG_DIRECTORY_ENV,"${UPCASE_PACKAGE_NAME}_CONFIG_DIR", [Define to the name of the environment variable which can specify the directory which holds configuration files.]) CM_STORE_CONFIG_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_CONFIG_DIR" AC_SUBST(CM_STORE_CONFIG_DIRECTORY_ENV) mylibexecdir="$libexecdir/${PACKAGE_NAME}" mylibexecdir=`eval echo $mylibexecdir | sed "s,NONE,$prefix,g"` mylibexecdir=`eval echo $mylibexecdir | sed "s,NONE,$ac_default_prefix,g"` mylibexecdir=`eval echo $mylibexecdir | sed "s,NONE,,g"` AC_SUBST(mylibexecdir) AC_ARG_WITH(file-store-dir, AS_HELP_STRING([--with-file-store-dir=/var/lib/certmonger],[directory to use for storing data]), mylocalstatedir=$withval, mylocalstatedir="$localstatedir/lib/${PACKAGE_NAME}") mylocalstatedir=`eval echo $mylocalstatedir | sed "s,NONE,$prefix,g"` mylocalstatedir=`eval echo $mylocalstatedir | sed "s,NONE,$ac_default_prefix,g"` mylocalstatedir=`eval echo $mylocalstatedir | sed "s,NONE,,g"` CM_STORE_SYSTEM_LOCK_FILE="$mylocalstatedir/lock" CM_STORE_SYSTEM_LOCK_FILE_ENV="${UPCASE_PACKAGE_NAME}_SYSTEM_LOCK_FILE" AC_SUBST(CM_STORE_SYSTEM_LOCK_FILE) AC_SUBST(CM_STORE_SYSTEM_LOCK_FILE_ENV) AC_DEFINE_UNQUOTED(CM_STORE_SYSTEM_LOCK_FILE,"${CM_STORE_SYSTEM_LOCK_FILE}", [Define to the default path for the system daemon lock file.]) AC_DEFINE_UNQUOTED(CM_STORE_SYSTEM_LOCK_FILE_ENV,"${CM_STORE_SYSTEM_LOCK_FILE_ENV}", [Define to the name of the environment variable which can specify the location of the system daemon lock file.]) CM_STORE_REQUESTS_DIRECTORY="$mylocalstatedir/requests" CM_STORE_REQUESTS_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_REQUESTS_DIR" AC_SUBST(CM_STORE_REQUESTS_DIRECTORY) AC_SUBST(CM_STORE_REQUESTS_DIRECTORY_ENV) AC_DEFINE_UNQUOTED(CM_STORE_REQUESTS_DIRECTORY,"${CM_STORE_REQUESTS_DIRECTORY}", [Define to the default path for request tracking files.]) AC_DEFINE_UNQUOTED(CM_STORE_SESSION_REQUESTS_DIRECTORY,".config/" PACKAGE_NAME "/requests", [Define to the default path for user request tracking files.]) AC_DEFINE_UNQUOTED(CM_STORE_REQUESTS_DIRECTORY_ENV,"${CM_STORE_REQUESTS_DIRECTORY_ENV}", [Define to the name of the environment variable which can specify the directory for tracking requests.]) CM_STORE_CAS_DIRECTORY="$mylocalstatedir/cas" CM_STORE_CAS_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_CAS_DIR" AC_SUBST(CM_STORE_CAS_DIRECTORY) AC_SUBST(CM_STORE_CAS_DIRECTORY_ENV) AC_DEFINE_UNQUOTED(CM_STORE_CAS_DIRECTORY,"${CM_STORE_CAS_DIRECTORY}", [Define to the default path for CA tracking files.]) AC_DEFINE_UNQUOTED(CM_STORE_SESSION_CAS_DIRECTORY,".config/" PACKAGE_NAME "/cas", [Define to the default path for user CA tracking files.]) AC_DEFINE_UNQUOTED(CM_STORE_CAS_DIRECTORY_ENV,"${CM_STORE_CAS_DIRECTORY_ENV}", [Define to the name of the environment variable which can specify the directory for tracking CAs.]) CM_STORE_LOCAL_CA_DIRECTORY="$mylocalstatedir/local" CM_STORE_SESSION_LOCAL_CA_DIRECTORY=".config/${PACKAGE_NAME}/local" CM_STORE_LOCAL_CA_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_LOCAL_CA_DIR" AC_SUBST(CM_STORE_LOCAL_CA_DIRECTORY) AC_SUBST(CM_STORE_LOCAL_CA_DIRECTORY_ENV) AC_DEFINE_UNQUOTED(CM_STORE_LOCAL_CA_DIRECTORY,"${CM_STORE_LOCAL_CA_DIRECTORY}", [Define to the default path for data belonging to the local CA.]) AC_DEFINE_UNQUOTED(CM_STORE_SESSION_LOCAL_CA_DIRECTORY,"${CM_STORE_SESSION_LOCAL_CA_DIRECTORY}", [Define to the default path for data belonging to the user CA.]) AC_DEFINE_UNQUOTED(CM_STORE_LOCAL_CA_DIRECTORY_ENV,"${CM_STORE_LOCAL_CA_DIRECTORY_ENV}", [Define to the name of the environment variable which can specify the directory for the local CA.]) AC_ARG_WITH(homedir, AS_HELP_STRING([--with-homedir=/],[directory to set as $HOME when running subprocesses as root]), myhomedir=$withval, myhomedir=/) myhomedir=`eval echo $myhomedir | sed "s,NONE,$prefix,g"` myhomedir=`eval echo $myhomedir | sed "s,NONE,$ac_default_prefix,g"` myhomedir=`eval echo $myhomedir | sed "s,NONE,,g"` CM_HOMEDIR="$myhomedir" AM_CONDITIONAL(HOMEDIR,test x$CM_HOMEDIR != x) AC_DEFINE_UNQUOTED(CM_HOMEDIR,"$CM_HOMEDIR",[Define to the default location to be used for storing temporary files.]) AC_SUBST(CM_HOMEDIR) AC_ARG_WITH(tmpdir, AS_HELP_STRING([--with-tmpdir=NONE],[directory to use for temporary storage]), mytmpdir=$withval, mytmpdir=) mytmpdir=`eval echo $mytmpdir | sed "s,NONE,$prefix,g"` mytmpdir=`eval echo $mytmpdir | sed "s,NONE,$ac_default_prefix,g"` mytmpdir=`eval echo $mytmpdir | sed "s,NONE,,g"` CM_TMPDIR="$mytmpdir" AM_CONDITIONAL(TMPDIR,test x$CM_TMPDIR != x) AC_DEFINE_UNQUOTED(CM_TMPDIR,"$CM_TMPDIR",[Define to the default location to be used for storing temporary files.]) CM_TMPDIR_ENV="${UPCASE_PACKAGE_NAME}_TMPDIR" AC_DEFINE_UNQUOTED(CM_TMPDIR_ENV,"${CM_TMPDIR_ENV}",[Define to the default location to be used for storing temporary files.]) AC_SUBST(CM_TMPDIR) AC_SUBST(CM_TMPDIR_ENV) CM_NOTIFICATION_ENV="${UPCASE_PACKAGE_NAME}_NOTIFICATION" AC_DEFINE_UNQUOTED(CM_NOTIFICATION_ENV,"${CM_NOTIFICATION_ENV}",[Define to the variable name to be used to hold a notification message.]) AC_SUBST(CM_NOTIFICATION_ENV) CERTMONGER_PVT_ADDRESS_ENV=CERTMONGER_PVT_ADDRESS AC_DEFINE_UNQUOTED(CERTMONGER_PVT_ADDRESS_ENV,"${CERTMONGER_PVT_ADDRESS_ENV}",[Define to the variable name used to pass the location of the private D-Bus connection to subprocesses.]) AC_SUBST(CERTMONGER_PVT_ADDRESS_ENV) mylocaledir="$localedir" mylocaledir=`eval echo $mylocaledir | sed "s,NONE,$prefix,g"` mylocaledir=`eval echo $mylocaledir | sed "s,NONE,$ac_default_prefix,g"` mylocaledir=`eval echo $mylocaledir | sed "s,NONE,,g"` AC_DEFINE_UNQUOTED(MYLOCALEDIR,"$mylocaledir", [Define to the name of the directory under which locale data will be installed.]) CM_DBUS_NAME=org.fedorahosted.certmonger AC_DEFINE_UNQUOTED(CM_DBUS_NAME,"$CM_DBUS_NAME", [Define to the name of the certmonger service.]) AC_SUBST(CM_DBUS_NAME) CM_DBUS_BASE_PATH=/org/fedorahosted/certmonger AC_DEFINE_UNQUOTED(CM_DBUS_BASE_PATH,"$CM_DBUS_BASE_PATH", [Define to the path of the certmonger main node.]) AC_DEFINE_UNQUOTED(CM_DBUS_RECONNECT_TIMEOUT,30, [Define to the amount of time to wait between attempts to reconnect to the message bus if we get disconnected.]) if ! ${configure_dist_target_only:-false} ; then AC_CHECK_HEADERS(sys/types.h sys/socket.h linux/types.h linux/netlink.h linux/rtnetlink.h,,,[ #ifdef HAVE_SYS_TYPES_H #include #endif #ifdef HAVE_SYS_SOCKET_H #include #endif #ifdef HAVE_LINUX_TYPES_H #include #endif #ifdef HAVE_LINUX_NETLINK_H #include #endif ]) AC_CHECK_HEADERS(systemd/sd-login.h) PKG_CHECK_MODULES(TALLOC,talloc) PKG_CHECK_MODULES(TEVENT,tevent) PKG_CHECK_MODULES(DBUS,dbus-1 >= 1.0) SESSIONBUSSERVICESDIR=`pkg-config --variable=session_bus_services_dir dbus-1 2> /dev/null | sed -e "s|^${datadir}|\${datadir}|g" -e "s|^${datarootdir}|\${datarootdir}|g" -e "s|^${prefix}/share|\${datadir}|g"` AC_SUBST(SESSIONBUSSERVICESDIR) SYSTEMBUSSERVICESDIR=`pkg-config --variable=system_bus_services_dir dbus-1 2> /dev/null | sed -e "s|^${datadir}|\${datadir}|g" -e "s|^${datarootdir}|\${datarootdir}|g" -e "s|^${prefix}/share|\${datadir}|g"` AC_SUBST(SYSTEMBUSSERVICESDIR) AC_CHECK_FUNCS(clearenv) AC_CHECK_DECLS(strtold,,,[ #include ]) savedLIBS="$LIBS" LIBS="$DBUS_LIBS $LIBS" AC_CHECK_FUNCS(dbus_watch_get_unix_fd dbus_watch_get_fd) LIBS="$savedLIBS" savedLIBS="$LIBS" RESOLV_LIBS= AC_CHECK_LIB(resolv,main,RESOLV_LIBS=-lresolv) LIBS="$RESOLV_LIBS" AC_CHECK_HEADERS(resolv.h arpa/nameser.h) have_ns_initparse=false AC_LINK_IFELSE(AC_LANG_PROGRAM([ #ifdef HAVE_RESOLV_H #include #endif #ifdef HAVE_ARPA_NAMESER_H #include #endif ],[ ns_msg msg; ns_initparse(NULL, 0, &msg); ]), have_ns_initparse=true, LIBS="-lbind $LIBS" AC_LINK_IFELSE(AC_LANG_PROGRAM([ #ifdef HAVE_RESOLV_H #include #endif #ifdef HAVE_ARPA_NAMESER_H #include #endif ],[ ns_msg msg; ns_initparse(NULL, 0, &msg); ]), RESOLV_LIBS="-lbind $RESOLV_LIBS" have_ns_initparse=true, AC_MSG_WARN([cannot find ns_initparse() in libresolv or libbind]) have_ns_initparse=false ) ) AC_ARG_ENABLE(srv-location, AS_HELP_STRING([--disable-srv-location],[disable SRV location for servers]), SRV=$enableval, SRV=auto) case "x$SRV" in xyes) if ! $have_ns_initparse ; then AC_MSG_ERROR([cannot build with SRV location]) fi ;; xno) have_ns_initparse=false ;; xauto) ;; esac AC_MSG_CHECKING(for SRV location) if $have_ns_initparse ; then AC_DEFINE(HAVE_NS_INITPARSE,1,[Define if you have ns_initparse() and want to use SRV location]) AC_MSG_RESULT([yes, using $RESOLV_LIBS]) else AC_MSG_RESULT(no) RESOLV_LIBS= fi AC_SUBST(RESOLV_LIBS) LIBS="$savedLIBS" PKG_CHECK_MODULES(CERTMONGER,dbus-1 talloc tevent nss) PKG_CHECK_MODULES(GETCERT,dbus-1 talloc) PKG_CHECK_MODULES(XML,libxml-2.0) have_libxml=true PKG_CHECK_MODULES(CURL,libcurl) have_libcurl=true savedCFLAGS="$CFLAGS" savedCPPFLAGS="$CPPFLAGS" savedLDFLAGS="$LDFLAGS" CFLAGS="$CFLAGS $CURL_CFLAGS" CPPFLAGS="$CPPFLAGS $CURL_CFLAGS" LDFLAGS="$LDFLAGS $CURL_LIBS" AC_CHECK_DECLS([CURLOPT_KEYPASSWD,CURLOPT_SSLKEYPASSWD,CURLOPT_SSLCERTPASSWD],,,[#include ]) CFLAGS="$savedCFLAGS" CPPFLAGS="$savedCPPFLAGS" LDFLAGS="$savedLDFLAGS" dnl PKG_CHECK_MODULES(XMLRPC,xmlrpc_client) # Not provided in upstream versions. savedCFLAGS="$CFLAGS" CFLAGS= AC_ARG_VAR(XMLRPC_C_CONFIG,[the full path of the xmlrpc-c-config command]) AC_PATH_PROG(XMLRPC_C_CONFIG,[xmlrpc-c-config],,[$PATH$PATH_SEPARATOR/usr/xmlrpc/bin$PATH_SEPARATOR/usr/xmlrpc-c/bin]) if test -z "$XMLRPC_C_CONFIG" ; then AC_MSG_ERROR(xmlrpc-c-config not found) fi AC_MSG_CHECKING(for XMLRPC CFLAGS) XMLRPC_CFLAGS=`${XMLRPC_C_CONFIG} client --cflags` AC_MSG_RESULT([$XMLRPC_CFLAGS]) AC_SUBST(XMLRPC_CFLAGS) AC_MSG_CHECKING(for XMLRPC LIBS) XMLRPC_LIBS=`${XMLRPC_C_CONFIG} client --libs` AC_MSG_RESULT([$XMLRPC_LIBS]) AC_SUBST(XMLRPC_LIBS) CFLAGS="$CFLAGS $XMLRPC_CFLAGS" AC_CHECK_MEMBERS(struct xmlrpc_curl_xportparms.gssapi_delegation,,, [ #include #include ]) CFLAGS="$savedCFLAGS" savedCFLAGS="$CFLAGS" savedCPPFLAGS="$CPPFLAGS" savedLDFLAGS="$LDFLAGS" CFLAGS= AC_ARG_VAR(KRB5_CONFIG,[the full path of the krb5-config command]) AC_PATH_PROG(KRB5_CONFIG,[krb5-config],,[$PATH$PATH_SEPARATOR/usr/kerberos/bin$PATH_SEPARATOR/usr/krb5/bin]) if test -z "$KRB5_CONFIG" ; then AC_MSG_ERROR(krb5-config not found) fi AC_MSG_CHECKING(for krb5 CFLAGS) KRB5_CFLAGS=`${KRB5_CONFIG} --cflags` AC_MSG_RESULT([$KRB5_CFLAGS]) AC_SUBST(KRB5_CFLAGS) AC_MSG_CHECKING(for krb5 LIBS) KRB5_LIBS=`${KRB5_CONFIG} --libs` AC_MSG_RESULT([$KRB5_LIBS]) AC_SUBST(KRB5_LIBS) CFLAGS="$CFLAGS $KRB5_CFLAGS" CPPFLAGS="$CPPFLAGS $KRB5_CFLAGS" LDFLAGS="$LDFLAGS $KRB5_LIBS" AC_CHECK_DECLS([krb5_princ_component,krb5_princ_name,krb5_princ_set_realm_length,krb5_princ_size,krb5_princ_type],,,[#include ]) AC_CHECK_FUNCS(krb5_free_unparsed_name krb5_get_init_creds_opt_alloc) AC_CHECK_FUNCS(krb5_get_error_message) CFLAGS="$savedCFLAGS" CPPFLAGS="$savedCPPFLAGS" LDFLAGS="$savedLDFLAGS" AM_CONDITIONAL(HAVE_OPENSSL,test x$withopenssl != xno) if test x$withopenssl != xno ; then if pkg-config libcrypto 2> /dev/null ; then PKG_CHECK_MODULES(OPENSSL,libcrypto) PKG_CHECK_MODULES(OPENSSL_SSL,libssl libcrypto) else PKG_CHECK_MODULES(OPENSSL,openssl) PKG_CHECK_MODULES(OPENSSL_SSL,openssl) fi AC_DEFINE(HAVE_OPENSSL,1,[Define if you have OpenSSL.]) CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" CFLAGS="$OPENSSL_CFLAGS $CFLAGS" LIBS="$OPENSSL_LIBS $LIBS" AC_CHECK_DECLS([OpenSSL_add_all_algorithms,OpenSSL_add_ssl_algorithms],,,[#include ]) AC_CHECK_DECLS(OPENSSL_free,,,[#include ]) CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" fi AM_CONDITIONAL(HAVE_NSS,test x$withnss != xno) if test x$withnss != xno ; then if pkg-config mozilla-nss 2> /dev/null ; then PKG_CHECK_MODULES(NSS,mozilla-nss) else PKG_CHECK_MODULES(NSS,nss) fi AC_DEFINE(HAVE_NSS,1,[Define if you have NSS.]) savedCFLAGS="$CFLAGS" savedCPPFLAGS="$CPPFLAGS" savedLDFLAGS="$LDFLAGS" CFLAGS="$CFLAGS $NSS_CFLAGS" CPPFLAGS="$CPPFLAGS $NSS_CFLAGS" LDFLAGS="$LDFLAGS $NSS_LIBS" AC_MSG_CHECKING([if NSS supports "sql:" databases]) mkdir _nss_db_testdir || : AC_TRY_RUN([ #include #include #include int main(int argc, char **argv) { SECStatus status; PRErrorCode err; status = NSS_InitReadWrite((argc > 1) ? argv[1] : "sql:_nss_db_testdir"); if (status == SECSuccess) { return 0; } err = PR_GetError(); printf("%s", PR_ErrorToString(err, PR_LANGUAGE_I_DEFAULT)); return 1; } ], AC_DEFINE(HAVE_SQL_NSSDB,1,[Define if your copy of NSS supports SQLite databases.]) have_sql_nssdb=yes, have_sql_nssdb=no, AC_DEFINE(HAVE_SQL_NSSDB,1,[Define if your copy of NSS supports SQLite databases.]) have_sql_nssdb="guessing yes") rm -f -r _nss_db_testdir AC_MSG_RESULT($have_sql_nssdb) AM_CONDITIONAL(HAVE_SQL_NSSDB,[test "x$have_sql_nssdb" != xno]) AC_MSG_CHECKING([if NSS supports "dbm:" databases]) mkdir _nss_db_testdir || : AC_TRY_RUN([ #include #include #include int main(int argc, char **argv) { SECStatus status; PRErrorCode err; status = NSS_InitReadWrite((argc > 1) ? argv[1] : "dbm:_nss_db_testdir"); if (status == SECSuccess) { return 0; } err = PR_GetError(); printf("%s", PR_ErrorToString(err, PR_LANGUAGE_I_DEFAULT)); return 1; } ], AC_DEFINE(HAVE_DBM_NSSDB,1,[Define if your copy of NSS supports DBMite databases.]) have_dbm_nssdb=yes, have_dbm_nssdb=no, AC_DEFINE(HAVE_DBM_NSSDB,1,[Define if your copy of NSS supports DBMite databases.]) have_dbm_nssdb="guessing yes") rm -f -r _nss_db_testdir AC_MSG_RESULT($have_dbm_nssdb) AM_CONDITIONAL(HAVE_DBM_NSSDB,[test "x$have_dbm_nssdb" != xno]) CFLAGS="$savedCFLAGS" CPPFLAGS="$savedCPPFLAGS" LDFLAGS="$savedLDFLAGS" fi AC_ARG_WITH(gmp, AS_HELP_STRING(--with-gmp, [use gmp for converting hex serial numbers to decimal]), withgmp=$withval, withgmp=no) if test $withgmp != no ; then CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" if test $withgmp != yes ; then GMP_CFLAGS="-I$withgmp/include" GMP_LIBS="-L$withgmp/lib" else GMP_CFLAGS= GMP_LIBS= fi CFLAGS="$GMP_CFLAGS $CFLAGS" LIBS="$GMP_LIBS $LIBS" AC_CHECK_HEADERS(gmp.h) AC_CHECK_FUNC(mpz_set_str,, LIBS="-lgmp $LIBS" AC_LINK_IFELSE(AC_LANG_PROGRAM([ #include #include ],[mpz_get_str(NULL,10,NULL);]),GMP_LIBS="$GMP_LIBS -lgmp")) AC_MSG_CHECKING([for GMP]) if test $ac_cv_header_gmp_h = yes ; then AC_MSG_RESULT(found) AC_DEFINE(HAVE_GMP,1,[Define if you have GMP for hex-to-decimal conversions.]) else AC_MSG_ERROR(not found) fi CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" fi AC_SUBST(GMP_CFLAGS) AC_SUBST(GMP_LIBS) AM_CONDITIONAL(USE_GMP,test $withgmp != no) if test $withgmp = no && test x$withopenssl = xno ; then AC_MSG_ERROR([Need at least one of OpenSSL or GMP for big number operations.]) fi SYSTEMD=no AC_ARG_ENABLE(systemd, AS_HELP_STRING([--enable-systemd],[install unit files for systemd]), SYSTEMD=$enableval, SYSTEMD=no) AC_SUBST(SYSTEMD) AM_CONDITIONAL(SYSTEMD,test x$SYSTEMD != xno) AC_SUBST(SYSTEMDSYSTEMUNITDIR) if test x$SYSTEMD = xyes ; then SYSTEMDSYSTEMUNITDIR=`pkg-config --variable=systemdsystemunitdir systemd 2> /dev/null` AC_MSG_RESULT(will install systemd unit files to $SYSTEMDSYSTEMUNITDIR) fi TMPFILES=no AC_ARG_ENABLE(tmpfiles, AS_HELP_STRING([--enable-tmpfiles],[install systemd tmpfiles.d configuration file for systemd (default: same as --enable-systemd)]), TMPFILES=$enableval, TMPFILES=$SYSTEMD) AC_SUBST(TMPFILES) AM_CONDITIONAL(TMPFILES,test x$TMPFILES != xno) if test x$TMPFILES = xyes ; then AC_MSG_RESULT(will install systemd tmpfiles.d file to ${prefix}/lib/tmpfiles.d) fi SYSVINIT=no AC_ARG_ENABLE(sysvinit, AS_HELP_STRING([--enable-sysvinit=/etc/init.d],[install sysvinit script in specified location]), SYSVINIT=$enableval, SYSVINIT=no) AC_SUBST(SYSVINIT) AM_CONDITIONAL(SYSVINIT,test x$SYSVINIT != xno) if test x$SYSVINIT != xno ; then AC_MSG_RESULT(will install sysvinit init script to $SYSVINIT) fi AC_ARG_ENABLE(pie, AS_HELP_STRING(--enable-pie,[Build position-independent executables.]), pie=$enableval, pie=no) if test x$pie = xyes ; then AC_MSG_RESULT(building position-independent executables) else AC_MSG_RESULT(NOT building position-independent executables) fi AM_CONDITIONAL(PIE,[test x$pie = xyes]) AC_ARG_ENABLE(now, AS_HELP_STRING(--enable-now,[Mark binaries with bind-now flag.]), now=$enableval, now=no) if test x$pie = xyes ; then AC_MSG_RESULT(building bind-now executables) else AC_MSG_RESULT(NOT building bind-now executables) fi AM_CONDITIONAL(NOW,[test x$now = xyes]) AC_ARG_ENABLE(dsa, AS_HELP_STRING(--disable-dsa,[Disable DSA key support, even if available.]), dsa=$enableval, dsa=maybe) if test x$dsa != xno ; then CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" CFLAGS="$OPENSSL_CFLAGS $CFLAGS" LIBS="$OPENSSL_LIBS $LIBS" AC_CHECK_LIB(crypto,DSA_new) CFLAGS="$NSS_CFLAGS $CFLAGS" LIBS="$NSS_LIBS $LIBS" AC_CHECK_TYPE(SECKEYDSAPublicKey,,, [ AC_INCLUDES_DEFAULT #include ]) CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" can_dsa=true if ! pkg-config --atleast-version=1.0 openssl ; then # CSR signing appears to be broken in 0.9.8e, so reject < 1.0 can_dsa=false fi if test x$ac_cv_lib_crypto_DSA_new = xno ; then can_dsa=false fi if test x$ac_cv_type_SECKEYDSAPublicKey = xno ; then can_dsa=false fi AC_MSG_CHECKING([for DSA support]) if $can_dsa ; then AC_MSG_RESULT(enabling DSA support) AC_DEFINE_UNQUOTED(CM_ENABLE_DSA,1,[Define to enable DSA support.]) MAN_DSA="" NO_MAN_DSA=".\\\" " dsa=yes else if test x$dsa != xyes ; then AC_MSG_WARN([unavailable, disabling]) dsa=no else AC_MSG_ERROR([unavailable]) fi MAN_DSA=".\\\" " NO_MAN_DSA="" fi else AC_MSG_RESULT(NOT enabling DSA support) MAN_DSA=".\\\" " NO_MAN_DSA="" dsa=no fi AM_CONDITIONAL(HAVE_DSA,[test x$dsa = xyes]) AC_SUBST(MAN_DSA) AC_SUBST(NO_MAN_DSA) AC_ARG_ENABLE(ec, AS_HELP_STRING(--disable-ec,[Disable EC key support, even if available.]), ec=$enableval, ec=maybe) if test x$ec != xno ; then CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" CFLAGS="$OPENSSL_CFLAGS $CFLAGS" LIBS="$OPENSSL_LIBS $LIBS" AC_CHECK_LIB(crypto,EC_KEY_new_by_curve_name) CFLAGS="$NSS_CFLAGS $CFLAGS" LIBS="$NSS_LIBS $LIBS" AC_CHECK_FUNCS(SECKEY_CreateECPrivateKey) AC_CHECK_FUNCS(PK11_PrivDecrypt) CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" can_ec=true if test x$ac_cv_lib_crypto_EC_KEY_new_by_curve_name = xno ; then can_ec=false fi if test x$ac_cv_func_CreateECPrivateKey = xno ; then can_ec=false fi AC_MSG_CHECKING([for EC support]) if $can_ec ; then AC_MSG_RESULT(enabling EC support) AC_DEFINE_UNQUOTED(CM_ENABLE_EC,1,[Define to enable EC support.]) MAN_EC="" NO_MAN_EC=".\\\" " ec=yes else if test x$ec != xyes ; then AC_MSG_WARN([unavailable, disabling]) ec=no else AC_MSG_ERROR([unavailable]) fi MAN_EC=".\\\" " NO_MAN_EC="" fi else AC_MSG_RESULT(NOT enabling EC support) MAN_EC=".\\\" " NO_MAN_EC="" ec=no fi AM_CONDITIONAL(HAVE_EC,[test x$ec = xyes]) AC_SUBST(MAN_EC) AC_SUBST(NO_MAN_EC) AC_DEFINE_UNQUOTED(CM_DEFAULT_KEY_STORAGE_TYPE,cm_key_storage_nssdb,[Define to the default type of storage used for keys.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_KEY_STORAGE_LOCATION,"/etc/pki/nssdb",[Define to the default location of storage used for keys.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_KEY_TOKEN,NULL,[Define to the default token used for holding keys.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_KEY_NICKNAME,"Server-Cert",[Define to the default nickname given to keys.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_CERT_STORAGE_TYPE,cm_cert_storage_nssdb,[Define to the default type of storage used for certificates.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_CERT_STORAGE_LOCATION,"/etc/pki/nssdb",[Define to the default location of storage used for certificates.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_CERT_TOKEN,NULL,[Define to the default token used to store certificates.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_CERT_NICKNAME,"Server-Cert",[Define to the default nickname given to certificates.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_PUBKEY_TYPE,cm_key_rsa,[Define to the default public key type.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_RSA_EXPONENT,0x10001,[Define to the default RSA key exponent.]) AC_DEFINE_UNQUOTED(CM_DIGEST_MAX,(512/8),[Define to the maximum size (in bytes) of supported digests.]) CM_DEFAULT_PUBKEY_SIZE=2048 AC_DEFINE_UNQUOTED(CM_DEFAULT_PUBKEY_SIZE,$CM_DEFAULT_PUBKEY_SIZE,[Define to the default public key size.]) AC_SUBST(CM_DEFAULT_PUBKEY_SIZE) CM_MINIMUM_RSA_KEY_SIZE=512 CM_MINIMUM_DSA_KEY_SIZE=512 CM_MINIMUM_EC_KEY_SIZE=256 AC_DEFINE_UNQUOTED(CM_MINIMUM_RSA_KEY_SIZE,$CM_MINIMUM_RSA_KEY_SIZE,[Define to the minimum key size when generating RSA keys. Requests to generate smaller keys will be forced to this key size.]) AC_DEFINE_UNQUOTED(CM_MINIMUM_DSA_KEY_SIZE,$CM_MINIMUM_DSA_KEY_SIZE,[Define to the minimum key size when generating DSA parameters and keys. Requests to generate smaller keys will be forced to this key size.]) AC_DEFINE_UNQUOTED(CM_MINIMUM_EC_KEY_SIZE,$CM_MINIMUM_EC_KEY_SIZE,[Define to the minimum key size when selecting elliptic curve parameters. Requests to generate smaller keys will be forced to this key size.]) AC_SUBST(CM_MINIMUM_RSA_KEY_SIZE) AC_SUBST(CM_MINIMUM_DSA_KEY_SIZE) AC_SUBST(CM_MINIMUM_EC_KEY_SIZE) CM_DEFAULT_TTL_LIST="2419200, 604800, 259200, 172800, 86400" AC_DEFINE_UNQUOTED(CM_DEFAULT_TTL_LIST,[$CM_DEFAULT_TTL_LIST],[Define to the list of default time-left thresholds at which we need to warn the user.]) AC_SUBST(CM_DEFAULT_TTL_LIST) AC_DEFINE_UNQUOTED(CM_DEFAULT_CERT_SUBJECT_CN,"localhost",[Define to the last-ditch default CN value for a signing request.]) CM_DEFAULT_CERT_LIFETIME=1y AC_DEFINE_UNQUOTED(CM_DEFAULT_CERT_LIFETIME,"$CM_DEFAULT_CERT_LIFETIME",[Define to the default certificate lifetime for self-signed certificates.]) AC_SUBST(CM_DEFAULT_CERT_LIFETIME) AC_DEFINE_UNQUOTED(CM_DEFAULT_CERT_SERIAL,"01",[Define to the default starting serial number for self-signed certificates.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_NOTIFICATION_METHOD,cm_notification_syslog,[Define to the default method of notification.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_NOTIFICATION_MAIL,"root",[Define to the address where notification mail should be sent by default.]) CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY=daemon.notice AC_SUBST(CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY) AC_DEFINE_UNQUOTED(CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY,"$CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY",[Define to the syslog facility from which notification messages should be sent by default.]) AC_DEFINE(CM_DELAY_SOON,5,[Define to the time to wait for something that will happen soon.]) AC_DEFINE(CM_DELAY_SOONISH,30,[Define to the time to wait for something that will happen soon, but not that soon.]) AC_DEFINE(CM_DELAY_CA_POLL,(7 * 24 * 60 * 60),[Define to the time to wait between attempts to see if the CA issued a certificate.]) AC_DEFINE(CM_DELAY_CADATA_POLL,(6 * 60 * 60),[Define to the time to wait between attempts to fetch the CA certificate, if it was unreachable.]) AC_DEFINE(CM_DELAY_CA_POLL_MINIMUM,(5 * 60),[Define to the absolute minimum time to wait between attempts to see if the CA issued a certificate.]) AC_DEFINE(CM_DELAY_CA_POLL_MAXIMUM,(365 * 24 * 60 * 60),[Define to the absolute maximum time to wait between attempts to see if the CA issued a certificate.]) AC_DEFINE(CM_DELAY_MONITOR_POLL,(24 * 60 * 60),[Define to the time to wait between attempts to re-read a certificate and check for expiration.]) AC_DEFINE(CM_DELAY_MONITOR_POLL_MINIMUM,(30 * 60),[Define to the absolute minimum time to wait between attempts to re-read a certificate and check for expiration.]) AC_DEFINE(CM_DELAY_NETLINK,(60),[Define to the time to wait after a netlink routing notification to retry submissions.]) CM_SELF_SIGN_CA_NAME=SelfSign AC_SUBST(CM_SELF_SIGN_CA_NAME) AC_DEFINE_UNQUOTED(CM_SELF_SIGN_CA_NAME,"$CM_SELF_SIGN_CA_NAME",[Define to the name that the internal self-signing not-really-a-CA will be known by.]) AC_DEFINE_UNQUOTED(CM_DEFAULT_HELPER_PATH,"$mylibexecdir",[Define to the default path of submission helpers.]) AC_DEFINE(WITH_IPA,1,[Define to ensure that there's always an IPA CA defined.]) CM_IPA_CA_NAME=IPA AC_SUBST(CM_IPA_CA_NAME) AC_DEFINE_UNQUOTED(CM_IPA_CA_NAME,"$CM_IPA_CA_NAME",[Define to the name that the default IPA CA will be known by.]) AC_DEFINE_UNQUOTED(CM_IPA_HELPER_PATH,"$mylibexecdir/ipa-submit",[Define to the path of the IPA submission helper.]) AM_CONDITIONAL(WITH_IPA,true) AC_DEFINE(WITH_CERTMASTER,1,[Define to ensure that there's always a CERTMASTER CA defined.]) CM_CERTMASTER_CA_NAME=certmaster AC_SUBST(CM_CERTMASTER_CA_NAME) AC_DEFINE_UNQUOTED(CM_CERTMASTER_CA_NAME,"$CM_CERTMASTER_CA_NAME",[Define to the name that the default certmaster CA will be known by.]) AC_DEFINE_UNQUOTED(CM_CERTMASTER_HELPER_PATH,"$mylibexecdir/certmaster-submit",[Define to the path of the CERTMASTER submission helper.]) AM_CONDITIONAL(WITH_CERTMASTER,true) AC_DEFINE(WITH_LOCAL,1,[Define to ensure that there's always a local CA defined.]) CM_LOCAL_CA_NAME=local AC_SUBST(CM_LOCAL_CA_NAME) AC_DEFINE_UNQUOTED(CM_LOCAL_CA_NAME,"$CM_LOCAL_CA_NAME",[Define to the name that the local CA will be known by.]) AC_DEFINE_UNQUOTED(CM_LOCAL_HELPER_PATH,"$mylibexecdir/local-submit",[Define to the path of the local submission helper.]) AM_CONDITIONAL(WITH_LOCAL,true) AC_DEFINE_UNQUOTED(CM_SCEP_HELPER_PATH,"$mylibexecdir/scep-submit",[Define to the path of the SCEP submission helper.]) CM_DEFAULT_IDLE_TIMEOUT=300 AC_SUBST(CM_DEFAULT_IDLE_TIMEOUT) AC_DEFINE_UNQUOTED(CM_DEFAULT_IDLE_TIMEOUT,$CM_DEFAULT_IDLE_TIMEOUT,[Define to the default idle-timeout when bus-activated.]) CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" AC_CHECK_HEADER(ldap.h,,AC_MSG_ERROR(ldap.h not found)) AC_CHECK_FUNC(ldap_initialize,,AC_CHECK_LIB(ldap,ldap_initialize)) AC_CHECK_FUNC(ldap_sasl_interactive_bind_s,,AC_CHECK_LIB(ldap,ldap_sasl_interactive_bind_s)) LDAP_CFLAGS="$CFLAGS" LDAP_LIBS="$LIBS" CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" AC_SUBST(LDAP_CFLAGS) AC_SUBST(LDAP_LIBS) AC_ARG_WITH(idn, AS_HELP_STRING([--without-idn],[do not handle international dnsName subjectAltNames or international domain names during service location]), if test x$with_idn = xno ; then idn=false else idn=true fi, idn=true) if $idn ; then PKG_CHECK_MODULES(IDN,libidn) AC_DEFINE(CM_USE_IDN,1,[Define if dnsName subjectAltNames should be encoded properly, and if international domain names should be handled during service location.]) fi AC_ARG_WITH(uuid, AS_HELP_STRING([--with-uuid],[populate subjectUniqueID in self-signed certs]), [uuid=$with_uuid], [uuid=no]) if test x$with_uuid = xyes ; then PKG_CHECK_MODULES(UUID,uuid) else if test x$with_uuid != xno ; then if pkg-config uuid ; then PKG_CHECK_MODULES(UUID,uuid) uuid=yes fi fi fi # Older uuid pkgconfig sets us up to need . Newer # versions set us up to need . if test x$uuid = xyes ; then savedCFLAGS="$CFLAGS" CFLAGS="$UUID_CFLAGS" AC_CHECK_HEADERS(uuid.h uuid/uuid.h) CFLAGS="$savedCFLAGS" if test x$ac_cv_header_uuid_uuid_h = xno ; then if test x$ac_cv_header_uuid_h = xno ; then AC_MSG_ERROR(uuid.h header file not found) fi fi AC_DEFINE(HAVE_UUID,1,[Define to have the ability to populate subjectUniqueID in self-signed certs.]) fi CM_DEFAULT_POPULATE_UNIQUE_ID=no AC_SUBST(CM_DEFAULT_POPULATE_UNIQUE_ID) AC_DEFINE_UNQUOTED(CM_DEFAULT_POPULATE_UNIQUE_ID,"$CM_DEFAULT_POPULATE_UNIQUE_ID",[Define to the default for the selfsign/populate_unique_id configuration setting.]) AM_CONDITIONAL(HAVE_UUID,test x$uuid = xyes) AC_SUBST(UUID_CFLAGS) AC_SUBST(UUID_LIBS) LIBSsave="$LIBS" AC_CHECK_HEADERS(popt.h) if test x$ac_cv_header_popt_h != xyes ; then AC_MSG_ERROR(popt.h header file not found) fi AC_CHECK_FUNC(poptGetContext,,AC_CHECK_LIB(popt,poptGetContext)) if test x$ac_cv_func_poptGetContext != xyes ; then if test x$ac_cv_lib_popt_poptGetContext != xyes ; then AC_MSG_ERROR(libpopt not found) fi fi POPT_LIBS="$LIBS" LIBS="$LIBSsave" AC_SUBST(POPT_CFLAGS) AC_SUBST(POPT_LIBS) else AM_CONDITIONAL(HAVE_OPENSSL,false) AM_CONDITIONAL(HAVE_NSS,false) AM_CONDITIONAL(HAVE_SQL_NSSDB,false) AM_CONDITIONAL(HAVE_DBM_NSSDB,false) AM_CONDITIONAL(USE_GMP,false) AM_CONDITIONAL(SYSTEMD,false) AM_CONDITIONAL(TMPFILES,false) AM_CONDITIONAL(SYSVINIT,false) AM_CONDITIONAL(PIE,false) AM_CONDITIONAL(NOW,false) AM_CONDITIONAL(HAVE_DSA,false) AM_CONDITIONAL(HAVE_EC,false) AM_CONDITIONAL(WITH_IPA,false) AM_CONDITIONAL(WITH_CERTMASTER,false) AM_CONDITIONAL(WITH_LOCAL,false) AM_CONDITIONAL(HAVE_UUID,false) fi AC_CONFIG_COMMANDS(src_introspect_sh,[chmod +x src/introspect.sh]) AC_OUTPUT(Makefile src/Makefile dbus/Makefile systemd/Makefile sysvinit/Makefile sysvinit/certmonger tests/Makefile tests/tools/Makefile dbus/certmonger.conf dbus/certmonger.service src/introspect.sh src/certmonger.8 src/getcert.1 src/getcert-request.1 src/getcert-list.1 src/getcert-list-cas.1 src/getcert-start-tracking.1 src/getcert-stop-tracking.1 src/selfsign-getcert.1 src/ipa-getcert.1 src/getcert-resubmit.1 src/certmonger-certmaster-submit.8 src/certmonger-ipa-submit.8 src/certmonger-dogtag-ipa-renew-agent-submit.8 src/certmaster-getcert.1 src/certmonger.conf.5 po/Makefile.in src/certmonger.conf systemd/certmonger.service systemd/certmonger.conf systemd/org.fedorahosted.certmonger.service src/getcert-refresh.1 src/getcert-refresh-ca.1 src/local-getcert.1 src/certmonger-local-submit.8 src/getcert-status.1 src/certmonger-dogtag-submit.8 src/certmonger-scep-submit.8 src/getcert-add-ca.1 src/getcert-add-scep-ca.1 src/getcert-modify-ca.1 src/getcert-remove-ca.1) certmonger-0.78.6/configure0000775000175000017500000132731112645513270012630 00000000000000#! /bin/sh # Guess values for system-dependent variables and create Makefiles. # Generated by GNU Autoconf 2.69 for certmonger 0.78.6. # # # Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. # # # This configure script is free software; the Free Software Foundation # gives unlimited permission to copy, distribute and modify it. ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # Use a proper internal environment variable to ensure we don't fall # into an infinite loop, continuously re-executing ourselves. if test x"${_as_can_reexec}" != xno && test "x$CONFIG_SHELL" != x; then _as_can_reexec=no; export _as_can_reexec; # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 as_fn_exit 255 fi # We don't want this to propagate to other subprocesses. { _as_can_reexec=; unset _as_can_reexec;} if test "x$CONFIG_SHELL" = x; then as_bourne_compatible="if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST else case \`(set -o) 2>/dev/null\` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi " as_required="as_fn_return () { (exit \$1); } as_fn_success () { as_fn_return 0; } as_fn_failure () { as_fn_return 1; } as_fn_ret_success () { return 0; } as_fn_ret_failure () { return 1; } exitcode=0 as_fn_success || { exitcode=1; echo as_fn_success failed.; } as_fn_failure && { exitcode=1; echo as_fn_failure succeeded.; } as_fn_ret_success || { exitcode=1; echo as_fn_ret_success failed.; } as_fn_ret_failure && { exitcode=1; echo as_fn_ret_failure succeeded.; } if ( set x; as_fn_ret_success y && test x = \"\$1\" ); then : else exitcode=1; echo positional parameters were not saved. fi test x\$exitcode = x0 || exit 1 test -x / || exit 1" as_suggested=" as_lineno_1=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_1a=\$LINENO as_lineno_2=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_2a=\$LINENO eval 'test \"x\$as_lineno_1'\$as_run'\" != \"x\$as_lineno_2'\$as_run'\" && test \"x\`expr \$as_lineno_1'\$as_run' + 1\`\" = \"x\$as_lineno_2'\$as_run'\"' || exit 1 test \$(( 1 + 1 )) = 2 || exit 1" if (eval "$as_required") 2>/dev/null; then : as_have_required=yes else as_have_required=no fi if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null; then : else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_found=false for as_dir in /bin$PATH_SEPARATOR/usr/bin$PATH_SEPARATOR$PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. as_found=: case $as_dir in #( /*) for as_base in sh bash ksh sh5; do # Try only shells that exist, to save several forks. as_shell=$as_dir/$as_base if { test -f "$as_shell" || test -f "$as_shell.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$as_shell"; } 2>/dev/null; then : CONFIG_SHELL=$as_shell as_have_required=yes if { $as_echo "$as_bourne_compatible""$as_suggested" | as_run=a "$as_shell"; } 2>/dev/null; then : break 2 fi fi done;; esac as_found=false done $as_found || { if { test -f "$SHELL" || test -f "$SHELL.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$SHELL"; } 2>/dev/null; then : CONFIG_SHELL=$SHELL as_have_required=yes fi; } IFS=$as_save_IFS if test "x$CONFIG_SHELL" != x; then : export CONFIG_SHELL # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 exit 255 fi if test x$as_have_required = xno; then : $as_echo "$0: This script requires a shell more modern than all" $as_echo "$0: the shells that I found on your system." if test x${ZSH_VERSION+set} = xset ; then $as_echo "$0: In particular, zsh $ZSH_VERSION has bugs and should" $as_echo "$0: be upgraded to zsh 4.3.4 or later." else $as_echo "$0: Please tell bug-autoconf@gnu.org about your system, $0: including any error possibly output before this $0: message. Then install a modern shell, or manually run $0: the script under such a shell if you do have one." fi exit 1 fi fi fi SHELL=${CONFIG_SHELL-/bin/sh} export SHELL # Unset more variables known to interfere with behavior of common tools. CLICOLOR_FORCE= GREP_OPTIONS= unset CLICOLOR_FORCE GREP_OPTIONS ## --------------------- ## ## M4sh Shell Functions. ## ## --------------------- ## # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits as_lineno_1=$LINENO as_lineno_1a=$LINENO as_lineno_2=$LINENO as_lineno_2a=$LINENO eval 'test "x$as_lineno_1'$as_run'" != "x$as_lineno_2'$as_run'" && test "x`expr $as_lineno_1'$as_run' + 1`" = "x$as_lineno_2'$as_run'"' || { # Blame Lee E. McMahon (1931-1989) for sed's syntax. :-) sed -n ' p /[$]LINENO/= ' <$as_myself | sed ' s/[$]LINENO.*/&-/ t lineno b :lineno N :loop s/[$]LINENO\([^'$as_cr_alnum'_].*\n\)\(.*\)/\2\1\2/ t loop s/-\n.*// ' >$as_me.lineno && chmod +x "$as_me.lineno" || { $as_echo "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } # If we had to re-execute with $CONFIG_SHELL, we're ensured to have # already done that, so ensure we don't try to do so again and fall # in an infinite loop. This has already happened in practice. _as_can_reexec=no; export _as_can_reexec # Don't try to exec as it changes $[0], causing all sort of problems # (the dirname of $[0] is not the place where we might find the # original and so on. Autoconf is especially sensitive to this). . "./$as_me.lineno" # Exit status is that of the last command. exit } ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" test -n "$DJDIR" || exec 7<&0 &1 # Name of the host. # hostname on some systems (SVR3.2, old GNU/Linux) returns a bogus exit status, # so uname gets run too. ac_hostname=`(hostname || uname -n) 2>/dev/null | sed 1q` # # Initializations. # ac_default_prefix=/usr/local ac_clean_files= ac_config_libobj_dir=. LIBOBJS= cross_compiling=no subdirs= MFLAGS= MAKEFLAGS= # Identity of this package. PACKAGE_NAME='certmonger' PACKAGE_TARNAME='certmonger' PACKAGE_VERSION='0.78.6' PACKAGE_STRING='certmonger 0.78.6' PACKAGE_BUGREPORT='' PACKAGE_URL='' gt_needs= # Factoring default headers for most tests. ac_includes_default="\ #include #ifdef HAVE_SYS_TYPES_H # include #endif #ifdef HAVE_SYS_STAT_H # include #endif #ifdef STDC_HEADERS # include # include #else # ifdef HAVE_STDLIB_H # include # endif #endif #ifdef HAVE_STRING_H # if !defined STDC_HEADERS && defined HAVE_MEMORY_H # include # endif # include #endif #ifdef HAVE_STRINGS_H # include #endif #ifdef HAVE_INTTYPES_H # include #endif #ifdef HAVE_STDINT_H # include #endif #ifdef HAVE_UNISTD_H # include #endif" ac_subst_vars='am__EXEEXT_FALSE am__EXEEXT_TRUE LTLIBOBJS LIBOBJS POPT_LIBS POPT_CFLAGS HAVE_UUID_FALSE HAVE_UUID_TRUE CM_DEFAULT_POPULATE_UNIQUE_ID UUID_LIBS UUID_CFLAGS IDN_LIBS IDN_CFLAGS LDAP_LIBS LDAP_CFLAGS CM_DEFAULT_IDLE_TIMEOUT WITH_LOCAL_FALSE WITH_LOCAL_TRUE CM_LOCAL_CA_NAME WITH_CERTMASTER_FALSE WITH_CERTMASTER_TRUE CM_CERTMASTER_CA_NAME WITH_IPA_FALSE WITH_IPA_TRUE CM_IPA_CA_NAME CM_SELF_SIGN_CA_NAME CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY CM_DEFAULT_CERT_LIFETIME CM_DEFAULT_TTL_LIST CM_MINIMUM_EC_KEY_SIZE CM_MINIMUM_DSA_KEY_SIZE CM_MINIMUM_RSA_KEY_SIZE CM_DEFAULT_PUBKEY_SIZE NO_MAN_EC MAN_EC HAVE_EC_FALSE HAVE_EC_TRUE NO_MAN_DSA MAN_DSA HAVE_DSA_FALSE HAVE_DSA_TRUE NOW_FALSE NOW_TRUE PIE_FALSE PIE_TRUE SYSVINIT_FALSE SYSVINIT_TRUE SYSVINIT TMPFILES_FALSE TMPFILES_TRUE TMPFILES SYSTEMDSYSTEMUNITDIR SYSTEMD_FALSE SYSTEMD_TRUE SYSTEMD USE_GMP_FALSE USE_GMP_TRUE GMP_LIBS GMP_CFLAGS HAVE_DBM_NSSDB_FALSE HAVE_DBM_NSSDB_TRUE HAVE_SQL_NSSDB_FALSE HAVE_SQL_NSSDB_TRUE NSS_LIBS NSS_CFLAGS HAVE_NSS_FALSE HAVE_NSS_TRUE OPENSSL_SSL_LIBS OPENSSL_SSL_CFLAGS OPENSSL_LIBS OPENSSL_CFLAGS HAVE_OPENSSL_FALSE HAVE_OPENSSL_TRUE KRB5_LIBS KRB5_CFLAGS KRB5_CONFIG XMLRPC_LIBS XMLRPC_CFLAGS XMLRPC_C_CONFIG CURL_LIBS CURL_CFLAGS XML_LIBS XML_CFLAGS GETCERT_LIBS GETCERT_CFLAGS CERTMONGER_LIBS CERTMONGER_CFLAGS RESOLV_LIBS SYSTEMBUSSERVICESDIR SESSIONBUSSERVICESDIR DBUS_LIBS DBUS_CFLAGS TEVENT_LIBS TEVENT_CFLAGS TALLOC_LIBS TALLOC_CFLAGS PKG_CONFIG_LIBDIR PKG_CONFIG_PATH PKG_CONFIG EGREP GREP CPP CM_DBUS_NAME CERTMONGER_PVT_ADDRESS_ENV CM_NOTIFICATION_ENV CM_TMPDIR_ENV CM_TMPDIR TMPDIR_FALSE TMPDIR_TRUE CM_HOMEDIR HOMEDIR_FALSE HOMEDIR_TRUE CM_STORE_LOCAL_CA_DIRECTORY_ENV CM_STORE_LOCAL_CA_DIRECTORY CM_STORE_CAS_DIRECTORY_ENV CM_STORE_CAS_DIRECTORY CM_STORE_REQUESTS_DIRECTORY_ENV CM_STORE_REQUESTS_DIRECTORY CM_STORE_SYSTEM_LOCK_FILE_ENV CM_STORE_SYSTEM_LOCK_FILE mylibexecdir CM_STORE_CONFIG_DIRECTORY_ENV mysbindir mybindir POSUB LTLIBINTL LIBINTL INTLLIBS LTLIBICONV LIBICONV INTL_MACOSX_LIBS host_os host_vendor host_cpu host build_os build_vendor build_cpu build XGETTEXT_EXTRA_OPTIONS MSGMERGE XGETTEXT_015 XGETTEXT GMSGFMT_015 MSGFMT_015 GMSGFMT MSGFMT GETTEXT_MACRO_VERSION USE_NLS RANLIB am__fastdepCC_FALSE am__fastdepCC_TRUE CCDEPMODE am__nodep AMDEPBACKSLASH AMDEP_FALSE AMDEP_TRUE am__quote am__include DEPDIR OBJEXT EXEEXT ac_ct_CC CPPFLAGS LDFLAGS CFLAGS CC MAINT MAINTAINER_MODE_FALSE MAINTAINER_MODE_TRUE AM_BACKSLASH AM_DEFAULT_VERBOSITY AM_DEFAULT_V AM_V am__untar am__tar AMTAR am__leading_dot SET_MAKE AWK mkdir_p MKDIR_P INSTALL_STRIP_PROGRAM STRIP install_sh MAKEINFO AUTOHEADER AUTOMAKE AUTOCONF ACLOCAL VERSION PACKAGE CYGPATH_W am__isrc INSTALL_DATA INSTALL_SCRIPT INSTALL_PROGRAM target_alias host_alias build_alias LIBS ECHO_T ECHO_N ECHO_C DEFS mandir localedir libdir psdir pdfdir dvidir htmldir infodir docdir oldincludedir includedir localstatedir sharedstatedir sysconfdir datadir datarootdir libexecdir sbindir bindir program_transform_name prefix exec_prefix PACKAGE_URL PACKAGE_BUGREPORT PACKAGE_STRING PACKAGE_VERSION PACKAGE_TARNAME PACKAGE_NAME PATH_SEPARATOR SHELL' ac_subst_files='' ac_user_opts=' enable_option_checking enable_silent_rules enable_maintainer_mode enable_dependency_tracking enable_nls with_gnu_ld enable_rpath with_libiconv_prefix with_libintl_prefix with_file_store_dir with_homedir with_tmpdir enable_srv_location with_gmp enable_systemd enable_tmpfiles enable_sysvinit enable_pie enable_now enable_dsa enable_ec with_idn with_uuid ' ac_precious_vars='build_alias host_alias target_alias CC CFLAGS LDFLAGS LIBS CPPFLAGS CPP PKG_CONFIG PKG_CONFIG_PATH PKG_CONFIG_LIBDIR TALLOC_CFLAGS TALLOC_LIBS TEVENT_CFLAGS TEVENT_LIBS DBUS_CFLAGS DBUS_LIBS CERTMONGER_CFLAGS CERTMONGER_LIBS GETCERT_CFLAGS GETCERT_LIBS XML_CFLAGS XML_LIBS CURL_CFLAGS CURL_LIBS XMLRPC_C_CONFIG KRB5_CONFIG OPENSSL_CFLAGS OPENSSL_LIBS OPENSSL_SSL_CFLAGS OPENSSL_SSL_LIBS NSS_CFLAGS NSS_LIBS IDN_CFLAGS IDN_LIBS UUID_CFLAGS UUID_LIBS' # Initialize some variables set by options. ac_init_help= ac_init_version=false ac_unrecognized_opts= ac_unrecognized_sep= # The variables have the same names as the options, with # dashes changed to underlines. cache_file=/dev/null exec_prefix=NONE no_create= no_recursion= prefix=NONE program_prefix=NONE program_suffix=NONE program_transform_name=s,x,x, silent= site= srcdir= verbose= x_includes=NONE x_libraries=NONE # Installation directory options. # These are left unexpanded so users can "make install exec_prefix=/foo" # and all the variables that are supposed to be based on exec_prefix # by default will actually change. # Use braces instead of parens because sh, perl, etc. also accept them. # (The list follows the same order as the GNU Coding Standards.) bindir='${exec_prefix}/bin' sbindir='${exec_prefix}/sbin' libexecdir='${exec_prefix}/libexec' datarootdir='${prefix}/share' datadir='${datarootdir}' sysconfdir='${prefix}/etc' sharedstatedir='${prefix}/com' localstatedir='${prefix}/var' includedir='${prefix}/include' oldincludedir='/usr/include' docdir='${datarootdir}/doc/${PACKAGE_TARNAME}' infodir='${datarootdir}/info' htmldir='${docdir}' dvidir='${docdir}' pdfdir='${docdir}' psdir='${docdir}' libdir='${exec_prefix}/lib' localedir='${datarootdir}/locale' mandir='${datarootdir}/man' ac_prev= ac_dashdash= for ac_option do # If the previous option needs an argument, assign it. if test -n "$ac_prev"; then eval $ac_prev=\$ac_option ac_prev= continue fi case $ac_option in *=?*) ac_optarg=`expr "X$ac_option" : '[^=]*=\(.*\)'` ;; *=) ac_optarg= ;; *) ac_optarg=yes ;; esac # Accept the important Cygnus configure options, so we can diagnose typos. case $ac_dashdash$ac_option in --) ac_dashdash=yes ;; -bindir | --bindir | --bindi | --bind | --bin | --bi) ac_prev=bindir ;; -bindir=* | --bindir=* | --bindi=* | --bind=* | --bin=* | --bi=*) bindir=$ac_optarg ;; -build | --build | --buil | --bui | --bu) ac_prev=build_alias ;; -build=* | --build=* | --buil=* | --bui=* | --bu=*) build_alias=$ac_optarg ;; -cache-file | --cache-file | --cache-fil | --cache-fi \ | --cache-f | --cache- | --cache | --cach | --cac | --ca | --c) ac_prev=cache_file ;; -cache-file=* | --cache-file=* | --cache-fil=* | --cache-fi=* \ | --cache-f=* | --cache-=* | --cache=* | --cach=* | --cac=* | --ca=* | --c=*) cache_file=$ac_optarg ;; --config-cache | -C) cache_file=config.cache ;; -datadir | --datadir | --datadi | --datad) ac_prev=datadir ;; -datadir=* | --datadir=* | --datadi=* | --datad=*) datadir=$ac_optarg ;; -datarootdir | --datarootdir | --datarootdi | --datarootd | --dataroot \ | --dataroo | --dataro | --datar) ac_prev=datarootdir ;; -datarootdir=* | --datarootdir=* | --datarootdi=* | --datarootd=* \ | --dataroot=* | --dataroo=* | --dataro=* | --datar=*) datarootdir=$ac_optarg ;; -disable-* | --disable-*) ac_useropt=`expr "x$ac_option" : 'x-*disable-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--disable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=no ;; -docdir | --docdir | --docdi | --doc | --do) ac_prev=docdir ;; -docdir=* | --docdir=* | --docdi=* | --doc=* | --do=*) docdir=$ac_optarg ;; -dvidir | --dvidir | --dvidi | --dvid | --dvi | --dv) ac_prev=dvidir ;; -dvidir=* | --dvidir=* | --dvidi=* | --dvid=* | --dvi=* | --dv=*) dvidir=$ac_optarg ;; -enable-* | --enable-*) ac_useropt=`expr "x$ac_option" : 'x-*enable-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--enable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=\$ac_optarg ;; -exec-prefix | --exec_prefix | --exec-prefix | --exec-prefi \ | --exec-pref | --exec-pre | --exec-pr | --exec-p | --exec- \ | --exec | --exe | --ex) ac_prev=exec_prefix ;; -exec-prefix=* | --exec_prefix=* | --exec-prefix=* | --exec-prefi=* \ | --exec-pref=* | --exec-pre=* | --exec-pr=* | --exec-p=* | --exec-=* \ | --exec=* | --exe=* | --ex=*) exec_prefix=$ac_optarg ;; -gas | --gas | --ga | --g) # Obsolete; use --with-gas. with_gas=yes ;; -help | --help | --hel | --he | -h) ac_init_help=long ;; -help=r* | --help=r* | --hel=r* | --he=r* | -hr*) ac_init_help=recursive ;; -help=s* | --help=s* | --hel=s* | --he=s* | -hs*) ac_init_help=short ;; -host | --host | --hos | --ho) ac_prev=host_alias ;; -host=* | --host=* | --hos=* | --ho=*) host_alias=$ac_optarg ;; -htmldir | --htmldir | --htmldi | --htmld | --html | --htm | --ht) ac_prev=htmldir ;; -htmldir=* | --htmldir=* | --htmldi=* | --htmld=* | --html=* | --htm=* \ | --ht=*) htmldir=$ac_optarg ;; -includedir | --includedir | --includedi | --included | --include \ | --includ | --inclu | --incl | --inc) ac_prev=includedir ;; -includedir=* | --includedir=* | --includedi=* | --included=* | --include=* \ | --includ=* | --inclu=* | --incl=* | --inc=*) includedir=$ac_optarg ;; -infodir | --infodir | --infodi | --infod | --info | --inf) ac_prev=infodir ;; -infodir=* | --infodir=* | --infodi=* | --infod=* | --info=* | --inf=*) infodir=$ac_optarg ;; -libdir | --libdir | --libdi | --libd) ac_prev=libdir ;; -libdir=* | --libdir=* | --libdi=* | --libd=*) libdir=$ac_optarg ;; -libexecdir | --libexecdir | --libexecdi | --libexecd | --libexec \ | --libexe | --libex | --libe) ac_prev=libexecdir ;; -libexecdir=* | --libexecdir=* | --libexecdi=* | --libexecd=* | --libexec=* \ | --libexe=* | --libex=* | --libe=*) libexecdir=$ac_optarg ;; -localedir | --localedir | --localedi | --localed | --locale) ac_prev=localedir ;; -localedir=* | --localedir=* | --localedi=* | --localed=* | --locale=*) localedir=$ac_optarg ;; -localstatedir | --localstatedir | --localstatedi | --localstated \ | --localstate | --localstat | --localsta | --localst | --locals) ac_prev=localstatedir ;; -localstatedir=* | --localstatedir=* | --localstatedi=* | --localstated=* \ | --localstate=* | --localstat=* | --localsta=* | --localst=* | --locals=*) localstatedir=$ac_optarg ;; -mandir | --mandir | --mandi | --mand | --man | --ma | --m) ac_prev=mandir ;; -mandir=* | --mandir=* | --mandi=* | --mand=* | --man=* | --ma=* | --m=*) mandir=$ac_optarg ;; -nfp | --nfp | --nf) # Obsolete; use --without-fp. with_fp=no ;; -no-create | --no-create | --no-creat | --no-crea | --no-cre \ | --no-cr | --no-c | -n) no_create=yes ;; -no-recursion | --no-recursion | --no-recursio | --no-recursi \ | --no-recurs | --no-recur | --no-recu | --no-rec | --no-re | --no-r) no_recursion=yes ;; -oldincludedir | --oldincludedir | --oldincludedi | --oldincluded \ | --oldinclude | --oldinclud | --oldinclu | --oldincl | --oldinc \ | --oldin | --oldi | --old | --ol | --o) ac_prev=oldincludedir ;; -oldincludedir=* | --oldincludedir=* | --oldincludedi=* | --oldincluded=* \ | --oldinclude=* | --oldinclud=* | --oldinclu=* | --oldincl=* | --oldinc=* \ | --oldin=* | --oldi=* | --old=* | --ol=* | --o=*) oldincludedir=$ac_optarg ;; -prefix | --prefix | --prefi | --pref | --pre | --pr | --p) ac_prev=prefix ;; -prefix=* | --prefix=* | --prefi=* | --pref=* | --pre=* | --pr=* | --p=*) prefix=$ac_optarg ;; -program-prefix | --program-prefix | --program-prefi | --program-pref \ | --program-pre | --program-pr | --program-p) ac_prev=program_prefix ;; -program-prefix=* | --program-prefix=* | --program-prefi=* \ | --program-pref=* | --program-pre=* | --program-pr=* | --program-p=*) program_prefix=$ac_optarg ;; -program-suffix | --program-suffix | --program-suffi | --program-suff \ | --program-suf | --program-su | --program-s) ac_prev=program_suffix ;; -program-suffix=* | --program-suffix=* | --program-suffi=* \ | --program-suff=* | --program-suf=* | --program-su=* | --program-s=*) program_suffix=$ac_optarg ;; -program-transform-name | --program-transform-name \ | --program-transform-nam | --program-transform-na \ | --program-transform-n | --program-transform- \ | --program-transform | --program-transfor \ | --program-transfo | --program-transf \ | --program-trans | --program-tran \ | --progr-tra | --program-tr | --program-t) ac_prev=program_transform_name ;; -program-transform-name=* | --program-transform-name=* \ | --program-transform-nam=* | --program-transform-na=* \ | --program-transform-n=* | --program-transform-=* \ | --program-transform=* | --program-transfor=* \ | --program-transfo=* | --program-transf=* \ | --program-trans=* | --program-tran=* \ | --progr-tra=* | --program-tr=* | --program-t=*) program_transform_name=$ac_optarg ;; -pdfdir | --pdfdir | --pdfdi | --pdfd | --pdf | --pd) ac_prev=pdfdir ;; -pdfdir=* | --pdfdir=* | --pdfdi=* | --pdfd=* | --pdf=* | --pd=*) pdfdir=$ac_optarg ;; -psdir | --psdir | --psdi | --psd | --ps) ac_prev=psdir ;; -psdir=* | --psdir=* | --psdi=* | --psd=* | --ps=*) psdir=$ac_optarg ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) silent=yes ;; -sbindir | --sbindir | --sbindi | --sbind | --sbin | --sbi | --sb) ac_prev=sbindir ;; -sbindir=* | --sbindir=* | --sbindi=* | --sbind=* | --sbin=* \ | --sbi=* | --sb=*) sbindir=$ac_optarg ;; -sharedstatedir | --sharedstatedir | --sharedstatedi \ | --sharedstated | --sharedstate | --sharedstat | --sharedsta \ | --sharedst | --shareds | --shared | --share | --shar \ | --sha | --sh) ac_prev=sharedstatedir ;; -sharedstatedir=* | --sharedstatedir=* | --sharedstatedi=* \ | --sharedstated=* | --sharedstate=* | --sharedstat=* | --sharedsta=* \ | --sharedst=* | --shareds=* | --shared=* | --share=* | --shar=* \ | --sha=* | --sh=*) sharedstatedir=$ac_optarg ;; -site | --site | --sit) ac_prev=site ;; -site=* | --site=* | --sit=*) site=$ac_optarg ;; -srcdir | --srcdir | --srcdi | --srcd | --src | --sr) ac_prev=srcdir ;; -srcdir=* | --srcdir=* | --srcdi=* | --srcd=* | --src=* | --sr=*) srcdir=$ac_optarg ;; -sysconfdir | --sysconfdir | --sysconfdi | --sysconfd | --sysconf \ | --syscon | --sysco | --sysc | --sys | --sy) ac_prev=sysconfdir ;; -sysconfdir=* | --sysconfdir=* | --sysconfdi=* | --sysconfd=* | --sysconf=* \ | --syscon=* | --sysco=* | --sysc=* | --sys=* | --sy=*) sysconfdir=$ac_optarg ;; -target | --target | --targe | --targ | --tar | --ta | --t) ac_prev=target_alias ;; -target=* | --target=* | --targe=* | --targ=* | --tar=* | --ta=* | --t=*) target_alias=$ac_optarg ;; -v | -verbose | --verbose | --verbos | --verbo | --verb) verbose=yes ;; -version | --version | --versio | --versi | --vers | -V) ac_init_version=: ;; -with-* | --with-*) ac_useropt=`expr "x$ac_option" : 'x-*with-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--with-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=\$ac_optarg ;; -without-* | --without-*) ac_useropt=`expr "x$ac_option" : 'x-*without-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--without-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=no ;; --x) # Obsolete; use --with-x. with_x=yes ;; -x-includes | --x-includes | --x-include | --x-includ | --x-inclu \ | --x-incl | --x-inc | --x-in | --x-i) ac_prev=x_includes ;; -x-includes=* | --x-includes=* | --x-include=* | --x-includ=* | --x-inclu=* \ | --x-incl=* | --x-inc=* | --x-in=* | --x-i=*) x_includes=$ac_optarg ;; -x-libraries | --x-libraries | --x-librarie | --x-librari \ | --x-librar | --x-libra | --x-libr | --x-lib | --x-li | --x-l) ac_prev=x_libraries ;; -x-libraries=* | --x-libraries=* | --x-librarie=* | --x-librari=* \ | --x-librar=* | --x-libra=* | --x-libr=* | --x-lib=* | --x-li=* | --x-l=*) x_libraries=$ac_optarg ;; -*) as_fn_error $? "unrecognized option: \`$ac_option' Try \`$0 --help' for more information" ;; *=*) ac_envvar=`expr "x$ac_option" : 'x\([^=]*\)='` # Reject names that are not valid shell variable names. case $ac_envvar in #( '' | [0-9]* | *[!_$as_cr_alnum]* ) as_fn_error $? "invalid variable name: \`$ac_envvar'" ;; esac eval $ac_envvar=\$ac_optarg export $ac_envvar ;; *) # FIXME: should be removed in autoconf 3.0. $as_echo "$as_me: WARNING: you should use --build, --host, --target" >&2 expr "x$ac_option" : ".*[^-._$as_cr_alnum]" >/dev/null && $as_echo "$as_me: WARNING: invalid host type: $ac_option" >&2 : "${build_alias=$ac_option} ${host_alias=$ac_option} ${target_alias=$ac_option}" ;; esac done if test -n "$ac_prev"; then ac_option=--`echo $ac_prev | sed 's/_/-/g'` as_fn_error $? "missing argument to $ac_option" fi if test -n "$ac_unrecognized_opts"; then case $enable_option_checking in no) ;; fatal) as_fn_error $? "unrecognized options: $ac_unrecognized_opts" ;; *) $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2 ;; esac fi # Check all directory arguments for consistency. for ac_var in exec_prefix prefix bindir sbindir libexecdir datarootdir \ datadir sysconfdir sharedstatedir localstatedir includedir \ oldincludedir docdir infodir htmldir dvidir pdfdir psdir \ libdir localedir mandir do eval ac_val=\$$ac_var # Remove trailing slashes. case $ac_val in */ ) ac_val=`expr "X$ac_val" : 'X\(.*[^/]\)' \| "X$ac_val" : 'X\(.*\)'` eval $ac_var=\$ac_val;; esac # Be sure to have absolute directory names. case $ac_val in [\\/$]* | ?:[\\/]* ) continue;; NONE | '' ) case $ac_var in *prefix ) continue;; esac;; esac as_fn_error $? "expected an absolute directory name for --$ac_var: $ac_val" done # There might be people who depend on the old broken behavior: `$host' # used to hold the argument of --host etc. # FIXME: To remove some day. build=$build_alias host=$host_alias target=$target_alias # FIXME: To remove some day. if test "x$host_alias" != x; then if test "x$build_alias" = x; then cross_compiling=maybe elif test "x$build_alias" != "x$host_alias"; then cross_compiling=yes fi fi ac_tool_prefix= test -n "$host_alias" && ac_tool_prefix=$host_alias- test "$silent" = yes && exec 6>/dev/null ac_pwd=`pwd` && test -n "$ac_pwd" && ac_ls_di=`ls -di .` && ac_pwd_ls_di=`cd "$ac_pwd" && ls -di .` || as_fn_error $? "working directory cannot be determined" test "X$ac_ls_di" = "X$ac_pwd_ls_di" || as_fn_error $? "pwd does not report name of working directory" # Find the source files, if location was not specified. if test -z "$srcdir"; then ac_srcdir_defaulted=yes # Try the directory containing this script, then the parent directory. ac_confdir=`$as_dirname -- "$as_myself" || $as_expr X"$as_myself" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_myself" : 'X\(//\)[^/]' \| \ X"$as_myself" : 'X\(//\)$' \| \ X"$as_myself" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_myself" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` srcdir=$ac_confdir if test ! -r "$srcdir/$ac_unique_file"; then srcdir=.. fi else ac_srcdir_defaulted=no fi if test ! -r "$srcdir/$ac_unique_file"; then test "$ac_srcdir_defaulted" = yes && srcdir="$ac_confdir or .." as_fn_error $? "cannot find sources ($ac_unique_file) in $srcdir" fi ac_msg="sources are in $srcdir, but \`cd $srcdir' does not work" ac_abs_confdir=`( cd "$srcdir" && test -r "./$ac_unique_file" || as_fn_error $? "$ac_msg" pwd)` # When building in place, set srcdir=. if test "$ac_abs_confdir" = "$ac_pwd"; then srcdir=. fi # Remove unnecessary trailing slashes from srcdir. # Double slashes in file names in object file debugging info # mess up M-x gdb in Emacs. case $srcdir in */) srcdir=`expr "X$srcdir" : 'X\(.*[^/]\)' \| "X$srcdir" : 'X\(.*\)'`;; esac for ac_var in $ac_precious_vars; do eval ac_env_${ac_var}_set=\${${ac_var}+set} eval ac_env_${ac_var}_value=\$${ac_var} eval ac_cv_env_${ac_var}_set=\${${ac_var}+set} eval ac_cv_env_${ac_var}_value=\$${ac_var} done # # Report the --help message. # if test "$ac_init_help" = "long"; then # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF \`configure' configures certmonger 0.78.6 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... To assign environment variables (e.g., CC, CFLAGS...), specify them as VAR=VALUE. See below for descriptions of some of the useful variables. Defaults for the options are specified in brackets. Configuration: -h, --help display this help and exit --help=short display options specific to this package --help=recursive display the short help of all the included packages -V, --version display version information and exit -q, --quiet, --silent do not print \`checking ...' messages --cache-file=FILE cache test results in FILE [disabled] -C, --config-cache alias for \`--cache-file=config.cache' -n, --no-create do not create output files --srcdir=DIR find the sources in DIR [configure dir or \`..'] Installation directories: --prefix=PREFIX install architecture-independent files in PREFIX [$ac_default_prefix] --exec-prefix=EPREFIX install architecture-dependent files in EPREFIX [PREFIX] By default, \`make install' will install all the files in \`$ac_default_prefix/bin', \`$ac_default_prefix/lib' etc. You can specify an installation prefix other than \`$ac_default_prefix' using \`--prefix', for instance \`--prefix=\$HOME'. For better control, use the options below. Fine tuning of the installation directories: --bindir=DIR user executables [EPREFIX/bin] --sbindir=DIR system admin executables [EPREFIX/sbin] --libexecdir=DIR program executables [EPREFIX/libexec] --sysconfdir=DIR read-only single-machine data [PREFIX/etc] --sharedstatedir=DIR modifiable architecture-independent data [PREFIX/com] --localstatedir=DIR modifiable single-machine data [PREFIX/var] --libdir=DIR object code libraries [EPREFIX/lib] --includedir=DIR C header files [PREFIX/include] --oldincludedir=DIR C header files for non-gcc [/usr/include] --datarootdir=DIR read-only arch.-independent data root [PREFIX/share] --datadir=DIR read-only architecture-independent data [DATAROOTDIR] --infodir=DIR info documentation [DATAROOTDIR/info] --localedir=DIR locale-dependent data [DATAROOTDIR/locale] --mandir=DIR man documentation [DATAROOTDIR/man] --docdir=DIR documentation root [DATAROOTDIR/doc/certmonger] --htmldir=DIR html documentation [DOCDIR] --dvidir=DIR dvi documentation [DOCDIR] --pdfdir=DIR pdf documentation [DOCDIR] --psdir=DIR ps documentation [DOCDIR] _ACEOF cat <<\_ACEOF Program names: --program-prefix=PREFIX prepend PREFIX to installed program names --program-suffix=SUFFIX append SUFFIX to installed program names --program-transform-name=PROGRAM run sed PROGRAM on installed program names System types: --build=BUILD configure for building on BUILD [guessed] --host=HOST cross-compile to build programs to run on HOST [BUILD] _ACEOF fi if test -n "$ac_init_help"; then case $ac_init_help in short | recursive ) echo "Configuration of certmonger 0.78.6:";; esac cat <<\_ACEOF Optional Features: --disable-option-checking ignore unrecognized --enable/--with options --disable-FEATURE do not include FEATURE (same as --enable-FEATURE=no) --enable-FEATURE[=ARG] include FEATURE [ARG=yes] --enable-silent-rules less verbose build output (undo: "make V=1") --disable-silent-rules verbose build output (undo: "make V=0") --disable-maintainer-mode disable make rules and dependencies not useful (and sometimes confusing) to the casual installer --enable-dependency-tracking do not reject slow dependency extractors --disable-dependency-tracking speeds up one-time build --disable-nls do not use Native Language Support --disable-rpath do not hardcode runtime library paths --disable-srv-location disable SRV location for servers --enable-systemd install unit files for systemd --enable-tmpfiles install systemd tmpfiles.d configuration file for systemd (default: same as --enable-systemd) --enable-sysvinit=/etc/init.d install sysvinit script in specified location --enable-pie Build position-independent executables. --enable-now Mark binaries with bind-now flag. --disable-dsa Disable DSA key support, even if available. --disable-ec Disable EC key support, even if available. Optional Packages: --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) --with-gnu-ld assume the C compiler uses GNU ld default=no --with-libiconv-prefix[=DIR] search for libiconv in DIR/include and DIR/lib --without-libiconv-prefix don't search for libiconv in includedir and libdir --with-libintl-prefix[=DIR] search for libintl in DIR/include and DIR/lib --without-libintl-prefix don't search for libintl in includedir and libdir --with-file-store-dir=/var/lib/certmonger directory to use for storing data --with-homedir=/ directory to set as $HOME when running subprocesses as root --with-tmpdir=NONE directory to use for temporary storage --with-gmp use gmp for converting hex serial numbers to decimal --without-idn do not handle international dnsName subjectAltNames or international domain names during service location --with-uuid populate subjectUniqueID in self-signed certs Some influential environment variables: CC C compiler command CFLAGS C compiler flags LDFLAGS linker flags, e.g. -L if you have libraries in a nonstandard directory LIBS libraries to pass to the linker, e.g. -l CPPFLAGS (Objective) C/C++ preprocessor flags, e.g. -I if you have headers in a nonstandard directory CPP C preprocessor PKG_CONFIG path to pkg-config utility PKG_CONFIG_PATH directories to add to pkg-config's search path PKG_CONFIG_LIBDIR path overriding pkg-config's built-in search path TALLOC_CFLAGS C compiler flags for TALLOC, overriding pkg-config TALLOC_LIBS linker flags for TALLOC, overriding pkg-config TEVENT_CFLAGS C compiler flags for TEVENT, overriding pkg-config TEVENT_LIBS linker flags for TEVENT, overriding pkg-config DBUS_CFLAGS C compiler flags for DBUS, overriding pkg-config DBUS_LIBS linker flags for DBUS, overriding pkg-config CERTMONGER_CFLAGS C compiler flags for CERTMONGER, overriding pkg-config CERTMONGER_LIBS linker flags for CERTMONGER, overriding pkg-config GETCERT_CFLAGS C compiler flags for GETCERT, overriding pkg-config GETCERT_LIBS linker flags for GETCERT, overriding pkg-config XML_CFLAGS C compiler flags for XML, overriding pkg-config XML_LIBS linker flags for XML, overriding pkg-config CURL_CFLAGS C compiler flags for CURL, overriding pkg-config CURL_LIBS linker flags for CURL, overriding pkg-config XMLRPC_C_CONFIG the full path of the xmlrpc-c-config command KRB5_CONFIG the full path of the krb5-config command OPENSSL_CFLAGS C compiler flags for OPENSSL, overriding pkg-config OPENSSL_LIBS linker flags for OPENSSL, overriding pkg-config OPENSSL_SSL_CFLAGS C compiler flags for OPENSSL_SSL, overriding pkg-config OPENSSL_SSL_LIBS linker flags for OPENSSL_SSL, overriding pkg-config NSS_CFLAGS C compiler flags for NSS, overriding pkg-config NSS_LIBS linker flags for NSS, overriding pkg-config IDN_CFLAGS C compiler flags for IDN, overriding pkg-config IDN_LIBS linker flags for IDN, overriding pkg-config UUID_CFLAGS C compiler flags for UUID, overriding pkg-config UUID_LIBS linker flags for UUID, overriding pkg-config Use these variables to override the choices made by `configure' or to help it to find libraries and programs with nonstandard names/locations. Report bugs to the package provider. _ACEOF ac_status=$? fi if test "$ac_init_help" = "recursive"; then # If there are subdirs, report their specific --help. for ac_dir in : $ac_subdirs_all; do test "x$ac_dir" = x: && continue test -d "$ac_dir" || { cd "$srcdir" && ac_pwd=`pwd` && srcdir=. && test -d "$ac_dir"; } || continue ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix cd "$ac_dir" || { ac_status=$?; continue; } # Check for guested configure. if test -f "$ac_srcdir/configure.gnu"; then echo && $SHELL "$ac_srcdir/configure.gnu" --help=recursive elif test -f "$ac_srcdir/configure"; then echo && $SHELL "$ac_srcdir/configure" --help=recursive else $as_echo "$as_me: WARNING: no configuration information is in $ac_dir" >&2 fi || ac_status=$? cd "$ac_pwd" || { ac_status=$?; break; } done fi test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF certmonger configure 0.78.6 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. This configure script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it. _ACEOF exit fi ## ------------------------ ## ## Autoconf initialization. ## ## ------------------------ ## # ac_fn_c_try_compile LINENO # -------------------------- # Try to compile conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest.$ac_objext; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_compile # ac_fn_c_try_link LINENO # ----------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_link () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext conftest$ac_exeext if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest$ac_exeext && { test "$cross_compiling" = yes || test -x conftest$ac_exeext }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi # Delete the IPA/IPO (Inter Procedural Analysis/Optimization) information # created by the PGI compiler (conftest_ipa8_conftest.oo), as it would # interfere with the next link command; also delete a directory that is # left behind by Apple's compiler. We do this before executing the actions. rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_link # ac_fn_c_try_run LINENO # ---------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. Assumes # that executables *can* be run. ac_fn_c_try_run () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { ac_try='./conftest$ac_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then : ac_retval=0 else $as_echo "$as_me: program exited with status $ac_status" >&5 $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=$ac_status fi rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_run # ac_fn_c_check_header_compile LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists and can be compiled using the include files in # INCLUDES, setting the cache variable VAR accordingly. ac_fn_c_check_header_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_compile # ac_fn_c_try_cpp LINENO # ---------------------- # Try to preprocess conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_cpp () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_cpp conftest.$ac_ext" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_cpp conftest.$ac_ext") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } > conftest.i && { test -z "$ac_c_preproc_warn_flag$ac_c_werror_flag" || test ! -s conftest.err }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_cpp # ac_fn_c_check_header_mongrel LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists, giving a warning if it cannot be compiled using # the include files in INCLUDES and setting the cache variable VAR # accordingly. ac_fn_c_check_header_mongrel () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if eval \${$3+:} false; then : { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } else # Is the header compilable? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 usability" >&5 $as_echo_n "checking $2 usability... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_header_compiler=yes else ac_header_compiler=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_compiler" >&5 $as_echo "$ac_header_compiler" >&6; } # Is the header present? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 presence" >&5 $as_echo_n "checking $2 presence... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include <$2> _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : ac_header_preproc=yes else ac_header_preproc=no fi rm -f conftest.err conftest.i conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_preproc" >&5 $as_echo "$ac_header_preproc" >&6; } # So? What about this header? case $ac_header_compiler:$ac_header_preproc:$ac_c_preproc_warn_flag in #(( yes:no: ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&5 $as_echo "$as_me: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; no:yes:* ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: present but cannot be compiled" >&5 $as_echo "$as_me: WARNING: $2: present but cannot be compiled" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: check for missing prerequisite headers?" >&5 $as_echo "$as_me: WARNING: $2: check for missing prerequisite headers?" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: see the Autoconf documentation" >&5 $as_echo "$as_me: WARNING: $2: see the Autoconf documentation" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&5 $as_echo "$as_me: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else eval "$3=\$ac_header_compiler" fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_mongrel # ac_fn_c_check_func LINENO FUNC VAR # ---------------------------------- # Tests whether FUNC exists, setting the cache variable VAR accordingly ac_fn_c_check_func () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Define $2 to an innocuous variant, in case declares $2. For example, HP-UX 11i declares gettimeofday. */ #define $2 innocuous_$2 /* System header to define __stub macros and hopefully few prototypes, which can conflict with char $2 (); below. Prefer to if __STDC__ is defined, since exists even on freestanding compilers. */ #ifdef __STDC__ # include #else # include #endif #undef $2 /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char $2 (); /* The GNU C library defines this for functions which it implements to always fail with ENOSYS. Some functions are actually named something starting with __ and the normal name is an alias. */ #if defined __stub_$2 || defined __stub___$2 choke me #endif int main () { return $2 (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_func # ac_fn_c_check_decl LINENO SYMBOL VAR INCLUDES # --------------------------------------------- # Tests whether SYMBOL is declared in INCLUDES, setting cache variable VAR # accordingly. ac_fn_c_check_decl () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack as_decl_name=`echo $2|sed 's/ *(.*//'` as_decl_use=`echo $2|sed -e 's/(/((/' -e 's/)/) 0&/' -e 's/,/) 0& (/g'` { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $as_decl_name is declared" >&5 $as_echo_n "checking whether $as_decl_name is declared... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 int main () { #ifndef $as_decl_name #ifdef __cplusplus (void) $as_decl_use; #else (void) $as_decl_name; #endif #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_decl # ac_fn_c_check_member LINENO AGGR MEMBER VAR INCLUDES # ---------------------------------------------------- # Tries to find if the field MEMBER exists in type AGGR, after including # INCLUDES, setting cache variable VAR accordingly. ac_fn_c_check_member () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2.$3" >&5 $as_echo_n "checking for $2.$3... " >&6; } if eval \${$4+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $5 int main () { static $2 ac_aggr; if (ac_aggr.$3) return 0; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$4=yes" else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $5 int main () { static $2 ac_aggr; if (sizeof ac_aggr.$3) return 0; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$4=yes" else eval "$4=no" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$4 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_member # ac_fn_c_check_type LINENO TYPE VAR INCLUDES # ------------------------------------------- # Tests whether TYPE exists after having included INCLUDES, setting cache # variable VAR accordingly. ac_fn_c_check_type () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else eval "$3=no" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 int main () { if (sizeof ($2)) return 0; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 int main () { if (sizeof (($2))) return 0; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else eval "$3=yes" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_type cat >config.log <<_ACEOF This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. It was created by certmonger $as_me 0.78.6, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ _ACEOF exec 5>>config.log { cat <<_ASUNAME ## --------- ## ## Platform. ## ## --------- ## hostname = `(hostname || uname -n) 2>/dev/null | sed 1q` uname -m = `(uname -m) 2>/dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null || echo unknown` /bin/uname -X = `(/bin/uname -X) 2>/dev/null || echo unknown` /bin/arch = `(/bin/arch) 2>/dev/null || echo unknown` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null || echo unknown` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null || echo unknown` /usr/bin/hostinfo = `(/usr/bin/hostinfo) 2>/dev/null || echo unknown` /bin/machine = `(/bin/machine) 2>/dev/null || echo unknown` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null || echo unknown` /bin/universe = `(/bin/universe) 2>/dev/null || echo unknown` _ASUNAME as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. $as_echo "PATH: $as_dir" done IFS=$as_save_IFS } >&5 cat >&5 <<_ACEOF ## ----------- ## ## Core tests. ## ## ----------- ## _ACEOF # Keep a trace of the command line. # Strip out --no-create and --no-recursion so they do not pile up. # Strip out --silent because we don't want to record it for future runs. # Also quote any args containing shell meta-characters. # Make two passes to allow for proper duplicate-argument suppression. ac_configure_args= ac_configure_args0= ac_configure_args1= ac_must_keep_next=false for ac_pass in 1 2 do for ac_arg do case $ac_arg in -no-create | --no-c* | -n | -no-recursion | --no-r*) continue ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) continue ;; *\'*) ac_arg=`$as_echo "$ac_arg" | sed "s/'/'\\\\\\\\''/g"` ;; esac case $ac_pass in 1) as_fn_append ac_configure_args0 " '$ac_arg'" ;; 2) as_fn_append ac_configure_args1 " '$ac_arg'" if test $ac_must_keep_next = true; then ac_must_keep_next=false # Got value, back to normal. else case $ac_arg in *=* | --config-cache | -C | -disable-* | --disable-* \ | -enable-* | --enable-* | -gas | --g* | -nfp | --nf* \ | -q | -quiet | --q* | -silent | --sil* | -v | -verb* \ | -with-* | --with-* | -without-* | --without-* | --x) case "$ac_configure_args0 " in "$ac_configure_args1"*" '$ac_arg' "* ) continue ;; esac ;; -* ) ac_must_keep_next=true ;; esac fi as_fn_append ac_configure_args " '$ac_arg'" ;; esac done done { ac_configure_args0=; unset ac_configure_args0;} { ac_configure_args1=; unset ac_configure_args1;} # When interrupted or exit'd, cleanup temporary files, and complete # config.log. We remove comments because anyway the quotes in there # would cause problems or look ugly. # WARNING: Use '\'' to represent an apostrophe within the trap. # WARNING: Do not start the trap code with a newline, due to a FreeBSD 4.0 bug. trap 'exit_status=$? # Save into config.log some information that might help in debugging. { echo $as_echo "## ---------------- ## ## Cache variables. ## ## ---------------- ##" echo # The following way of writing the cache mishandles newlines in values, ( for ac_var in `(set) 2>&1 | sed -n '\''s/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'\''`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space='\'' '\''; set) 2>&1` in #( *${as_nl}ac_space=\ *) sed -n \ "s/'\''/'\''\\\\'\'''\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\''\\2'\''/p" ;; #( *) sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) echo $as_echo "## ----------------- ## ## Output variables. ## ## ----------------- ##" echo for ac_var in $ac_subst_vars do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo if test -n "$ac_subst_files"; then $as_echo "## ------------------- ## ## File substitutions. ## ## ------------------- ##" echo for ac_var in $ac_subst_files do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo fi if test -s confdefs.h; then $as_echo "## ----------- ## ## confdefs.h. ## ## ----------- ##" echo cat confdefs.h echo fi test "$ac_signal" != 0 && $as_echo "$as_me: caught signal $ac_signal" $as_echo "$as_me: exit $exit_status" } >&5 rm -f core *.core core.conftest.* && rm -f -r conftest* confdefs* conf$$* $ac_clean_files && exit $exit_status ' 0 for ac_signal in 1 2 13 15; do trap 'ac_signal='$ac_signal'; as_fn_exit 1' $ac_signal done ac_signal=0 # confdefs.h avoids OS command line length limits that DEFS can exceed. rm -f -r conftest* confdefs.h $as_echo "/* confdefs.h */" > confdefs.h # Predefined preprocessor variables. cat >>confdefs.h <<_ACEOF #define PACKAGE_NAME "$PACKAGE_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_TARNAME "$PACKAGE_TARNAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_VERSION "$PACKAGE_VERSION" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_STRING "$PACKAGE_STRING" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_BUGREPORT "$PACKAGE_BUGREPORT" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_URL "$PACKAGE_URL" _ACEOF # Let the site file select an alternate cache file if it wants to. # Prefer an explicitly selected file to automatically selected ones. ac_site_file1=NONE ac_site_file2=NONE if test -n "$CONFIG_SITE"; then # We do not want a PATH search for config.site. case $CONFIG_SITE in #(( -*) ac_site_file1=./$CONFIG_SITE;; */*) ac_site_file1=$CONFIG_SITE;; *) ac_site_file1=./$CONFIG_SITE;; esac elif test "x$prefix" != xNONE; then ac_site_file1=$prefix/share/config.site ac_site_file2=$prefix/etc/config.site else ac_site_file1=$ac_default_prefix/share/config.site ac_site_file2=$ac_default_prefix/etc/config.site fi for ac_site_file in "$ac_site_file1" "$ac_site_file2" do test "x$ac_site_file" = xNONE && continue if test /dev/null != "$ac_site_file" && test -r "$ac_site_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading site script $ac_site_file" >&5 $as_echo "$as_me: loading site script $ac_site_file" >&6;} sed 's/^/| /' "$ac_site_file" >&5 . "$ac_site_file" \ || { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "failed to load site script $ac_site_file See \`config.log' for more details" "$LINENO" 5; } fi done if test -r "$cache_file"; then # Some versions of bash will fail to source /dev/null (special files # actually), so we avoid doing that. DJGPP emulates it as a regular file. if test /dev/null != "$cache_file" && test -f "$cache_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading cache $cache_file" >&5 $as_echo "$as_me: loading cache $cache_file" >&6;} case $cache_file in [\\/]* | ?:[\\/]* ) . "$cache_file";; *) . "./$cache_file";; esac fi else { $as_echo "$as_me:${as_lineno-$LINENO}: creating cache $cache_file" >&5 $as_echo "$as_me: creating cache $cache_file" >&6;} >$cache_file fi gt_needs="$gt_needs " # Check that the precious variables saved in the cache have kept the same # value. ac_cache_corrupted=false for ac_var in $ac_precious_vars; do eval ac_old_set=\$ac_cv_env_${ac_var}_set eval ac_new_set=\$ac_env_${ac_var}_set eval ac_old_val=\$ac_cv_env_${ac_var}_value eval ac_new_val=\$ac_env_${ac_var}_value case $ac_old_set,$ac_new_set in set,) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&2;} ac_cache_corrupted=: ;; ,set) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was not set in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was not set in the previous run" >&2;} ac_cache_corrupted=: ;; ,);; *) if test "x$ac_old_val" != "x$ac_new_val"; then # differences in whitespace do not lead to failure. ac_old_val_w=`echo x $ac_old_val` ac_new_val_w=`echo x $ac_new_val` if test "$ac_old_val_w" != "$ac_new_val_w"; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' has changed since the previous run:" >&5 $as_echo "$as_me: error: \`$ac_var' has changed since the previous run:" >&2;} ac_cache_corrupted=: else { $as_echo "$as_me:${as_lineno-$LINENO}: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&5 $as_echo "$as_me: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&2;} eval $ac_var=\$ac_old_val fi { $as_echo "$as_me:${as_lineno-$LINENO}: former value: \`$ac_old_val'" >&5 $as_echo "$as_me: former value: \`$ac_old_val'" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: current value: \`$ac_new_val'" >&5 $as_echo "$as_me: current value: \`$ac_new_val'" >&2;} fi;; esac # Pass precious variables to config.status. if test "$ac_new_set" = set; then case $ac_new_val in *\'*) ac_arg=$ac_var=`$as_echo "$ac_new_val" | sed "s/'/'\\\\\\\\''/g"` ;; *) ac_arg=$ac_var=$ac_new_val ;; esac case " $ac_configure_args " in *" '$ac_arg' "*) ;; # Avoid dups. Use of quotes ensures accuracy. *) as_fn_append ac_configure_args " '$ac_arg'" ;; esac fi done if $ac_cache_corrupted; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: error: changes in the environment can compromise the build" >&5 $as_echo "$as_me: error: changes in the environment can compromise the build" >&2;} as_fn_error $? "run \`make distclean' and/or \`rm $cache_file' and start over" "$LINENO" 5 fi ## -------------------- ## ## Main body of script. ## ## -------------------- ## ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu am__api_version='1.15' ac_aux_dir= for ac_dir in "$srcdir" "$srcdir/.." "$srcdir/../.."; do if test -f "$ac_dir/install-sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install-sh -c" break elif test -f "$ac_dir/install.sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install.sh -c" break elif test -f "$ac_dir/shtool"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/shtool install -c" break fi done if test -z "$ac_aux_dir"; then as_fn_error $? "cannot find install-sh, install.sh, or shtool in \"$srcdir\" \"$srcdir/..\" \"$srcdir/../..\"" "$LINENO" 5 fi # These three variables are undocumented and unsupported, # and are intended to be withdrawn in a future Autoconf release. # They can cause serious problems if a builder's source tree is in a directory # whose full name contains unusual characters. ac_config_guess="$SHELL $ac_aux_dir/config.guess" # Please don't use this var. ac_config_sub="$SHELL $ac_aux_dir/config.sub" # Please don't use this var. ac_configure="$SHELL $ac_aux_dir/configure" # Please don't use this var. # Find a good install program. We prefer a C program (faster), # so one script is as good as another. But avoid the broken or # incompatible versions: # SysV /etc/install, /usr/sbin/install # SunOS /usr/etc/install # IRIX /sbin/install # AIX /bin/install # AmigaOS /C/install, which installs bootblocks on floppy discs # AIX 4 /usr/bin/installbsd, which doesn't work without a -g flag # AFS /usr/afsws/bin/install, which mishandles nonexistent args # SVR4 /usr/ucb/install, which tries to use the nonexistent group "staff" # OS/2's system install, which has a completely different semantic # ./install, which can be erroneously created by make from ./install.sh. # Reject install programs that cannot install multiple files. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a BSD-compatible install" >&5 $as_echo_n "checking for a BSD-compatible install... " >&6; } if test -z "$INSTALL"; then if ${ac_cv_path_install+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. # Account for people who put trailing slashes in PATH elements. case $as_dir/ in #(( ./ | .// | /[cC]/* | \ /etc/* | /usr/sbin/* | /usr/etc/* | /sbin/* | /usr/afsws/bin/* | \ ?:[\\/]os2[\\/]install[\\/]* | ?:[\\/]OS2[\\/]INSTALL[\\/]* | \ /usr/ucb/* ) ;; *) # OSF1 and SCO ODT 3.0 have their own names for install. # Don't use installbsd from OSF since it installs stuff as root # by default. for ac_prog in ginstall scoinst install; do for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext"; then if test $ac_prog = install && grep dspmsg "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # AIX install. It has an incompatible calling convention. : elif test $ac_prog = install && grep pwplus "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # program-specific install script used by HP pwplus--don't use. : else rm -rf conftest.one conftest.two conftest.dir echo one > conftest.one echo two > conftest.two mkdir conftest.dir if "$as_dir/$ac_prog$ac_exec_ext" -c conftest.one conftest.two "`pwd`/conftest.dir" && test -s conftest.one && test -s conftest.two && test -s conftest.dir/conftest.one && test -s conftest.dir/conftest.two then ac_cv_path_install="$as_dir/$ac_prog$ac_exec_ext -c" break 3 fi fi fi done done ;; esac done IFS=$as_save_IFS rm -rf conftest.one conftest.two conftest.dir fi if test "${ac_cv_path_install+set}" = set; then INSTALL=$ac_cv_path_install else # As a last resort, use the slow shell script. Don't cache a # value for INSTALL within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. INSTALL=$ac_install_sh fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INSTALL" >&5 $as_echo "$INSTALL" >&6; } # Use test -z because SunOS4 sh mishandles braces in ${var-val}. # It thinks the first close brace ends the variable substitution. test -z "$INSTALL_PROGRAM" && INSTALL_PROGRAM='${INSTALL}' test -z "$INSTALL_SCRIPT" && INSTALL_SCRIPT='${INSTALL}' test -z "$INSTALL_DATA" && INSTALL_DATA='${INSTALL} -m 644' { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether build environment is sane" >&5 $as_echo_n "checking whether build environment is sane... " >&6; } # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[\\\"\#\$\&\'\`$am_lf]*) as_fn_error $? "unsafe absolute working directory name" "$LINENO" 5;; esac case $srcdir in *[\\\"\#\$\&\'\`$am_lf\ \ ]*) as_fn_error $? "unsafe srcdir value: '$srcdir'" "$LINENO" 5;; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$*" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$*" != "X $srcdir/configure conftest.file" \ && test "$*" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". as_fn_error $? "ls -t appears to fail. Make sure there is not a broken alias in your environment" "$LINENO" 5 fi if test "$2" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$2" = conftest.file ) then # Ok. : else as_fn_error $? "newly created file is older than distributed files! Check your system clock" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi rm -f conftest.file test "$program_prefix" != NONE && program_transform_name="s&^&$program_prefix&;$program_transform_name" # Use a double $ so make ignores it. test "$program_suffix" != NONE && program_transform_name="s&\$&$program_suffix&;$program_transform_name" # Double any \ or $. # By default was `s,x,x', remove it if useless. ac_script='s/[\\$]/&&/g;s/;s,x,x,$//' program_transform_name=`$as_echo "$program_transform_name" | sed "$ac_script"` # Expand $ac_aux_dir to an absolute path. am_aux_dir=`cd "$ac_aux_dir" && pwd` if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: 'missing' script is too old or missing" >&5 $as_echo "$as_me: WARNING: 'missing' script is too old or missing" >&2;} fi if test x"${install_sh+set}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. if test "$cross_compiling" != no; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 $as_echo "$STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 $as_echo "$ac_ct_STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then STRIP=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP fi else STRIP="$ac_cv_prog_STRIP" fi fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a thread-safe mkdir -p" >&5 $as_echo_n "checking for a thread-safe mkdir -p... " >&6; } if test -z "$MKDIR_P"; then if ${ac_cv_path_mkdir+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/opt/sfw/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in mkdir gmkdir; do for ac_exec_ext in '' $ac_executable_extensions; do as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext" || continue case `"$as_dir/$ac_prog$ac_exec_ext" --version 2>&1` in #( 'mkdir (GNU coreutils) '* | \ 'mkdir (coreutils) '* | \ 'mkdir (fileutils) '4.1*) ac_cv_path_mkdir=$as_dir/$ac_prog$ac_exec_ext break 3;; esac done done done IFS=$as_save_IFS fi test -d ./--version && rmdir ./--version if test "${ac_cv_path_mkdir+set}" = set; then MKDIR_P="$ac_cv_path_mkdir -p" else # As a last resort, use the slow shell script. Don't cache a # value for MKDIR_P within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. MKDIR_P="$ac_install_sh -d" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MKDIR_P" >&5 $as_echo "$MKDIR_P" >&6; } for ac_prog in gawk mawk nawk awk do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_AWK+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$AWK"; then ac_cv_prog_AWK="$AWK" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_AWK="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi AWK=$ac_cv_prog_AWK if test -n "$AWK"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 $as_echo "$AWK" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$AWK" && break done { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 $as_echo_n "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } set x ${MAKE-make} ac_make=`$as_echo "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` if eval \${ac_cv_prog_make_${ac_make}_set+:} false; then : $as_echo_n "(cached) " >&6 else cat >conftest.make <<\_ACEOF SHELL = /bin/sh all: @echo '@@@%%%=$(MAKE)=@@@%%%' _ACEOF # GNU make sometimes prints "make[1]: Entering ...", which would confuse us. case `${MAKE-make} -f conftest.make 2>/dev/null` in *@@@%%%=?*=@@@%%%*) eval ac_cv_prog_make_${ac_make}_set=yes;; *) eval ac_cv_prog_make_${ac_make}_set=no;; esac rm -f conftest.make fi if eval test \$ac_cv_prog_make_${ac_make}_set = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } SET_MAKE= else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } SET_MAKE="MAKE=${MAKE-make}" fi rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null # Check whether --enable-silent-rules was given. if test "${enable_silent_rules+set}" = set; then : enableval=$enable_silent_rules; fi case $enable_silent_rules in # ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=1;; esac am_make=${MAKE-make} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 $as_echo_n "checking whether $am_make supports nested variables... " >&6; } if ${am_cv_make_support_nested_variables+:} false; then : $as_echo_n "(cached) " >&6 else if $as_echo 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit' | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 $as_echo "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AM_BACKSLASH='\' if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." am__isrc=' -I$(srcdir)' # test to see if srcdir already configured if test -f $srcdir/config.status; then as_fn_error $? "source directory already configured; run \"make distclean\" there first" "$LINENO" 5 fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi # Define the identity of the package. PACKAGE='certmonger' VERSION='0.78.6' cat >>confdefs.h <<_ACEOF #define PACKAGE "$PACKAGE" _ACEOF cat >>confdefs.h <<_ACEOF #define VERSION "$VERSION" _ACEOF # Some tools Automake needs. ACLOCAL=${ACLOCAL-"${am_missing_run}aclocal-${am__api_version}"} AUTOCONF=${AUTOCONF-"${am_missing_run}autoconf"} AUTOMAKE=${AUTOMAKE-"${am_missing_run}automake-${am__api_version}"} AUTOHEADER=${AUTOHEADER-"${am_missing_run}autoheader"} MAKEINFO=${MAKEINFO-"${am_missing_run}makeinfo"} # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # mkdir_p='$(MKDIR_P)' # We need awk for the "check" target (and possibly the TAP driver). The # system "awk" is bad on some platforms. # Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AMTAR='$${TAR-tar}' # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar pax cpio none' am__tar='$${TAR-tar} chof - "$$tardir"' am__untar='$${TAR-tar} xf -' # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END as_fn_error $? "Your 'rm' program is bad, sorry." "$LINENO" 5 fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to enable maintainer-specific portions of Makefiles" >&5 $as_echo_n "checking whether to enable maintainer-specific portions of Makefiles... " >&6; } # Check whether --enable-maintainer-mode was given. if test "${enable_maintainer_mode+set}" = set; then : enableval=$enable_maintainer_mode; USE_MAINTAINER_MODE=$enableval else USE_MAINTAINER_MODE=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $USE_MAINTAINER_MODE" >&5 $as_echo "$USE_MAINTAINER_MODE" >&6; } if test $USE_MAINTAINER_MODE = yes; then MAINTAINER_MODE_TRUE= MAINTAINER_MODE_FALSE='#' else MAINTAINER_MODE_TRUE='#' MAINTAINER_MODE_FALSE= fi MAINT=$MAINTAINER_MODE_TRUE ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}gcc", so it can be a program name with args. set dummy ${ac_tool_prefix}gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_CC"; then ac_ct_CC=$CC # Extract the first word of "gcc", so it can be a program name with args. set dummy gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi else CC="$ac_cv_prog_CC" fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}cc", so it can be a program name with args. set dummy ${ac_tool_prefix}cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi if test -z "$CC"; then # Extract the first word of "cc", so it can be a program name with args. set dummy cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else ac_prog_rejected=no as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then if test "$as_dir/$ac_word$ac_exec_ext" = "/usr/ucb/cc"; then ac_prog_rejected=yes continue fi ac_cv_prog_CC="cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS if test $ac_prog_rejected = yes; then # We found a bogon in the path, so make sure we never use it. set dummy $ac_cv_prog_CC shift if test $# != 0; then # We chose a different compiler from the bogus one. # However, it has the same basename, so the bogon will be chosen # first if we set CC to just the basename; use the full file name. shift ac_cv_prog_CC="$as_dir/$ac_word${1+' '}$@" fi fi fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then for ac_prog in cl.exe do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$CC" && break done fi if test -z "$CC"; then ac_ct_CC=$CC for ac_prog in cl.exe do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_CC" && break done if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi fi fi test -z "$CC" && { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "no acceptable C compiler found in \$PATH See \`config.log' for more details" "$LINENO" 5; } # Provide some information about the compiler. $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler version" >&5 set X $ac_compile ac_compiler=$2 for ac_option in --version -v -V -qversion; do { { ac_try="$ac_compiler $ac_option >&5" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compiler $ac_option >&5") 2>conftest.err ac_status=$? if test -s conftest.err; then sed '10a\ ... rest of stderr output deleted ... 10q' conftest.err >conftest.er1 cat conftest.er1 >&5 fi rm -f conftest.er1 conftest.err $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } done cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files a.out a.out.dSYM a.exe b.out" # Try to create an executable without -o first, disregard a.out. # It will help us diagnose broken compilers, and finding out an intuition # of exeext. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the C compiler works" >&5 $as_echo_n "checking whether the C compiler works... " >&6; } ac_link_default=`$as_echo "$ac_link" | sed 's/ -o *conftest[^ ]*//'` # The possible output files: ac_files="a.out conftest.exe conftest a.exe a_out.exe b.out conftest.*" ac_rmfiles= for ac_file in $ac_files do case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; * ) ac_rmfiles="$ac_rmfiles $ac_file";; esac done rm -f $ac_rmfiles if { { ac_try="$ac_link_default" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link_default") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # Autoconf-2.13 could set the ac_cv_exeext variable to `no'. # So ignore a value of `no', otherwise this would lead to `EXEEXT = no' # in a Makefile. We should not override ac_cv_exeext if it was cached, # so that the user can short-circuit this test for compilers unknown to # Autoconf. for ac_file in $ac_files '' do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; [ab].out ) # We found the default executable, but exeext='' is most # certainly right. break;; *.* ) if test "${ac_cv_exeext+set}" = set && test "$ac_cv_exeext" != no; then :; else ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` fi # We set ac_cv_exeext here because the later test for it is not # safe: cross compilers may not add the suffix if given an `-o' # argument, so we may need to know it at that point already. # Even if this section looks crufty: it has the advantage of # actually working. break;; * ) break;; esac done test "$ac_cv_exeext" = no && ac_cv_exeext= else ac_file='' fi if test -z "$ac_file"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error 77 "C compiler cannot create executables See \`config.log' for more details" "$LINENO" 5; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler default output file name" >&5 $as_echo_n "checking for C compiler default output file name... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_file" >&5 $as_echo "$ac_file" >&6; } ac_exeext=$ac_cv_exeext rm -f -r a.out a.out.dSYM a.exe conftest$ac_cv_exeext b.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of executables" >&5 $as_echo_n "checking for suffix of executables... " >&6; } if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # If both `conftest.exe' and `conftest' are `present' (well, observable) # catch `conftest.exe'. For instance with Cygwin, `ls conftest' will # work properly (i.e., refer to `conftest.exe'), while it won't with # `rm'. for ac_file in conftest.exe conftest conftest.*; do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; *.* ) ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` break;; * ) break;; esac done else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of executables: cannot compile and link See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest conftest$ac_cv_exeext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_exeext" >&5 $as_echo "$ac_cv_exeext" >&6; } rm -f conftest.$ac_ext EXEEXT=$ac_cv_exeext ac_exeext=$EXEEXT cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { FILE *f = fopen ("conftest.out", "w"); return ferror (f) || fclose (f) != 0; ; return 0; } _ACEOF ac_clean_files="$ac_clean_files conftest.out" # Check that the compiler produces executables we can run. If not, either # the compiler is broken, or we cross compile. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are cross compiling" >&5 $as_echo_n "checking whether we are cross compiling... " >&6; } if test "$cross_compiling" != yes; then { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if { ac_try='./conftest$ac_cv_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then cross_compiling=no else if test "$cross_compiling" = maybe; then cross_compiling=yes else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot run C compiled programs. If you meant to cross compile, use \`--host'. See \`config.log' for more details" "$LINENO" 5; } fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $cross_compiling" >&5 $as_echo "$cross_compiling" >&6; } rm -f conftest.$ac_ext conftest$ac_cv_exeext conftest.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of object files" >&5 $as_echo_n "checking for suffix of object files... " >&6; } if ${ac_cv_objext+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF rm -f conftest.o conftest.obj if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : for ac_file in conftest.o conftest.obj conftest.*; do test -f "$ac_file" || continue; case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM ) ;; *) ac_cv_objext=`expr "$ac_file" : '.*\.\(.*\)'` break;; esac done else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of object files: cannot compile See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest.$ac_cv_objext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_objext" >&5 $as_echo "$ac_cv_objext" >&6; } OBJEXT=$ac_cv_objext ac_objext=$OBJEXT { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are using the GNU C compiler" >&5 $as_echo_n "checking whether we are using the GNU C compiler... " >&6; } if ${ac_cv_c_compiler_gnu+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { #ifndef __GNUC__ choke me #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_compiler_gnu=yes else ac_compiler_gnu=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_cv_c_compiler_gnu=$ac_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_c_compiler_gnu" >&5 $as_echo "$ac_cv_c_compiler_gnu" >&6; } if test $ac_compiler_gnu = yes; then GCC=yes else GCC= fi ac_test_CFLAGS=${CFLAGS+set} ac_save_CFLAGS=$CFLAGS { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC accepts -g" >&5 $as_echo_n "checking whether $CC accepts -g... " >&6; } if ${ac_cv_prog_cc_g+:} false; then : $as_echo_n "(cached) " >&6 else ac_save_c_werror_flag=$ac_c_werror_flag ac_c_werror_flag=yes ac_cv_prog_cc_g=no CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes else CFLAGS="" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else ac_c_werror_flag=$ac_save_c_werror_flag CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_c_werror_flag=$ac_save_c_werror_flag fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_g" >&5 $as_echo "$ac_cv_prog_cc_g" >&6; } if test "$ac_test_CFLAGS" = set; then CFLAGS=$ac_save_CFLAGS elif test $ac_cv_prog_cc_g = yes; then if test "$GCC" = yes; then CFLAGS="-g -O2" else CFLAGS="-g" fi else if test "$GCC" = yes; then CFLAGS="-O2" else CFLAGS= fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $CC option to accept ISO C89" >&5 $as_echo_n "checking for $CC option to accept ISO C89... " >&6; } if ${ac_cv_prog_cc_c89+:} false; then : $as_echo_n "(cached) " >&6 else ac_cv_prog_cc_c89=no ac_save_CC=$CC cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include struct stat; /* Most of the following tests are stolen from RCS 5.7's src/conf.sh. */ struct buf { int x; }; FILE * (*rcsopen) (struct buf *, struct stat *, int); static char *e (p, i) char **p; int i; { return p[i]; } static char *f (char * (*g) (char **, int), char **p, ...) { char *s; va_list v; va_start (v,p); s = g (p, va_arg (v,int)); va_end (v); return s; } /* OSF 4.0 Compaq cc is some sort of almost-ANSI by default. It has function prototypes and stuff, but not '\xHH' hex character constants. These don't provoke an error unfortunately, instead are silently treated as 'x'. The following induces an error, until -std is added to get proper ANSI mode. Curiously '\x00'!='x' always comes out true, for an array size at least. It's necessary to write '\x00'==0 to get something that's true only with -std. */ int osf4_cc_array ['\x00' == 0 ? 1 : -1]; /* IBM C 6 for AIX is almost-ANSI by default, but it replaces macro parameters inside strings and character constants. */ #define FOO(x) 'x' int xlc6_cc_array[FOO(a) == 'x' ? 1 : -1]; int test (int i, double x); struct s1 {int (*f) (int a);}; struct s2 {int (*f) (double a);}; int pairnames (int, char **, FILE *(*)(struct buf *, struct stat *, int), int, int); int argc; char **argv; int main () { return f (e, argv, 0) != argv[0] || f (e, argv, 1) != argv[1]; ; return 0; } _ACEOF for ac_arg in '' -qlanglvl=extc89 -qlanglvl=ansi -std \ -Ae "-Aa -D_HPUX_SOURCE" "-Xc -D__EXTENSIONS__" do CC="$ac_save_CC $ac_arg" if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_c89=$ac_arg fi rm -f core conftest.err conftest.$ac_objext test "x$ac_cv_prog_cc_c89" != "xno" && break done rm -f conftest.$ac_ext CC=$ac_save_CC fi # AC_CACHE_VAL case "x$ac_cv_prog_cc_c89" in x) { $as_echo "$as_me:${as_lineno-$LINENO}: result: none needed" >&5 $as_echo "none needed" >&6; } ;; xno) { $as_echo "$as_me:${as_lineno-$LINENO}: result: unsupported" >&5 $as_echo "unsupported" >&6; } ;; *) CC="$CC $ac_cv_prog_cc_c89" { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_c89" >&5 $as_echo "$ac_cv_prog_cc_c89" >&6; } ;; esac if test "x$ac_cv_prog_cc_c89" != xno; then : fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC understands -c and -o together" >&5 $as_echo_n "checking whether $CC understands -c and -o together... " >&6; } if ${am_cv_prog_cc_c_o+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if { echo "$as_me:$LINENO: $CC -c conftest.$ac_ext -o conftest2.$ac_objext" >&5 ($CC -c conftest.$ac_ext -o conftest2.$ac_objext) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_cc_c_o" >&5 $as_echo "$am_cv_prog_cc_c_o" >&6; } if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu DEPDIR="${am__leading_dot}deps" ac_config_commands="$ac_config_commands depfiles" am_make=${MAKE-make} cat > confinc << 'END' am__doit: @echo this is the am__doit target .PHONY: am__doit END # If we don't find an include directive, just comment out the code. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for style of include used by $am_make" >&5 $as_echo_n "checking for style of include used by $am_make... " >&6; } am__include="#" am__quote= _am_result=none # First try GNU make style include. echo "include confinc" > confmf # Ignore all kinds of additional output from 'make'. case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=include am__quote= _am_result=GNU ;; esac # Now try BSD make style include. if test "$am__include" = "#"; then echo '.include "confinc"' > confmf case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=.include am__quote="\"" _am_result=BSD ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_am_result" >&5 $as_echo "$_am_result" >&6; } rm -f confinc confmf # Check whether --enable-dependency-tracking was given. if test "${enable_dependency_tracking+set}" = set; then : enableval=$enable_dependency_tracking; fi if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi if test "x$enable_dependency_tracking" != xno; then AMDEP_TRUE= AMDEP_FALSE='#' else AMDEP_TRUE='#' AMDEP_FALSE= fi depcc="$CC" am_compiler_list= { $as_echo "$as_me:${as_lineno-$LINENO}: checking dependency style of $depcc" >&5 $as_echo_n "checking dependency style of $depcc... " >&6; } if ${am_cv_CC_dependencies_compiler_type+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_CC_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n 's/^#*\([a-zA-Z0-9]*\))$/\1/p' < ./depcomp` fi am__universal=false case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_CC_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_CC_dependencies_compiler_type=none fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_CC_dependencies_compiler_type" >&5 $as_echo "$am_cv_CC_dependencies_compiler_type" >&6; } CCDEPMODE=depmode=$am_cv_CC_dependencies_compiler_type if test "x$enable_dependency_tracking" != xno \ && test "$am_cv_CC_dependencies_compiler_type" = gcc3; then am__fastdepCC_TRUE= am__fastdepCC_FALSE='#' else am__fastdepCC_TRUE='#' am__fastdepCC_FALSE= fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}ranlib", so it can be a program name with args. set dummy ${ac_tool_prefix}ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$RANLIB"; then ac_cv_prog_RANLIB="$RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_RANLIB="${ac_tool_prefix}ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi RANLIB=$ac_cv_prog_RANLIB if test -n "$RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $RANLIB" >&5 $as_echo "$RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_RANLIB"; then ac_ct_RANLIB=$RANLIB # Extract the first word of "ranlib", so it can be a program name with args. set dummy ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_RANLIB"; then ac_cv_prog_ac_ct_RANLIB="$ac_ct_RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_RANLIB="ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_RANLIB=$ac_cv_prog_ac_ct_RANLIB if test -n "$ac_ct_RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_RANLIB" >&5 $as_echo "$ac_ct_RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_RANLIB" = x; then RANLIB=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac RANLIB=$ac_ct_RANLIB fi else RANLIB="$ac_cv_prog_RANLIB" fi mkdir_p="$MKDIR_P" case $mkdir_p in [\\/$]* | ?:[\\/]*) ;; */*) mkdir_p="\$(top_builddir)/$mkdir_p" ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether NLS is requested" >&5 $as_echo_n "checking whether NLS is requested... " >&6; } # Check whether --enable-nls was given. if test "${enable_nls+set}" = set; then : enableval=$enable_nls; USE_NLS=$enableval else USE_NLS=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $USE_NLS" >&5 $as_echo "$USE_NLS" >&6; } GETTEXT_MACRO_VERSION=0.17 # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then echo "#! /bin/sh" >conf$$.sh echo "exit 0" >>conf$$.sh chmod +x conf$$.sh if (PATH="/nonexistent;."; conf$$.sh) >/dev/null 2>&1; then PATH_SEPARATOR=';' else PATH_SEPARATOR=: fi rm -f conf$$.sh fi # Find out how to test for executable files. Don't use a zero-byte file, # as systems may use methods other than mode bits to determine executability. cat >conf$$.file <<_ASEOF #! /bin/sh exit 0 _ASEOF chmod +x conf$$.file if test -x conf$$.file >/dev/null 2>&1; then ac_executable_p="test -x" else ac_executable_p="test -f" fi rm -f conf$$.file # Extract the first word of "msgfmt", so it can be a program name with args. set dummy msgfmt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_MSGFMT+:} false; then : $as_echo_n "(cached) " >&6 else case "$MSGFMT" in [\\/]* | ?:[\\/]*) ac_cv_path_MSGFMT="$MSGFMT" # Let the user override the test with a path. ;; *) ac_save_IFS="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$ac_save_IFS" test -z "$ac_dir" && ac_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if $ac_executable_p "$ac_dir/$ac_word$ac_exec_ext"; then echo "$as_me: trying $ac_dir/$ac_word..." >&5 if $ac_dir/$ac_word --statistics /dev/null >&5 2>&1 && (if $ac_dir/$ac_word --statistics /dev/null 2>&1 >/dev/null | grep usage >/dev/null; then exit 1; else exit 0; fi); then ac_cv_path_MSGFMT="$ac_dir/$ac_word$ac_exec_ext" break 2 fi fi done done IFS="$ac_save_IFS" test -z "$ac_cv_path_MSGFMT" && ac_cv_path_MSGFMT=":" ;; esac fi MSGFMT="$ac_cv_path_MSGFMT" if test "$MSGFMT" != ":"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 $as_echo "$MSGFMT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi # Extract the first word of "gmsgfmt", so it can be a program name with args. set dummy gmsgfmt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_GMSGFMT+:} false; then : $as_echo_n "(cached) " >&6 else case $GMSGFMT in [\\/]* | ?:[\\/]*) ac_cv_path_GMSGFMT="$GMSGFMT" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_GMSGFMT="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS test -z "$ac_cv_path_GMSGFMT" && ac_cv_path_GMSGFMT="$MSGFMT" ;; esac fi GMSGFMT=$ac_cv_path_GMSGFMT if test -n "$GMSGFMT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $GMSGFMT" >&5 $as_echo "$GMSGFMT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi case `$MSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) MSGFMT_015=: ;; *) MSGFMT_015=$MSGFMT ;; esac case `$GMSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) GMSGFMT_015=: ;; *) GMSGFMT_015=$GMSGFMT ;; esac # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then echo "#! /bin/sh" >conf$$.sh echo "exit 0" >>conf$$.sh chmod +x conf$$.sh if (PATH="/nonexistent;."; conf$$.sh) >/dev/null 2>&1; then PATH_SEPARATOR=';' else PATH_SEPARATOR=: fi rm -f conf$$.sh fi # Find out how to test for executable files. Don't use a zero-byte file, # as systems may use methods other than mode bits to determine executability. cat >conf$$.file <<_ASEOF #! /bin/sh exit 0 _ASEOF chmod +x conf$$.file if test -x conf$$.file >/dev/null 2>&1; then ac_executable_p="test -x" else ac_executable_p="test -f" fi rm -f conf$$.file # Extract the first word of "xgettext", so it can be a program name with args. set dummy xgettext; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_XGETTEXT+:} false; then : $as_echo_n "(cached) " >&6 else case "$XGETTEXT" in [\\/]* | ?:[\\/]*) ac_cv_path_XGETTEXT="$XGETTEXT" # Let the user override the test with a path. ;; *) ac_save_IFS="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$ac_save_IFS" test -z "$ac_dir" && ac_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if $ac_executable_p "$ac_dir/$ac_word$ac_exec_ext"; then echo "$as_me: trying $ac_dir/$ac_word..." >&5 if $ac_dir/$ac_word --omit-header --copyright-holder= --msgid-bugs-address= /dev/null >&5 2>&1 && (if $ac_dir/$ac_word --omit-header --copyright-holder= --msgid-bugs-address= /dev/null 2>&1 >/dev/null | grep usage >/dev/null; then exit 1; else exit 0; fi); then ac_cv_path_XGETTEXT="$ac_dir/$ac_word$ac_exec_ext" break 2 fi fi done done IFS="$ac_save_IFS" test -z "$ac_cv_path_XGETTEXT" && ac_cv_path_XGETTEXT=":" ;; esac fi XGETTEXT="$ac_cv_path_XGETTEXT" if test "$XGETTEXT" != ":"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XGETTEXT" >&5 $as_echo "$XGETTEXT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f messages.po case `$XGETTEXT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) XGETTEXT_015=: ;; *) XGETTEXT_015=$XGETTEXT ;; esac # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then echo "#! /bin/sh" >conf$$.sh echo "exit 0" >>conf$$.sh chmod +x conf$$.sh if (PATH="/nonexistent;."; conf$$.sh) >/dev/null 2>&1; then PATH_SEPARATOR=';' else PATH_SEPARATOR=: fi rm -f conf$$.sh fi # Find out how to test for executable files. Don't use a zero-byte file, # as systems may use methods other than mode bits to determine executability. cat >conf$$.file <<_ASEOF #! /bin/sh exit 0 _ASEOF chmod +x conf$$.file if test -x conf$$.file >/dev/null 2>&1; then ac_executable_p="test -x" else ac_executable_p="test -f" fi rm -f conf$$.file # Extract the first word of "msgmerge", so it can be a program name with args. set dummy msgmerge; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_MSGMERGE+:} false; then : $as_echo_n "(cached) " >&6 else case "$MSGMERGE" in [\\/]* | ?:[\\/]*) ac_cv_path_MSGMERGE="$MSGMERGE" # Let the user override the test with a path. ;; *) ac_save_IFS="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$ac_save_IFS" test -z "$ac_dir" && ac_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if $ac_executable_p "$ac_dir/$ac_word$ac_exec_ext"; then echo "$as_me: trying $ac_dir/$ac_word..." >&5 if $ac_dir/$ac_word --update -q /dev/null /dev/null >&5 2>&1; then ac_cv_path_MSGMERGE="$ac_dir/$ac_word$ac_exec_ext" break 2 fi fi done done IFS="$ac_save_IFS" test -z "$ac_cv_path_MSGMERGE" && ac_cv_path_MSGMERGE=":" ;; esac fi MSGMERGE="$ac_cv_path_MSGMERGE" if test "$MSGMERGE" != ":"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGMERGE" >&5 $as_echo "$MSGMERGE" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$localedir" || localedir='${datadir}/locale' test -n "${XGETTEXT_EXTRA_OPTIONS+set}" || XGETTEXT_EXTRA_OPTIONS= ac_config_commands="$ac_config_commands po-directories" if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" # Make sure we can run config.sub. $SHELL "$ac_aux_dir/config.sub" sun4 >/dev/null 2>&1 || as_fn_error $? "cannot run $SHELL $ac_aux_dir/config.sub" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking build system type" >&5 $as_echo_n "checking build system type... " >&6; } if ${ac_cv_build+:} false; then : $as_echo_n "(cached) " >&6 else ac_build_alias=$build_alias test "x$ac_build_alias" = x && ac_build_alias=`$SHELL "$ac_aux_dir/config.guess"` test "x$ac_build_alias" = x && as_fn_error $? "cannot guess build type; you must specify one" "$LINENO" 5 ac_cv_build=`$SHELL "$ac_aux_dir/config.sub" $ac_build_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $ac_build_alias failed" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_build" >&5 $as_echo "$ac_cv_build" >&6; } case $ac_cv_build in *-*-*) ;; *) as_fn_error $? "invalid value of canonical build" "$LINENO" 5;; esac build=$ac_cv_build ac_save_IFS=$IFS; IFS='-' set x $ac_cv_build shift build_cpu=$1 build_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: build_os=$* IFS=$ac_save_IFS case $build_os in *\ *) build_os=`echo "$build_os" | sed 's/ /-/g'`;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking host system type" >&5 $as_echo_n "checking host system type... " >&6; } if ${ac_cv_host+:} false; then : $as_echo_n "(cached) " >&6 else if test "x$host_alias" = x; then ac_cv_host=$ac_cv_build else ac_cv_host=`$SHELL "$ac_aux_dir/config.sub" $host_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $host_alias failed" "$LINENO" 5 fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_host" >&5 $as_echo "$ac_cv_host" >&6; } case $ac_cv_host in *-*-*) ;; *) as_fn_error $? "invalid value of canonical host" "$LINENO" 5;; esac host=$ac_cv_host ac_save_IFS=$IFS; IFS='-' set x $ac_cv_host shift host_cpu=$1 host_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: host_os=$* IFS=$ac_save_IFS case $host_os in *\ *) host_os=`echo "$host_os" | sed 's/ /-/g'`;; esac # Check whether --with-gnu-ld was given. if test "${with_gnu_ld+set}" = set; then : withval=$with_gnu_ld; test "$withval" = no || with_gnu_ld=yes else with_gnu_ld=no fi # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then echo "#! /bin/sh" >conf$$.sh echo "exit 0" >>conf$$.sh chmod +x conf$$.sh if (PATH="/nonexistent;."; conf$$.sh) >/dev/null 2>&1; then PATH_SEPARATOR=';' else PATH_SEPARATOR=: fi rm -f conf$$.sh fi ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld used by GCC" >&5 $as_echo_n "checking for ld used by GCC... " >&6; } case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [\\/]* | [A-Za-z]:[\\/]*) re_direlt='/[^/][^/]*/\.\./' # Canonicalize the path of ld ac_prog=`echo $ac_prog| sed 's%\\\\%/%g'` while echo $ac_prog | grep "$re_direlt" > /dev/null 2>&1; do ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU ld" >&5 $as_echo_n "checking for GNU ld... " >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for non-GNU ld" >&5 $as_echo_n "checking for non-GNU ld... " >&6; } fi if ${acl_cv_path_LD+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$LD"; then IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR-:}" for ac_dir in $PATH; do test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some GNU ld's only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 < /dev/null` in *GNU* | *'with BFD'*) test "$with_gnu_ld" != no && break ;; *) test "$with_gnu_ld" != yes && break ;; esac fi done IFS="$ac_save_ifs" else acl_cv_path_LD="$LD" # Let the user override the test with a path. fi fi LD="$acl_cv_path_LD" if test -n "$LD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LD" >&5 $as_echo "$LD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -z "$LD" && as_fn_error $? "no acceptable ld found in \$PATH" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking if the linker ($LD) is GNU ld" >&5 $as_echo_n "checking if the linker ($LD) is GNU ld... " >&6; } if ${acl_cv_prog_gnu_ld+:} false; then : $as_echo_n "(cached) " >&6 else # I'd rather use --version here, but apparently some GNU ld's only accept -v. case `$LD -v 2>&1 &5 $as_echo "$acl_cv_prog_gnu_ld" >&6; } with_gnu_ld=$acl_cv_prog_gnu_ld { $as_echo "$as_me:${as_lineno-$LINENO}: checking for shared library run path origin" >&5 $as_echo_n "checking for shared library run path origin... " >&6; } if ${acl_cv_rpath+:} false; then : $as_echo_n "(cached) " >&6 else CC="$CC" GCC="$GCC" LDFLAGS="$LDFLAGS" LD="$LD" with_gnu_ld="$with_gnu_ld" \ ${CONFIG_SHELL-/bin/sh} "$ac_aux_dir/config.rpath" "$host" > conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $acl_cv_rpath" >&5 $as_echo "$acl_cv_rpath" >&6; } wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" # Check whether --enable-rpath was given. if test "${enable_rpath+set}" = set; then : enableval=$enable_rpath; : else enable_rpath=yes fi acl_libdirstem=lib searchpath=`(LC_ALL=C $CC -print-search-dirs) 2>/dev/null | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib64/ | */lib64 ) acl_libdirstem=lib64 ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib64 ) acl_libdirstem=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" fi use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libiconv-prefix was given. if test "${with_libiconv_prefix+set}" = set; then : withval=$with_libiconv_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" fi fi fi LIBICONV= LTLIBICONV= INCICONV= LIBICONV_PREFIX= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='iconv ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./-|ABCDEFGHIJKLMNOPQRSTUVWXYZ___|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBICONV="${LIBICONV}${LIBICONV:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no || test "X$found_dir" = "X/usr/$acl_libdirstem"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_a" else LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` LIBICONV_PREFIX="$basedir" additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCICONV="${INCICONV}${INCICONV:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$additional_libdir" != "X/usr/$acl_libdirstem"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBICONV="${LIBICONV}${LIBICONV:+ }$dep" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$dep" ;; esac done fi else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-R$found_dir" done fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for CFPreferencesCopyAppValue" >&5 $as_echo_n "checking for CFPreferencesCopyAppValue... " >&6; } if ${gt_cv_func_CFPreferencesCopyAppValue+:} false; then : $as_echo_n "(cached) " >&6 else gt_save_LIBS="$LIBS" LIBS="$LIBS -Wl,-framework -Wl,CoreFoundation" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { CFPreferencesCopyAppValue(NULL, NULL) ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : gt_cv_func_CFPreferencesCopyAppValue=yes else gt_cv_func_CFPreferencesCopyAppValue=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gt_save_LIBS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $gt_cv_func_CFPreferencesCopyAppValue" >&5 $as_echo "$gt_cv_func_CFPreferencesCopyAppValue" >&6; } if test $gt_cv_func_CFPreferencesCopyAppValue = yes; then $as_echo "#define HAVE_CFPREFERENCESCOPYAPPVALUE 1" >>confdefs.h fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for CFLocaleCopyCurrent" >&5 $as_echo_n "checking for CFLocaleCopyCurrent... " >&6; } if ${gt_cv_func_CFLocaleCopyCurrent+:} false; then : $as_echo_n "(cached) " >&6 else gt_save_LIBS="$LIBS" LIBS="$LIBS -Wl,-framework -Wl,CoreFoundation" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { CFLocaleCopyCurrent(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : gt_cv_func_CFLocaleCopyCurrent=yes else gt_cv_func_CFLocaleCopyCurrent=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gt_save_LIBS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $gt_cv_func_CFLocaleCopyCurrent" >&5 $as_echo "$gt_cv_func_CFLocaleCopyCurrent" >&6; } if test $gt_cv_func_CFLocaleCopyCurrent = yes; then $as_echo "#define HAVE_CFLOCALECOPYCURRENT 1" >>confdefs.h fi INTL_MACOSX_LIBS= if test $gt_cv_func_CFPreferencesCopyAppValue = yes || test $gt_cv_func_CFLocaleCopyCurrent = yes; then INTL_MACOSX_LIBS="-Wl,-framework -Wl,CoreFoundation" fi LIBINTL= LTLIBINTL= POSUB= case " $gt_needs " in *" need-formatstring-macros "*) gt_api_version=3 ;; *" need-ngettext "*) gt_api_version=2 ;; *) gt_api_version=1 ;; esac gt_func_gnugettext_libc="gt_cv_func_gnugettext${gt_api_version}_libc" gt_func_gnugettext_libintl="gt_cv_func_gnugettext${gt_api_version}_libintl" if test "$USE_NLS" = "yes"; then gt_use_preinstalled_gnugettext=no if test $gt_api_version -ge 3; then gt_revision_test_code=' #ifndef __GNU_GETTEXT_SUPPORTED_REVISION #define __GNU_GETTEXT_SUPPORTED_REVISION(major) ((major) == 0 ? 0 : -1) #endif typedef int array [2 * (__GNU_GETTEXT_SUPPORTED_REVISION(0) >= 1) - 1]; ' else gt_revision_test_code= fi if test $gt_api_version -ge 2; then gt_expression_test_code=' + * ngettext ("", "", 0)' else gt_expression_test_code= fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU gettext in libc" >&5 $as_echo_n "checking for GNU gettext in libc... " >&6; } if eval \${$gt_func_gnugettext_libc+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include $gt_revision_test_code extern int _nl_msg_cat_cntr; extern int *_nl_domain_bindings; int main () { bindtextdomain ("", ""); return * gettext ("")$gt_expression_test_code + _nl_msg_cat_cntr + *_nl_domain_bindings ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : eval "$gt_func_gnugettext_libc=yes" else eval "$gt_func_gnugettext_libc=no" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi eval ac_res=\$$gt_func_gnugettext_libc { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } if { eval "gt_val=\$$gt_func_gnugettext_libc"; test "$gt_val" != "yes"; }; then am_save_CPPFLAGS="$CPPFLAGS" for element in $INCICONV; do haveit= for x in $CPPFLAGS; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }$element" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv" >&5 $as_echo_n "checking for iconv... " >&6; } if ${am_cv_func_iconv+:} false; then : $as_echo_n "(cached) " >&6 else am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_lib_iconv=yes am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$am_save_LIBS" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv" >&5 $as_echo "$am_cv_func_iconv" >&6; } if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for working iconv" >&5 $as_echo_n "checking for working iconv... " >&6; } if ${am_cv_func_iconv_works+:} false; then : $as_echo_n "(cached) " >&6 else am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi if test "$cross_compiling" = yes; then : case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static const char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) return 1; } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) return 1; } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ if (/* Try standardized names. */ iconv_open ("UTF-8", "EUC-JP") == (iconv_t)(-1) /* Try IRIX, OSF/1 names. */ && iconv_open ("UTF-8", "eucJP") == (iconv_t)(-1) /* Try AIX names. */ && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) return 1; return 0; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : am_cv_func_iconv_works=yes else am_cv_func_iconv_works=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi LIBS="$am_save_LIBS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv_works" >&5 $as_echo "$am_cv_func_iconv_works" >&6; } case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi if test "$am_cv_lib_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to link with libiconv" >&5 $as_echo_n "checking how to link with libiconv... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIBICONV" >&5 $as_echo "$LIBICONV" >&6; } else CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libintl-prefix was given. if test "${with_libintl_prefix+set}" = set; then : withval=$with_libintl_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" fi fi fi LIBINTL= LTLIBINTL= INCINTL= LIBINTL_PREFIX= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='intl ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./-|ABCDEFGHIJKLMNOPQRSTUVWXYZ___|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBINTL="${LIBINTL}${LIBINTL:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no || test "X$found_dir" = "X/usr/$acl_libdirstem"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_a" else LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` LIBINTL_PREFIX="$basedir" additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCINTL="${INCINTL}${INCINTL:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$additional_libdir" != "X/usr/$acl_libdirstem"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBINTL="${LIBINTL}${LIBINTL:+ }$dep" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$dep" ;; esac done fi else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-R$found_dir" done fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU gettext in libintl" >&5 $as_echo_n "checking for GNU gettext in libintl... " >&6; } if eval \${$gt_func_gnugettext_libintl+:} false; then : $as_echo_n "(cached) " >&6 else gt_save_CPPFLAGS="$CPPFLAGS" CPPFLAGS="$CPPFLAGS $INCINTL" gt_save_LIBS="$LIBS" LIBS="$LIBS $LIBINTL" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include $gt_revision_test_code extern int _nl_msg_cat_cntr; extern #ifdef __cplusplus "C" #endif const char *_nl_expand_alias (const char *); int main () { bindtextdomain ("", ""); return * gettext ("")$gt_expression_test_code + _nl_msg_cat_cntr + *_nl_expand_alias ("") ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : eval "$gt_func_gnugettext_libintl=yes" else eval "$gt_func_gnugettext_libintl=no" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" != yes; } && test -n "$LIBICONV"; then LIBS="$LIBS $LIBICONV" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include $gt_revision_test_code extern int _nl_msg_cat_cntr; extern #ifdef __cplusplus "C" #endif const char *_nl_expand_alias (const char *); int main () { bindtextdomain ("", ""); return * gettext ("")$gt_expression_test_code + _nl_msg_cat_cntr + *_nl_expand_alias ("") ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : LIBINTL="$LIBINTL $LIBICONV" LTLIBINTL="$LTLIBINTL $LTLIBICONV" eval "$gt_func_gnugettext_libintl=yes" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi CPPFLAGS="$gt_save_CPPFLAGS" LIBS="$gt_save_LIBS" fi eval ac_res=\$$gt_func_gnugettext_libintl { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } fi if { eval "gt_val=\$$gt_func_gnugettext_libc"; test "$gt_val" = "yes"; } \ || { { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" = "yes"; } \ && test "$PACKAGE" != gettext-runtime \ && test "$PACKAGE" != gettext-tools; }; then gt_use_preinstalled_gnugettext=yes else LIBINTL= LTLIBINTL= INCINTL= fi if test -n "$INTL_MACOSX_LIBS"; then if test "$gt_use_preinstalled_gnugettext" = "yes" \ || test "$nls_cv_use_gnu_gettext" = "yes"; then LIBINTL="$LIBINTL $INTL_MACOSX_LIBS" LTLIBINTL="$LTLIBINTL $INTL_MACOSX_LIBS" fi fi if test "$gt_use_preinstalled_gnugettext" = "yes" \ || test "$nls_cv_use_gnu_gettext" = "yes"; then $as_echo "#define ENABLE_NLS 1" >>confdefs.h else USE_NLS=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to use NLS" >&5 $as_echo_n "checking whether to use NLS... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $USE_NLS" >&5 $as_echo "$USE_NLS" >&6; } if test "$USE_NLS" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking where the gettext function comes from" >&5 $as_echo_n "checking where the gettext function comes from... " >&6; } if test "$gt_use_preinstalled_gnugettext" = "yes"; then if { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" = "yes"; }; then gt_source="external libintl" else gt_source="libc" fi else gt_source="included intl directory" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $gt_source" >&5 $as_echo "$gt_source" >&6; } fi if test "$USE_NLS" = "yes"; then if test "$gt_use_preinstalled_gnugettext" = "yes"; then if { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" = "yes"; }; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to link with libintl" >&5 $as_echo_n "checking how to link with libintl... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIBINTL" >&5 $as_echo "$LIBINTL" >&6; } for element in $INCINTL; do haveit= for x in $CPPFLAGS; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }$element" fi done fi $as_echo "#define HAVE_GETTEXT 1" >>confdefs.h $as_echo "#define HAVE_DCGETTEXT 1" >>confdefs.h fi POSUB=po fi INTLLIBS="$LIBINTL" am_save_CPPFLAGS="$CPPFLAGS" for element in $INCICONV; do haveit= for x in $CPPFLAGS; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }$element" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv" >&5 $as_echo_n "checking for iconv... " >&6; } if ${am_cv_func_iconv+:} false; then : $as_echo_n "(cached) " >&6 else am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_lib_iconv=yes am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$am_save_LIBS" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv" >&5 $as_echo "$am_cv_func_iconv" >&6; } if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for working iconv" >&5 $as_echo_n "checking for working iconv... " >&6; } if ${am_cv_func_iconv_works+:} false; then : $as_echo_n "(cached) " >&6 else am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi if test "$cross_compiling" = yes; then : case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static const char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) return 1; } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) return 1; } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ if (/* Try standardized names. */ iconv_open ("UTF-8", "EUC-JP") == (iconv_t)(-1) /* Try IRIX, OSF/1 names. */ && iconv_open ("UTF-8", "eucJP") == (iconv_t)(-1) /* Try AIX names. */ && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) return 1; return 0; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : am_cv_func_iconv_works=yes else am_cv_func_iconv_works=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi LIBS="$am_save_LIBS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv_works" >&5 $as_echo "$am_cv_func_iconv_works" >&6; } case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi if test "$am_cv_lib_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to link with libiconv" >&5 $as_echo_n "checking how to link with libiconv... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIBICONV" >&5 $as_echo "$LIBICONV" >&6; } else CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv declaration" >&5 $as_echo_n "checking for iconv declaration... " >&6; } if ${am_cv_proto_iconv+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : am_cv_proto_iconv_arg1="" else am_cv_proto_iconv_arg1="const" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);" fi am_cv_proto_iconv=`echo "$am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${ac_t:- }$am_cv_proto_iconv" >&5 $as_echo "${ac_t:- }$am_cv_proto_iconv" >&6; } cat >>confdefs.h <<_ACEOF #define ICONV_CONST $am_cv_proto_iconv_arg1 _ACEOF fi ALL_LINGUAS="`ls -1 $srcdir/po/*.po | xargs -n 1 basename | xargs -n 1 -I'{}' basename '{}' .po`" if test x$GCC = xyes ; then CFLAGS="$CFLAGS -Wall -Wextra" fi ac_config_headers="$ac_config_headers src/config.h" mybindir="$bindir" mybindir=`eval echo $mybindir | sed "s,NONE,$prefix,g"` mybindir=`eval echo $mybindir | sed "s,NONE,$exec_prefix,g"` mybindir=`eval echo $mybindir | sed "s,NONE,$ac_default_prefix,g"` mybindir=`eval echo $mybindir | sed "s,NONE,,g"` cat >>confdefs.h <<_ACEOF #define CM_GETCERT_DIR "${mybindir}" _ACEOF mysbindir="$sbindir" mysbindir=`eval echo $mysbindir | sed "s,NONE,$prefix,g"` mysbindir=`eval echo $mysbindir | sed "s,NONE,$exec_prefix,g"` mysbindir=`eval echo $mysbindir | sed "s,NONE,$ac_default_prefix,g"` mysbindir=`eval echo $mysbindir | sed "s,NONE,,g"` cat >>confdefs.h <<_ACEOF #define CM_CERTMONGER_DAEMON_PATH "${mysbindir}/certmonger" _ACEOF UPCASE_PACKAGE_NAME=`echo "${PACKAGE_NAME}" | tr 'a-z' 'A-Z'` mysysconfdir="$sysconfdir" mysysconfdir=`eval echo $mysysconfdir | sed "s,NONE,$prefix,g"` mysysconfdir=`eval echo $mysysconfdir | sed "s,NONE,$ac_default_prefix,g"` mysysconfdir=`eval echo $mysysconfdir | sed "s,NONE,,g"` cat >>confdefs.h <<_ACEOF #define CM_STORE_CONFIG_DIRECTORY "$mysysconfdir/${PACKAGE_NAME}" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_SESSION_CONFIG_DIRECTORY ".config/" PACKAGE_NAME _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_CONFIG_DIRECTORY_ENV "${UPCASE_PACKAGE_NAME}_CONFIG_DIR" _ACEOF CM_STORE_CONFIG_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_CONFIG_DIR" mylibexecdir="$libexecdir/${PACKAGE_NAME}" mylibexecdir=`eval echo $mylibexecdir | sed "s,NONE,$prefix,g"` mylibexecdir=`eval echo $mylibexecdir | sed "s,NONE,$ac_default_prefix,g"` mylibexecdir=`eval echo $mylibexecdir | sed "s,NONE,,g"` # Check whether --with-file-store-dir was given. if test "${with_file_store_dir+set}" = set; then : withval=$with_file_store_dir; mylocalstatedir=$withval else mylocalstatedir="$localstatedir/lib/${PACKAGE_NAME}" fi mylocalstatedir=`eval echo $mylocalstatedir | sed "s,NONE,$prefix,g"` mylocalstatedir=`eval echo $mylocalstatedir | sed "s,NONE,$ac_default_prefix,g"` mylocalstatedir=`eval echo $mylocalstatedir | sed "s,NONE,,g"` CM_STORE_SYSTEM_LOCK_FILE="$mylocalstatedir/lock" CM_STORE_SYSTEM_LOCK_FILE_ENV="${UPCASE_PACKAGE_NAME}_SYSTEM_LOCK_FILE" cat >>confdefs.h <<_ACEOF #define CM_STORE_SYSTEM_LOCK_FILE "${CM_STORE_SYSTEM_LOCK_FILE}" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_SYSTEM_LOCK_FILE_ENV "${CM_STORE_SYSTEM_LOCK_FILE_ENV}" _ACEOF CM_STORE_REQUESTS_DIRECTORY="$mylocalstatedir/requests" CM_STORE_REQUESTS_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_REQUESTS_DIR" cat >>confdefs.h <<_ACEOF #define CM_STORE_REQUESTS_DIRECTORY "${CM_STORE_REQUESTS_DIRECTORY}" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_SESSION_REQUESTS_DIRECTORY ".config/" PACKAGE_NAME "/requests" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_REQUESTS_DIRECTORY_ENV "${CM_STORE_REQUESTS_DIRECTORY_ENV}" _ACEOF CM_STORE_CAS_DIRECTORY="$mylocalstatedir/cas" CM_STORE_CAS_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_CAS_DIR" cat >>confdefs.h <<_ACEOF #define CM_STORE_CAS_DIRECTORY "${CM_STORE_CAS_DIRECTORY}" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_SESSION_CAS_DIRECTORY ".config/" PACKAGE_NAME "/cas" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_CAS_DIRECTORY_ENV "${CM_STORE_CAS_DIRECTORY_ENV}" _ACEOF CM_STORE_LOCAL_CA_DIRECTORY="$mylocalstatedir/local" CM_STORE_SESSION_LOCAL_CA_DIRECTORY=".config/${PACKAGE_NAME}/local" CM_STORE_LOCAL_CA_DIRECTORY_ENV="${UPCASE_PACKAGE_NAME}_LOCAL_CA_DIR" cat >>confdefs.h <<_ACEOF #define CM_STORE_LOCAL_CA_DIRECTORY "${CM_STORE_LOCAL_CA_DIRECTORY}" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_SESSION_LOCAL_CA_DIRECTORY "${CM_STORE_SESSION_LOCAL_CA_DIRECTORY}" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_STORE_LOCAL_CA_DIRECTORY_ENV "${CM_STORE_LOCAL_CA_DIRECTORY_ENV}" _ACEOF # Check whether --with-homedir was given. if test "${with_homedir+set}" = set; then : withval=$with_homedir; myhomedir=$withval else myhomedir=/ fi myhomedir=`eval echo $myhomedir | sed "s,NONE,$prefix,g"` myhomedir=`eval echo $myhomedir | sed "s,NONE,$ac_default_prefix,g"` myhomedir=`eval echo $myhomedir | sed "s,NONE,,g"` CM_HOMEDIR="$myhomedir" if test x$CM_HOMEDIR != x; then HOMEDIR_TRUE= HOMEDIR_FALSE='#' else HOMEDIR_TRUE='#' HOMEDIR_FALSE= fi cat >>confdefs.h <<_ACEOF #define CM_HOMEDIR "$CM_HOMEDIR" _ACEOF # Check whether --with-tmpdir was given. if test "${with_tmpdir+set}" = set; then : withval=$with_tmpdir; mytmpdir=$withval else mytmpdir= fi mytmpdir=`eval echo $mytmpdir | sed "s,NONE,$prefix,g"` mytmpdir=`eval echo $mytmpdir | sed "s,NONE,$ac_default_prefix,g"` mytmpdir=`eval echo $mytmpdir | sed "s,NONE,,g"` CM_TMPDIR="$mytmpdir" if test x$CM_TMPDIR != x; then TMPDIR_TRUE= TMPDIR_FALSE='#' else TMPDIR_TRUE='#' TMPDIR_FALSE= fi cat >>confdefs.h <<_ACEOF #define CM_TMPDIR "$CM_TMPDIR" _ACEOF CM_TMPDIR_ENV="${UPCASE_PACKAGE_NAME}_TMPDIR" cat >>confdefs.h <<_ACEOF #define CM_TMPDIR_ENV "${CM_TMPDIR_ENV}" _ACEOF CM_NOTIFICATION_ENV="${UPCASE_PACKAGE_NAME}_NOTIFICATION" cat >>confdefs.h <<_ACEOF #define CM_NOTIFICATION_ENV "${CM_NOTIFICATION_ENV}" _ACEOF CERTMONGER_PVT_ADDRESS_ENV=CERTMONGER_PVT_ADDRESS cat >>confdefs.h <<_ACEOF #define CERTMONGER_PVT_ADDRESS_ENV "${CERTMONGER_PVT_ADDRESS_ENV}" _ACEOF mylocaledir="$localedir" mylocaledir=`eval echo $mylocaledir | sed "s,NONE,$prefix,g"` mylocaledir=`eval echo $mylocaledir | sed "s,NONE,$ac_default_prefix,g"` mylocaledir=`eval echo $mylocaledir | sed "s,NONE,,g"` cat >>confdefs.h <<_ACEOF #define MYLOCALEDIR "$mylocaledir" _ACEOF CM_DBUS_NAME=org.fedorahosted.certmonger cat >>confdefs.h <<_ACEOF #define CM_DBUS_NAME "$CM_DBUS_NAME" _ACEOF CM_DBUS_BASE_PATH=/org/fedorahosted/certmonger cat >>confdefs.h <<_ACEOF #define CM_DBUS_BASE_PATH "$CM_DBUS_BASE_PATH" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DBUS_RECONNECT_TIMEOUT 30 _ACEOF if ! ${configure_dist_target_only:-false} ; then for ac_header in sys/types.h sys/socket.h linux/types.h linux/netlink.h linux/rtnetlink.h do : as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` ac_fn_c_check_header_compile "$LINENO" "$ac_header" "$as_ac_Header" " #ifdef HAVE_SYS_TYPES_H #include #endif #ifdef HAVE_SYS_SOCKET_H #include #endif #ifdef HAVE_LINUX_TYPES_H #include #endif #ifdef HAVE_LINUX_NETLINK_H #include #endif " if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1 _ACEOF fi done ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to run the C preprocessor" >&5 $as_echo_n "checking how to run the C preprocessor... " >&6; } # On Suns, sometimes $CPP names a directory. if test -n "$CPP" && test -d "$CPP"; then CPP= fi if test -z "$CPP"; then if ${ac_cv_prog_CPP+:} false; then : $as_echo_n "(cached) " >&6 else # Double quotes because CPP needs to be expanded for CPP in "$CC -E" "$CC -E -traditional-cpp" "/lib/cpp" do ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : break fi done ac_cv_prog_CPP=$CPP fi CPP=$ac_cv_prog_CPP else ac_cv_prog_CPP=$CPP fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CPP" >&5 $as_echo "$CPP" >&6; } ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "C preprocessor \"$CPP\" fails sanity check See \`config.log' for more details" "$LINENO" 5; } fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking for grep that handles long lines and -e" >&5 $as_echo_n "checking for grep that handles long lines and -e... " >&6; } if ${ac_cv_path_GREP+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$GREP"; then ac_path_GREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in grep ggrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_GREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GREP" || continue # Check for GNU ac_path_GREP and select it if it is found. # Check for GNU $ac_path_GREP case `"$ac_path_GREP" --version 2>&1` in *GNU*) ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'GREP' >> "conftest.nl" "$ac_path_GREP" -e 'GREP$' -e '-(cannot match)-' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_GREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_GREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_GREP"; then as_fn_error $? "no acceptable grep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_GREP=$GREP fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_GREP" >&5 $as_echo "$ac_cv_path_GREP" >&6; } GREP="$ac_cv_path_GREP" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for egrep" >&5 $as_echo_n "checking for egrep... " >&6; } if ${ac_cv_path_EGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo a | $GREP -E '(a|b)' >/dev/null 2>&1 then ac_cv_path_EGREP="$GREP -E" else if test -z "$EGREP"; then ac_path_EGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in egrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_EGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_EGREP" || continue # Check for GNU ac_path_EGREP and select it if it is found. # Check for GNU $ac_path_EGREP case `"$ac_path_EGREP" --version 2>&1` in *GNU*) ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'EGREP' >> "conftest.nl" "$ac_path_EGREP" 'EGREP$' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_EGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_EGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_EGREP"; then as_fn_error $? "no acceptable egrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_EGREP=$EGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_EGREP" >&5 $as_echo "$ac_cv_path_EGREP" >&6; } EGREP="$ac_cv_path_EGREP" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ANSI C header files" >&5 $as_echo_n "checking for ANSI C header files... " >&6; } if ${ac_cv_header_stdc+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include #include int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_header_stdc=yes else ac_cv_header_stdc=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext if test $ac_cv_header_stdc = yes; then # SunOS 4.x string.h does not declare mem*, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "memchr" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # ISC 2.0.2 stdlib.h does not declare free, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "free" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # /bin/cc in Irix-4.0.5 gets non-ANSI ctype macros unless using -ansi. if test "$cross_compiling" = yes; then : : else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #if ((' ' & 0x0FF) == 0x020) # define ISLOWER(c) ('a' <= (c) && (c) <= 'z') # define TOUPPER(c) (ISLOWER(c) ? 'A' + ((c) - 'a') : (c)) #else # define ISLOWER(c) \ (('a' <= (c) && (c) <= 'i') \ || ('j' <= (c) && (c) <= 'r') \ || ('s' <= (c) && (c) <= 'z')) # define TOUPPER(c) (ISLOWER(c) ? ((c) | 0x40) : (c)) #endif #define XOR(e, f) (((e) && !(f)) || (!(e) && (f))) int main () { int i; for (i = 0; i < 256; i++) if (XOR (islower (i), ISLOWER (i)) || toupper (i) != TOUPPER (i)) return 2; return 0; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : else ac_cv_header_stdc=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_header_stdc" >&5 $as_echo "$ac_cv_header_stdc" >&6; } if test $ac_cv_header_stdc = yes; then $as_echo "#define STDC_HEADERS 1" >>confdefs.h fi # On IRIX 5.3, sys/types and inttypes.h are conflicting. for ac_header in sys/types.h sys/stat.h stdlib.h string.h memory.h strings.h \ inttypes.h stdint.h unistd.h do : as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` ac_fn_c_check_header_compile "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default " if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1 _ACEOF fi done for ac_header in systemd/sd-login.h do : ac_fn_c_check_header_mongrel "$LINENO" "systemd/sd-login.h" "ac_cv_header_systemd_sd_login_h" "$ac_includes_default" if test "x$ac_cv_header_systemd_sd_login_h" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_SYSTEMD_SD_LOGIN_H 1 _ACEOF fi done if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}pkg-config", so it can be a program name with args. set dummy ${ac_tool_prefix}pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_PKG_CONFIG="$PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PKG_CONFIG=$ac_cv_path_PKG_CONFIG if test -n "$PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PKG_CONFIG" >&5 $as_echo "$PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_path_PKG_CONFIG"; then ac_pt_PKG_CONFIG=$PKG_CONFIG # Extract the first word of "pkg-config", so it can be a program name with args. set dummy pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_ac_pt_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $ac_pt_PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_ac_pt_PKG_CONFIG="$ac_pt_PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_ac_pt_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi ac_pt_PKG_CONFIG=$ac_cv_path_ac_pt_PKG_CONFIG if test -n "$ac_pt_PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_pt_PKG_CONFIG" >&5 $as_echo "$ac_pt_PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_pt_PKG_CONFIG" = x; then PKG_CONFIG="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac PKG_CONFIG=$ac_pt_PKG_CONFIG fi else PKG_CONFIG="$ac_cv_path_PKG_CONFIG" fi fi if test -n "$PKG_CONFIG"; then _pkg_min_version=0.9.0 { $as_echo "$as_me:${as_lineno-$LINENO}: checking pkg-config is at least version $_pkg_min_version" >&5 $as_echo_n "checking pkg-config is at least version $_pkg_min_version... " >&6; } if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } PKG_CONFIG="" fi fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TALLOC" >&5 $as_echo_n "checking for TALLOC... " >&6; } if test -n "$TALLOC_CFLAGS"; then pkg_cv_TALLOC_CFLAGS="$TALLOC_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"talloc\""; } >&5 ($PKG_CONFIG --exists --print-errors "talloc") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TALLOC_CFLAGS=`$PKG_CONFIG --cflags "talloc" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$TALLOC_LIBS"; then pkg_cv_TALLOC_LIBS="$TALLOC_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"talloc\""; } >&5 ($PKG_CONFIG --exists --print-errors "talloc") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TALLOC_LIBS=`$PKG_CONFIG --libs "talloc" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then TALLOC_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "talloc" 2>&1` else TALLOC_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "talloc" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$TALLOC_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (talloc) were not met: $TALLOC_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables TALLOC_CFLAGS and TALLOC_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables TALLOC_CFLAGS and TALLOC_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else TALLOC_CFLAGS=$pkg_cv_TALLOC_CFLAGS TALLOC_LIBS=$pkg_cv_TALLOC_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TEVENT" >&5 $as_echo_n "checking for TEVENT... " >&6; } if test -n "$TEVENT_CFLAGS"; then pkg_cv_TEVENT_CFLAGS="$TEVENT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"tevent\""; } >&5 ($PKG_CONFIG --exists --print-errors "tevent") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TEVENT_CFLAGS=`$PKG_CONFIG --cflags "tevent" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$TEVENT_LIBS"; then pkg_cv_TEVENT_LIBS="$TEVENT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"tevent\""; } >&5 ($PKG_CONFIG --exists --print-errors "tevent") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TEVENT_LIBS=`$PKG_CONFIG --libs "tevent" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then TEVENT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "tevent" 2>&1` else TEVENT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "tevent" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$TEVENT_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (tevent) were not met: $TEVENT_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables TEVENT_CFLAGS and TEVENT_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables TEVENT_CFLAGS and TEVENT_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else TEVENT_CFLAGS=$pkg_cv_TEVENT_CFLAGS TEVENT_LIBS=$pkg_cv_TEVENT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for DBUS" >&5 $as_echo_n "checking for DBUS... " >&6; } if test -n "$DBUS_CFLAGS"; then pkg_cv_DBUS_CFLAGS="$DBUS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"dbus-1 >= 1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "dbus-1 >= 1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_DBUS_CFLAGS=`$PKG_CONFIG --cflags "dbus-1 >= 1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$DBUS_LIBS"; then pkg_cv_DBUS_LIBS="$DBUS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"dbus-1 >= 1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "dbus-1 >= 1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_DBUS_LIBS=`$PKG_CONFIG --libs "dbus-1 >= 1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then DBUS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "dbus-1 >= 1.0" 2>&1` else DBUS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "dbus-1 >= 1.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$DBUS_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (dbus-1 >= 1.0) were not met: $DBUS_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables DBUS_CFLAGS and DBUS_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables DBUS_CFLAGS and DBUS_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else DBUS_CFLAGS=$pkg_cv_DBUS_CFLAGS DBUS_LIBS=$pkg_cv_DBUS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi SESSIONBUSSERVICESDIR=`pkg-config --variable=session_bus_services_dir dbus-1 2> /dev/null | sed -e "s|^${datadir}|\${datadir}|g" -e "s|^${datarootdir}|\${datarootdir}|g" -e "s|^${prefix}/share|\${datadir}|g"` SYSTEMBUSSERVICESDIR=`pkg-config --variable=system_bus_services_dir dbus-1 2> /dev/null | sed -e "s|^${datadir}|\${datadir}|g" -e "s|^${datarootdir}|\${datarootdir}|g" -e "s|^${prefix}/share|\${datadir}|g"` for ac_func in clearenv do : ac_fn_c_check_func "$LINENO" "clearenv" "ac_cv_func_clearenv" if test "x$ac_cv_func_clearenv" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_CLEARENV 1 _ACEOF fi done ac_fn_c_check_decl "$LINENO" "strtold" "ac_cv_have_decl_strtold" " #include " if test "x$ac_cv_have_decl_strtold" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_STRTOLD $ac_have_decl _ACEOF savedLIBS="$LIBS" LIBS="$DBUS_LIBS $LIBS" for ac_func in dbus_watch_get_unix_fd dbus_watch_get_fd do : as_ac_var=`$as_echo "ac_cv_func_$ac_func" | $as_tr_sh` ac_fn_c_check_func "$LINENO" "$ac_func" "$as_ac_var" if eval test \"x\$"$as_ac_var"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_func" | $as_tr_cpp` 1 _ACEOF fi done LIBS="$savedLIBS" savedLIBS="$LIBS" RESOLV_LIBS= { $as_echo "$as_me:${as_lineno-$LINENO}: checking for main in -lresolv" >&5 $as_echo_n "checking for main in -lresolv... " >&6; } if ${ac_cv_lib_resolv_main+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lresolv $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { return main (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_resolv_main=yes else ac_cv_lib_resolv_main=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_resolv_main" >&5 $as_echo "$ac_cv_lib_resolv_main" >&6; } if test "x$ac_cv_lib_resolv_main" = xyes; then : RESOLV_LIBS=-lresolv fi LIBS="$RESOLV_LIBS" for ac_header in resolv.h arpa/nameser.h do : as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` ac_fn_c_check_header_mongrel "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default" if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1 _ACEOF fi done have_ns_initparse=false cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef HAVE_RESOLV_H #include #endif #ifdef HAVE_ARPA_NAMESER_H #include #endif int main () { ns_msg msg; ns_initparse(NULL, 0, &msg); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : have_ns_initparse=true else LIBS="-lbind $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef HAVE_RESOLV_H #include #endif #ifdef HAVE_ARPA_NAMESER_H #include #endif int main () { ns_msg msg; ns_initparse(NULL, 0, &msg); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : RESOLV_LIBS="-lbind $RESOLV_LIBS" have_ns_initparse=true else { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cannot find ns_initparse() in libresolv or libbind" >&5 $as_echo "$as_me: WARNING: cannot find ns_initparse() in libresolv or libbind" >&2;} have_ns_initparse=false fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext # Check whether --enable-srv-location was given. if test "${enable_srv_location+set}" = set; then : enableval=$enable_srv_location; SRV=$enableval else SRV=auto fi case "x$SRV" in xyes) if ! $have_ns_initparse ; then as_fn_error $? "cannot build with SRV location" "$LINENO" 5 fi ;; xno) have_ns_initparse=false ;; xauto) ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for SRV location" >&5 $as_echo_n "checking for SRV location... " >&6; } if $have_ns_initparse ; then $as_echo "#define HAVE_NS_INITPARSE 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes, using $RESOLV_LIBS" >&5 $as_echo "yes, using $RESOLV_LIBS" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } RESOLV_LIBS= fi LIBS="$savedLIBS" pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for CERTMONGER" >&5 $as_echo_n "checking for CERTMONGER... " >&6; } if test -n "$CERTMONGER_CFLAGS"; then pkg_cv_CERTMONGER_CFLAGS="$CERTMONGER_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"dbus-1 talloc tevent nss\""; } >&5 ($PKG_CONFIG --exists --print-errors "dbus-1 talloc tevent nss") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CERTMONGER_CFLAGS=`$PKG_CONFIG --cflags "dbus-1 talloc tevent nss" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$CERTMONGER_LIBS"; then pkg_cv_CERTMONGER_LIBS="$CERTMONGER_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"dbus-1 talloc tevent nss\""; } >&5 ($PKG_CONFIG --exists --print-errors "dbus-1 talloc tevent nss") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CERTMONGER_LIBS=`$PKG_CONFIG --libs "dbus-1 talloc tevent nss" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then CERTMONGER_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "dbus-1 talloc tevent nss" 2>&1` else CERTMONGER_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "dbus-1 talloc tevent nss" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$CERTMONGER_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (dbus-1 talloc tevent nss) were not met: $CERTMONGER_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables CERTMONGER_CFLAGS and CERTMONGER_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables CERTMONGER_CFLAGS and CERTMONGER_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else CERTMONGER_CFLAGS=$pkg_cv_CERTMONGER_CFLAGS CERTMONGER_LIBS=$pkg_cv_CERTMONGER_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GETCERT" >&5 $as_echo_n "checking for GETCERT... " >&6; } if test -n "$GETCERT_CFLAGS"; then pkg_cv_GETCERT_CFLAGS="$GETCERT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"dbus-1 talloc\""; } >&5 ($PKG_CONFIG --exists --print-errors "dbus-1 talloc") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GETCERT_CFLAGS=`$PKG_CONFIG --cflags "dbus-1 talloc" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$GETCERT_LIBS"; then pkg_cv_GETCERT_LIBS="$GETCERT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"dbus-1 talloc\""; } >&5 ($PKG_CONFIG --exists --print-errors "dbus-1 talloc") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GETCERT_LIBS=`$PKG_CONFIG --libs "dbus-1 talloc" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then GETCERT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "dbus-1 talloc" 2>&1` else GETCERT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "dbus-1 talloc" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$GETCERT_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (dbus-1 talloc) were not met: $GETCERT_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables GETCERT_CFLAGS and GETCERT_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables GETCERT_CFLAGS and GETCERT_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else GETCERT_CFLAGS=$pkg_cv_GETCERT_CFLAGS GETCERT_LIBS=$pkg_cv_GETCERT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for XML" >&5 $as_echo_n "checking for XML... " >&6; } if test -n "$XML_CFLAGS"; then pkg_cv_XML_CFLAGS="$XML_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_XML_CFLAGS=`$PKG_CONFIG --cflags "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$XML_LIBS"; then pkg_cv_XML_LIBS="$XML_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_XML_LIBS=`$PKG_CONFIG --libs "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then XML_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libxml-2.0" 2>&1` else XML_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libxml-2.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$XML_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libxml-2.0) were not met: $XML_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables XML_CFLAGS and XML_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables XML_CFLAGS and XML_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else XML_CFLAGS=$pkg_cv_XML_CFLAGS XML_LIBS=$pkg_cv_XML_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi have_libxml=true pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for CURL" >&5 $as_echo_n "checking for CURL... " >&6; } if test -n "$CURL_CFLAGS"; then pkg_cv_CURL_CFLAGS="$CURL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libcurl\""; } >&5 ($PKG_CONFIG --exists --print-errors "libcurl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CURL_CFLAGS=`$PKG_CONFIG --cflags "libcurl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$CURL_LIBS"; then pkg_cv_CURL_LIBS="$CURL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libcurl\""; } >&5 ($PKG_CONFIG --exists --print-errors "libcurl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CURL_LIBS=`$PKG_CONFIG --libs "libcurl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then CURL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libcurl" 2>&1` else CURL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libcurl" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$CURL_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libcurl) were not met: $CURL_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables CURL_CFLAGS and CURL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables CURL_CFLAGS and CURL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else CURL_CFLAGS=$pkg_cv_CURL_CFLAGS CURL_LIBS=$pkg_cv_CURL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi have_libcurl=true savedCFLAGS="$CFLAGS" savedCPPFLAGS="$CPPFLAGS" savedLDFLAGS="$LDFLAGS" CFLAGS="$CFLAGS $CURL_CFLAGS" CPPFLAGS="$CPPFLAGS $CURL_CFLAGS" LDFLAGS="$LDFLAGS $CURL_LIBS" ac_fn_c_check_decl "$LINENO" "CURLOPT_KEYPASSWD" "ac_cv_have_decl_CURLOPT_KEYPASSWD" "#include " if test "x$ac_cv_have_decl_CURLOPT_KEYPASSWD" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_CURLOPT_KEYPASSWD $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "CURLOPT_SSLKEYPASSWD" "ac_cv_have_decl_CURLOPT_SSLKEYPASSWD" "#include " if test "x$ac_cv_have_decl_CURLOPT_SSLKEYPASSWD" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_CURLOPT_SSLKEYPASSWD $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "CURLOPT_SSLCERTPASSWD" "ac_cv_have_decl_CURLOPT_SSLCERTPASSWD" "#include " if test "x$ac_cv_have_decl_CURLOPT_SSLCERTPASSWD" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_CURLOPT_SSLCERTPASSWD $ac_have_decl _ACEOF CFLAGS="$savedCFLAGS" CPPFLAGS="$savedCPPFLAGS" LDFLAGS="$savedLDFLAGS" savedCFLAGS="$CFLAGS" CFLAGS= # Extract the first word of "xmlrpc-c-config", so it can be a program name with args. set dummy xmlrpc-c-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_XMLRPC_C_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $XMLRPC_C_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_XMLRPC_C_CONFIG="$XMLRPC_C_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xmlrpc/bin$PATH_SEPARATOR/usr/xmlrpc-c/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_XMLRPC_C_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi XMLRPC_C_CONFIG=$ac_cv_path_XMLRPC_C_CONFIG if test -n "$XMLRPC_C_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XMLRPC_C_CONFIG" >&5 $as_echo "$XMLRPC_C_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -z "$XMLRPC_C_CONFIG" ; then as_fn_error $? "xmlrpc-c-config not found" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for XMLRPC CFLAGS" >&5 $as_echo_n "checking for XMLRPC CFLAGS... " >&6; } XMLRPC_CFLAGS=`${XMLRPC_C_CONFIG} client --cflags` { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XMLRPC_CFLAGS" >&5 $as_echo "$XMLRPC_CFLAGS" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for XMLRPC LIBS" >&5 $as_echo_n "checking for XMLRPC LIBS... " >&6; } XMLRPC_LIBS=`${XMLRPC_C_CONFIG} client --libs` { $as_echo "$as_me:${as_lineno-$LINENO}: result: $XMLRPC_LIBS" >&5 $as_echo "$XMLRPC_LIBS" >&6; } CFLAGS="$CFLAGS $XMLRPC_CFLAGS" ac_fn_c_check_member "$LINENO" "struct xmlrpc_curl_xportparms" "gssapi_delegation" "ac_cv_member_struct_xmlrpc_curl_xportparms_gssapi_delegation" " #include #include " if test "x$ac_cv_member_struct_xmlrpc_curl_xportparms_gssapi_delegation" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_STRUCT_XMLRPC_CURL_XPORTPARMS_GSSAPI_DELEGATION 1 _ACEOF fi CFLAGS="$savedCFLAGS" savedCFLAGS="$CFLAGS" savedCPPFLAGS="$CPPFLAGS" savedLDFLAGS="$LDFLAGS" CFLAGS= # Extract the first word of "krb5-config", so it can be a program name with args. set dummy krb5-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_KRB5_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $KRB5_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_KRB5_CONFIG="$KRB5_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/kerberos/bin$PATH_SEPARATOR/usr/krb5/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_KRB5_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi KRB5_CONFIG=$ac_cv_path_KRB5_CONFIG if test -n "$KRB5_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CONFIG" >&5 $as_echo "$KRB5_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -z "$KRB5_CONFIG" ; then as_fn_error $? "krb5-config not found" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for krb5 CFLAGS" >&5 $as_echo_n "checking for krb5 CFLAGS... " >&6; } KRB5_CFLAGS=`${KRB5_CONFIG} --cflags` { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CFLAGS" >&5 $as_echo "$KRB5_CFLAGS" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for krb5 LIBS" >&5 $as_echo_n "checking for krb5 LIBS... " >&6; } KRB5_LIBS=`${KRB5_CONFIG} --libs` { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_LIBS" >&5 $as_echo "$KRB5_LIBS" >&6; } CFLAGS="$CFLAGS $KRB5_CFLAGS" CPPFLAGS="$CPPFLAGS $KRB5_CFLAGS" LDFLAGS="$LDFLAGS $KRB5_LIBS" ac_fn_c_check_decl "$LINENO" "krb5_princ_component" "ac_cv_have_decl_krb5_princ_component" "#include " if test "x$ac_cv_have_decl_krb5_princ_component" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_KRB5_PRINC_COMPONENT $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "krb5_princ_name" "ac_cv_have_decl_krb5_princ_name" "#include " if test "x$ac_cv_have_decl_krb5_princ_name" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_KRB5_PRINC_NAME $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "krb5_princ_set_realm_length" "ac_cv_have_decl_krb5_princ_set_realm_length" "#include " if test "x$ac_cv_have_decl_krb5_princ_set_realm_length" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_KRB5_PRINC_SET_REALM_LENGTH $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "krb5_princ_size" "ac_cv_have_decl_krb5_princ_size" "#include " if test "x$ac_cv_have_decl_krb5_princ_size" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_KRB5_PRINC_SIZE $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "krb5_princ_type" "ac_cv_have_decl_krb5_princ_type" "#include " if test "x$ac_cv_have_decl_krb5_princ_type" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_KRB5_PRINC_TYPE $ac_have_decl _ACEOF for ac_func in krb5_free_unparsed_name krb5_get_init_creds_opt_alloc do : as_ac_var=`$as_echo "ac_cv_func_$ac_func" | $as_tr_sh` ac_fn_c_check_func "$LINENO" "$ac_func" "$as_ac_var" if eval test \"x\$"$as_ac_var"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_func" | $as_tr_cpp` 1 _ACEOF fi done for ac_func in krb5_get_error_message do : ac_fn_c_check_func "$LINENO" "krb5_get_error_message" "ac_cv_func_krb5_get_error_message" if test "x$ac_cv_func_krb5_get_error_message" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_KRB5_GET_ERROR_MESSAGE 1 _ACEOF fi done CFLAGS="$savedCFLAGS" CPPFLAGS="$savedCPPFLAGS" LDFLAGS="$savedLDFLAGS" if test x$withopenssl != xno; then HAVE_OPENSSL_TRUE= HAVE_OPENSSL_FALSE='#' else HAVE_OPENSSL_TRUE='#' HAVE_OPENSSL_FALSE= fi if test x$withopenssl != xno ; then if pkg-config libcrypto 2> /dev/null ; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OPENSSL" >&5 $as_echo_n "checking for OPENSSL... " >&6; } if test -n "$OPENSSL_CFLAGS"; then pkg_cv_OPENSSL_CFLAGS="$OPENSSL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libcrypto\""; } >&5 ($PKG_CONFIG --exists --print-errors "libcrypto") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_CFLAGS=`$PKG_CONFIG --cflags "libcrypto" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$OPENSSL_LIBS"; then pkg_cv_OPENSSL_LIBS="$OPENSSL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libcrypto\""; } >&5 ($PKG_CONFIG --exists --print-errors "libcrypto") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_LIBS=`$PKG_CONFIG --libs "libcrypto" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then OPENSSL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libcrypto" 2>&1` else OPENSSL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libcrypto" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$OPENSSL_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libcrypto) were not met: $OPENSSL_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables OPENSSL_CFLAGS and OPENSSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables OPENSSL_CFLAGS and OPENSSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else OPENSSL_CFLAGS=$pkg_cv_OPENSSL_CFLAGS OPENSSL_LIBS=$pkg_cv_OPENSSL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OPENSSL_SSL" >&5 $as_echo_n "checking for OPENSSL_SSL... " >&6; } if test -n "$OPENSSL_SSL_CFLAGS"; then pkg_cv_OPENSSL_SSL_CFLAGS="$OPENSSL_SSL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libssl libcrypto\""; } >&5 ($PKG_CONFIG --exists --print-errors "libssl libcrypto") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_SSL_CFLAGS=`$PKG_CONFIG --cflags "libssl libcrypto" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$OPENSSL_SSL_LIBS"; then pkg_cv_OPENSSL_SSL_LIBS="$OPENSSL_SSL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libssl libcrypto\""; } >&5 ($PKG_CONFIG --exists --print-errors "libssl libcrypto") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_SSL_LIBS=`$PKG_CONFIG --libs "libssl libcrypto" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then OPENSSL_SSL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libssl libcrypto" 2>&1` else OPENSSL_SSL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libssl libcrypto" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$OPENSSL_SSL_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libssl libcrypto) were not met: $OPENSSL_SSL_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables OPENSSL_SSL_CFLAGS and OPENSSL_SSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables OPENSSL_SSL_CFLAGS and OPENSSL_SSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else OPENSSL_SSL_CFLAGS=$pkg_cv_OPENSSL_SSL_CFLAGS OPENSSL_SSL_LIBS=$pkg_cv_OPENSSL_SSL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi else pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OPENSSL" >&5 $as_echo_n "checking for OPENSSL... " >&6; } if test -n "$OPENSSL_CFLAGS"; then pkg_cv_OPENSSL_CFLAGS="$OPENSSL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_CFLAGS=`$PKG_CONFIG --cflags "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$OPENSSL_LIBS"; then pkg_cv_OPENSSL_LIBS="$OPENSSL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_LIBS=`$PKG_CONFIG --libs "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then OPENSSL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "openssl" 2>&1` else OPENSSL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "openssl" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$OPENSSL_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (openssl) were not met: $OPENSSL_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables OPENSSL_CFLAGS and OPENSSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables OPENSSL_CFLAGS and OPENSSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else OPENSSL_CFLAGS=$pkg_cv_OPENSSL_CFLAGS OPENSSL_LIBS=$pkg_cv_OPENSSL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OPENSSL_SSL" >&5 $as_echo_n "checking for OPENSSL_SSL... " >&6; } if test -n "$OPENSSL_SSL_CFLAGS"; then pkg_cv_OPENSSL_SSL_CFLAGS="$OPENSSL_SSL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_SSL_CFLAGS=`$PKG_CONFIG --cflags "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$OPENSSL_SSL_LIBS"; then pkg_cv_OPENSSL_SSL_LIBS="$OPENSSL_SSL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_SSL_LIBS=`$PKG_CONFIG --libs "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then OPENSSL_SSL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "openssl" 2>&1` else OPENSSL_SSL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "openssl" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$OPENSSL_SSL_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (openssl) were not met: $OPENSSL_SSL_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables OPENSSL_SSL_CFLAGS and OPENSSL_SSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables OPENSSL_SSL_CFLAGS and OPENSSL_SSL_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else OPENSSL_SSL_CFLAGS=$pkg_cv_OPENSSL_SSL_CFLAGS OPENSSL_SSL_LIBS=$pkg_cv_OPENSSL_SSL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi fi $as_echo "#define HAVE_OPENSSL 1" >>confdefs.h CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" CFLAGS="$OPENSSL_CFLAGS $CFLAGS" LIBS="$OPENSSL_LIBS $LIBS" ac_fn_c_check_decl "$LINENO" "OpenSSL_add_all_algorithms" "ac_cv_have_decl_OpenSSL_add_all_algorithms" "#include " if test "x$ac_cv_have_decl_OpenSSL_add_all_algorithms" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_OPENSSL_ADD_ALL_ALGORITHMS $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "OpenSSL_add_ssl_algorithms" "ac_cv_have_decl_OpenSSL_add_ssl_algorithms" "#include " if test "x$ac_cv_have_decl_OpenSSL_add_ssl_algorithms" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_OPENSSL_ADD_SSL_ALGORITHMS $ac_have_decl _ACEOF ac_fn_c_check_decl "$LINENO" "OPENSSL_free" "ac_cv_have_decl_OPENSSL_free" "#include " if test "x$ac_cv_have_decl_OPENSSL_free" = xyes; then : ac_have_decl=1 else ac_have_decl=0 fi cat >>confdefs.h <<_ACEOF #define HAVE_DECL_OPENSSL_FREE $ac_have_decl _ACEOF CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" fi if test x$withnss != xno; then HAVE_NSS_TRUE= HAVE_NSS_FALSE='#' else HAVE_NSS_TRUE='#' HAVE_NSS_FALSE= fi if test x$withnss != xno ; then if pkg-config mozilla-nss 2> /dev/null ; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for NSS" >&5 $as_echo_n "checking for NSS... " >&6; } if test -n "$NSS_CFLAGS"; then pkg_cv_NSS_CFLAGS="$NSS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"mozilla-nss\""; } >&5 ($PKG_CONFIG --exists --print-errors "mozilla-nss") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_NSS_CFLAGS=`$PKG_CONFIG --cflags "mozilla-nss" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$NSS_LIBS"; then pkg_cv_NSS_LIBS="$NSS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"mozilla-nss\""; } >&5 ($PKG_CONFIG --exists --print-errors "mozilla-nss") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_NSS_LIBS=`$PKG_CONFIG --libs "mozilla-nss" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then NSS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "mozilla-nss" 2>&1` else NSS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "mozilla-nss" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$NSS_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (mozilla-nss) were not met: $NSS_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables NSS_CFLAGS and NSS_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables NSS_CFLAGS and NSS_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else NSS_CFLAGS=$pkg_cv_NSS_CFLAGS NSS_LIBS=$pkg_cv_NSS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi else pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for NSS" >&5 $as_echo_n "checking for NSS... " >&6; } if test -n "$NSS_CFLAGS"; then pkg_cv_NSS_CFLAGS="$NSS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"nss\""; } >&5 ($PKG_CONFIG --exists --print-errors "nss") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_NSS_CFLAGS=`$PKG_CONFIG --cflags "nss" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$NSS_LIBS"; then pkg_cv_NSS_LIBS="$NSS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"nss\""; } >&5 ($PKG_CONFIG --exists --print-errors "nss") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_NSS_LIBS=`$PKG_CONFIG --libs "nss" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then NSS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "nss" 2>&1` else NSS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "nss" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$NSS_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (nss) were not met: $NSS_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables NSS_CFLAGS and NSS_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables NSS_CFLAGS and NSS_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else NSS_CFLAGS=$pkg_cv_NSS_CFLAGS NSS_LIBS=$pkg_cv_NSS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi fi $as_echo "#define HAVE_NSS 1" >>confdefs.h savedCFLAGS="$CFLAGS" savedCPPFLAGS="$CPPFLAGS" savedLDFLAGS="$LDFLAGS" CFLAGS="$CFLAGS $NSS_CFLAGS" CPPFLAGS="$CPPFLAGS $NSS_CFLAGS" LDFLAGS="$LDFLAGS $NSS_LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking if NSS supports \"sql:\" databases" >&5 $as_echo_n "checking if NSS supports \"sql:\" databases... " >&6; } mkdir _nss_db_testdir || : if test "$cross_compiling" = yes; then : $as_echo "#define HAVE_SQL_NSSDB 1" >>confdefs.h have_sql_nssdb="guessing yes" else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include int main(int argc, char **argv) { SECStatus status; PRErrorCode err; status = NSS_InitReadWrite((argc > 1) ? argv[1] : "sql:_nss_db_testdir"); if (status == SECSuccess) { return 0; } err = PR_GetError(); printf("%s", PR_ErrorToString(err, PR_LANGUAGE_I_DEFAULT)); return 1; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : $as_echo "#define HAVE_SQL_NSSDB 1" >>confdefs.h have_sql_nssdb=yes else have_sql_nssdb=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi rm -f -r _nss_db_testdir { $as_echo "$as_me:${as_lineno-$LINENO}: result: $have_sql_nssdb" >&5 $as_echo "$have_sql_nssdb" >&6; } if test "x$have_sql_nssdb" != xno; then HAVE_SQL_NSSDB_TRUE= HAVE_SQL_NSSDB_FALSE='#' else HAVE_SQL_NSSDB_TRUE='#' HAVE_SQL_NSSDB_FALSE= fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking if NSS supports \"dbm:\" databases" >&5 $as_echo_n "checking if NSS supports \"dbm:\" databases... " >&6; } mkdir _nss_db_testdir || : if test "$cross_compiling" = yes; then : $as_echo "#define HAVE_DBM_NSSDB 1" >>confdefs.h have_dbm_nssdb="guessing yes" else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include int main(int argc, char **argv) { SECStatus status; PRErrorCode err; status = NSS_InitReadWrite((argc > 1) ? argv[1] : "dbm:_nss_db_testdir"); if (status == SECSuccess) { return 0; } err = PR_GetError(); printf("%s", PR_ErrorToString(err, PR_LANGUAGE_I_DEFAULT)); return 1; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : $as_echo "#define HAVE_DBM_NSSDB 1" >>confdefs.h have_dbm_nssdb=yes else have_dbm_nssdb=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi rm -f -r _nss_db_testdir { $as_echo "$as_me:${as_lineno-$LINENO}: result: $have_dbm_nssdb" >&5 $as_echo "$have_dbm_nssdb" >&6; } if test "x$have_dbm_nssdb" != xno; then HAVE_DBM_NSSDB_TRUE= HAVE_DBM_NSSDB_FALSE='#' else HAVE_DBM_NSSDB_TRUE='#' HAVE_DBM_NSSDB_FALSE= fi CFLAGS="$savedCFLAGS" CPPFLAGS="$savedCPPFLAGS" LDFLAGS="$savedLDFLAGS" fi # Check whether --with-gmp was given. if test "${with_gmp+set}" = set; then : withval=$with_gmp; withgmp=$withval else withgmp=no fi if test $withgmp != no ; then CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" if test $withgmp != yes ; then GMP_CFLAGS="-I$withgmp/include" GMP_LIBS="-L$withgmp/lib" else GMP_CFLAGS= GMP_LIBS= fi CFLAGS="$GMP_CFLAGS $CFLAGS" LIBS="$GMP_LIBS $LIBS" for ac_header in gmp.h do : ac_fn_c_check_header_mongrel "$LINENO" "gmp.h" "ac_cv_header_gmp_h" "$ac_includes_default" if test "x$ac_cv_header_gmp_h" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_GMP_H 1 _ACEOF fi done ac_fn_c_check_func "$LINENO" "mpz_set_str" "ac_cv_func_mpz_set_str" if test "x$ac_cv_func_mpz_set_str" = xyes; then : else LIBS="-lgmp $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { mpz_get_str(NULL,10,NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : GMP_LIBS="$GMP_LIBS -lgmp" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GMP" >&5 $as_echo_n "checking for GMP... " >&6; } if test $ac_cv_header_gmp_h = yes ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: found" >&5 $as_echo "found" >&6; } $as_echo "#define HAVE_GMP 1" >>confdefs.h else as_fn_error $? "not found" "$LINENO" 5 fi CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" fi if test $withgmp != no; then USE_GMP_TRUE= USE_GMP_FALSE='#' else USE_GMP_TRUE='#' USE_GMP_FALSE= fi if test $withgmp = no && test x$withopenssl = xno ; then as_fn_error $? "Need at least one of OpenSSL or GMP for big number operations." "$LINENO" 5 fi SYSTEMD=no # Check whether --enable-systemd was given. if test "${enable_systemd+set}" = set; then : enableval=$enable_systemd; SYSTEMD=$enableval else SYSTEMD=no fi if test x$SYSTEMD != xno; then SYSTEMD_TRUE= SYSTEMD_FALSE='#' else SYSTEMD_TRUE='#' SYSTEMD_FALSE= fi if test x$SYSTEMD = xyes ; then SYSTEMDSYSTEMUNITDIR=`pkg-config --variable=systemdsystemunitdir systemd 2> /dev/null` { $as_echo "$as_me:${as_lineno-$LINENO}: result: will install systemd unit files to $SYSTEMDSYSTEMUNITDIR" >&5 $as_echo "will install systemd unit files to $SYSTEMDSYSTEMUNITDIR" >&6; } fi TMPFILES=no # Check whether --enable-tmpfiles was given. if test "${enable_tmpfiles+set}" = set; then : enableval=$enable_tmpfiles; TMPFILES=$enableval else TMPFILES=$SYSTEMD fi if test x$TMPFILES != xno; then TMPFILES_TRUE= TMPFILES_FALSE='#' else TMPFILES_TRUE='#' TMPFILES_FALSE= fi if test x$TMPFILES = xyes ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: will install systemd tmpfiles.d file to ${prefix}/lib/tmpfiles.d" >&5 $as_echo "will install systemd tmpfiles.d file to ${prefix}/lib/tmpfiles.d" >&6; } fi SYSVINIT=no # Check whether --enable-sysvinit was given. if test "${enable_sysvinit+set}" = set; then : enableval=$enable_sysvinit; SYSVINIT=$enableval else SYSVINIT=no fi if test x$SYSVINIT != xno; then SYSVINIT_TRUE= SYSVINIT_FALSE='#' else SYSVINIT_TRUE='#' SYSVINIT_FALSE= fi if test x$SYSVINIT != xno ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: will install sysvinit init script to $SYSVINIT" >&5 $as_echo "will install sysvinit init script to $SYSVINIT" >&6; } fi # Check whether --enable-pie was given. if test "${enable_pie+set}" = set; then : enableval=$enable_pie; pie=$enableval else pie=no fi if test x$pie = xyes ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: building position-independent executables" >&5 $as_echo "building position-independent executables" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: NOT building position-independent executables" >&5 $as_echo "NOT building position-independent executables" >&6; } fi if test x$pie = xyes; then PIE_TRUE= PIE_FALSE='#' else PIE_TRUE='#' PIE_FALSE= fi # Check whether --enable-now was given. if test "${enable_now+set}" = set; then : enableval=$enable_now; now=$enableval else now=no fi if test x$pie = xyes ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: building bind-now executables" >&5 $as_echo "building bind-now executables" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: NOT building bind-now executables" >&5 $as_echo "NOT building bind-now executables" >&6; } fi if test x$now = xyes; then NOW_TRUE= NOW_FALSE='#' else NOW_TRUE='#' NOW_FALSE= fi # Check whether --enable-dsa was given. if test "${enable_dsa+set}" = set; then : enableval=$enable_dsa; dsa=$enableval else dsa=maybe fi if test x$dsa != xno ; then CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" CFLAGS="$OPENSSL_CFLAGS $CFLAGS" LIBS="$OPENSSL_LIBS $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for DSA_new in -lcrypto" >&5 $as_echo_n "checking for DSA_new in -lcrypto... " >&6; } if ${ac_cv_lib_crypto_DSA_new+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lcrypto $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char DSA_new (); int main () { return DSA_new (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_crypto_DSA_new=yes else ac_cv_lib_crypto_DSA_new=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_crypto_DSA_new" >&5 $as_echo "$ac_cv_lib_crypto_DSA_new" >&6; } if test "x$ac_cv_lib_crypto_DSA_new" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBCRYPTO 1 _ACEOF LIBS="-lcrypto $LIBS" fi CFLAGS="$NSS_CFLAGS $CFLAGS" LIBS="$NSS_LIBS $LIBS" ac_fn_c_check_type "$LINENO" "SECKEYDSAPublicKey" "ac_cv_type_SECKEYDSAPublicKey" " $ac_includes_default #include " if test "x$ac_cv_type_SECKEYDSAPublicKey" = xyes; then : fi CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" can_dsa=true if ! pkg-config --atleast-version=1.0 openssl ; then # CSR signing appears to be broken in 0.9.8e, so reject < 1.0 can_dsa=false fi if test x$ac_cv_lib_crypto_DSA_new = xno ; then can_dsa=false fi if test x$ac_cv_type_SECKEYDSAPublicKey = xno ; then can_dsa=false fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for DSA support" >&5 $as_echo_n "checking for DSA support... " >&6; } if $can_dsa ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: enabling DSA support" >&5 $as_echo "enabling DSA support" >&6; } cat >>confdefs.h <<_ACEOF #define CM_ENABLE_DSA 1 _ACEOF MAN_DSA="" NO_MAN_DSA=".\\\" " dsa=yes else if test x$dsa != xyes ; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unavailable, disabling" >&5 $as_echo "$as_me: WARNING: unavailable, disabling" >&2;} dsa=no else as_fn_error $? "unavailable" "$LINENO" 5 fi MAN_DSA=".\\\" " NO_MAN_DSA="" fi else { $as_echo "$as_me:${as_lineno-$LINENO}: result: NOT enabling DSA support" >&5 $as_echo "NOT enabling DSA support" >&6; } MAN_DSA=".\\\" " NO_MAN_DSA="" dsa=no fi if test x$dsa = xyes; then HAVE_DSA_TRUE= HAVE_DSA_FALSE='#' else HAVE_DSA_TRUE='#' HAVE_DSA_FALSE= fi # Check whether --enable-ec was given. if test "${enable_ec+set}" = set; then : enableval=$enable_ec; ec=$enableval else ec=maybe fi if test x$ec != xno ; then CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" CFLAGS="$OPENSSL_CFLAGS $CFLAGS" LIBS="$OPENSSL_LIBS $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for EC_KEY_new_by_curve_name in -lcrypto" >&5 $as_echo_n "checking for EC_KEY_new_by_curve_name in -lcrypto... " >&6; } if ${ac_cv_lib_crypto_EC_KEY_new_by_curve_name+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lcrypto $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char EC_KEY_new_by_curve_name (); int main () { return EC_KEY_new_by_curve_name (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_crypto_EC_KEY_new_by_curve_name=yes else ac_cv_lib_crypto_EC_KEY_new_by_curve_name=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_crypto_EC_KEY_new_by_curve_name" >&5 $as_echo "$ac_cv_lib_crypto_EC_KEY_new_by_curve_name" >&6; } if test "x$ac_cv_lib_crypto_EC_KEY_new_by_curve_name" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBCRYPTO 1 _ACEOF LIBS="-lcrypto $LIBS" fi CFLAGS="$NSS_CFLAGS $CFLAGS" LIBS="$NSS_LIBS $LIBS" for ac_func in SECKEY_CreateECPrivateKey do : ac_fn_c_check_func "$LINENO" "SECKEY_CreateECPrivateKey" "ac_cv_func_SECKEY_CreateECPrivateKey" if test "x$ac_cv_func_SECKEY_CreateECPrivateKey" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_SECKEY_CREATEECPRIVATEKEY 1 _ACEOF fi done for ac_func in PK11_PrivDecrypt do : ac_fn_c_check_func "$LINENO" "PK11_PrivDecrypt" "ac_cv_func_PK11_PrivDecrypt" if test "x$ac_cv_func_PK11_PrivDecrypt" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_PK11_PRIVDECRYPT 1 _ACEOF fi done CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" can_ec=true if test x$ac_cv_lib_crypto_EC_KEY_new_by_curve_name = xno ; then can_ec=false fi if test x$ac_cv_func_CreateECPrivateKey = xno ; then can_ec=false fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for EC support" >&5 $as_echo_n "checking for EC support... " >&6; } if $can_ec ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: enabling EC support" >&5 $as_echo "enabling EC support" >&6; } cat >>confdefs.h <<_ACEOF #define CM_ENABLE_EC 1 _ACEOF MAN_EC="" NO_MAN_EC=".\\\" " ec=yes else if test x$ec != xyes ; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unavailable, disabling" >&5 $as_echo "$as_me: WARNING: unavailable, disabling" >&2;} ec=no else as_fn_error $? "unavailable" "$LINENO" 5 fi MAN_EC=".\\\" " NO_MAN_EC="" fi else { $as_echo "$as_me:${as_lineno-$LINENO}: result: NOT enabling EC support" >&5 $as_echo "NOT enabling EC support" >&6; } MAN_EC=".\\\" " NO_MAN_EC="" ec=no fi if test x$ec = xyes; then HAVE_EC_TRUE= HAVE_EC_FALSE='#' else HAVE_EC_TRUE='#' HAVE_EC_FALSE= fi cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_KEY_STORAGE_TYPE cm_key_storage_nssdb _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_KEY_STORAGE_LOCATION "/etc/pki/nssdb" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_KEY_TOKEN NULL _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_KEY_NICKNAME "Server-Cert" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_CERT_STORAGE_TYPE cm_cert_storage_nssdb _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_CERT_STORAGE_LOCATION "/etc/pki/nssdb" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_CERT_TOKEN NULL _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_CERT_NICKNAME "Server-Cert" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_PUBKEY_TYPE cm_key_rsa _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_RSA_EXPONENT 0x10001 _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DIGEST_MAX (512/8) _ACEOF CM_DEFAULT_PUBKEY_SIZE=2048 cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_PUBKEY_SIZE $CM_DEFAULT_PUBKEY_SIZE _ACEOF CM_MINIMUM_RSA_KEY_SIZE=512 CM_MINIMUM_DSA_KEY_SIZE=512 CM_MINIMUM_EC_KEY_SIZE=256 cat >>confdefs.h <<_ACEOF #define CM_MINIMUM_RSA_KEY_SIZE $CM_MINIMUM_RSA_KEY_SIZE _ACEOF cat >>confdefs.h <<_ACEOF #define CM_MINIMUM_DSA_KEY_SIZE $CM_MINIMUM_DSA_KEY_SIZE _ACEOF cat >>confdefs.h <<_ACEOF #define CM_MINIMUM_EC_KEY_SIZE $CM_MINIMUM_EC_KEY_SIZE _ACEOF CM_DEFAULT_TTL_LIST="2419200, 604800, 259200, 172800, 86400" cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_TTL_LIST $CM_DEFAULT_TTL_LIST _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_CERT_SUBJECT_CN "localhost" _ACEOF CM_DEFAULT_CERT_LIFETIME=1y cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_CERT_LIFETIME "$CM_DEFAULT_CERT_LIFETIME" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_CERT_SERIAL "01" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_NOTIFICATION_METHOD cm_notification_syslog _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_NOTIFICATION_MAIL "root" _ACEOF CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY=daemon.notice cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY "$CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY" _ACEOF $as_echo "#define CM_DELAY_SOON 5" >>confdefs.h $as_echo "#define CM_DELAY_SOONISH 30" >>confdefs.h $as_echo "#define CM_DELAY_CA_POLL (7 * 24 * 60 * 60)" >>confdefs.h $as_echo "#define CM_DELAY_CADATA_POLL (6 * 60 * 60)" >>confdefs.h $as_echo "#define CM_DELAY_CA_POLL_MINIMUM (5 * 60)" >>confdefs.h $as_echo "#define CM_DELAY_CA_POLL_MAXIMUM (365 * 24 * 60 * 60)" >>confdefs.h $as_echo "#define CM_DELAY_MONITOR_POLL (24 * 60 * 60)" >>confdefs.h $as_echo "#define CM_DELAY_MONITOR_POLL_MINIMUM (30 * 60)" >>confdefs.h $as_echo "#define CM_DELAY_NETLINK (60)" >>confdefs.h CM_SELF_SIGN_CA_NAME=SelfSign cat >>confdefs.h <<_ACEOF #define CM_SELF_SIGN_CA_NAME "$CM_SELF_SIGN_CA_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_HELPER_PATH "$mylibexecdir" _ACEOF $as_echo "#define WITH_IPA 1" >>confdefs.h CM_IPA_CA_NAME=IPA cat >>confdefs.h <<_ACEOF #define CM_IPA_CA_NAME "$CM_IPA_CA_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_IPA_HELPER_PATH "$mylibexecdir/ipa-submit" _ACEOF if true; then WITH_IPA_TRUE= WITH_IPA_FALSE='#' else WITH_IPA_TRUE='#' WITH_IPA_FALSE= fi $as_echo "#define WITH_CERTMASTER 1" >>confdefs.h CM_CERTMASTER_CA_NAME=certmaster cat >>confdefs.h <<_ACEOF #define CM_CERTMASTER_CA_NAME "$CM_CERTMASTER_CA_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_CERTMASTER_HELPER_PATH "$mylibexecdir/certmaster-submit" _ACEOF if true; then WITH_CERTMASTER_TRUE= WITH_CERTMASTER_FALSE='#' else WITH_CERTMASTER_TRUE='#' WITH_CERTMASTER_FALSE= fi $as_echo "#define WITH_LOCAL 1" >>confdefs.h CM_LOCAL_CA_NAME=local cat >>confdefs.h <<_ACEOF #define CM_LOCAL_CA_NAME "$CM_LOCAL_CA_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define CM_LOCAL_HELPER_PATH "$mylibexecdir/local-submit" _ACEOF if true; then WITH_LOCAL_TRUE= WITH_LOCAL_FALSE='#' else WITH_LOCAL_TRUE='#' WITH_LOCAL_FALSE= fi cat >>confdefs.h <<_ACEOF #define CM_SCEP_HELPER_PATH "$mylibexecdir/scep-submit" _ACEOF CM_DEFAULT_IDLE_TIMEOUT=300 cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_IDLE_TIMEOUT $CM_DEFAULT_IDLE_TIMEOUT _ACEOF CFLAGSsave="$CFLAGS" LIBSsave="$LIBS" ac_fn_c_check_header_mongrel "$LINENO" "ldap.h" "ac_cv_header_ldap_h" "$ac_includes_default" if test "x$ac_cv_header_ldap_h" = xyes; then : else as_fn_error $? "ldap.h not found" "$LINENO" 5 fi ac_fn_c_check_func "$LINENO" "ldap_initialize" "ac_cv_func_ldap_initialize" if test "x$ac_cv_func_ldap_initialize" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ldap_initialize in -lldap" >&5 $as_echo_n "checking for ldap_initialize in -lldap... " >&6; } if ${ac_cv_lib_ldap_ldap_initialize+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lldap $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char ldap_initialize (); int main () { return ldap_initialize (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_ldap_ldap_initialize=yes else ac_cv_lib_ldap_ldap_initialize=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_ldap_ldap_initialize" >&5 $as_echo "$ac_cv_lib_ldap_ldap_initialize" >&6; } if test "x$ac_cv_lib_ldap_ldap_initialize" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBLDAP 1 _ACEOF LIBS="-lldap $LIBS" fi fi ac_fn_c_check_func "$LINENO" "ldap_sasl_interactive_bind_s" "ac_cv_func_ldap_sasl_interactive_bind_s" if test "x$ac_cv_func_ldap_sasl_interactive_bind_s" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ldap_sasl_interactive_bind_s in -lldap" >&5 $as_echo_n "checking for ldap_sasl_interactive_bind_s in -lldap... " >&6; } if ${ac_cv_lib_ldap_ldap_sasl_interactive_bind_s+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lldap $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char ldap_sasl_interactive_bind_s (); int main () { return ldap_sasl_interactive_bind_s (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_ldap_ldap_sasl_interactive_bind_s=yes else ac_cv_lib_ldap_ldap_sasl_interactive_bind_s=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_ldap_ldap_sasl_interactive_bind_s" >&5 $as_echo "$ac_cv_lib_ldap_ldap_sasl_interactive_bind_s" >&6; } if test "x$ac_cv_lib_ldap_ldap_sasl_interactive_bind_s" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBLDAP 1 _ACEOF LIBS="-lldap $LIBS" fi fi LDAP_CFLAGS="$CFLAGS" LDAP_LIBS="$LIBS" CFLAGS="$CFLAGSsave" LIBS="$LIBSsave" # Check whether --with-idn was given. if test "${with_idn+set}" = set; then : withval=$with_idn; if test x$with_idn = xno ; then idn=false else idn=true fi else idn=true fi if $idn ; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for IDN" >&5 $as_echo_n "checking for IDN... " >&6; } if test -n "$IDN_CFLAGS"; then pkg_cv_IDN_CFLAGS="$IDN_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libidn\""; } >&5 ($PKG_CONFIG --exists --print-errors "libidn") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_IDN_CFLAGS=`$PKG_CONFIG --cflags "libidn" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$IDN_LIBS"; then pkg_cv_IDN_LIBS="$IDN_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libidn\""; } >&5 ($PKG_CONFIG --exists --print-errors "libidn") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_IDN_LIBS=`$PKG_CONFIG --libs "libidn" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then IDN_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libidn" 2>&1` else IDN_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libidn" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$IDN_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libidn) were not met: $IDN_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables IDN_CFLAGS and IDN_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables IDN_CFLAGS and IDN_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else IDN_CFLAGS=$pkg_cv_IDN_CFLAGS IDN_LIBS=$pkg_cv_IDN_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi $as_echo "#define CM_USE_IDN 1" >>confdefs.h fi # Check whether --with-uuid was given. if test "${with_uuid+set}" = set; then : withval=$with_uuid; uuid=$with_uuid else uuid=no fi if test x$with_uuid = xyes ; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for UUID" >&5 $as_echo_n "checking for UUID... " >&6; } if test -n "$UUID_CFLAGS"; then pkg_cv_UUID_CFLAGS="$UUID_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uuid\""; } >&5 ($PKG_CONFIG --exists --print-errors "uuid") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_UUID_CFLAGS=`$PKG_CONFIG --cflags "uuid" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$UUID_LIBS"; then pkg_cv_UUID_LIBS="$UUID_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uuid\""; } >&5 ($PKG_CONFIG --exists --print-errors "uuid") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_UUID_LIBS=`$PKG_CONFIG --libs "uuid" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then UUID_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "uuid" 2>&1` else UUID_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "uuid" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$UUID_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (uuid) were not met: $UUID_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables UUID_CFLAGS and UUID_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables UUID_CFLAGS and UUID_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else UUID_CFLAGS=$pkg_cv_UUID_CFLAGS UUID_LIBS=$pkg_cv_UUID_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi else if test x$with_uuid != xno ; then if pkg-config uuid ; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for UUID" >&5 $as_echo_n "checking for UUID... " >&6; } if test -n "$UUID_CFLAGS"; then pkg_cv_UUID_CFLAGS="$UUID_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uuid\""; } >&5 ($PKG_CONFIG --exists --print-errors "uuid") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_UUID_CFLAGS=`$PKG_CONFIG --cflags "uuid" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$UUID_LIBS"; then pkg_cv_UUID_LIBS="$UUID_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uuid\""; } >&5 ($PKG_CONFIG --exists --print-errors "uuid") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_UUID_LIBS=`$PKG_CONFIG --libs "uuid" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then UUID_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "uuid" 2>&1` else UUID_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "uuid" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$UUID_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (uuid) were not met: $UUID_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables UUID_CFLAGS and UUID_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables UUID_CFLAGS and UUID_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else UUID_CFLAGS=$pkg_cv_UUID_CFLAGS UUID_LIBS=$pkg_cv_UUID_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi uuid=yes fi fi fi # Older uuid pkgconfig sets us up to need . Newer # versions set us up to need . if test x$uuid = xyes ; then savedCFLAGS="$CFLAGS" CFLAGS="$UUID_CFLAGS" for ac_header in uuid.h uuid/uuid.h do : as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` ac_fn_c_check_header_mongrel "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default" if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1 _ACEOF fi done CFLAGS="$savedCFLAGS" if test x$ac_cv_header_uuid_uuid_h = xno ; then if test x$ac_cv_header_uuid_h = xno ; then as_fn_error $? "uuid.h header file not found" "$LINENO" 5 fi fi $as_echo "#define HAVE_UUID 1" >>confdefs.h fi CM_DEFAULT_POPULATE_UNIQUE_ID=no cat >>confdefs.h <<_ACEOF #define CM_DEFAULT_POPULATE_UNIQUE_ID "$CM_DEFAULT_POPULATE_UNIQUE_ID" _ACEOF if test x$uuid = xyes; then HAVE_UUID_TRUE= HAVE_UUID_FALSE='#' else HAVE_UUID_TRUE='#' HAVE_UUID_FALSE= fi LIBSsave="$LIBS" for ac_header in popt.h do : ac_fn_c_check_header_mongrel "$LINENO" "popt.h" "ac_cv_header_popt_h" "$ac_includes_default" if test "x$ac_cv_header_popt_h" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_POPT_H 1 _ACEOF fi done if test x$ac_cv_header_popt_h != xyes ; then as_fn_error $? "popt.h header file not found" "$LINENO" 5 fi ac_fn_c_check_func "$LINENO" "poptGetContext" "ac_cv_func_poptGetContext" if test "x$ac_cv_func_poptGetContext" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for poptGetContext in -lpopt" >&5 $as_echo_n "checking for poptGetContext in -lpopt... " >&6; } if ${ac_cv_lib_popt_poptGetContext+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lpopt $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char poptGetContext (); int main () { return poptGetContext (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_popt_poptGetContext=yes else ac_cv_lib_popt_poptGetContext=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_popt_poptGetContext" >&5 $as_echo "$ac_cv_lib_popt_poptGetContext" >&6; } if test "x$ac_cv_lib_popt_poptGetContext" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBPOPT 1 _ACEOF LIBS="-lpopt $LIBS" fi fi if test x$ac_cv_func_poptGetContext != xyes ; then if test x$ac_cv_lib_popt_poptGetContext != xyes ; then as_fn_error $? "libpopt not found" "$LINENO" 5 fi fi POPT_LIBS="$LIBS" LIBS="$LIBSsave" else if false; then HAVE_OPENSSL_TRUE= HAVE_OPENSSL_FALSE='#' else HAVE_OPENSSL_TRUE='#' HAVE_OPENSSL_FALSE= fi if false; then HAVE_NSS_TRUE= HAVE_NSS_FALSE='#' else HAVE_NSS_TRUE='#' HAVE_NSS_FALSE= fi if false; then HAVE_SQL_NSSDB_TRUE= HAVE_SQL_NSSDB_FALSE='#' else HAVE_SQL_NSSDB_TRUE='#' HAVE_SQL_NSSDB_FALSE= fi if false; then HAVE_DBM_NSSDB_TRUE= HAVE_DBM_NSSDB_FALSE='#' else HAVE_DBM_NSSDB_TRUE='#' HAVE_DBM_NSSDB_FALSE= fi if false; then USE_GMP_TRUE= USE_GMP_FALSE='#' else USE_GMP_TRUE='#' USE_GMP_FALSE= fi if false; then SYSTEMD_TRUE= SYSTEMD_FALSE='#' else SYSTEMD_TRUE='#' SYSTEMD_FALSE= fi if false; then TMPFILES_TRUE= TMPFILES_FALSE='#' else TMPFILES_TRUE='#' TMPFILES_FALSE= fi if false; then SYSVINIT_TRUE= SYSVINIT_FALSE='#' else SYSVINIT_TRUE='#' SYSVINIT_FALSE= fi if false; then PIE_TRUE= PIE_FALSE='#' else PIE_TRUE='#' PIE_FALSE= fi if false; then NOW_TRUE= NOW_FALSE='#' else NOW_TRUE='#' NOW_FALSE= fi if false; then HAVE_DSA_TRUE= HAVE_DSA_FALSE='#' else HAVE_DSA_TRUE='#' HAVE_DSA_FALSE= fi if false; then HAVE_EC_TRUE= HAVE_EC_FALSE='#' else HAVE_EC_TRUE='#' HAVE_EC_FALSE= fi if false; then WITH_IPA_TRUE= WITH_IPA_FALSE='#' else WITH_IPA_TRUE='#' WITH_IPA_FALSE= fi if false; then WITH_CERTMASTER_TRUE= WITH_CERTMASTER_FALSE='#' else WITH_CERTMASTER_TRUE='#' WITH_CERTMASTER_FALSE= fi if false; then WITH_LOCAL_TRUE= WITH_LOCAL_FALSE='#' else WITH_LOCAL_TRUE='#' WITH_LOCAL_FALSE= fi if false; then HAVE_UUID_TRUE= HAVE_UUID_FALSE='#' else HAVE_UUID_TRUE='#' HAVE_UUID_FALSE= fi fi ac_config_commands="$ac_config_commands src_introspect_sh" ac_config_files="$ac_config_files Makefile src/Makefile dbus/Makefile systemd/Makefile sysvinit/Makefile sysvinit/certmonger tests/Makefile tests/tools/Makefile dbus/certmonger.conf dbus/certmonger.service src/introspect.sh src/certmonger.8 src/getcert.1 src/getcert-request.1 src/getcert-list.1 src/getcert-list-cas.1 src/getcert-start-tracking.1 src/getcert-stop-tracking.1 src/selfsign-getcert.1 src/ipa-getcert.1 src/getcert-resubmit.1 src/certmonger-certmaster-submit.8 src/certmonger-ipa-submit.8 src/certmonger-dogtag-ipa-renew-agent-submit.8 src/certmaster-getcert.1 src/certmonger.conf.5 po/Makefile.in src/certmonger.conf systemd/certmonger.service systemd/certmonger.conf systemd/org.fedorahosted.certmonger.service src/getcert-refresh.1 src/getcert-refresh-ca.1 src/local-getcert.1 src/certmonger-local-submit.8 src/getcert-status.1 src/certmonger-dogtag-submit.8 src/certmonger-scep-submit.8 src/getcert-add-ca.1 src/getcert-add-scep-ca.1 src/getcert-modify-ca.1 src/getcert-remove-ca.1" cat >confcache <<\_ACEOF # This file is a shell script that caches the results of configure # tests run on this system so they can be shared between configure # scripts and configure runs, see configure's option --config-cache. # It is not useful on other systems. If it contains results you don't # want to keep, you may remove or edit it. # # config.status only pays attention to the cache file if you give it # the --recheck option to rerun configure. # # `ac_cv_env_foo' variables (set or unset) will be overridden when # loading this file, other *unset* `ac_cv_foo' will be assigned the # following values. _ACEOF # The following way of writing the cache mishandles newlines in values, # but we know of no workaround that is simple, portable, and efficient. # So, we kill variables containing newlines. # Ultrix sh set writes to stderr and can't be redirected directly, # and sets the high bit in the cache file unless we assign to the vars. ( for ac_var in `(set) 2>&1 | sed -n 's/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space=' '; set) 2>&1` in #( *${as_nl}ac_space=\ *) # `set' does not quote correctly, so add quotes: double-quote # substitution turns \\\\ into \\, and sed turns \\ into \. sed -n \ "s/'/'\\\\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\\2'/p" ;; #( *) # `set' quotes correctly as required by POSIX, so do not add quotes. sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) | sed ' /^ac_cv_env_/b end t clear :clear s/^\([^=]*\)=\(.*[{}].*\)$/test "${\1+set}" = set || &/ t end s/^\([^=]*\)=\(.*\)$/\1=${\1=\2}/ :end' >>confcache if diff "$cache_file" confcache >/dev/null 2>&1; then :; else if test -w "$cache_file"; then if test "x$cache_file" != "x/dev/null"; then { $as_echo "$as_me:${as_lineno-$LINENO}: updating cache $cache_file" >&5 $as_echo "$as_me: updating cache $cache_file" >&6;} if test ! -f "$cache_file" || test -h "$cache_file"; then cat confcache >"$cache_file" else case $cache_file in #( */* | ?:*) mv -f confcache "$cache_file"$$ && mv -f "$cache_file"$$ "$cache_file" ;; #( *) mv -f confcache "$cache_file" ;; esac fi fi else { $as_echo "$as_me:${as_lineno-$LINENO}: not updating unwritable cache $cache_file" >&5 $as_echo "$as_me: not updating unwritable cache $cache_file" >&6;} fi fi rm -f confcache test "x$prefix" = xNONE && prefix=$ac_default_prefix # Let make expand exec_prefix. test "x$exec_prefix" = xNONE && exec_prefix='${prefix}' DEFS=-DHAVE_CONFIG_H ac_libobjs= ac_ltlibobjs= U= for ac_i in : $LIBOBJS; do test "x$ac_i" = x: && continue # 1. Remove the extension, and $U if already installed. ac_script='s/\$U\././;s/\.o$//;s/\.obj$//' ac_i=`$as_echo "$ac_i" | sed "$ac_script"` # 2. Prepend LIBOBJDIR. When used with automake>=1.10 LIBOBJDIR # will be set to the directory where LIBOBJS objects are built. as_fn_append ac_libobjs " \${LIBOBJDIR}$ac_i\$U.$ac_objext" as_fn_append ac_ltlibobjs " \${LIBOBJDIR}$ac_i"'$U.lo' done LIBOBJS=$ac_libobjs LTLIBOBJS=$ac_ltlibobjs { $as_echo "$as_me:${as_lineno-$LINENO}: checking that generated files are newer than configure" >&5 $as_echo_n "checking that generated files are newer than configure... " >&6; } if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: done" >&5 $as_echo "done" >&6; } if test -n "$EXEEXT"; then am__EXEEXT_TRUE= am__EXEEXT_FALSE='#' else am__EXEEXT_TRUE='#' am__EXEEXT_FALSE= fi if test -z "${MAINTAINER_MODE_TRUE}" && test -z "${MAINTAINER_MODE_FALSE}"; then as_fn_error $? "conditional \"MAINTAINER_MODE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${AMDEP_TRUE}" && test -z "${AMDEP_FALSE}"; then as_fn_error $? "conditional \"AMDEP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${am__fastdepCC_TRUE}" && test -z "${am__fastdepCC_FALSE}"; then as_fn_error $? "conditional \"am__fastdepCC\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HOMEDIR_TRUE}" && test -z "${HOMEDIR_FALSE}"; then as_fn_error $? "conditional \"HOMEDIR\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TMPDIR_TRUE}" && test -z "${TMPDIR_FALSE}"; then as_fn_error $? "conditional \"TMPDIR\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_OPENSSL_TRUE}" && test -z "${HAVE_OPENSSL_FALSE}"; then as_fn_error $? "conditional \"HAVE_OPENSSL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_NSS_TRUE}" && test -z "${HAVE_NSS_FALSE}"; then as_fn_error $? "conditional \"HAVE_NSS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_SQL_NSSDB_TRUE}" && test -z "${HAVE_SQL_NSSDB_FALSE}"; then as_fn_error $? "conditional \"HAVE_SQL_NSSDB\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_DBM_NSSDB_TRUE}" && test -z "${HAVE_DBM_NSSDB_FALSE}"; then as_fn_error $? "conditional \"HAVE_DBM_NSSDB\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${USE_GMP_TRUE}" && test -z "${USE_GMP_FALSE}"; then as_fn_error $? "conditional \"USE_GMP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${SYSTEMD_TRUE}" && test -z "${SYSTEMD_FALSE}"; then as_fn_error $? "conditional \"SYSTEMD\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TMPFILES_TRUE}" && test -z "${TMPFILES_FALSE}"; then as_fn_error $? "conditional \"TMPFILES\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${SYSVINIT_TRUE}" && test -z "${SYSVINIT_FALSE}"; then as_fn_error $? "conditional \"SYSVINIT\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${PIE_TRUE}" && test -z "${PIE_FALSE}"; then as_fn_error $? "conditional \"PIE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${NOW_TRUE}" && test -z "${NOW_FALSE}"; then as_fn_error $? "conditional \"NOW\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_DSA_TRUE}" && test -z "${HAVE_DSA_FALSE}"; then as_fn_error $? "conditional \"HAVE_DSA\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_EC_TRUE}" && test -z "${HAVE_EC_FALSE}"; then as_fn_error $? "conditional \"HAVE_EC\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${WITH_IPA_TRUE}" && test -z "${WITH_IPA_FALSE}"; then as_fn_error $? "conditional \"WITH_IPA\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${WITH_CERTMASTER_TRUE}" && test -z "${WITH_CERTMASTER_FALSE}"; then as_fn_error $? "conditional \"WITH_CERTMASTER\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${WITH_LOCAL_TRUE}" && test -z "${WITH_LOCAL_FALSE}"; then as_fn_error $? "conditional \"WITH_LOCAL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_UUID_TRUE}" && test -z "${HAVE_UUID_FALSE}"; then as_fn_error $? "conditional \"HAVE_UUID\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_OPENSSL_TRUE}" && test -z "${HAVE_OPENSSL_FALSE}"; then as_fn_error $? "conditional \"HAVE_OPENSSL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_NSS_TRUE}" && test -z "${HAVE_NSS_FALSE}"; then as_fn_error $? "conditional \"HAVE_NSS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_SQL_NSSDB_TRUE}" && test -z "${HAVE_SQL_NSSDB_FALSE}"; then as_fn_error $? "conditional \"HAVE_SQL_NSSDB\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_DBM_NSSDB_TRUE}" && test -z "${HAVE_DBM_NSSDB_FALSE}"; then as_fn_error $? "conditional \"HAVE_DBM_NSSDB\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${USE_GMP_TRUE}" && test -z "${USE_GMP_FALSE}"; then as_fn_error $? "conditional \"USE_GMP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${SYSTEMD_TRUE}" && test -z "${SYSTEMD_FALSE}"; then as_fn_error $? "conditional \"SYSTEMD\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TMPFILES_TRUE}" && test -z "${TMPFILES_FALSE}"; then as_fn_error $? "conditional \"TMPFILES\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${SYSVINIT_TRUE}" && test -z "${SYSVINIT_FALSE}"; then as_fn_error $? "conditional \"SYSVINIT\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${PIE_TRUE}" && test -z "${PIE_FALSE}"; then as_fn_error $? "conditional \"PIE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${NOW_TRUE}" && test -z "${NOW_FALSE}"; then as_fn_error $? "conditional \"NOW\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_DSA_TRUE}" && test -z "${HAVE_DSA_FALSE}"; then as_fn_error $? "conditional \"HAVE_DSA\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_EC_TRUE}" && test -z "${HAVE_EC_FALSE}"; then as_fn_error $? "conditional \"HAVE_EC\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${WITH_IPA_TRUE}" && test -z "${WITH_IPA_FALSE}"; then as_fn_error $? "conditional \"WITH_IPA\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${WITH_CERTMASTER_TRUE}" && test -z "${WITH_CERTMASTER_FALSE}"; then as_fn_error $? "conditional \"WITH_CERTMASTER\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${WITH_LOCAL_TRUE}" && test -z "${WITH_LOCAL_FALSE}"; then as_fn_error $? "conditional \"WITH_LOCAL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_UUID_TRUE}" && test -z "${HAVE_UUID_FALSE}"; then as_fn_error $? "conditional \"HAVE_UUID\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi : "${CONFIG_STATUS=./config.status}" ac_write_fail=0 ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files $CONFIG_STATUS" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $CONFIG_STATUS" >&5 $as_echo "$as_me: creating $CONFIG_STATUS" >&6;} as_write_fail=0 cat >$CONFIG_STATUS <<_ASEOF || as_write_fail=1 #! $SHELL # Generated by $as_me. # Run this file to recreate the current configuration. # Compiler output produced by configure, useful for debugging # configure, is in config.log if it exists. debug=false ac_cs_recheck=false ac_cs_silent=false SHELL=\${CONFIG_SHELL-$SHELL} export SHELL _ASEOF cat >>$CONFIG_STATUS <<\_ASEOF || as_write_fail=1 ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" exec 6>&1 ## ----------------------------------- ## ## Main body of $CONFIG_STATUS script. ## ## ----------------------------------- ## _ASEOF test $as_write_fail = 0 && chmod +x $CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Save the log message, to keep $0 and so on meaningful, and to # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" This file was extended by certmonger $as_me 0.78.6, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES = $CONFIG_FILES CONFIG_HEADERS = $CONFIG_HEADERS CONFIG_LINKS = $CONFIG_LINKS CONFIG_COMMANDS = $CONFIG_COMMANDS $ $0 $@ on `(hostname || uname -n) 2>/dev/null | sed 1q` " _ACEOF case $ac_config_files in *" "*) set x $ac_config_files; shift; ac_config_files=$*;; esac case $ac_config_headers in *" "*) set x $ac_config_headers; shift; ac_config_headers=$*;; esac cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # Files that config.status was made for. config_files="$ac_config_files" config_headers="$ac_config_headers" config_commands="$ac_config_commands" _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 ac_cs_usage="\ \`$as_me' instantiates files and other configuration actions from templates according to the current configuration. Unless the files and actions are specified as TAGs, all are instantiated by default. Usage: $0 [OPTION]... [TAG]... -h, --help print this help, then exit -V, --version print version number and configuration settings, then exit --config print configuration, then exit -q, --quiet, --silent do not print progress messages -d, --debug don't remove temporary files --recheck update $as_me by reconfiguring in the same conditions --file=FILE[:TEMPLATE] instantiate the configuration file FILE --header=FILE[:TEMPLATE] instantiate the configuration header FILE Configuration files: $config_files Configuration headers: $config_headers Configuration commands: $config_commands Report bugs to the package provider." _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" ac_cs_version="\\ certmonger config.status 0.78.6 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" Copyright (C) 2012 Free Software Foundation, Inc. This config.status script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it." ac_pwd='$ac_pwd' srcdir='$srcdir' INSTALL='$INSTALL' MKDIR_P='$MKDIR_P' AWK='$AWK' test -n "\$AWK" || AWK=awk _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # The default lists apply if the user does not specify any file. ac_need_defaults=: while test $# != 0 do case $1 in --*=?*) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg=`expr "X$1" : 'X[^=]*=\(.*\)'` ac_shift=: ;; --*=) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg= ac_shift=: ;; *) ac_option=$1 ac_optarg=$2 ac_shift=shift ;; esac case $ac_option in # Handling of the options. -recheck | --recheck | --rechec | --reche | --rech | --rec | --re | --r) ac_cs_recheck=: ;; --version | --versio | --versi | --vers | --ver | --ve | --v | -V ) $as_echo "$ac_cs_version"; exit ;; --config | --confi | --conf | --con | --co | --c ) $as_echo "$ac_cs_config"; exit ;; --debug | --debu | --deb | --de | --d | -d ) debug=: ;; --file | --fil | --fi | --f ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; '') as_fn_error $? "missing file argument" ;; esac as_fn_append CONFIG_FILES " '$ac_optarg'" ac_need_defaults=false;; --header | --heade | --head | --hea ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; esac as_fn_append CONFIG_HEADERS " '$ac_optarg'" ac_need_defaults=false;; --he | --h) # Conflict between --help and --header as_fn_error $? "ambiguous option: \`$1' Try \`$0 --help' for more information.";; --help | --hel | -h ) $as_echo "$ac_cs_usage"; exit ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil | --si | --s) ac_cs_silent=: ;; # This is an error. -*) as_fn_error $? "unrecognized option: \`$1' Try \`$0 --help' for more information." ;; *) as_fn_append ac_config_targets " $1" ac_need_defaults=false ;; esac shift done ac_configure_extra_args= if $ac_cs_silent; then exec 6>/dev/null ac_configure_extra_args="$ac_configure_extra_args --silent" fi _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 if \$ac_cs_recheck; then set X $SHELL '$0' $ac_configure_args \$ac_configure_extra_args --no-create --no-recursion shift \$as_echo "running CONFIG_SHELL=$SHELL \$*" >&6 CONFIG_SHELL='$SHELL' export CONFIG_SHELL exec "\$@" fi _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 exec 5>>config.log { echo sed 'h;s/./-/g;s/^.../## /;s/...$/ ##/;p;x;p;x' <<_ASBOX ## Running $as_me. ## _ASBOX $as_echo "$ac_log" } >&5 _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # # INIT-COMMANDS # AMDEP_TRUE="$AMDEP_TRUE" ac_aux_dir="$ac_aux_dir" # Capture the value of obsolete ALL_LINGUAS because we need it to compute # POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES, CATALOGS. But hide it # from automake < 1.5. eval 'OBSOLETE_ALL_LINGUAS''="$ALL_LINGUAS"' # Capture the value of LINGUAS because we need it to compute CATALOGS. LINGUAS="${LINGUAS-%UNSET%}" _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Handling of arguments. for ac_config_target in $ac_config_targets do case $ac_config_target in "depfiles") CONFIG_COMMANDS="$CONFIG_COMMANDS depfiles" ;; "po-directories") CONFIG_COMMANDS="$CONFIG_COMMANDS po-directories" ;; "src/config.h") CONFIG_HEADERS="$CONFIG_HEADERS src/config.h" ;; "src_introspect_sh") CONFIG_COMMANDS="$CONFIG_COMMANDS src_introspect_sh" ;; "Makefile") CONFIG_FILES="$CONFIG_FILES Makefile" ;; "src/Makefile") CONFIG_FILES="$CONFIG_FILES src/Makefile" ;; "dbus/Makefile") CONFIG_FILES="$CONFIG_FILES dbus/Makefile" ;; "systemd/Makefile") CONFIG_FILES="$CONFIG_FILES systemd/Makefile" ;; "sysvinit/Makefile") CONFIG_FILES="$CONFIG_FILES sysvinit/Makefile" ;; "sysvinit/certmonger") CONFIG_FILES="$CONFIG_FILES sysvinit/certmonger" ;; "tests/Makefile") CONFIG_FILES="$CONFIG_FILES tests/Makefile" ;; "tests/tools/Makefile") CONFIG_FILES="$CONFIG_FILES tests/tools/Makefile" ;; "dbus/certmonger.conf") CONFIG_FILES="$CONFIG_FILES dbus/certmonger.conf" ;; "dbus/certmonger.service") CONFIG_FILES="$CONFIG_FILES dbus/certmonger.service" ;; "src/introspect.sh") CONFIG_FILES="$CONFIG_FILES src/introspect.sh" ;; "src/certmonger.8") CONFIG_FILES="$CONFIG_FILES src/certmonger.8" ;; "src/getcert.1") CONFIG_FILES="$CONFIG_FILES src/getcert.1" ;; "src/getcert-request.1") CONFIG_FILES="$CONFIG_FILES src/getcert-request.1" ;; "src/getcert-list.1") CONFIG_FILES="$CONFIG_FILES src/getcert-list.1" ;; "src/getcert-list-cas.1") CONFIG_FILES="$CONFIG_FILES src/getcert-list-cas.1" ;; "src/getcert-start-tracking.1") CONFIG_FILES="$CONFIG_FILES src/getcert-start-tracking.1" ;; "src/getcert-stop-tracking.1") CONFIG_FILES="$CONFIG_FILES src/getcert-stop-tracking.1" ;; "src/selfsign-getcert.1") CONFIG_FILES="$CONFIG_FILES src/selfsign-getcert.1" ;; "src/ipa-getcert.1") CONFIG_FILES="$CONFIG_FILES src/ipa-getcert.1" ;; "src/getcert-resubmit.1") CONFIG_FILES="$CONFIG_FILES src/getcert-resubmit.1" ;; "src/certmonger-certmaster-submit.8") CONFIG_FILES="$CONFIG_FILES src/certmonger-certmaster-submit.8" ;; "src/certmonger-ipa-submit.8") CONFIG_FILES="$CONFIG_FILES src/certmonger-ipa-submit.8" ;; "src/certmonger-dogtag-ipa-renew-agent-submit.8") CONFIG_FILES="$CONFIG_FILES src/certmonger-dogtag-ipa-renew-agent-submit.8" ;; "src/certmaster-getcert.1") CONFIG_FILES="$CONFIG_FILES src/certmaster-getcert.1" ;; "src/certmonger.conf.5") CONFIG_FILES="$CONFIG_FILES src/certmonger.conf.5" ;; "po/Makefile.in") CONFIG_FILES="$CONFIG_FILES po/Makefile.in" ;; "src/certmonger.conf") CONFIG_FILES="$CONFIG_FILES src/certmonger.conf" ;; "systemd/certmonger.service") CONFIG_FILES="$CONFIG_FILES systemd/certmonger.service" ;; "systemd/certmonger.conf") CONFIG_FILES="$CONFIG_FILES systemd/certmonger.conf" ;; "systemd/org.fedorahosted.certmonger.service") CONFIG_FILES="$CONFIG_FILES systemd/org.fedorahosted.certmonger.service" ;; "src/getcert-refresh.1") CONFIG_FILES="$CONFIG_FILES src/getcert-refresh.1" ;; "src/getcert-refresh-ca.1") CONFIG_FILES="$CONFIG_FILES src/getcert-refresh-ca.1" ;; "src/local-getcert.1") CONFIG_FILES="$CONFIG_FILES src/local-getcert.1" ;; "src/certmonger-local-submit.8") CONFIG_FILES="$CONFIG_FILES src/certmonger-local-submit.8" ;; "src/getcert-status.1") CONFIG_FILES="$CONFIG_FILES src/getcert-status.1" ;; "src/certmonger-dogtag-submit.8") CONFIG_FILES="$CONFIG_FILES src/certmonger-dogtag-submit.8" ;; "src/certmonger-scep-submit.8") CONFIG_FILES="$CONFIG_FILES src/certmonger-scep-submit.8" ;; "src/getcert-add-ca.1") CONFIG_FILES="$CONFIG_FILES src/getcert-add-ca.1" ;; "src/getcert-add-scep-ca.1") CONFIG_FILES="$CONFIG_FILES src/getcert-add-scep-ca.1" ;; "src/getcert-modify-ca.1") CONFIG_FILES="$CONFIG_FILES src/getcert-modify-ca.1" ;; "src/getcert-remove-ca.1") CONFIG_FILES="$CONFIG_FILES src/getcert-remove-ca.1" ;; *) as_fn_error $? "invalid argument: \`$ac_config_target'" "$LINENO" 5;; esac done # If the user did not use the arguments to specify the items to instantiate, # then the envvar interface is used. Set only those that are not. # We use the long form for the default assignment because of an extremely # bizarre bug on SunOS 4.1.3. if $ac_need_defaults; then test "${CONFIG_FILES+set}" = set || CONFIG_FILES=$config_files test "${CONFIG_HEADERS+set}" = set || CONFIG_HEADERS=$config_headers test "${CONFIG_COMMANDS+set}" = set || CONFIG_COMMANDS=$config_commands fi # Have a temporary directory for convenience. Make it in the build tree # simply because there is no reason against having it here, and in addition, # creating and moving files from /tmp can sometimes cause problems. # Hook for its removal unless debugging. # Note that there is a small window in which the directory will not be cleaned: # after its creation but before its name has been assigned to `$tmp'. $debug || { tmp= ac_tmp= trap 'exit_status=$? : "${ac_tmp:=$tmp}" { test ! -d "$ac_tmp" || rm -fr "$ac_tmp"; } && exit $exit_status ' 0 trap 'as_fn_exit 1' 1 2 13 15 } # Create a (secure) tmp directory for tmp files. { tmp=`(umask 077 && mktemp -d "./confXXXXXX") 2>/dev/null` && test -d "$tmp" } || { tmp=./conf$$-$RANDOM (umask 077 && mkdir "$tmp") } || as_fn_error $? "cannot create a temporary directory in ." "$LINENO" 5 ac_tmp=$tmp # Set up the scripts for CONFIG_FILES section. # No need to generate them if there are no CONFIG_FILES. # This happens for instance with `./config.status config.h'. if test -n "$CONFIG_FILES"; then ac_cr=`echo X | tr X '\015'` # On cygwin, bash can eat \r inside `` if the user requested igncr. # But we know of no other shell where ac_cr would be empty at this # point, so we can use a bashism as a fallback. if test "x$ac_cr" = x; then eval ac_cr=\$\'\\r\' fi ac_cs_awk_cr=`$AWK 'BEGIN { print "a\rb" }' /dev/null` if test "$ac_cs_awk_cr" = "a${ac_cr}b"; then ac_cs_awk_cr='\\r' else ac_cs_awk_cr=$ac_cr fi echo 'BEGIN {' >"$ac_tmp/subs1.awk" && _ACEOF { echo "cat >conf$$subs.awk <<_ACEOF" && echo "$ac_subst_vars" | sed 's/.*/&!$&$ac_delim/' && echo "_ACEOF" } >conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_num=`echo "$ac_subst_vars" | grep -c '^'` ac_delim='%!_!# ' for ac_last_try in false false false false false :; do . ./conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_n=`sed -n "s/.*$ac_delim\$/X/p" conf$$subs.awk | grep -c X` if test $ac_delim_n = $ac_delim_num; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done rm -f conf$$subs.sh cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 cat >>"\$ac_tmp/subs1.awk" <<\\_ACAWK && _ACEOF sed -n ' h s/^/S["/; s/!.*/"]=/ p g s/^[^!]*!// :repl t repl s/'"$ac_delim"'$// t delim :nl h s/\(.\{148\}\)..*/\1/ t more1 s/["\\]/\\&/g; s/^/"/; s/$/\\n"\\/ p n b repl :more1 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t nl :delim h s/\(.\{148\}\)..*/\1/ t more2 s/["\\]/\\&/g; s/^/"/; s/$/"/ p b :more2 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t delim ' >$CONFIG_STATUS || ac_write_fail=1 rm -f conf$$subs.awk cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 _ACAWK cat >>"\$ac_tmp/subs1.awk" <<_ACAWK && for (key in S) S_is_set[key] = 1 FS = "" } { line = $ 0 nfields = split(line, field, "@") substed = 0 len = length(field[1]) for (i = 2; i < nfields; i++) { key = field[i] keylen = length(key) if (S_is_set[key]) { value = S[key] line = substr(line, 1, len) "" value "" substr(line, len + keylen + 3) len += length(value) + length(field[++i]) substed = 1 } else len += 1 + keylen } print line } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 if sed "s/$ac_cr//" < /dev/null > /dev/null 2>&1; then sed "s/$ac_cr\$//; s/$ac_cr/$ac_cs_awk_cr/g" else cat fi < "$ac_tmp/subs1.awk" > "$ac_tmp/subs.awk" \ || as_fn_error $? "could not setup config files machinery" "$LINENO" 5 _ACEOF # VPATH may cause trouble with some makes, so we remove sole $(srcdir), # ${srcdir} and @srcdir@ entries from VPATH if srcdir is ".", strip leading and # trailing colons and then remove the whole line if VPATH becomes empty # (actually we leave an empty line to preserve line numbers). if test "x$srcdir" = x.; then ac_vpsub='/^[ ]*VPATH[ ]*=[ ]*/{ h s/// s/^/:/ s/[ ]*$/:/ s/:\$(srcdir):/:/g s/:\${srcdir}:/:/g s/:@srcdir@:/:/g s/^:*// s/:*$// x s/\(=[ ]*\).*/\1/ G s/\n// s/^[^=]*=[ ]*$// }' fi cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 fi # test -n "$CONFIG_FILES" # Set up the scripts for CONFIG_HEADERS section. # No need to generate them if there are no CONFIG_HEADERS. # This happens for instance with `./config.status Makefile'. if test -n "$CONFIG_HEADERS"; then cat >"$ac_tmp/defines.awk" <<\_ACAWK || BEGIN { _ACEOF # Transform confdefs.h into an awk script `defines.awk', embedded as # here-document in config.status, that substitutes the proper values into # config.h.in to produce config.h. # Create a delimiter string that does not exist in confdefs.h, to ease # handling of long lines. ac_delim='%!_!# ' for ac_last_try in false false :; do ac_tt=`sed -n "/$ac_delim/p" confdefs.h` if test -z "$ac_tt"; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_HEADERS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done # For the awk script, D is an array of macro values keyed by name, # likewise P contains macro parameters if any. Preserve backslash # newline sequences. ac_word_re=[_$as_cr_Letters][_$as_cr_alnum]* sed -n ' s/.\{148\}/&'"$ac_delim"'/g t rset :rset s/^[ ]*#[ ]*define[ ][ ]*/ / t def d :def s/\\$// t bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3"/p s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2"/p d :bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3\\\\\\n"\\/p t cont s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2\\\\\\n"\\/p t cont d :cont n s/.\{148\}/&'"$ac_delim"'/g t clear :clear s/\\$// t bsnlc s/["\\]/\\&/g; s/^/"/; s/$/"/p d :bsnlc s/["\\]/\\&/g; s/^/"/; s/$/\\\\\\n"\\/p b cont ' >$CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 for (key in D) D_is_set[key] = 1 FS = "" } /^[\t ]*#[\t ]*(define|undef)[\t ]+$ac_word_re([\t (]|\$)/ { line = \$ 0 split(line, arg, " ") if (arg[1] == "#") { defundef = arg[2] mac1 = arg[3] } else { defundef = substr(arg[1], 2) mac1 = arg[2] } split(mac1, mac2, "(") #) macro = mac2[1] prefix = substr(line, 1, index(line, defundef) - 1) if (D_is_set[macro]) { # Preserve the white space surrounding the "#". print prefix "define", macro P[macro] D[macro] next } else { # Replace #undef with comments. This is necessary, for example, # in the case of _POSIX_SOURCE, which is predefined and required # on some systems where configure will not decide to define it. if (defundef == "undef") { print "/*", prefix defundef, macro, "*/" next } } } { print } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 as_fn_error $? "could not setup config headers machinery" "$LINENO" 5 fi # test -n "$CONFIG_HEADERS" eval set X " :F $CONFIG_FILES :H $CONFIG_HEADERS :C $CONFIG_COMMANDS" shift for ac_tag do case $ac_tag in :[FHLC]) ac_mode=$ac_tag; continue;; esac case $ac_mode$ac_tag in :[FHL]*:*);; :L* | :C*:*) as_fn_error $? "invalid tag \`$ac_tag'" "$LINENO" 5;; :[FH]-) ac_tag=-:-;; :[FH]*) ac_tag=$ac_tag:$ac_tag.in;; esac ac_save_IFS=$IFS IFS=: set x $ac_tag IFS=$ac_save_IFS shift ac_file=$1 shift case $ac_mode in :L) ac_source=$1;; :[FH]) ac_file_inputs= for ac_f do case $ac_f in -) ac_f="$ac_tmp/stdin";; *) # Look for the file first in the build tree, then in the source tree # (if the path is not absolute). The absolute path cannot be DOS-style, # because $ac_f cannot contain `:'. test -f "$ac_f" || case $ac_f in [\\/$]*) false;; *) test -f "$srcdir/$ac_f" && ac_f="$srcdir/$ac_f";; esac || as_fn_error 1 "cannot find input file: \`$ac_f'" "$LINENO" 5;; esac case $ac_f in *\'*) ac_f=`$as_echo "$ac_f" | sed "s/'/'\\\\\\\\''/g"`;; esac as_fn_append ac_file_inputs " '$ac_f'" done # Let's still pretend it is `configure' which instantiates (i.e., don't # use $as_me), people would be surprised to read: # /* config.h. Generated by config.status. */ configure_input='Generated from '` $as_echo "$*" | sed 's|^[^:]*/||;s|:[^:]*/|, |g' `' by configure.' if test x"$ac_file" != x-; then configure_input="$ac_file. $configure_input" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $ac_file" >&5 $as_echo "$as_me: creating $ac_file" >&6;} fi # Neutralize special characters interpreted by sed in replacement strings. case $configure_input in #( *\&* | *\|* | *\\* ) ac_sed_conf_input=`$as_echo "$configure_input" | sed 's/[\\\\&|]/\\\\&/g'`;; #( *) ac_sed_conf_input=$configure_input;; esac case $ac_tag in *:-:* | *:-) cat >"$ac_tmp/stdin" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; esac ;; esac ac_dir=`$as_dirname -- "$ac_file" || $as_expr X"$ac_file" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$ac_file" : 'X\(//\)[^/]' \| \ X"$ac_file" : 'X\(//\)$' \| \ X"$ac_file" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$ac_file" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` as_dir="$ac_dir"; as_fn_mkdir_p ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix case $ac_mode in :F) # # CONFIG_FILE # case $INSTALL in [\\/$]* | ?:[\\/]* ) ac_INSTALL=$INSTALL ;; *) ac_INSTALL=$ac_top_build_prefix$INSTALL ;; esac ac_MKDIR_P=$MKDIR_P case $MKDIR_P in [\\/$]* | ?:[\\/]* ) ;; */*) ac_MKDIR_P=$ac_top_build_prefix$MKDIR_P ;; esac _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # If the template does not know about datarootdir, expand it. # FIXME: This hack should be removed a few years after 2.60. ac_datarootdir_hack=; ac_datarootdir_seen= ac_sed_dataroot=' /datarootdir/ { p q } /@datadir@/p /@docdir@/p /@infodir@/p /@localedir@/p /@mandir@/p' case `eval "sed -n \"\$ac_sed_dataroot\" $ac_file_inputs"` in *datarootdir*) ac_datarootdir_seen=yes;; *@datadir@*|*@docdir@*|*@infodir@*|*@localedir@*|*@mandir@*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&5 $as_echo "$as_me: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&2;} _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_datarootdir_hack=' s&@datadir@&$datadir&g s&@docdir@&$docdir&g s&@infodir@&$infodir&g s&@localedir@&$localedir&g s&@mandir@&$mandir&g s&\\\${datarootdir}&$datarootdir&g' ;; esac _ACEOF # Neutralize VPATH when `$srcdir' = `.'. # Shell code in configure.ac might set extrasub. # FIXME: do we really want to maintain this feature? cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_sed_extra="$ac_vpsub $extrasub _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 :t /@[a-zA-Z_][a-zA-Z_0-9]*@/!b s|@configure_input@|$ac_sed_conf_input|;t t s&@top_builddir@&$ac_top_builddir_sub&;t t s&@top_build_prefix@&$ac_top_build_prefix&;t t s&@srcdir@&$ac_srcdir&;t t s&@abs_srcdir@&$ac_abs_srcdir&;t t s&@top_srcdir@&$ac_top_srcdir&;t t s&@abs_top_srcdir@&$ac_abs_top_srcdir&;t t s&@builddir@&$ac_builddir&;t t s&@abs_builddir@&$ac_abs_builddir&;t t s&@abs_top_builddir@&$ac_abs_top_builddir&;t t s&@INSTALL@&$ac_INSTALL&;t t s&@MKDIR_P@&$ac_MKDIR_P&;t t $ac_datarootdir_hack " eval sed \"\$ac_sed_extra\" "$ac_file_inputs" | $AWK -f "$ac_tmp/subs.awk" \ >$ac_tmp/out || as_fn_error $? "could not create $ac_file" "$LINENO" 5 test -z "$ac_datarootdir_hack$ac_datarootdir_seen" && { ac_out=`sed -n '/\${datarootdir}/p' "$ac_tmp/out"`; test -n "$ac_out"; } && { ac_out=`sed -n '/^[ ]*datarootdir[ ]*:*=/p' \ "$ac_tmp/out"`; test -z "$ac_out"; } && { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&5 $as_echo "$as_me: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&2;} rm -f "$ac_tmp/stdin" case $ac_file in -) cat "$ac_tmp/out" && rm -f "$ac_tmp/out";; *) rm -f "$ac_file" && mv "$ac_tmp/out" "$ac_file";; esac \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; :H) # # CONFIG_HEADER # if test x"$ac_file" != x-; then { $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" } >"$ac_tmp/config.h" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 if diff "$ac_file" "$ac_tmp/config.h" >/dev/null 2>&1; then { $as_echo "$as_me:${as_lineno-$LINENO}: $ac_file is unchanged" >&5 $as_echo "$as_me: $ac_file is unchanged" >&6;} else rm -f "$ac_file" mv "$ac_tmp/config.h" "$ac_file" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 fi else $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" \ || as_fn_error $? "could not create -" "$LINENO" 5 fi # Compute "$ac_file"'s index in $config_headers. _am_arg="$ac_file" _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`$as_dirname -- "$_am_arg" || $as_expr X"$_am_arg" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$_am_arg" : 'X\(//\)[^/]' \| \ X"$_am_arg" : 'X\(//\)$' \| \ X"$_am_arg" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$_am_arg" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'`/stamp-h$_am_stamp_count ;; :C) { $as_echo "$as_me:${as_lineno-$LINENO}: executing $ac_file commands" >&5 $as_echo "$as_me: executing $ac_file commands" >&6;} ;; esac case $ac_file$ac_mode in "depfiles":C) test x"$AMDEP_TRUE" != x"" || { # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. case $CONFIG_FILES in *\'*) eval set x "$CONFIG_FILES" ;; *) set x $CONFIG_FILES ;; esac shift for mf do # Strip MF so we end up with the name of the file. mf=`echo "$mf" | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile or not. # We used to match only the files named 'Makefile.in', but # some people rename them; so instead we look at the file content. # Grep'ing the first line is not enough: some people post-process # each Makefile.in and add a new line on top of each file to say so. # Grep'ing the whole file is not good either: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. if sed -n 's,^#.*generated by automake.*,X,p' "$mf" | grep X >/dev/null 2>&1; then dirpart=`$as_dirname -- "$mf" || $as_expr X"$mf" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$mf" : 'X\(//\)[^/]' \| \ X"$mf" : 'X\(//\)$' \| \ X"$mf" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$mf" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` else continue fi # Extract the definition of DEPDIR, am__include, and am__quote # from the Makefile without running 'make'. DEPDIR=`sed -n 's/^DEPDIR = //p' < "$mf"` test -z "$DEPDIR" && continue am__include=`sed -n 's/^am__include = //p' < "$mf"` test -z "$am__include" && continue am__quote=`sed -n 's/^am__quote = //p' < "$mf"` # Find all dependency output files, they are included files with # $(DEPDIR) in their names. We invoke sed twice because it is the # simplest approach to changing $(DEPDIR) to its actual value in the # expansion. for file in `sed -n " s/^$am__include $am__quote\(.*(DEPDIR).*\)$am__quote"'$/\1/p' <"$mf" | \ sed -e 's/\$(DEPDIR)/'"$DEPDIR"'/g'`; do # Make sure the directory exists. test -f "$dirpart/$file" && continue fdir=`$as_dirname -- "$file" || $as_expr X"$file" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$file" : 'X\(//\)[^/]' \| \ X"$file" : 'X\(//\)$' \| \ X"$file" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$file" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` as_dir=$dirpart/$fdir; as_fn_mkdir_p # echo "creating $dirpart/$file" echo '# dummy' > "$dirpart/$file" done done } ;; "po-directories":C) for ac_file in $CONFIG_FILES; do # Support "outfile[:infile[:infile...]]" case "$ac_file" in *:*) ac_file=`echo "$ac_file"|sed 's%:.*%%'` ;; esac # PO directories have a Makefile.in generated from Makefile.in.in. case "$ac_file" in */Makefile.in) # Adjust a relative srcdir. ac_dir=`echo "$ac_file"|sed 's%/[^/][^/]*$%%'` ac_dir_suffix="/`echo "$ac_dir"|sed 's%^\./%%'`" ac_dots=`echo "$ac_dir_suffix"|sed 's%/[^/]*%../%g'` # In autoconf-2.13 it is called $ac_given_srcdir. # In autoconf-2.50 it is called $srcdir. test -n "$ac_given_srcdir" || ac_given_srcdir="$srcdir" case "$ac_given_srcdir" in .) top_srcdir=`echo $ac_dots|sed 's%/$%%'` ;; /*) top_srcdir="$ac_given_srcdir" ;; *) top_srcdir="$ac_dots$ac_given_srcdir" ;; esac # Treat a directory as a PO directory if and only if it has a # POTFILES.in file. This allows packages to have multiple PO # directories under different names or in different locations. if test -f "$ac_given_srcdir/$ac_dir/POTFILES.in"; then rm -f "$ac_dir/POTFILES" test -n "$as_me" && echo "$as_me: creating $ac_dir/POTFILES" || echo "creating $ac_dir/POTFILES" cat "$ac_given_srcdir/$ac_dir/POTFILES.in" | sed -e "/^#/d" -e "/^[ ]*\$/d" -e "s,.*, $top_srcdir/& \\\\," | sed -e "\$s/\(.*\) \\\\/\1/" > "$ac_dir/POTFILES" POMAKEFILEDEPS="POTFILES.in" # ALL_LINGUAS, POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES depend # on $ac_dir but don't depend on user-specified configuration # parameters. if test -f "$ac_given_srcdir/$ac_dir/LINGUAS"; then # The LINGUAS file contains the set of available languages. if test -n "$OBSOLETE_ALL_LINGUAS"; then test -n "$as_me" && echo "$as_me: setting ALL_LINGUAS in configure.in is obsolete" || echo "setting ALL_LINGUAS in configure.in is obsolete" fi ALL_LINGUAS_=`sed -e "/^#/d" -e "s/#.*//" "$ac_given_srcdir/$ac_dir/LINGUAS"` # Hide the ALL_LINGUAS assigment from automake < 1.5. eval 'ALL_LINGUAS''=$ALL_LINGUAS_' POMAKEFILEDEPS="$POMAKEFILEDEPS LINGUAS" else # The set of available languages was given in configure.in. # Hide the ALL_LINGUAS assigment from automake < 1.5. eval 'ALL_LINGUAS''=$OBSOLETE_ALL_LINGUAS' fi # Compute POFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).po) # Compute UPDATEPOFILES # as $(foreach lang, $(ALL_LINGUAS), $(lang).po-update) # Compute DUMMYPOFILES # as $(foreach lang, $(ALL_LINGUAS), $(lang).nop) # Compute GMOFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).gmo) case "$ac_given_srcdir" in .) srcdirpre= ;; *) srcdirpre='$(srcdir)/' ;; esac POFILES= UPDATEPOFILES= DUMMYPOFILES= GMOFILES= for lang in $ALL_LINGUAS; do POFILES="$POFILES $srcdirpre$lang.po" UPDATEPOFILES="$UPDATEPOFILES $lang.po-update" DUMMYPOFILES="$DUMMYPOFILES $lang.nop" GMOFILES="$GMOFILES $srcdirpre$lang.gmo" done # CATALOGS depends on both $ac_dir and the user's LINGUAS # environment variable. INST_LINGUAS= if test -n "$ALL_LINGUAS"; then for presentlang in $ALL_LINGUAS; do useit=no if test "%UNSET%" != "$LINGUAS"; then desiredlanguages="$LINGUAS" else desiredlanguages="$ALL_LINGUAS" fi for desiredlang in $desiredlanguages; do # Use the presentlang catalog if desiredlang is # a. equal to presentlang, or # b. a variant of presentlang (because in this case, # presentlang can be used as a fallback for messages # which are not translated in the desiredlang catalog). case "$desiredlang" in "$presentlang"*) useit=yes;; esac done if test $useit = yes; then INST_LINGUAS="$INST_LINGUAS $presentlang" fi done fi CATALOGS= if test -n "$INST_LINGUAS"; then for lang in $INST_LINGUAS; do CATALOGS="$CATALOGS $lang.gmo" done fi test -n "$as_me" && echo "$as_me: creating $ac_dir/Makefile" || echo "creating $ac_dir/Makefile" sed -e "/^POTFILES =/r $ac_dir/POTFILES" -e "/^# Makevars/r $ac_given_srcdir/$ac_dir/Makevars" -e "s|@POFILES@|$POFILES|g" -e "s|@UPDATEPOFILES@|$UPDATEPOFILES|g" -e "s|@DUMMYPOFILES@|$DUMMYPOFILES|g" -e "s|@GMOFILES@|$GMOFILES|g" -e "s|@CATALOGS@|$CATALOGS|g" -e "s|@POMAKEFILEDEPS@|$POMAKEFILEDEPS|g" "$ac_dir/Makefile.in" > "$ac_dir/Makefile" for f in "$ac_given_srcdir/$ac_dir"/Rules-*; do if test -f "$f"; then case "$f" in *.orig | *.bak | *~) ;; *) cat "$f" >> "$ac_dir/Makefile" ;; esac fi done fi ;; esac done ;; "src_introspect_sh":C) chmod +x src/introspect.sh ;; esac done # for ac_tag as_fn_exit 0 _ACEOF ac_clean_files=$ac_clean_files_save test $ac_write_fail = 0 || as_fn_error $? "write failure creating $CONFIG_STATUS" "$LINENO" 5 # configure is writing to config.log, and then calls config.status. # config.status does its own redirection, appending to config.log. # Unfortunately, on DOS this fails, as config.log is still kept open # by configure, so config.status won't be able to write to it; its # output is simply discarded. So we exec the FD to /dev/null, # effectively closing config.log, so it can be properly (re)opened and # appended to by config.status. When coming back to configure, we # need to make the FD available again. if test "$no_create" != yes; then ac_cs_success=: ac_config_status_args= test "$silent" = yes && ac_config_status_args="$ac_config_status_args --quiet" exec 5>/dev/null $SHELL $CONFIG_STATUS $ac_config_status_args || ac_cs_success=false exec 5>>config.log # Use ||, not &&, to avoid exiting from the if with $? = 1, which # would make configure fail if this is the last instruction. $ac_cs_success || as_fn_exit 1 fi if test -n "$ac_unrecognized_opts" && test "$enable_option_checking" != no; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unrecognized options: $ac_unrecognized_opts" >&5 $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2;} fi certmonger-0.78.6/Makefile.am0000664000175000017500000000361112645513264012751 00000000000000ACLOCAL_AMFLAGS = -I m4 EXTRA_FILES = doc/*.txt SUBDIRS = po src dbus systemd sysvinit tests EXTRA_DIST = config.rpath \ certmonger.spec LICENSE README STATUS doc src/certmonger.conf.in DISTCHECK_CONFIGURE_FLAGS = --enable-systemd --enable-sysvinit=/etc/rc.d/init.d --with-tmpdir=/var/run/certmonger VERSION=$(PACKAGE_VERSION) RELEASE= GITTAG=certmonger-$(VERSION) all-gmo: zanata-cli pull -B cd po ; for po in *.po ; do make `basename $$po .po`.gmo ; done $(MAKE) -C po update-po zanata-cli push -B tag: all-gmo git tag $(GITTAG) force-tag: all-gmo git tag -f $(GITTAG) ORIGIN=$(shell git config remote.origin.url 2> /dev/null || /bin/pwd) ARCHIVEOUTDIR=$(shell cd $(top_srcdir) && pwd) local-archive: $(MAKE) archive ORIGIN=$(ARCHIVEOUTDIR) srpm: repo=`pwd`; \ tmpdir=`mktemp -d /tmp/make_archive_XXXXXX`; \ if test -d "$$tmpdir" ; then \ git clone $(ORIGIN) $$tmpdir/certmonger;\ cd $$tmpdir/certmonger;\ git checkout $(GITTAG);\ ./make-srpm.sh;\ cp -v $(distdir)-*.src.rpm $(ARCHIVEOUTDIR)/;\ chmod -R u+rw $$tmpdir;\ rm -fr $$tmpdir;\ fi archive: srpm repo=`pwd`; \ tmpdir=`mktemp -d /tmp/make_archive_XXXXXX`; \ if test -d "$$tmpdir" ; then \ git clone $(ORIGIN) $$tmpdir/certmonger;\ cd $$tmpdir/certmonger;\ git checkout $(GITTAG);\ ./autogen.sh --disable-systemd --disable-sysvinit ;\ make distcheck;\ mkdir -p $$tmpdir/rpm-build-top;\ rpmbuild \ --define "_topdir $$tmpdir/rpm-build-top" \ --define "_sourcedir $$tmpdir/rpm-build-top" \ --define "_specdir $$tmpdir/rpm-build-top" \ --define "_builddir $$tmpdir/rpm-build-top" \ --define "_buildrootdir $$tmpdir/rpm-build-top" \ --define "_srpmdir $$tmpdir/rpm-build-top" \ --define "_srcrpmdir $$tmpdir/rpm-build-top" \ --define "_rpmdir $$tmpdir/rpm-build-top" \ -tb $(distdir).tar.gz;\ cp -v $(distdir).tar.gz $(ARCHIVEOUTDIR)/;\ chmod -R u+rw $$tmpdir;\ rm -fr $$tmpdir;\ fi certmonger-0.78.6/src/0000775000175000017500000000000012645513301011553 500000000000000certmonger-0.78.6/src/toklist.c0000664000175000017500000000727612645513264013354 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" int main(int argc, const char **argv) { NSSInitContext *ctx; PLArenaPool *arena; PK11SlotList *slotlist; PK11SlotListElement *sle; CK_MECHANISM_TYPE mech; int imech = 0; CK_TOKEN_INFO info; char *dbdir = "/etc/pki/nssdb", *token; int c; poptContext pctx; struct poptOption popts[] = { {"dbdir", 'd', POPT_ARG_STRING | POPT_ARGFLAG_SHOW_DEFAULT, &dbdir, 0, "NSS database", "DIRECTORY"}, {"mech", 'm', POPT_ARG_INT, &imech, 0, NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("toklist", argc, argv, popts, 0); if (pctx == NULL) { return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { continue; } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } if (dbdir == NULL) { poptPrintUsage(pctx, stdout, 0); return 1; } mech = imech; printf("Mechanism %ld:\n", (long) mech); /* Open the database. */ ctx = NSS_InitContext(dbdir, NULL, NULL, NULL, NULL, NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (ctx == NULL) { printf("Unable to open NSS database '%s'.\n", dbdir); _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } /* Allocate a memory pool. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { printf("Out of memory opening database '%s'.\n", dbdir); if (NSS_ShutdownContext(ctx) != SECSuccess) { printf("Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } /* Find the tokens that we might use for key storage. */ slotlist = PK11_GetAllTokens(mech, PR_FALSE, PR_FALSE, NULL); if (slotlist == NULL) { if (NSS_ShutdownContext(ctx) != SECSuccess) { printf("Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_NO_TOKEN); } for (sle = slotlist->head; ((sle != NULL) && (sle->slot != NULL)); sle = sle->next) { /* Read the token's name. */ token = PK11_GetTokenName(sle->slot); if (token != NULL) { printf("Found token '%s'.\n", token); } else { printf("Found unnamed token.\n"); } if (sle->slot == PK11_GetInternalSlot()) { printf("\tIs internal slot.\n"); } if (sle->slot == PK11_GetInternalKeySlot()) { printf("\tIs internal key slot.\n"); } memset(&info, 0, sizeof(info)); if (PK11_GetTokenInfo(sle->slot, &info) == SECSuccess) { printf("\tFlags = %08lx\n", info.flags); printf("\tPIN Length = %lu..%lu\n", info.ulMinPinLen, info.ulMaxPinLen); } /* Now log in, if we have to. */ if (PK11_NeedLogin(sle->slot)) { printf("\tToken requires login.\n"); } else { printf("\tToken does not require login.\n"); } /* If this was the last token, stop walking. */ if (sle == slotlist->tail) { break; } } PK11_FreeSlotList(slotlist); PORT_FreeArena(arena, PR_TRUE); return 0; } certmonger-0.78.6/src/tlslayer-o.c0000664000175000017500000000476612645513264013757 00000000000000/* * Copyright (C) 2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include "tlslayer.h" #include "tlslayer-int.h" struct cm_tls_o_pvt { SSL_CTX *cm_ctx; BIO *cm_bio, *cm_sbio; }; static int cm_tls_o_fd(struct cm_tls_connection *conn, void *data) { return -1; } static ssize_t cm_tls_o_write(struct cm_tls_connection *conn, void *data, const void *buf, size_t count) { struct cm_tls_o_pvt *pvt = (struct cm_tls_o_pvt *) data; return BIO_write(pvt->cm_sbio, buf, count); } static ssize_t cm_tls_o_read(struct cm_tls_connection *conn, void *data, void *buf, size_t count) { struct cm_tls_o_pvt *pvt = (struct cm_tls_o_pvt *) data; return BIO_read(pvt->cm_sbio, buf, count); } static void cm_tls_o_close(struct cm_tls_connection *conn, void *data) { struct cm_tls_o_pvt *pvt = (struct cm_tls_o_pvt *) data; BIO_ssl_shutdown(pvt->cm_sbio); talloc_free(conn); } struct cm_tls_connection * cm_tls_o(const char *hostport, const char *trusted_ca_file, const char *trusted_ca_db, const char *client_db, const char *client_nickname) { struct cm_tls_connection *ret; struct cm_tls_o_pvt *pvt; ret = talloc_ptrtype(NULL, ret); if (ret == NULL) { return NULL; } memset(ret, 0, sizeof(*ret)); pvt = talloc_ptrtype(ret, pvt); if (pvt == NULL) { talloc_free(ret); return NULL; } memset(pvt, 0, sizeof(*pvt)); pvt->cm_ctx = SSL_CTX_new(SSLv23_client_method()); pvt->cm_bio = BIO_new_connect(strdup(hostport)); pvt->cm_sbio = BIO_new_ssl(pvt->cm_ctx, 1); BIO_push(pvt->cm_sbio, pvt->cm_bio); if (BIO_do_connect(pvt->cm_sbio) != 1) { return NULL; } ret->pvt = pvt; ret->pvt_ops.cm_fd = &cm_tls_o_fd; ret->pvt_ops.cm_read = &cm_tls_o_read; ret->pvt_ops.cm_write = &cm_tls_o_write; ret->pvt_ops.cm_close = &cm_tls_o_close; return ret; } certmonger-0.78.6/src/tlslayer-int.h0000664000175000017500000000302412645513264014302 00000000000000/* * Copyright (C) 2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef tlslayer_int_h #define tlslayer_int_h struct cm_tls_connection { struct cm_tls_connection_ops { int (*cm_fd)(struct cm_tls_connection *conn, void *pvt); ssize_t (*cm_write)(struct cm_tls_connection *conn, void *pvt, const void *buf, size_t count); ssize_t (*cm_read)(struct cm_tls_connection *conn, void *pvt, void *buf, size_t count); void (*cm_close)(struct cm_tls_connection *conn, void *pvt); } pvt_ops; void *pvt; }; struct cm_tls_connection *cm_tls_n(const char *hostport, const char *trusted_ca_file, const char *trusted_ca_db, const char *client_db, const char *client_nickname); struct cm_tls_connection *cm_tls_o(const char *hostport, const char *trusted_ca_file, const char *trusted_ca_dir, const char *client_cert_file, const char *client_key_file); #endif certmonger-0.78.6/src/tlslayer.h0000664000175000017500000000247612645513264013524 00000000000000/* * Copyright (C) 2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef tlslayer_h #define tlslayer_h struct cm_tls_connection; struct cm_tls_connection *cm_tls_connect(const char *hostport, const char *trusted_ca_file, const char *trusted_ca_dir, const char *trusted_ca_db, const char *client_cert_file, const char *client_key_file, const char *client_db, const char *client_nickname); int cm_tls_fd(struct cm_tls_connection *conn); ssize_t cm_tls_write(struct cm_tls_connection *conn, const void *buf, size_t count); ssize_t cm_tls_read(struct cm_tls_connection *conn, void *buf, size_t count); void cm_tls_close(struct cm_tls_connection *conn); #endif certmonger-0.78.6/src/tlslayer-n.c0000664000175000017500000001205112645513264013740 00000000000000/* * Copyright (C) 2012,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include "tlslayer.h" #include "tlslayer-int.h" struct cm_tls_n_pvt { PRFileDesc *sfd, *model, *fd; char *client_db, *client_nickname; }; static int cm_tls_n_fd(struct cm_tls_connection *conn, void *data) { return -1; } static ssize_t cm_tls_n_write(struct cm_tls_connection *conn, void *data, const void *buf, size_t count) { return -1; } static ssize_t cm_tls_n_read(struct cm_tls_connection *conn, void *data, void *buf, size_t count) { return -1; } static void cm_tls_n_close(struct cm_tls_connection *conn, void *data) { struct cm_tls_n_pvt *pvt = (struct cm_tls_n_pvt *) data; PR_Close(pvt->sfd); PR_Close(pvt->model); PR_Close(pvt->fd); talloc_free(conn); } static SECStatus cm_tls_n_bad_cert(void *arg, PRFileDesc *fd) { fprintf(stderr, "Server certificate failed to verify: %s.\n", PR_ErrorToName(PORT_GetError())); return SECFailure; } static SECStatus cm_tls_n_get_client_creds(void *arg, PRFileDesc *socket, CERTDistNames *cas, CERTCertificate **client_cert, SECKEYPrivateKey **client_key) { *client_cert = NULL; *client_key = NULL; return SECFailure; } struct cm_tls_connection * cm_tls_n(const char *hostport, const char *trusted_ca_file, const char *trusted_ca_db, const char *client_db, const char *client_nickname) { struct cm_tls_connection *ret; struct cm_tls_n_pvt *pvt; char buf[LINE_MAX], *hp, *service; PRHostEnt host; PRNetAddr addr; PRIntn i; PRUint16 port; if (trusted_ca_db != NULL) { NSS_InitContext(trusted_ca_db, NULL, NULL, NULL, NULL, 0); } else { NSS_InitContext(CM_DEFAULT_CERT_STORAGE_LOCATION, NULL, NULL, NULL, NULL, NSS_INIT_NOCERTDB); } ret = talloc_ptrtype(NULL, ret); if (ret == NULL) { return NULL; } memset(ret, 0, sizeof(*ret)); pvt = talloc_ptrtype(ret, pvt); if (pvt == NULL) { talloc_free(ret); return NULL; } memset(pvt, 0, sizeof(*pvt)); hp = talloc_strdup(ret, hostport); if (hp == NULL) { talloc_free(ret); return NULL; } service = strrchr(hp, ':'); port = 80; if (service != NULL) { if (strspn(service + 1, "0123456789") == strlen(service + 1)) { *service++ = '\0'; port = atoi(service); } else { service = NULL; } } pvt->client_db = talloc_strdup(pvt, client_db); pvt->client_nickname = talloc_strdup(pvt, client_nickname); pvt->fd = PR_NewTCPSocket(); memset(&host, 0, sizeof(host)); PR_GetHostByName(hp, buf, sizeof(buf), &host); memset(&addr, 0, sizeof(addr)); for (i = PR_EnumerateHostEnt(0, &host, port, &addr); i != 0; i = PR_EnumerateHostEnt(i, &host, port, &addr)) { if (PR_Connect(pvt->fd, &addr, PR_INTERVAL_NO_TIMEOUT) == PR_SUCCESS) { break; } } if (i == 0) { fprintf(stderr, "PR_Connect\n"); PR_Close(pvt->fd); talloc_free(ret); return NULL; } pvt->model = SSL_ImportFD(NULL, PR_NewTCPSocket()); if (pvt->model == NULL) { fprintf(stderr, "SSL_ImportFD: %d\n", PORT_GetError()); PR_Close(pvt->model); PR_Close(pvt->fd); talloc_free(ret); return NULL; } #if 0 if (SSL_OptionSet(pvt->model, SSL_SECURITY, 1) < 0) { fprintf(stderr, "SSL_OptionSet(SSL_SECURITY): %d\n", PORT_GetError()); PR_Close(pvt->model); PR_Close(pvt->fd); talloc_free(ret); return NULL; } #endif if (SSL_SetURL(pvt->model, hp) != SECSuccess) { fprintf(stderr, "SSL_SetURL: %d\n", PORT_GetError()); PR_Close(pvt->model); PR_Close(pvt->fd); talloc_free(ret); return NULL; } SSL_BadCertHook(pvt->model, &cm_tls_n_bad_cert, NULL); SSL_GetClientAuthDataHook(pvt->model, &cm_tls_n_get_client_creds, pvt); pvt->sfd = SSL_ImportFD(pvt->model, pvt->fd); if (SSL_ResetHandshake(pvt->sfd, 0) != SECSuccess) { fprintf(stderr, "SSL_ResetHandshake: %d\n", PORT_GetError()); PR_Close(pvt->sfd); PR_Close(pvt->model); PR_Close(pvt->fd); talloc_free(ret); return NULL; } if (SSL_ForceHandshake(pvt->sfd) != SECSuccess) { fprintf(stderr, "SSL_ForceHandshake: %s\n", PR_ErrorToName(PORT_GetError())); PR_Close(pvt->sfd); PR_Close(pvt->model); PR_Close(pvt->fd); talloc_free(ret); return NULL; } ret->pvt = pvt; ret->pvt_ops.cm_fd = &cm_tls_n_fd; ret->pvt_ops.cm_read = &cm_tls_n_read; ret->pvt_ops.cm_write = &cm_tls_n_write; ret->pvt_ops.cm_close = &cm_tls_n_close; return ret; } certmonger-0.78.6/src/tlslayer.c0000664000175000017500000001366312645513264013517 00000000000000/* * Copyright (C) 2012,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include "tlslayer.h" #include "tlslayer-int.h" #ifdef CM_TLSLAYER_MAIN static int cm_tls_null_fd(struct cm_tls_connection *conn, void *pvt) { return *(int *) pvt; } static ssize_t cm_tls_null_write(struct cm_tls_connection *conn, void *pvt, const void *buf, size_t count) { return write(*(int *) pvt, buf, count); } static ssize_t cm_tls_null_read(struct cm_tls_connection *conn, void *pvt, void *buf, size_t count) { return read(*(int *) pvt, buf, count); } static void cm_tls_null_close(struct cm_tls_connection *conn, void *pvt) { close(*(int *)pvt); talloc_free(conn); } static struct cm_tls_connection * cm_tls_null(const char *hostport) { static struct cm_tls_connection *ret; struct addrinfo *res, *r; int *pvt, sd; char *hp, *service; ret = talloc_ptrtype(NULL, ret); if (ret == NULL) { return NULL; } memset(ret, 0, sizeof(*ret)); pvt = talloc_ptrtype(ret, pvt); if (pvt == NULL) { talloc_free(ret); return NULL; } memset(pvt, 0, sizeof(*pvt)); hp = talloc_strdup(ret, hostport); if (hp == NULL) { talloc_free(ret); return NULL; } service = strrchr(hp, ':'); if (service != NULL) { if (strspn(service + 1, "0123456789") == strlen(service + 1)) { *service++ = '\0'; } else { service = NULL; } } res = NULL; if (getaddrinfo(hp, service, NULL, &res) != 0) { talloc_free(ret); return NULL; } for (r = res; r != NULL; r = r->ai_next) { sd = socket(r->ai_family, r->ai_socktype, r->ai_protocol); if (sd == -1) { continue; } if (connect(sd, r->ai_addr, r->ai_addrlen) != 0) { close(sd); sd = -1; continue; } break; } freeaddrinfo(res); *pvt = sd; ret->pvt = pvt; ret->pvt_ops.cm_fd = &cm_tls_null_fd; ret->pvt_ops.cm_read = &cm_tls_null_read; ret->pvt_ops.cm_write = &cm_tls_null_write; ret->pvt_ops.cm_close = &cm_tls_null_close; return ret; } #else static struct cm_tls_connection * cm_tls_null(const char *hostport) { return NULL; } #endif struct cm_tls_connection * cm_tls_connect(const char *hostport, const char *trusted_ca_file, const char *trusted_ca_dir, const char *trusted_ca_db, const char *client_cert_file, const char *client_key_file, const char *client_db, const char *client_nickname) { if (!trusted_ca_db && !trusted_ca_dir && !trusted_ca_file && !client_cert_file && !client_key_file && !client_db && !client_nickname) { fprintf(stderr, "The googles! They do nothing!\n"); return cm_tls_null(hostport); } else if (!trusted_ca_dir && !client_cert_file && !client_key_file) { fprintf(stderr, "NSS!\n"); return cm_tls_n(hostport, trusted_ca_file, trusted_ca_db, client_db, client_nickname); #ifdef HAVE_OPENSSL } else if (!trusted_ca_db && !client_db && !client_nickname) { fprintf(stderr, "OpenSSL!\n"); return cm_tls_o(hostport, trusted_ca_file, trusted_ca_dir, client_cert_file, client_key_file); #endif } else { return NULL; } } int cm_tls_fd(struct cm_tls_connection *conn) { return conn->pvt_ops.cm_fd(conn, conn->pvt); } ssize_t cm_tls_write(struct cm_tls_connection *conn, const void *buf, size_t count) { return conn->pvt_ops.cm_write(conn, conn->pvt, buf, count); } ssize_t cm_tls_read(struct cm_tls_connection *conn, void *buf, size_t count) { return conn->pvt_ops.cm_read(conn, conn->pvt, buf, count); } void cm_tls_close(struct cm_tls_connection *conn) { conn->pvt_ops.cm_close(conn, conn->pvt); } #ifdef CM_TLSLAYER_MAIN int main(int argc, const char **argv) { struct cm_tls_connection *conn; const char *hostport = NULL; const char *trusted_ca_file = NULL, *trusted_ca_dir = NULL; const char *trusted_ca_db = NULL; const char *client_cert_file = NULL, *client_key_file = NULL; const char *client_db = NULL, *client_nickname = NULL; int c; poptContext pctx; struct poptOption popts[] = { {"ca-file", 'c', POPT_ARG_STRING, &trusted_ca_file, 0, NULL, "FILENAME"}, {"ca-dir", 'C', POPT_ARG_STRING, &trusted_ca_dir, 0, NULL, "DIRECTORY"}, {"ca-database", 'D', POPT_ARG_STRING, &trusted_ca_db, 0, NULL, "DIRECTORY"}, {"client-cert", 'f', POPT_ARG_STRING, &client_cert_file, 0, NULL, "FILENAME"}, {"client-key", 'k', POPT_ARG_STRING, &client_key_file, 0, NULL, "FILENAME"}, {"client-database", 'd', POPT_ARG_STRING, &client_db, 0, NULL, "DIRECTORY"}, {"client-nickname", 'n', POPT_ARG_STRING, &client_nickname, 0, NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("tlslayer", argc, argv, popts, 0); if (pctx == NULL) { return 1; } poptSetOtherOptionHelp(pctx, "[options...] hostname:port"); while ((c = poptGetNextOpt(pctx)) > 0) { continue; } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } hostport = poptGetArg(pctx); if (hostport == NULL) { poptPrintUsage(pctx, stdout, 0); return 2; } conn = cm_tls_connect(hostport, trusted_ca_file, trusted_ca_dir, trusted_ca_db, client_cert_file, client_key_file, client_db, client_nickname); if (conn == NULL) { fprintf(stderr, "Error establishing connection.\n"); return 2; } cm_tls_close(conn); return 0; } #endif certmonger-0.78.6/src/tdbusm-check.c0000664000175000017500000004105512645513264014225 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include "tdbus.h" #include "tdbusm.h" static const dbus_bool_t b = TRUE; static const long n = 12345, n1 = 23456, n2 = 34567; static char s[] = "This is a string."; static char s1[] = "This is a first string."; static char s2[] = "This is a second string."; static char s3[] = "This is a third string."; static char s4[] = "This is a fourth string."; static char p[] = "/this/is/a/path/to/an/object"; static const char *as[] = {"This", "is", "a", "string", "array.", NULL}; static const char *ap[] = {"/this", "/is", "/a", "/path", "/array", NULL}; static const char *as1[] = {"This", "is", "a", "first", "string", "array.", NULL}; static const char *as2[] = {"This", "is", "a", "second", "string", "array.", NULL}; static const char *as3[] = {"This", "is", "a", "third", "string", "array.", NULL}; static const char *as4[] = {"This", "is", "a", "fourth", "string", "array.", NULL}; static const char *ass[] = {"This", "is", "a", "string", "array.", NULL}; static struct cm_tdbusm_dict d0 = { .key = "key 0", .value_type = cm_tdbusm_dict_b, .value.b = TRUE, }; static struct cm_tdbusm_dict d1 = { .key = "key 1", .value_type = cm_tdbusm_dict_n, .value.n = 12345, }; static struct cm_tdbusm_dict d2 = { .key = "key 2", .value_type = cm_tdbusm_dict_s, .value.s = "this is a string value", }; static struct cm_tdbusm_dict d3 = { .key = "key 3", .value_type = cm_tdbusm_dict_as, .value.as = (char **) as, }; static struct cm_tdbusm_dict d4 = { .key = "key 4", .value_type = cm_tdbusm_dict_ass, .value.as = (char **) ass, }; static const struct cm_tdbusm_dict *dsub[] = {&d0, &d1, NULL}; static struct cm_tdbusm_dict d5 = { .key = "key 5", .value_type = cm_tdbusm_dict_d, .value.d = dsub, }; static const struct cm_tdbusm_dict *d[] = {&d0, &d1, &d2, &d3, &d4, &d5, NULL}; static int set_b(DBusMessage *msg) { return cm_tdbusm_set_b(msg, b); } static int set_n(DBusMessage *msg) { return cm_tdbusm_set_n(msg, n); } static int set_p(DBusMessage *msg) { return cm_tdbusm_set_p(msg, p); } static int set_s(DBusMessage *msg) { return cm_tdbusm_set_s(msg, s); } static int set_bp(DBusMessage *msg) { return cm_tdbusm_set_bp(msg, b, p); } static int set_bs(DBusMessage *msg) { return cm_tdbusm_set_bs(msg, b, s); } static int set_sb(DBusMessage *msg) { return cm_tdbusm_set_sb(msg, s, b); } static int set_sn(DBusMessage *msg) { return cm_tdbusm_set_sn(msg, s, n); } static int set_ss(DBusMessage *msg) { return cm_tdbusm_set_ss(msg, s1, s2); } static int set_ssb(DBusMessage *msg) { return cm_tdbusm_set_ssb(msg, s1, s2, b); } static int set_ssn(DBusMessage *msg) { return cm_tdbusm_set_ssn(msg, s1, s2, n); } static int set_ap(DBusMessage *msg) { return cm_tdbusm_set_ap(msg, ap); } static int set_as(DBusMessage *msg) { return cm_tdbusm_set_as(msg, as); } static int set_ass(DBusMessage *msg) { return cm_tdbusm_set_ass(msg, ass); } static int set_sss(DBusMessage *msg) { return cm_tdbusm_set_sss(msg, s1, s2, s3); } static int set_ssvs(DBusMessage *msg) { return cm_tdbusm_set_ssvs(msg, s1, s2, s3); } static int set_ssas(DBusMessage *msg) { return cm_tdbusm_set_ssas(msg, s1, s2, as); } static int set_ssss(DBusMessage *msg) { return cm_tdbusm_set_ssss(msg, s1, s2, s3, s4); } static int set_ssoas(DBusMessage *msg) { return cm_tdbusm_set_ssoas(msg, s1, s2, as); } static int set_sssas(DBusMessage *msg) { return cm_tdbusm_set_sssas(msg, s1, s2, s3, as); } static int set_sssnasasasnas(DBusMessage *msg) { return cm_tdbusm_set_sssnasasasnas(msg, s1, s2, s3, n1, as1, as2, as3, n2, as4); } static int set_sasasasnas(DBusMessage *msg) { return cm_tdbusm_set_sasasasnas(msg, s, as1, as2, as3, n, as4); } static int set_d(DBusMessage *msg) { return cm_tdbusm_set_d(msg, d); } static int set_sd(DBusMessage *msg) { return cm_tdbusm_set_sd(msg, s, d); } static int set_ssass(DBusMessage *msg) { return cm_tdbusm_set_ssass(msg, s1, s2, ass); } static int get_b(DBusMessage *rep, int msgid) { int ret; dbus_bool_t b; ret = cm_tdbusm_get_b(rep, NULL, &b); if (ret == 0) { printf("Message %d - b:%s\n", msgid, b ? "TRUE" : "FALSE"); } return ret; } static int get_n(DBusMessage *rep, int msgid) { int ret; long n; ret = cm_tdbusm_get_n(rep, NULL, &n); if (ret == 0) { printf("Message %d - n:%ld\n", msgid, n); } return ret; } static int get_p(DBusMessage *rep, int msgid) { int ret; char *p; ret = cm_tdbusm_get_p(rep, NULL, &p); if (ret == 0) { printf("Message %d - p:%s\n", msgid, p); } return ret; } static int get_s(DBusMessage *rep, int msgid) { int ret; char *s; ret = cm_tdbusm_get_s(rep, NULL, &s); if (ret == 0) { printf("Message %d - s:%s\n", msgid, s); } return ret; } static int get_bp(DBusMessage *rep, int msgid) { dbus_bool_t b; int ret; char *p; ret = cm_tdbusm_get_bp(rep, NULL, &b, &p); if (ret == 0) { printf("Message %d - b:%s,p:%s\n", msgid, b ? "TRUE" : "FALSE", p); } return ret; } static int get_bs(DBusMessage *rep, int msgid) { dbus_bool_t b; int ret; char *s; ret = cm_tdbusm_get_bs(rep, NULL, &b, &s); if (ret == 0) { printf("Message %d - b:%s,s:%s\n", msgid, b ? "TRUE" : "FALSE", s); } return ret; } static int get_sb(DBusMessage *rep, int msgid) { dbus_bool_t b; int ret; char *s; ret = cm_tdbusm_get_sb(rep, NULL, &s, &b); if (ret == 0) { printf("Message %d - s:%s,b:%s\n", msgid, s, b ? "TRUE" : "FALSE"); } return ret; } static int get_sn(DBusMessage *rep, int msgid) { int ret; long n; char *s; ret = cm_tdbusm_get_sn(rep, NULL, &s, &n); if (ret == 0) { printf("Message %d - s:%s,n:%ld\n", msgid, s, n); } return ret; } static int get_ss(DBusMessage *rep, int msgid) { int ret; char *s1, *s2; ret = cm_tdbusm_get_ss(rep, NULL, &s1, &s2); if (ret == 0) { printf("Message %d - s:%s,s:%s\n", msgid, s1, s2); } return ret; } static int get_ap(DBusMessage *rep, int msgid) { int ret, i; char **ap; ret = cm_tdbusm_get_ap(rep, NULL, &ap); if (ret == 0) { printf("Message %d - [", msgid); for (i = 0; (ap != NULL) && (ap[i] != NULL); i++) { printf("%sp:%s", i > 0 ? "," : "", ap[i]); } printf("]\n"); } return ret; } static int get_as(DBusMessage *rep, int msgid) { int ret, i; char **as; ret = cm_tdbusm_get_as(rep, NULL, &as); if (ret == 0) { printf("Message %d - [", msgid); for (i = 0; (as != NULL) && (as[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as[i]); } printf("]\n"); } return ret; } static int get_ass(DBusMessage *rep, int msgid) { int ret, i; char **ass = NULL; ret = cm_tdbusm_get_ass(rep, NULL, &ass); if (ret == 0) { printf("Message %d - [", msgid); for (i = 0; (ass != NULL) && (ass[i] != NULL) && (ass[i + 1] != NULL); i += 2) { printf("%s(%s,%s)", i > 0 ? "," : "", ass[i], ass[i + 1]); } printf("]\n"); } return ret; } static int get_sss(DBusMessage *rep, int msgid) { int ret; char *s1, *s2, *s3; ret = cm_tdbusm_get_sss(rep, NULL, &s1, &s2, &s3); if (ret == 0) { printf("Message %d - s:%s,s:%s,s:%s\n", msgid, s1, s2, s3); } return ret; } static int get_ssvs(DBusMessage *rep, int msgid) { int ret; char *s1, *s2; enum cm_tdbusm_dict_value_type type; union cm_tdbusm_variant value; memset(&value, 0, sizeof(value)); ret = cm_tdbusm_get_ssv(rep, NULL, &s1, &s2, &type, &value); if (ret == 0) { if (type == cm_tdbusm_dict_s) { printf("Message %d - s:%s,s:%s,s:%s\n", msgid, s1, s2, value.s); } } return ret; } static int get_ssb(DBusMessage *rep, int msgid) { int ret; char *s1, *s2; dbus_bool_t b; ret = cm_tdbusm_get_ssb(rep, NULL, &s1, &s2, &b); if (ret == 0) { printf("Message %d - s:%s,s:%s,b:%s\n", msgid, s1, s2, b ? "TRUE" : "FALSE"); } return ret; } static int get_ssn(DBusMessage *rep, int msgid) { int ret; char *s1, *s2; long n; ret = cm_tdbusm_get_ssn(rep, NULL, &s1, &s2, &n); if (ret == 0) { printf("Message %d - s:%s,s:%s,n:%ld\n", msgid, s1, s2, n); } return ret; } static int get_ssas(DBusMessage *rep, int msgid) { int ret, i; char *s1, *s2, **as; ret = cm_tdbusm_get_ssas(rep, NULL, &s1, &s2, &as); if (ret == 0) { printf("Message %d - s:%s,s:%s,as:[", msgid, s1, s2); for (i = 0; (as != NULL) && (as[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as[i]); } printf("]\n"); } return ret; } static int get_ssss(DBusMessage *rep, int msgid) { int ret; char *s1, *s2, *s3, *s4; ret = cm_tdbusm_get_ssss(rep, NULL, &s1, &s2, &s3, &s4); if (ret == 0) { printf("Message %d - s:%s,s:%ss:%s,s:%s\n", msgid, s1, s2, s3, s4); } return ret; } static int get_ssosos(DBusMessage *rep, int msgid) { int ret; char *s1, *s2, *s3, *s4; ret = cm_tdbusm_get_ssosos(rep, NULL, &s1, &s2, &s3, &s4); if (ret == 0) { printf("Message %d - s:%s,s:%ss:%ss:%s\n", msgid, s1, s2, s3 ? s3 : "(NULL)", s4 ? s4 : "(NULL)"); } return ret; } static int get_sososos(DBusMessage *rep, int msgid) { int ret; char *s1, *s2, *s3, *s4; ret = cm_tdbusm_get_sososos(rep, NULL, &s1, &s2, &s3, &s4); if (ret == 0) { printf("Message %d - s:%s,s:%ss:%s,s:%s\n", msgid, s1, s2 ? s2 : "(NULL)", s3 ? s3 : "(NULL)", s4 ? s4 : "(NULL)"); } return ret; } static int get_ssoas(DBusMessage *rep, int msgid) { int ret, i; char *s1, *s2, **as; ret = cm_tdbusm_get_ssoas(rep, NULL, &s1, &s2, &as); if (ret == 0) { printf("Message %d - s:%s,s:%s,[", msgid, s1, s2); for (i = 0; (as != NULL) && (as[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as[i]); } printf("]\n"); } return ret; } static int get_sssas(DBusMessage *rep, int msgid) { int ret, i; char *s1, *s2, *s3, **as; ret = cm_tdbusm_get_sssas(rep, NULL, &s1, &s2, &s3, &as); if (ret == 0) { printf("Message %d - s:%s,s:%s,s:%s,[", msgid, s1, s2, s3); for (i = 0; (as != NULL) && (as[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as[i]); } printf("]\n"); } return ret; } static int get_sssnasasasnas(DBusMessage *rep, int msgid) { int ret, i; long n1, n2; char *s1, *s2, *s3, **as1, **as2, **as3, **as4; ret = cm_tdbusm_get_sssnasasasnas(rep, NULL, &s1, &s2, &s3, &n1, &as1, &as2, &as3, &n2, &as4); if (ret == 0) { printf("Message %d - s:%s,s:%s,s:%s," "n:%ld,[", msgid, s1, s2, s3, n1); for (i = 0; (as1 != NULL) && (as1[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as1[i]); } printf("],["); for (i = 0; (as2 != NULL) && (as2[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as2[i]); } printf("],["); for (i = 0; (as3 != NULL) && (as3[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as3[i]); } printf("],n:%ld,[", n2); for (i = 0; (as4 != NULL) && (as4[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as4[i]); } printf("]\n"); } return ret; } static int get_sasasasnas(DBusMessage *rep, int msgid) { int ret, i; long n; char *s, **as1, **as2, **as3, **as4; ret = cm_tdbusm_get_sasasasnas(rep, NULL, &s, &as1, &as2, &as3, &n, &as4); if (ret == 0) { printf("Message %d - s:%s,[", msgid, s); for (i = 0; (as1 != NULL) && (as1[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as1[i]); } printf("],["); for (i = 0; (as2 != NULL) && (as2[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as2[i]); } printf("],["); for (i = 0; (as3 != NULL) && (as3[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as3[i]); } printf("],n:%ld,[", n); for (i = 0; (as4 != NULL) && (as4[i] != NULL); i++) { printf("%ss:%s", i > 0 ? "," : "", as4[i]); } printf("]\n"); } return ret; } static int print_d(DBusMessage *rep, const struct cm_tdbusm_dict **d) { int i, k; for (i = 0; (d != NULL) && (d[i] != NULL); i++) { printf("%s{%s=", i > 0 ? "," : "", d[i]->key); switch (d[i]->value_type) { case cm_tdbusm_dict_invalid: printf("(invalid)}"); break; case cm_tdbusm_dict_s: printf("s:%s}", d[i]->value.s); break; case cm_tdbusm_dict_p: printf("p:%s}", d[i]->value.s); break; case cm_tdbusm_dict_as: printf("as:["); for (k = 0; (d[i]->value.as != NULL) && (d[i]->value.as[k] != NULL); k++) { printf("%s%s", k > 0 ? "," : "", d[i]->value.as[k]); } printf("]"); break; case cm_tdbusm_dict_ass: printf("ass:["); for (k = 0; (d[i]->value.ass != NULL) && (d[i]->value.ass[k] != NULL) && (d[i]->value.ass[k + 1] != NULL); k += 2) { printf("%s(%s,%s)", k > 0 ? "," : "", d[i]->value.ass[k], d[i]->value.ass[k + 1]); } printf("]"); break; case cm_tdbusm_dict_n: printf("n:%ld}", d[i]->value.n); break; case cm_tdbusm_dict_b: printf("b:%s}", d[i]->value.b ? "TRUE" : "FALSE"); break; case cm_tdbusm_dict_d: printf("d:["); print_d(rep, d[i]->value.d); printf("]"); break; } } return i; } static int get_d(DBusMessage *rep, int msgid) { int ret; struct cm_tdbusm_dict **d; ret = cm_tdbusm_get_d(rep, NULL, &d); if (ret == 0) { printf("Message %d - [", msgid); print_d(rep, (const struct cm_tdbusm_dict **) d); printf("]\n"); } return ret; } static int get_sd(DBusMessage *rep, int msgid) { int ret; struct cm_tdbusm_dict **d; char *s; ret = cm_tdbusm_get_sd(rep, NULL, &s, &d); if (ret == 0) { printf("Message %d - s:%s,[", msgid, s); print_d(rep, (const struct cm_tdbusm_dict **) d); printf("]\n"); } return ret; } static int get_ssass(DBusMessage *rep, int msgid) { int ret, i; char *s1, *s2, **ass; ret = cm_tdbusm_get_ssass(rep, NULL, &s1, &s2, &ass); if (ret == 0) { printf("Message %d - s:%s,s:%s,", msgid, s1, s2); printf("ass:["); for (i = 0; (ass[i] != NULL) && (ass[i + 1] != NULL); i += 2) { printf("%s(%s,%s)", i > 0 ? "," : "", ass[i], ass[i + 1]); } printf("]\n"); } return ret; } int main(int argc, const char **argv) { DBusConnection *conn; DBusMessage *msg; DBusError err; DBusBusType bus = DBUS_BUS_SESSION; int c, ret; unsigned int i; const struct { int (*set)(DBusMessage *); int (*get)(DBusMessage *, int); } tests[] = { {&set_b, &get_b}, {&set_n, &get_n}, {&set_p, &get_p}, {&set_s, &get_s}, {&set_bp, &get_bp}, {&set_bs, &get_bs}, {&set_sb, &get_sb}, {&set_sn, &get_sn}, {&set_ss, &get_ss}, {&set_ap, &get_ap}, {&set_as, &get_as}, {&set_sss, &get_sss}, {&set_ssn, &get_ssn}, {&set_ssb, &get_ssb}, {&set_ssas, &get_ssas}, {&set_ssss, &get_ssss}, {&set_ss, &get_ssosos}, {&set_sss, &get_ssosos}, {&set_ssss, &get_ssosos}, {&set_s, &get_sososos}, {&set_ss, &get_sososos}, {&set_sss, &get_sososos}, {&set_ssss, &get_sososos}, {&set_ssoas, &get_ssoas}, {&set_sssas, &get_sssas}, {&set_sssnasasasnas, &get_sssnasasasnas}, {&set_sasasasnas, &get_sasasasnas}, {&set_ass, &get_ass}, {&set_d, &get_d}, {&set_sd, &get_sd}, {&set_ssass, &get_ssass}, {&set_ssvs, &get_ssvs}, }; poptContext pctx; struct poptOption popts[] = { {"session", 's', POPT_ARG_NONE, NULL, 's', NULL, NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; memset(&err, 0, sizeof(err)); pctx = poptGetContext("tdbusm-check", argc, argv, popts, 0); if (pctx == NULL) { return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': bus = DBUS_BUS_SESSION; break; case 'S': bus = DBUS_BUS_SYSTEM; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } conn = dbus_bus_get(bus, NULL); if (conn == NULL) { printf("Error connecting to bus!\n"); return 1; } for (i = 0; i < sizeof(tests) / sizeof(tests[0]); i++) { msg = dbus_message_new_method_call(CM_DBUS_NAME, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "echo"); if (msg == NULL) { continue; } ret = (*(tests[i].set))(msg); if (ret != 0) { printf("Error encoding parameters for message %u.\n", i); continue; } ret = (*(tests[i].get))(msg, i); if (ret != 0) { printf("Error parsing parameters in message %u.\n", i); } } return 0; } certmonger-0.78.6/src/serial-check.c0000664000175000017500000000212712645513264014203 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include "store.h" int main(int argc, char **argv) { int i; void *parent; char *serial; parent = talloc_new(NULL); serial = cm_store_increment_serial(parent, NULL); printf("Starting value = %s\n", serial); for (i = 0; i < 1024; i++) { serial = cm_store_increment_serial(parent, serial); printf("%s\n", serial); } return 0; } certmonger-0.78.6/src/selfsign-getcert.c0000664000175000017500000000011712645513264015113 00000000000000#include "config.h" #define FORCE_CA CM_SELF_SIGN_CA_NAME #include "getcert.c" certmonger-0.78.6/src/scep.c0000664000175000017500000010246512645513264012611 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "pkcs7.h" #include "prefs.h" #include "scep.h" #include "store.h" #include "submit-e.h" #include "submit-h.h" #include "submit-u.h" #include "util.h" #include "util-m.h" #include "util-o.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif #define OP_GET_CA_CAPS "GetCACaps" #define OP_GET_CA_CERT "GetCACert" #define OP_GET_CA_CHAIN "GetCAChain" #define OP_GET_INITIAL_CERT "PKIOperation" #define OP_PKCSREQ "PKIOperation" enum known_ops { op_unset, op_get_ca_caps, op_get_ca_certs, op_get_initial_cert, op_pkcsreq, }; static int cert_cmp(X509 *x, char *candidate) { X509 *c; BIO *in; int ret = 1; in = BIO_new_mem_buf(candidate, -1); if (in != NULL) { c = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (c != NULL) { ret = X509_cmp(x, c); X509_free(c); } } return ret; } static int cert_among(char *needle, char *candidate1, char *candidate2, char **haystack) { X509 *n; BIO *in; int ret = 1, i; in = BIO_new_mem_buf(needle, -1); if (in != NULL) { n = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (candidate1 != NULL) { ret = cert_cmp(n, candidate1); if (ret == 0) { X509_free(n); return ret; } } if (candidate2 != NULL) { ret = cert_cmp(n, candidate2); if (ret == 0) { X509_free(n); return ret; } } for (i = 0; (haystack != NULL) && (haystack[i] != NULL); i++) { ret = cert_cmp(n, haystack[i]); if (ret == 0) { X509_free(n); return ret; } } if (n != NULL) { X509_free(n); } } return ret; } static int check_capability(const char *list, size_t list_length, const char *capability) { const char *p, *q, *r, *n; char *tmp; p = list; cm_log(1, "Checking server capabilities list for \"%s\"", capability); while (p < list + list_length) { /* Skip any blank lines. */ while ((p < list + list_length) && (strchr("\r\n", *p) != NULL)) { p++; } /* Find either the end of this line, or the buffer. */ n = memchr(p, '\n', (list + list_length) - p); r = memchr(p, '\r', (list + list_length) - p); if (n == NULL) { q = r; } else if (r == NULL) { q = n; } else { if (r < n) { q = r; } else { q = n; } } if (q == NULL) { q = list + list_length; } if (q < p) { /* should never happen */ break; } /* If the length is right, check for a match. */ if (((size_t)(q - p)) == strlen(capability)) { tmp = malloc(q - p + 1); if (tmp != NULL) { memcpy(tmp, capability, q - p); tmp[q - p] = '\0'; if (strcasecmp(tmp, capability) == 0) { free(tmp); cm_log(1, " found it.\n"); return 1; } free(tmp); } } /* Prepare to move to the next line. */ p = q; } /* Out of data, and no match. */ cm_log(1, " not found.\n"); return 0; } int main(int argc, const char **argv) { const char *url = NULL, *results = NULL, *results2 = NULL; struct cm_submit_h_context *hctx; int c, verbose = 0, results_length = 0, results_length2 = 0, i; int prefer_non_renewal = 0, can_renewal = 0; int response_code = 0, response_code2 = 0; enum known_ops op = op_unset; const char *id = NULL, *cainfo = NULL; char *message = NULL, *rekey_message = NULL; const char *mode = NULL, *content_type = NULL, *content_type2 = NULL; void *ctx; char *params = "", *params2 = NULL, *racert = NULL, *cacert = NULL; char **othercerts = NULL, *cert1 = NULL, *cert2 = NULL, *certs = NULL; char **racertp, **cacertp, *dracert = NULL, *dcacert = NULL; char buf[LINE_MAX] = ""; const unsigned char **buffers = NULL; size_t n_buffers = 0, *lengths = NULL, j; const char *cacerts[3], **racerts; dbus_bool_t missing_args = FALSE; char *sent_tx, *tx, *msgtype, *pkistatus, *failinfo, *s, *tmp1, *tmp2; unsigned char *sent_nonce, *sender_nonce, *recipient_nonce, *payload; const unsigned char *u; size_t sent_nonce_length, sender_nonce_length, recipient_nonce_length; size_t payload_length; long error; PKCS7 *p7; poptContext pctx; struct poptOption popts[] = { {"url", 'u', POPT_ARG_STRING, &url, 0, "service location", "URL"}, {"ca-identifier", 'i', POPT_ARG_STRING, &id, 0, "name to use when querying for capabilities", "IDENTIFIER"}, {"retrieve-ca-capabilities", 'c', POPT_ARG_NONE, NULL, 'c', "make a GetCACaps request", NULL}, {"retrieve-ca-certificates", 'C', POPT_ARG_NONE, NULL, 'C', "make GetCACert/GetCAChain requests", NULL}, {"get-initial-cert", 'g', POPT_ARG_NONE, NULL, 'g', "send a PKIOperation pkiMessage", NULL}, {"pki-message", 'p', POPT_ARG_NONE, NULL, 'p', "send a PKIOperation pkiMessage", NULL}, {"racert", 'r', POPT_ARG_STRING, NULL, 'r', "the RA certificate, used for encrypting requests", "FILENAME"}, {"cacert", 'R', POPT_ARG_STRING, NULL, 'R', "the CA certificate, used for verifying responses", "FILENAME"}, {"other-certs", 'I', POPT_ARG_STRING, NULL, 'I', "additional certificates", "FILENAME"}, {"non-renewal", 'n', POPT_ARG_NONE, &prefer_non_renewal, 0, "prefer to not use the SCEP Renewal feature", NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; util_o_init(); ERR_load_crypto_strings(); id = getenv(CM_SUBMIT_SCEP_CA_IDENTIFIER_ENV); if (id == NULL) { id = "0"; } racert = getenv(CM_SUBMIT_SCEP_RA_CERTIFICATE_ENV); cacert = getenv(CM_SUBMIT_SCEP_CA_CERTIFICATE_ENV); certs = getenv(CM_SUBMIT_SCEP_CERTIFICATES_ENV); mode = getenv(CM_SUBMIT_OPERATION_ENV); if (mode != NULL) { if (strcasecmp(mode, CM_OP_SUBMIT) == 0) { op = op_pkcsreq; message = getenv(CM_SUBMIT_SCEP_PKCSREQ_REKEY_ENV); if (message == NULL) { message = getenv(CM_SUBMIT_SCEP_PKCSREQ_ENV); } else { rekey_message = getenv(CM_SUBMIT_SCEP_PKCSREQ_ENV); } } else if (strcasecmp(mode, CM_OP_POLL) == 0) { op = op_get_initial_cert; message = getenv(CM_SUBMIT_SCEP_PKCSREQ_REKEY_ENV); if (message == NULL) { message = getenv(CM_SUBMIT_SCEP_PKCSREQ_ENV); } else { rekey_message = getenv(CM_SUBMIT_SCEP_PKCSREQ_ENV); } } else if (strcasecmp(mode, CM_OP_FETCH_SCEP_CA_CERTS) == 0) { op = op_get_ca_certs; } else if (strcasecmp(mode, CM_OP_FETCH_SCEP_CA_CAPS) == 0) { op = op_get_ca_caps; } else if ((strcasecmp(mode, CM_OP_FETCH_ENROLL_REQUIREMENTS) == 0) || (strcasecmp(mode, CM_OP_FETCH_RENEWAL_REQUIREMENTS) == 0)) { printf("%s\n", CM_SUBMIT_SCEP_RA_CERTIFICATE_ENV); printf("%s\n", CM_SUBMIT_SCEP_CA_CERTIFICATE_ENV); printf("%s\n", CM_SUBMIT_SCEP_PKCSREQ_ENV); printf("%s\n", CM_SUBMIT_SCEP_PKCSREQ_REKEY_ENV); printf("%s\n", CM_SUBMIT_SCEP_GETCERTINITIAL_ENV); printf("%s\n", CM_SUBMIT_SCEP_GETCERTINITIAL_REKEY_ENV); return CM_SUBMIT_STATUS_ISSUED; } else if (strcasecmp(mode, CM_OP_IDENTIFY) == 0) { printf("SCEP (%s %s)\n", PACKAGE_NAME, PACKAGE_VERSION); return CM_SUBMIT_STATUS_ISSUED; } else { /* unsupported request */ return CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } } #ifdef ENABLE_NLS bindtextdomain(PACKAGE, MYLOCALEDIR); #endif pctx = poptGetContext(argv[0], argc, argv, popts, 0); if (pctx == NULL) { return CM_SUBMIT_STATUS_UNCONFIGURED; } poptSetOtherOptionHelp(pctx, "[options] [pkiMessage file]"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'v': verbose++; break; case 'c': op = op_get_ca_caps; break; case 'C': op = op_get_ca_certs; break; case 'g': op = op_get_initial_cert; break; case 'p': op = op_pkcsreq; break; case 'r': racert = cm_submit_u_from_file(poptGetOptArg(pctx)); break; case 'R': cainfo = poptGetOptArg(pctx); cacert = cm_submit_u_from_file(cainfo); break; case 'I': certs = cm_submit_u_from_file(poptGetOptArg(pctx)); break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } umask(S_IRWXG | S_IRWXO); cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); ctx = talloc_new(NULL); if (url == NULL) { printf(_("No SCEP URL (-u) given, and no default known.\n")); missing_args = TRUE; } if (op == op_unset) { printf(_("No SCEP operation (-c/-C/-g/-p) given, and no default known.\n")); missing_args = TRUE; } /* Format the first (or only) HTTP request's parameters. */ switch (op) { case op_unset: missing_args = TRUE; break; case op_get_ca_caps: /* Only step: read capabilities for the daemon. */ params = talloc_asprintf(ctx, "operation=" OP_GET_CA_CAPS "&message=%s", id); break; case op_get_ca_certs: /* First step: get the root certificate. */ params = talloc_asprintf(ctx, "operation=" OP_GET_CA_CERT "&message=%s", id); break; case op_get_initial_cert: if ((racert == NULL) || (strlen(racert) == 0)) { printf(_("No RA certificate (-r) given, and no default known.\n")); missing_args = TRUE; } else { /* Check that we at least have a message to send. */ if ((message == NULL) || (strlen(message) == 0)) { if (poptPeekArg(pctx) != NULL) { message = cm_submit_u_from_file(poptGetArg(pctx)); } } if ((message == NULL) || (strlen(message) == 0)) { printf(_("Error reading request, expected PKCS7 data.\n")); return CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES; } /* First step: read capabilities for our use. */ params = talloc_asprintf(ctx, "operation=" OP_GET_CA_CAPS "&message=%s", id); } break; case op_pkcsreq: if ((racert == NULL) || (strlen(racert) == 0)) { printf(_("No RA certificate (-r) given, and no default known.\n")); missing_args = TRUE; } else { /* Check that we at least have a message to send. */ if ((message == NULL) || (strlen(message) == 0)) { if (poptPeekArg(pctx) != NULL) { message = cm_submit_u_from_file(poptGetArg(pctx)); } } if ((message == NULL) || (strlen(message) == 0)) { printf(_("Error reading request, expected PKCS7 data.\n")); return CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES; } /* First step: read capabilities for our use. */ params = talloc_asprintf(ctx, "operation=" OP_GET_CA_CAPS "&message=%s", id); } break; } /* Supply help output, if it's needed. */ if (missing_args) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Check the rekey PKCSReq message, if we have one. */ if ((rekey_message != NULL) && (strlen(rekey_message) != 0)) { tmp1 = cm_submit_u_base64_from_text(rekey_message); tmp2 = cm_store_base64_as_bin(ctx, tmp1, -1, &c); cm_pkcs7_verify_signed((unsigned char *) tmp2, c, NULL, NULL, NID_pkcs7_data, ctx, NULL, NULL, &msgtype, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL); if ((msgtype == NULL) || ((strcmp(msgtype, SCEP_MSGTYPE_PKCSREQ) != 0) && (strcmp(msgtype, SCEP_MSGTYPE_GETCERTINITIAL) != 0))) { if (msgtype == NULL) { fprintf(stderr, _("Warning: request is neither " "a PKCSReq nor a " "GetInitialCert request.\n")); } else { fprintf(stderr, _("Warning: request type \"%s\"" "is neither a PKCSReq nor a " "GetInitialCert request.\n"), msgtype); } } } /* Now, check the regular single-key message, and pick up the * transaction ID and nonce from it. */ if ((message != NULL) && (strlen(message) != 0)) { tmp1 = cm_submit_u_base64_from_text(message); tmp2 = cm_store_base64_as_bin(ctx, tmp1, -1, &c); cm_pkcs7_verify_signed((unsigned char *) tmp2, c, NULL, NULL, NID_pkcs7_data, ctx, NULL, &sent_tx, &msgtype, NULL, NULL, &sent_nonce, &sent_nonce_length, NULL, NULL, NULL, NULL); if ((msgtype == NULL) || ((strcmp(msgtype, SCEP_MSGTYPE_PKCSREQ) != 0) && (strcmp(msgtype, SCEP_MSGTYPE_GETCERTINITIAL) != 0))) { if (msgtype == NULL) { fprintf(stderr, _("Warning: request is neither " "a PKCSReq nor a " "GetInitialCert request.\n")); } else { fprintf(stderr, _("Warning: request type \"%s\"" "is neither a PKCSReq nor a " "GetInitialCert request.\n"), msgtype); } } if (sent_tx == NULL) { fprintf(stderr, _("Warning: request is missing " "transactionId.\n")); } if (sent_nonce == NULL) { fprintf(stderr, _("Warning: request is missing " "senderNonce.\n")); } } else { sent_tx = NULL; sent_nonce = NULL; sent_nonce_length = 0; } /* Submit the first request. */ hctx = cm_submit_h_init(ctx, "GET", url, params, NULL, NULL, cainfo, NULL, NULL, NULL, NULL, cm_submit_h_negotiate_off, cm_submit_h_delegate_off, cm_submit_h_clientauth_off, cm_submit_h_env_modify_off, verbose > 1 ? cm_submit_h_curl_verbose_on : cm_submit_h_curl_verbose_off); cm_submit_h_run(hctx); content_type = cm_submit_h_result_type(hctx); if (content_type == NULL) { content_type = ""; } response_code = cm_submit_h_response_code(hctx); if (verbose > 0) { fprintf(stderr, "%s \"%s?%s\"\n", "GET", url, params); fprintf(stderr, "response_code = %d\n", response_code); fprintf(stderr, "content-type = \"%s\"\n", content_type); fprintf(stderr, "code = %d\n", cm_submit_h_result_code(hctx)); fprintf(stderr, "code_text = \"%s\"\n", cm_submit_h_result_code_text(hctx)); syslog(LOG_DEBUG, "%s %s?%s\n", "GET", url, params); } results = cm_submit_h_results(hctx, &results_length); if (verbose > 0) { fprintf(stderr, "results = \"%s\"\n", cm_store_base64_from_bin(ctx, (const unsigned char *) results, results_length)); syslog(LOG_DEBUG, "%s", cm_store_base64_from_bin(ctx, (const unsigned char *) results, results_length)); } /* Format a possible second HTTP request's parameters. */ switch (op) { case op_unset: abort(); /* never reached */ break; case op_get_ca_caps: /* nothing to do here */ params2 = NULL; break; case op_get_ca_certs: /* Step two: request the chain. */ params2 = talloc_asprintf(ctx, "operation=" OP_GET_CA_CHAIN "&message=%s", id); break; case op_get_initial_cert: /* Step two: actually poll. If we have multiple messages which * we can use, decide which one to use. */ can_renewal = check_capability(results, results_length, "Renewal"); if (can_renewal && !prefer_non_renewal && (rekey_message != NULL)) { tmp2 = rekey_message; } else { tmp2 = message; } if ((tmp2 == NULL) || (strlen(tmp2) == 0)) { printf(_("Error reading request, expected PKCS7 data.\n")); return CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES; } else if (verbose > 0) { if (tmp2 == rekey_message) { fprintf(stderr, "Using rekeying message.\n"); } else { fprintf(stderr, "Using non-rekeying message.\n"); } } tmp1 = cm_submit_u_base64_from_text(tmp2); tmp2 = cm_submit_u_url_encode(tmp1); params2 = talloc_asprintf(ctx, "operation=" OP_GET_INITIAL_CERT "&message=%s", tmp2); break; case op_pkcsreq: /* Step two: actually request a certificate. If we have * multiple messages which we can use, decide which one to use * to make the request. */ can_renewal = check_capability(results, results_length, "Renewal"); if (can_renewal && !prefer_non_renewal && (rekey_message != NULL)) { tmp2 = rekey_message; } else { tmp2 = message; } if ((tmp2 == NULL) || (strlen(tmp2) == 0)) { printf(_("Error reading request, expected PKCS7 data.\n")); return CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES; } else if (verbose > 0) { if (tmp2 == rekey_message) { fprintf(stderr, "Using rekeying message.\n"); } else { fprintf(stderr, "Using non-rekeying message.\n"); } } tmp1 = cm_submit_u_base64_from_text(tmp2); tmp2 = cm_submit_u_url_encode(tmp1); params2 = talloc_asprintf(ctx, "operation=" OP_PKCSREQ "&message=%s", tmp2); break; } /* Submit a second HTTP request if we have one to make. */ if (params2 != NULL) { hctx = cm_submit_h_init(ctx, "GET", url, params2, NULL, NULL, NULL, NULL, NULL, NULL, NULL, cm_submit_h_negotiate_off, cm_submit_h_delegate_off, cm_submit_h_clientauth_off, cm_submit_h_env_modify_off, verbose > 1 ? cm_submit_h_curl_verbose_on : cm_submit_h_curl_verbose_off); cm_submit_h_run(hctx); content_type2 = cm_submit_h_result_type(hctx); if (content_type2 == NULL) { content_type2 = ""; } response_code2 = cm_submit_h_response_code(hctx); if (verbose > 0) { fprintf(stderr, "%s \"%s?%s\"\n", "GET", url, params2); fprintf(stderr, "response_code = %d\n", response_code2); fprintf(stderr, "content-type = \"%s\"\n", content_type2); fprintf(stderr, "code = %d\n", cm_submit_h_result_code(hctx)); fprintf(stderr, "code_text = \"%s\"\n", cm_submit_h_result_code_text(hctx)); syslog(LOG_DEBUG, "%s %s?%s\n", "GET", url, params2); } results2 = cm_submit_h_results(hctx, &results_length2); if (verbose > 0) { fprintf(stderr, "results = \"%s\"\n", cm_store_base64_from_bin(ctx, (const unsigned char *) results2, results_length2)); syslog(LOG_DEBUG, "%s", cm_store_base64_from_bin(ctx, (const unsigned char *) results2, results_length2)); } } /* Figure out what to output. */ if (cm_submit_h_result_code(hctx) != 0) { if (cm_submit_h_result_code_text(hctx) != NULL) { printf(_("Error %d connecting to %s: %s.\n"), cm_submit_h_result_code(hctx), url, cm_submit_h_result_code_text(hctx)); } else { printf(_("Error %d connecting to %s.\n"), cm_submit_h_result_code(hctx), url); } return CM_SUBMIT_STATUS_UNREACHABLE; } switch (op) { case op_unset: abort(); break; case op_get_ca_caps: case op_get_ca_certs: if (response_code != 200) { printf(_("Got response code %d from %s, not 200.\n"), response_code, url); if (response_code == 500) { /* The server might recover, right? */ return CM_SUBMIT_STATUS_UNREACHABLE; } else { /* Maybe not? */ return CM_SUBMIT_STATUS_REJECTED; } } if (results == NULL) { printf(_("Internal error: no response to \"%s?%s\".\n"), url, params); return CM_SUBMIT_STATUS_REJECTED; } break; case op_get_initial_cert: case op_pkcsreq: /* ignore an error status */ break; } switch (op) { case op_unset: abort(); /* never reached */ break; case op_get_ca_caps: if (results_length > 1024) { /* This is a guess at a reasonable maximum size for a * result that isn't just some random page being served * up at the location we queried. The spec says we * can't make any assumptions about the content-type, * so this is the best we can do to avoid trying to * parse a pile of HTML as a capabilities list. */ if (verbose > 0) { fprintf(stderr, "Result is surprisingly large, " "suppressing it.\n"); } return CM_SUBMIT_STATUS_REJECTED; } printf("%s\n", results); return CM_SUBMIT_STATUS_ISSUED; break; case op_get_ca_certs: if ((strcasecmp(content_type, "application/x-x509-ca-cert") != 0) && (strcasecmp(content_type, "application/x-x509-ca-ra-cert") != 0)) { printf(_("Server reply was of unexpected MIME type " "\"%s\".\n"), content_type); return CM_SUBMIT_STATUS_UNREACHABLE; } if (racert == NULL) { racertp = &racert; } else { racertp = &dracert; buffers = talloc_realloc(ctx, buffers, const unsigned char *, n_buffers + 1); lengths = talloc_realloc(ctx, lengths, size_t, n_buffers + 1); if ((buffers == NULL) || (lengths == NULL)) { fprintf(stderr, "Out of memory.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } buffers[n_buffers] = (unsigned char *) racert; lengths[n_buffers] = strlen(racert); n_buffers++; } if (cacert == NULL) { cacertp = &cacert; } else { cacertp = &dcacert; buffers = talloc_realloc(ctx, buffers, const unsigned char *, n_buffers + 1); lengths = talloc_realloc(ctx, lengths, size_t, n_buffers + 1); if ((buffers == NULL) || (lengths == NULL)) { fprintf(stderr, "Out of memory.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } buffers[n_buffers] = (unsigned char *) cacert; lengths[n_buffers] = strlen(cacert); n_buffers++; } if (results != NULL) { buffers = talloc_realloc(ctx, buffers, const unsigned char *, n_buffers + 1); lengths = talloc_realloc(ctx, lengths, size_t, n_buffers + 1); if ((buffers == NULL) || (lengths == NULL)) { fprintf(stderr, "Out of memory.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } buffers[n_buffers] = (unsigned char *) results; lengths[n_buffers] = results_length; n_buffers++; } if (results2 != NULL) { buffers = talloc_realloc(ctx, buffers, const unsigned char *, n_buffers + 1); lengths = talloc_realloc(ctx, lengths, size_t, n_buffers + 1); if ((buffers == NULL) || (lengths == NULL)) { fprintf(stderr, "Out of memory.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } buffers[n_buffers] = (unsigned char *) results2; lengths[n_buffers] = results_length2; n_buffers++; } i = 1; /* If the server handed us one certificate back, then maybe * it's Dogtag, which expects us to walk the list. */ while ((strcmp(id, "0") == 0) && (strcasecmp(content_type, "application/x-x509-ca-cert") == 0)) { if (i > 32) { if (verbose > 0) { fprintf(stderr, "Improbably long " "chain, or bug.\n"); } break; } if (verbose > 0) { fprintf(stderr, "Asking for cert for ID " "\"%d\".\n", i); } params = talloc_asprintf(ctx, "operation=" OP_GET_CA_CERT "&message=%d", i++); hctx = cm_submit_h_init(ctx, "GET", url, params, NULL, NULL, NULL, NULL, NULL, NULL, NULL, cm_submit_h_negotiate_off, cm_submit_h_delegate_off, cm_submit_h_clientauth_off, cm_submit_h_env_modify_off, verbose > 1 ? cm_submit_h_curl_verbose_on : cm_submit_h_curl_verbose_off); cm_submit_h_run(hctx); content_type2 = cm_submit_h_result_type(hctx); response_code2 = cm_submit_h_response_code(hctx); if (verbose > 0) { fprintf(stderr, "%s \"%s?%s\"\n", "GET", url, params2); fprintf(stderr, "response_code = %d\n", response_code2); fprintf(stderr, "content-type = \"%s\"\n", content_type2); fprintf(stderr, "code = %d\n", cm_submit_h_result_code(hctx)); fprintf(stderr, "code_text = \"%s\"\n", cm_submit_h_result_code_text(hctx)); syslog(LOG_DEBUG, "%s %s?%s\n", "GET", url, params2); } if (strcasecmp(content_type2, "application/x-x509-ca-cert") != 0) { if (verbose > 0) { fprintf(stderr, "Content is not " "\"application/x-x509-ca-cert\"" ", done.\n"); } break; } if (response_code2 != 200) { if (verbose > 0) { fprintf(stderr, "Response code " "is not 200, done.\n"); } break; } results2 = cm_submit_h_results(hctx, &results_length2); if (verbose > 0) { fprintf(stderr, "results = \"%s\"\n", results2); syslog(LOG_DEBUG, "%s", results2); } if (results_length2 <= 0) { if (verbose > 0) { fprintf(stderr, "Content is empty, " "done.\n"); } break; } for (j = 0; j < n_buffers; j++) { if ((results_length2 == (int) lengths[j]) && (memcmp(results2, buffers[j], lengths[j]) == 0)) { if (verbose > 0) { fprintf(stderr, "Content is " "a duplicate, done.\n"); } break; } } if (j < n_buffers) { break; } buffers = talloc_realloc(ctx, buffers, const unsigned char *, n_buffers + 1); lengths = talloc_realloc(ctx, lengths, size_t, n_buffers + 1); if ((buffers == NULL) || (lengths == NULL)) { fprintf(stderr, "Out of memory.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } buffers[n_buffers] = (unsigned char *) results2; lengths[n_buffers] = results_length2; n_buffers++; } if (cm_pkcs7_parsev(CM_PKCS7_LEAF_PREFER_ENCRYPT, ctx, racertp, cacertp, &othercerts, NULL, NULL, n_buffers, buffers, lengths) == 0) { if (racert != NULL) { printf("%s", racert); if (cacert != NULL) { printf("%s", cacert); if (othercerts != NULL) { for (c = 0; othercerts[c] != NULL; c++) { printf("%s", othercerts[c]); } } if ((dracert != NULL) && (cert_among(dracert, racert, cacert, othercerts) != 0)) { printf("%s", dracert); } if ((dcacert != NULL) && (cert_among(dcacert, racert, cacert, othercerts) != 0)) { printf("%s", dcacert); } } } talloc_free(ctx); return CM_SUBMIT_STATUS_ISSUED; } else { talloc_free(ctx); return CM_SUBMIT_STATUS_UNREACHABLE; } break; case op_get_initial_cert: case op_pkcsreq: if (strcasecmp(content_type2, "application/x-pki-message") == 0) { memset(&cacerts, 0, sizeof(cacerts)); cacerts[0] = cacert ? cacert : racert; cacerts[1] = cacert ? racert : NULL; cacerts[2] = NULL; racerts = NULL; if ((certs != NULL) && (cm_pkcs7_parse(0, ctx, &cert1, &cert2, &othercerts, NULL, NULL, (const unsigned char *) certs, strlen(certs), NULL) == 0)) { for (c = 0; (othercerts != NULL) && (othercerts[c] != NULL); c++) { continue; } racerts = talloc_array_ptrtype(ctx, racerts, c + 5); for (c = 0; (othercerts != NULL) && (othercerts[c] != NULL); c++) { racerts[c] = othercerts[c]; } if (cacert != NULL) { racerts[c++] = cacert; } if (cert1 != NULL) { racerts[c++] = cert1; } if (cert2 != NULL) { racerts[c++] = cert2; } if (racert != NULL) { racerts[c++] = racert; } racerts[c++] = NULL; } ERR_clear_error(); i = cm_pkcs7_verify_signed((unsigned char *) results2, results_length2, cacerts, racerts, NID_pkcs7_data, ctx, NULL, &tx, &msgtype, &pkistatus, &failinfo, &sender_nonce, &sender_nonce_length, &recipient_nonce, &recipient_nonce_length, &payload, &payload_length); if (i != 0) { printf(_("Error: failed to verify signature on " "server response.\n")); while ((error = ERR_get_error()) != 0) { memset(buf, '\0', sizeof(buf)); ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } s = cm_store_base64_from_bin(ctx, (unsigned char *) results, results_length); s = cm_submit_u_pem_from_base64("PKCS7", 0, s); fprintf(stderr, "%s", s); free(s); return CM_SUBMIT_STATUS_UNREACHABLE; } if ((msgtype == NULL) || (strcmp(msgtype, SCEP_MSGTYPE_CERTREP) != 0)) { printf(_("Error: reply was not a CertRep (%s).\n"), msgtype ? msgtype : "none"); return CM_SUBMIT_STATUS_UNREACHABLE; } if (tx == NULL) { printf(_("Error: reply is missing transactionId.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } if (sent_tx != NULL) { if (strcmp(sent_tx, tx) != 0) { printf(_("Error: reply contains a " "different transactionId.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } } if (pkistatus == NULL) { printf(_("Error: reply is missing pkiStatus.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } if (recipient_nonce == NULL) { printf(_("Error: reply is missing recipientNonce.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } if ((recipient_nonce_length != sent_nonce_length) || (memcmp(recipient_nonce, sent_nonce, sent_nonce_length) != 0)) { printf(_("Error: reply nonce doesn't match request.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } if (sender_nonce == NULL) { printf(_("Error: reply is missing senderNonce.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } if (strcmp(pkistatus, SCEP_PKISTATUS_PENDING) == 0) { s = cm_store_base64_from_bin(ctx, sender_nonce, sender_nonce_length); printf("%s\n", s); return CM_SUBMIT_STATUS_WAIT; } else if (strcmp(pkistatus, SCEP_PKISTATUS_FAILURE) == 0) { if (failinfo == NULL) { printf(_("Unspecified failure at server.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_BAD_ALG) == 0) { printf(_("Unrecognized or unsupported algorithm identifier in client request.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_BAD_MESSAGE_CHECK) == 0) { printf(_("Integrity check of client request failed at server.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_BAD_REQUEST) == 0) { printf(_("Transaction either is not permitted or is not supported by server.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_BAD_TIME) == 0) { printf(_("Clock skew too great.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_UNSUPPORTED_EXT) == 0) { printf(_("Unsupported extension.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_MUST_ARCHIVE_KEYS) == 0) { printf(_("Must archive keys.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_BAD_IDENTITY) == 0) { printf(_("Bad identity.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_POP_REQUIRED) == 0) { printf(_("Proof of possession required.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_POP_FAILED) == 0) { printf(_("Proof of possession failed.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_NO_KEY_REUSE) == 0) { printf(_("No key reuse.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_INTERNAL_CA_ERROR) == 0) { printf(_("Internal CA error.\n")); } else if (strcmp(failinfo, SCEP_FAILINFO_TRY_LATER) == 0) { printf(_("Try later.\n")); } else { printf(_("Server returned failure code \"%s\".\n"), failinfo); } return CM_SUBMIT_STATUS_REJECTED; } else if (strcmp(pkistatus, SCEP_PKISTATUS_SUCCESS) == 0) { u = payload; p7 = d2i_PKCS7(NULL, &u, payload_length); if (p7 == NULL) { printf(_("Error: couldn't parse signed-data.\n")); while ((error = ERR_get_error()) != 0) { memset(buf, '\0', sizeof(buf)); ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } s = cm_store_base64_from_bin(ctx, (unsigned char *) results2, results_length2); s = cm_submit_u_pem_from_base64("PKCS7", 0, s); fprintf(stderr, "Full reply:\n%s", s); free(s); return CM_SUBMIT_STATUS_UNREACHABLE; } if (!PKCS7_type_is_enveloped(p7)) { printf(_("Error: signed-data payload is not enveloped-data.\n")); while ((error = ERR_get_error()) != 0) { memset(buf, '\0', sizeof(buf)); ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } s = cm_store_base64_from_bin(ctx, (unsigned char *) results2, results_length2); s = cm_submit_u_pem_from_base64("PKCS7", 0, s); fprintf(stderr, "Full reply:\n%s", s); free(s); return CM_SUBMIT_STATUS_UNREACHABLE; } if (!PKCS7_type_is_enveloped(p7)) { printf(_("Error: signed-data payload is not enveloped-data.\n")); while ((error = ERR_get_error()) != 0) { memset(buf, '\0', sizeof(buf)); ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } s = cm_store_base64_from_bin(ctx, (unsigned char *) results2, results_length2); s = cm_submit_u_pem_from_base64("PKCS7", 0, s); fprintf(stderr, "Full reply:\n%s", s); free(s); return CM_SUBMIT_STATUS_UNREACHABLE; } if ((p7->d.enveloped == NULL) || (p7->d.enveloped->enc_data == NULL) || (p7->d.enveloped->enc_data->content_type == NULL) || (OBJ_obj2nid(p7->d.enveloped->enc_data->content_type) != NID_pkcs7_data)) { printf(_("Error: enveloped-data payload is not data.\n")); while ((error = ERR_get_error()) != 0) { memset(buf, '\0', sizeof(buf)); ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } s = cm_store_base64_from_bin(ctx, (unsigned char *) results2, results_length2); s = cm_submit_u_pem_from_base64("PKCS7", 0, s); fprintf(stderr, "Full reply:\n%s", s); free(s); return CM_SUBMIT_STATUS_UNREACHABLE; } s = cm_store_base64_from_bin(ctx, payload, payload_length); s = cm_submit_u_pem_from_base64("PKCS7", 0, s); printf("%s", s); free(s); return CM_SUBMIT_STATUS_ISSUED; } else { printf(_("Error: pkiStatus \"%s\" not recognized.\n"), pkistatus); return CM_SUBMIT_STATUS_UNREACHABLE; } } else { printf(_("Server reply was of unexpected MIME type " "\"%s\".\n"), content_type); printf("Full reply:\n%.*s", results_length2, results2); return CM_SUBMIT_STATUS_UNREACHABLE; } break; } return CM_SUBMIT_STATUS_UNCONFIGURED; } certmonger-0.78.6/src/nl-check.c0000664000175000017500000001074112645513264013336 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include "netlink.h" #if !defined(HAVE_LINUX_NETLINK_H) || !defined(HAVE_LINUX_RTNETLINK_H) int main(int argc, char **argv) { printf("Netlink support not built.\n"); return 1; } #else #include #include static void dump_rta(struct rtattr *buf, int len) { struct rtattr *rta; for (rta = buf; RTA_OK(rta, len); rta = RTA_NEXT(rta, len)) { switch (rta->rta_type) { default: printf(" Got an unknown attribute of length %ld.\n", (long) RTA_PAYLOAD(rta)); break; } } printf(" %d leftover attribute bytes.\n", len); } static void dump_nlmsg(unsigned char *buf, int len, struct sockaddr_nl *nlmsgsrc) { struct nlmsghdr *nlmsg; struct rtmsg *rtm; for (nlmsg = (struct nlmsghdr *) buf; (len > 0) && NLMSG_OK(nlmsg, (unsigned int) len); nlmsg = NLMSG_NEXT(nlmsg, len)) { printf("Got a full message with payload length %ld from %ld.\n", (long) NLMSG_PAYLOAD(nlmsg, 0), (long) nlmsgsrc->nl_pid); rtm = NLMSG_DATA(nlmsg); switch (nlmsg->nlmsg_type) { case RTM_NEWLINK: printf(" Got a new-link message.\n"); break; case RTM_DELLINK: printf(" Got a del-link message.\n"); break; case RTM_GETLINK: printf(" Got a get-link message.\n"); break; case RTM_SETLINK: printf(" Got a set-link message.\n"); break; case RTM_NEWADDR: printf(" Got a new-addr message.\n"); break; case RTM_DELADDR: printf(" Got a del-addr message.\n"); break; case RTM_GETADDR: printf(" Got a get-addr message.\n"); break; case RTM_NEWROUTE: printf(" Got a new-route message.\n"); break; case RTM_DELROUTE: printf(" Got a del-route message.\n"); break; case RTM_GETROUTE: printf(" Got a get-route message.\n"); break; case RTM_NEWNEIGH: printf(" Got a new-neighbor message.\n"); break; case RTM_DELNEIGH: printf(" Got a del-neighbor message.\n"); break; case RTM_GETNEIGH: printf(" Got a get-neighbor message.\n"); break; case RTM_NEWRULE: printf(" Got a new-rule message.\n"); break; case RTM_DELRULE: printf(" Got a del-rule message.\n"); break; case RTM_GETRULE: printf(" Got a get-rule message.\n"); break; default: printf(" Got an unknown message %d.\n", rtm->rtm_type); rtm = NULL; break; } if (rtm != NULL) { switch (rtm->rtm_family) { case AF_INET: printf(" IPv4.\n"); break; case AF_INET6: printf(" IPv6.\n"); break; default: printf(" family %d.\n", rtm->rtm_family); break; } dump_rta(RTM_RTA(nlmsg), RTM_PAYLOAD(nlmsg)); } } printf("%d leftover message bytes.\n", len); } int main(int argc, char **argv) { fd_set fds; int nl, len, err; unsigned char buf[0x10000]; struct sockaddr_nl nlmsgsrc; socklen_t nlmsgsrclen; nl = cm_netlink_socket(); if (nl == -1) { printf("Error creating socket.\n"); return 1; } printf("Waiting for data.\n"); for (;;) { FD_ZERO(&fds); FD_SET(nl, &fds); select(nl + 1, &fds, NULL, NULL, NULL); memset(&nlmsgsrc, 0, sizeof(nlmsgsrc)); nlmsgsrclen = sizeof(nlmsgsrc); len = recvfrom(nl, buf, sizeof(buf), 0, (struct sockaddr *) &nlmsgsrc, &nlmsgsrclen); switch (len) { case 0: printf("EOF\n"); return 0; break; case -1: err = errno; printf("Error %s\n", strerror(errno)); return err; break; } if (nlmsgsrclen != sizeof(struct sockaddr_nl)) { /* The heck? */ printf("Sender did not have a netlink address-sized " "address?\n"); return -1; } if (nlmsgsrc.nl_family != AF_NETLINK) { /* The heck? */ printf("Sender did not have a netlink address?\n"); return -1; } printf("Received %d bytes.\n", len); dump_nlmsg(buf, len, &nlmsgsrc); } return 0; } #endif certmonger-0.78.6/src/local.c0000664000175000017500000004242012645513264012743 00000000000000/* * Copyright (C) 2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "env.h" #include "log.h" #include "prefs.h" #include "prefs-o.h" #include "store.h" #include "submit-e.h" #include "submit-o.h" #include "submit-u.h" #include "util.h" #include "util-o.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif #define CONSTANTCN "Local Signing Authority" static unsigned char uuid[16]; static void set_ca_extensions(void *parent, X509_REQ *req, EVP_PKEY *key) { STACK_OF(X509_EXTENSION) *exts; BASIC_CONSTRAINTS basic; AUTHORITY_KEYID akid; ASN1_OCTET_STRING *skid; ASN1_BIT_STRING *ku; unsigned char *p, *q, md[CM_DIGEST_MAX]; unsigned int mdlen; long len; exts = sk_X509_EXTENSION_new(NULL); memset(&basic, 0, sizeof(basic)); basic.ca = 1; X509V3_add1_i2d(&exts, NID_basic_constraints, &basic, TRUE, 0); len = i2d_PUBKEY(key, NULL); p = malloc(len); q = p; len = i2d_PUBKEY(key, &q); if (EVP_Digest(p, len, md, &mdlen, EVP_sha1(), NULL)) { skid = M_ASN1_OCTET_STRING_new(); M_ASN1_OCTET_STRING_set(skid, md, mdlen); memset(&akid, 0, sizeof(akid)); akid.keyid = skid; X509V3_add1_i2d(&exts, NID_subject_key_identifier, skid, 0, 0); X509V3_add1_i2d(&exts, NID_authority_key_identifier, &akid, 0, 0); } ku = M_ASN1_BIT_STRING_new(); ASN1_BIT_STRING_set_bit(ku, 0, 1); ASN1_BIT_STRING_set_bit(ku, 5, 1); ASN1_BIT_STRING_set_bit(ku, 6, 1); X509V3_add1_i2d(&exts, NID_key_usage, ku, TRUE, 0); X509_REQ_add_extensions(req, exts); } static char * make_ca_csr(void *parent, EVP_PKEY *key, X509 *oldcert) { X509_REQ *req; X509_NAME *subject; BIO *bio; char *cn, *ret = NULL; unsigned char *bmp; unsigned int bmplen; long len; req = X509_REQ_new(); if (req != NULL) { if ((oldcert != NULL) && (oldcert->cert_info->subject != NULL)) { X509_REQ_set_subject_name(req, oldcert->cert_info->subject); } else { subject = X509_NAME_new(); if (subject != NULL) { X509_NAME_add_entry_by_txt(subject, "CN", MBSTRING_UTF8, (unsigned char *) CONSTANTCN, strlen(CONSTANTCN), -1, 0); cn = talloc_asprintf(parent, "%.02x%.02x%.02x%.02x-" "%.02x%.02x%.02x%.02x-" "%.02x%.02x%.02x%.02x-" "%.02x%.02x%.02x%.02x", (unsigned char) uuid[0], (unsigned char) uuid[1], (unsigned char) uuid[2], (unsigned char) uuid[3], (unsigned char) uuid[4], (unsigned char) uuid[5], (unsigned char) uuid[6], (unsigned char) uuid[7], (unsigned char) uuid[8], (unsigned char) uuid[9], (unsigned char) uuid[10], (unsigned char) uuid[11], (unsigned char) uuid[12], (unsigned char) uuid[13], (unsigned char) uuid[14], (unsigned char) uuid[15]); X509_NAME_add_entry_by_txt(subject, "CN", MBSTRING_UTF8, (unsigned char *) cn, strlen(cn), -1, 0); X509_REQ_set_subject_name(req, subject); } } X509_REQ_set_pubkey(req, key); set_ca_extensions(parent, req, key); if (cm_store_utf8_to_bmp_string(CONSTANTCN, &bmp, &bmplen) == 0) { X509_REQ_add1_attr_by_NID(req, NID_friendlyName, V_ASN1_BMPSTRING, bmp, bmplen); free(bmp); } X509_REQ_sign(req, key, cm_prefs_ossl_hash()); bio = BIO_new(BIO_s_mem()); if (PEM_write_bio_X509_REQ(bio, req)) { len = BIO_get_mem_data(bio, &ret); if (ret != NULL) { ret = talloc_strndup(parent, ret, len); cm_log(3, "New CA signing request \"%s\".\n", ret); } } else { cm_log(1, "Error encoding CA signing request.\n"); } } return ret; } static int get_signer_info(void *parent, char *localdir, X509 ***roots, X509 **signer_cert, EVP_PKEY **signer_key) { FILE *fp; char *creds, *hexserial = NULL, *serial, buf[LINE_MAX], *csr; STACK_OF(X509) *cas = NULL; PKCS12 *p12 = NULL; BIGNUM *exponent = NULL; RSA *rsa; dbus_bool_t save = FALSE; time_t now, then, life, lifedelta; int i; *roots = NULL; *signer_cert = NULL; *signer_key = NULL; /* Read our signer creds. */ creds = talloc_asprintf(parent, "%s/%s", localdir, "creds"); fp = fopen(creds, "r"); if ((fp == NULL) && (errno != ENOENT)) { cm_log(1, "Error reading '%s': %s.\n", creds, strerror(errno)); return CM_SUBMIT_STATUS_UNREACHABLE; } if (fp != NULL) { p12 = d2i_PKCS12_fp(fp, NULL); if (p12 == NULL) { cm_log(0, "Bad data in '%s'.\n", creds); } fclose(fp); } else { p12 = NULL; save = TRUE; } if ((p12 != NULL) && !PKCS12_parse(p12, "", signer_key, signer_cert, &cas)) { cm_log(1, "Trouble parsing signer data.\n"); save = TRUE; } /* Read the desired lifetime. */ now = time(NULL); if (cm_submit_u_delta_from_string(cm_prefs_local_validity_period(), now, &lifedelta) == 0) { life = lifedelta; } else { if (cm_submit_u_delta_from_string(CM_DEFAULT_CERT_LIFETIME, now, &lifedelta) == 0) { life = lifedelta; } else { life = 365 * 24 * 60 * 60; } } /* If we already have a signer certificate, check how much time it has * left. */ if (*signer_cert != NULL) { if (cas == NULL) { cas = sk_X509_new(X509_cmp); if (cas == NULL) { cm_log(1, "Out of memory.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } } then = now + (life / 2); if ((X509_cmp_time(X509_get_notBefore(*signer_cert), &now) > 0) || (X509_cmp_time(X509_get_notAfter(*signer_cert), &then) < 0)) { cm_log(1, "CA certificate needs to be replaced.\n"); sk_X509_push(cas, *signer_cert); *signer_key = NULL; } } else { cm_log(1, "CA certificate needs to be generated.\n"); } /* If we need to generate or replace either, do both. */ if ((*signer_key == NULL) || (*signer_cert == NULL)) { /* Read the next-to-be-used serial number. */ serial = talloc_asprintf(parent, "%s/%s", localdir, "/serial"); fp = fopen(serial, "r"); if ((fp == NULL) && (errno != ENOENT)) { cm_log(1, "Error reading '%s': %s.\n", serial, strerror(errno)); return CM_SUBMIT_STATUS_UNREACHABLE; } if (fp != NULL) { if (fgets(buf, sizeof(buf), fp) == NULL) { cm_log(0, "Bad data in '%s'.\n", serial); } else { buf[strcspn(buf, "\r\n")] = '\0'; hexserial = talloc_strdup(parent, buf); cm_log(1, "Read serial number '%s'.\n", hexserial); } fclose(fp); } if (hexserial == NULL) { hexserial = cm_store_hex_from_bin(parent, uuid, sizeof(uuid)); if (strchr("89abcdefABCDEF", hexserial[0]) != NULL) { hexserial = talloc_asprintf(parent, "00%s", hexserial); } cm_log(3, "Using serial number '%s'.\n", hexserial); } /* Generate a new key. For now at least, generate RSA of the * default size with the default exponent. */ exponent = BN_new(); if (exponent == NULL) { cm_log(1, "Error setting up exponent.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } BN_set_word(exponent, CM_DEFAULT_RSA_EXPONENT); rsa = RSA_new(); if (rsa == NULL) { cm_log(1, "Error allocating new RSA key.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } retry_gen: if (RSA_generate_key_ex(rsa, CM_DEFAULT_PUBKEY_SIZE, exponent, NULL) != 1) { cm_log(1, "Error generating key.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } if (RSA_check_key(rsa) != 1) { /* should be unnecessary */ cm_log(1, "Key fails checks. Retrying.\n"); goto retry_gen; } *signer_key = EVP_PKEY_new(); EVP_PKEY_set1_RSA(*signer_key, rsa); /* Build a suitable CA signing request. */ csr = make_ca_csr(parent, *signer_key, *signer_cert); if (csr == NULL) { cm_log(1, "Error generating CA signing request.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } /* Sign it. */ if (cm_submit_o_sign(parent, csr, NULL, *signer_key, hexserial, time(NULL), life, signer_cert) == 0) { save = TRUE; } else { *signer_key = NULL; *signer_cert = NULL; save = FALSE; } } /* Save our signer creds. */ if (save) { /* Roll the serial number up. */ hexserial = cm_store_increment_serial(parent, hexserial); if (hexserial == NULL) { cm_log(1, "Error incrementing '%s'.\n", hexserial); return CM_SUBMIT_STATUS_UNREACHABLE; } /* Save the next serial number. */ serial = talloc_asprintf(parent, "%s/%s", localdir, "/serial"); fp = fopen(serial, "w"); if (fp == NULL) { cm_log(1, "Error writing '%s': %s.\n", serial, strerror(errno)); return CM_SUBMIT_STATUS_UNREACHABLE; } fprintf(fp, "%s\n", hexserial); if (ferror(fp)) { cm_log(1, "Error writing '%s': %s.\n", serial, strerror(errno)); fclose(fp); return CM_SUBMIT_STATUS_UNREACHABLE; } fclose(fp); cm_log(3, "Wrote serial number '%s'.\n", hexserial); /* Save the new creds. */ fp = fopen(creds, "w"); if (fp == NULL) { cm_log(1, "Error preparing to write '%s': %s.\n", creds, strerror(errno)); return CM_SUBMIT_STATUS_UNREACHABLE; } p12 = PKCS12_create(NULL, CONSTANTCN, *signer_key, *signer_cert, cas, 0, 0, 0, 0, 0); if (p12 != NULL) { if (!i2d_PKCS12_fp(fp, p12)) { fclose(fp); cm_log(1, "Error writing PKCS12 bundle'.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } } else { cm_log(1, "Error creating PKCS12 bundle'.\n"); } fclose(fp); } if (cas != NULL) { *roots = talloc_array_ptrtype(parent, *roots, sk_X509_num(cas) + 1); if (*roots != NULL) { for (i = 0; i < sk_X509_num(cas); i++) { (*roots)[i] = sk_X509_value(cas, i); } (*roots)[i] = NULL; } } return CM_SUBMIT_STATUS_ISSUED; } static int local_lock(void *parent, const char *localdir) { char *lockfile; int lfd; lockfile = talloc_asprintf(parent, "%s/lock", localdir); cm_log(2, "Obtaining data lock.\n"); lfd = open(lockfile, O_RDWR | O_CREAT, S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH); if (lfd == -1) { fprintf(stderr, "Error opening lockfile \"%s\": %s\n", lockfile, strerror(errno)); exit(CM_SUBMIT_STATUS_UNREACHABLE); } if (lockf(lfd, F_LOCK, 0) != 0) { fprintf(stderr, "Error locking lockfile \"%s\": %s\n", lockfile, strerror(errno)); close(lfd); exit(CM_SUBMIT_STATUS_UNREACHABLE); } return lfd; } int main(int argc, const char **argv) { int i, c, verbose = 0, lfd = -1; void *parent; const char *mode = CM_OP_SUBMIT, *csrfile; char *csr, *localdir = NULL, *hexserial = NULL, *serial, buf[LINE_MAX]; FILE *fp; X509 **roots = NULL, *signer = NULL, *cert = NULL; EVP_PKEY *key = NULL; time_t now; poptContext pctx; const struct poptOption popts[] = { {"ca-data-directory", 'd', POPT_ARG_STRING | POPT_ARGFLAG_SHOW_DEFAULT, &localdir, 0, "storage location for the CA's data", "DIRECTORY"}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; #ifdef ENABLE_NLS bindtextdomain(PACKAGE, MYLOCALEDIR); #endif if (getenv(CM_SUBMIT_OPERATION_ENV) != NULL) { mode = getenv(CM_SUBMIT_OPERATION_ENV); } if (strcasecmp(mode, CM_OP_IDENTIFY) == 0) { printf("%s (%s %s)\n", CONSTANTCN, PACKAGE_NAME, PACKAGE_VERSION); return 0; } else if (strcasecmp(mode, CM_OP_FETCH_ENROLL_REQUIREMENTS) == 0) { return 0; } else if (strcasecmp(mode, CM_OP_FETCH_ROOTS) == 0) { /* fall through */ } else if ((strcasecmp(mode, CM_OP_SUBMIT) == 0) || (strcasecmp(mode, CM_OP_POLL) == 0)) { /* fall through */ } else { /* unsupported request */ return CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } localdir = getenv(CM_STORE_LOCAL_CA_DIRECTORY_ENV); if (localdir == NULL) { localdir = cm_env_local_ca_dir(); } pctx = poptGetContext(argv[0], argc, argv, popts, 0); if (pctx == NULL) { return CM_SUBMIT_STATUS_UNCONFIGURED; } poptSetOtherOptionHelp(pctx, "[options...] [csrfile]"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'v': verbose++; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } umask(S_IRWXG | S_IRWXO); cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); if (localdir == NULL) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } csr = NULL; parent = talloc_init(CONSTANTCN); util_o_init(); #ifdef HAVE_UUID if (cm_submit_uuid_new(uuid) == 0) { /* we're good */ } else #endif if (!RAND_pseudo_bytes(uuid, sizeof(uuid))) { /* Try again sometime later. */ cm_log(1, "Error generating UUID.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } if (strcasecmp(mode, CM_OP_FETCH_ROOTS) == 0) { /* Take the lock. */ lfd = local_lock(parent, localdir); /* Read the signer information. */ i = get_signer_info(parent, localdir, &roots, &signer, &key); if ((i != 0) || (signer == NULL)) { cm_log(1, "Error reading signer info.\n"); /* Try again sometime later. */ return i ? i : CM_SUBMIT_STATUS_UNREACHABLE; } printf("%s\n", CONSTANTCN); if (!PEM_write_X509(stdout, signer)) { /* Well, try again sometime later. */ cm_log(1, "Error outputting certificate.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } for (i = 0; (roots != NULL) && (roots[i] != NULL); i++) { printf("%s %d\n", CONSTANTCN, i + 2); if (!PEM_write_X509(stdout, roots[i])) { /* Well, try again sometime later. */ cm_log(1, "Error outputting certificate.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } } /* All done. */ close(lfd); return CM_SUBMIT_STATUS_ISSUED; } else if ((strcasecmp(mode, CM_OP_SUBMIT) == 0) || (strcasecmp(mode, CM_OP_POLL) == 0)) { /* Read the CSR from the environment, or from the file named on * the command-line. */ csrfile = poptGetArg(pctx); if (csrfile != NULL) { csr = cm_submit_u_from_file(csrfile); } else { csr = getenv(CM_SUBMIT_CSR_ENV); if (csr != NULL) { csr = strdup(csr); } } if ((csr == NULL) || (strlen(csr) == 0)) { printf(_("Unable to read signing request.\n")); cm_log(1, "Unable to read signing request.\n"); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Take the lock. */ lfd = local_lock(parent, localdir); /* Read in the signer information. */ i = get_signer_info(parent, localdir, &roots, &signer, &key); if ((i != 0) || (signer == NULL)) { cm_log(1, "Error reading signer info.\n"); /* Try again sometime later. */ return CM_SUBMIT_STATUS_UNREACHABLE; } /* Read the next-to-be-used serial number. */ serial = talloc_asprintf(parent, "%s/%s", localdir, "/serial"); fp = fopen(serial, "r"); if ((fp == NULL) && (errno != ENOENT)) { cm_log(1, "Error reading '%s': %s.\n", serial, strerror(errno)); return CM_SUBMIT_STATUS_UNREACHABLE; } if (fp != NULL) { if (fgets(buf, sizeof(buf), fp) == NULL) { fclose(fp); return CM_SUBMIT_STATUS_UNREACHABLE; } buf[strcspn(buf, "\r\n")] = '\0'; hexserial = talloc_strdup(parent, buf); cm_log(3, "Read serial number '%s'.\n", hexserial); } if (hexserial == NULL) { hexserial = cm_store_hex_from_bin(parent, uuid, sizeof(uuid)); if (strchr("89abcdefABCDEF", hexserial[0]) != NULL) { hexserial = talloc_asprintf(parent, "00%s", hexserial); } cm_log(3, "Using serial number '%s'.\n", hexserial); } now = time(NULL); /* Actually sign the request. */ i = cm_submit_o_sign(parent, csr, signer, key, hexserial, now, 0, &cert); if ((i == 0) && (cert != NULL)) { /* Roll the serial number up. */ hexserial = cm_store_increment_serial(parent, hexserial); if (hexserial == NULL) { cm_log(1, "Error incrementing '%s'.\n", hexserial); return CM_SUBMIT_STATUS_UNREACHABLE; } /* Save the next serial number. */ fp = fopen(serial, "w"); if (fp == NULL) { cm_log(1, "Error writing '%s': %s.\n", serial, strerror(errno)); return CM_SUBMIT_STATUS_UNREACHABLE; } fprintf(fp, "%s\n", hexserial); if (ferror(fp)) { cm_log(1, "Error writing '%s': %s.\n", serial, strerror(errno)); fclose(fp); return CM_SUBMIT_STATUS_UNREACHABLE; } fclose(fp); cm_log(3, "Wrote serial number '%s'.\n", hexserial); /* Okay, now provide the certificate. */ if (!PEM_write_X509(stdout, cert)) { cm_log(1, "Error outputting certificate: %s.\n", strerror(errno)); /* Well, try again sometime later. */ return CM_SUBMIT_STATUS_UNREACHABLE; } } close(lfd); return i; } return CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } certmonger-0.78.6/src/local-getcert.c0000664000175000017500000000011312645513264014367 00000000000000#include "config.h" #define FORCE_CA CM_LOCAL_CA_NAME #include "getcert.c" certmonger-0.78.6/src/srvloc.h0000664000175000017500000000167312645513264013173 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsrvloc_h #define cmsrvloc_h struct cm_srvloc { char *host; uint16_t port; int priority, weight; struct cm_srvloc *next; }; int cm_srvloc_resolve(void *parent, const char *service, const char *domain, struct cm_srvloc **results); #endif certmonger-0.78.6/src/srvloc.c0000664000175000017500000001160312645513264013160 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #ifdef CM_USE_IDN #include #endif #ifdef HAVE_OPENSSL #include #endif #ifdef HAVE_GMP #include #endif #include #include "srvloc.h" #ifdef NS_MAXMSG #define CM_MAXMSG NS_MAXMSG #else #define CM_MAXMSG 65535 #endif #ifndef HAVE_NS_INITPARSE int cm_srvloc_resolve(void *parent, const char *name, const char *domain, struct cm_srvloc **results) { return -1; } #else static int cm_srvloc_priority_sort(const void *a, const void *b) { const struct cm_srvloc *sa, *sb; sa = a; sb = b; return sa->priority - sb->priority; } static int cm_srvloc_weight_sort(const void *a, const void *b) { const struct cm_srvloc *sa, *sb; sa = a; sb = b; return sa->weight - sb->weight; } #ifdef HAVE_OPENSSL static unsigned int cm_srvloc_rand(unsigned int range) { long long r; if (RAND_status() != 1) { return 0; } if (RAND_pseudo_bytes((unsigned char *) &r, sizeof(r)) == -1) { return 0; } if (r < 0) { r = -r; } return r % range; } #else #ifdef HAVE_GMP static unsigned int cm_srvloc_rand(unsigned int range) { static gmp_randstate_t state; static int initialized = 0; if (initialized == 0) { gmp_randinit_default(state); initialized++; } return gmp_urandomm_ui(state, range); } #else static unsigned int cm_srvloc_rand(unsigned int range) { return 0; } #endif #endif static void cm_srvloc_weigh(struct cm_srvloc *res, int n) { int i, j, k, tweight; struct cm_srvloc tmp; long long r; qsort(res, n, sizeof(res[0]), cm_srvloc_weight_sort); for (i = 0; res[i].weight == 0; i++) { continue; } if (i == n) { return; } for (j = i; j < n - 1; j++) { tweight = 0; for (k = j; k < n; k++) { tweight += res[k].weight; } r = cm_srvloc_rand(tweight); tweight = 0; for (k = j; k < n; k++) { tweight += res[k].weight; if (tweight > r) { break; } } if (k >= n) { continue; } memcpy(&tmp, &res[j], sizeof(tmp)); memcpy(&res[j], &res[k], sizeof(tmp)); memcpy(&res[k], &tmp, sizeof(tmp)); } } int cm_srvloc_resolve(void *parent, const char *name, const char *udomain, struct cm_srvloc **results) { int i, j, n, hi, weights; unsigned char *answer; char *domain; size_t answer_len = CM_MAXMSG; struct cm_srvloc *res = NULL; ns_msg msg; ns_rr rr; *results = NULL; res_init(); answer = talloc_zero_size(parent, answer_len + 1); if (answer == NULL) { return -1; } #ifdef CM_USE_IDN if (idna_to_ascii_lz(udomain, &domain, 0) != IDNA_SUCCESS) { domain = strdup(udomain); } #else domain = strdup(udomain); #endif i = res_querydomain(name, domain, C_IN, T_SRV, answer, answer_len); if (i == -1) { return -1; } answer_len = i; memset(&msg, 0, sizeof(msg)); if (ns_initparse(answer, answer_len, &msg) != 0) { return -1; } memset(&rr, 0, sizeof(rr)); for (i = 0; ns_parserr(&msg, ns_s_an, i, &rr) == 0; i++) { continue; } if (i == 0) { return -1; } n = i; res = talloc_array_ptrtype(parent, res, i); if (res == NULL) { return -1; } memset(res, 0, sizeof(*res) * i); for (i = 0, j = 0; i < n; i++) { if (ns_parserr(&msg, ns_s_an, i, &rr) != 0) { continue; } if (rr.rdlength < 6) { continue; } res[j].host = talloc_size(res, answer_len + 1); if (res[j].host == NULL) { return -1; } res[j].priority = ntohs(*(uint16_t *)rr.rdata); res[j].weight = ntohs(*(uint16_t *)(rr.rdata + 2)); res[j].port = ntohs(*(uint16_t *)(rr.rdata + 4)); memcpy(res[j].host, rr.rdata + 6, rr.rdlength - 6); if (ns_name_ntop(rr.rdata + 6, res[j].host, answer_len) == -1) { continue; } res[j].host[answer_len] = '\0'; j++; } n = j; qsort(res, n, sizeof(res[0]), cm_srvloc_priority_sort); i = 0; while (i < n) { weights = res[i].weight; for (hi = i + 1; (hi < n) && (res[hi].priority == res[i].priority); hi++) { weights += res[hi].weight; } cm_srvloc_weigh(res + i, hi - i); i = hi; if (weights == 0) { continue; } } talloc_free(answer); for (i = 0; i < n - 1; i++) { res[i].next = &res[i + 1]; } *results = res; return 0; } #endif certmonger-0.78.6/src/ipa.c0000664000175000017500000005671312645513264012434 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "srvloc.h" #include "store.h" #include "submit-e.h" #include "submit-u.h" #include "submit-x.h" #include "util.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif static int interact(LDAP *ld, unsigned flags, void *defaults, void *sasl_interact) { return 0; } /* Connect and authenticate to a specific directory server. */ static LDAP * cm_open_ldap(const char *uri) { LDAP *ld; int rc, three; const char *ldefaults[] = {"meh"}; ld = NULL; rc = ldap_initialize(&ld, uri); if (rc != LDAP_SUCCESS) { fprintf(stderr, "Error initializing \"%s\": %s.\n", uri, ldap_err2string(rc)); return NULL; } three = 3; rc = ldap_set_option(ld, LDAP_OPT_PROTOCOL_VERSION, &three); if (rc != LDAP_SUCCESS) { fprintf(stderr, "Error initializing \"%s\": %s.\n", uri, ldap_err2string(rc)); return NULL; } rc = ldap_sasl_interactive_bind_s(ld, NULL, "GSSAPI", NULL, NULL, LDAP_SASL_QUIET, &interact, ldefaults); if (rc != LDAP_SUCCESS) { fprintf(stderr, "Error binding to \"%s\": %s.\n", uri, ldap_err2string(rc)); return NULL; } return ld; } /* Connect and authenticate to the domain's directory server. */ static int cm_open_any_ldap(const char *server, int ldap_uri_cmd, const char *ldap_uri, const char *host, const char *domain, char *uri, size_t uri_len, LDAP **ld) { struct cm_srvloc *srvlocs, *srv; *ld = NULL; /* Prepare to perform an LDAP search. */ if ((server != NULL) && !ldap_uri_cmd) { snprintf(uri, uri_len, "ldap://%s/", server); } else if (ldap_uri != NULL) { snprintf(uri, uri_len, "%s", ldap_uri); } else if (host != NULL) { snprintf(uri, uri_len, "ldap://%s/", host); } /* Connect and authenticate. */ if (strlen(uri) != 0) { *ld = cm_open_ldap(uri); } if ((*ld == NULL) && (cm_srvloc_resolve(NULL, "_ldap._tcp", domain, &srvlocs) == 0)) { for (srv = srvlocs; (srv != NULL) && (*ld == NULL); srv = srv->next) { if (srv->port != 0) { snprintf(uri, uri_len, "ldap://%s:%d/", srv->host, srv->port); } else { snprintf(uri, uri_len, "ldap://%s/", srv->host); } *ld = cm_open_ldap(uri); } } if (strlen(uri) == 0) { printf(_("Unable to determine location of " "IPA LDAP server.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } if (*ld == NULL) { printf(_("Unable to contact an IPA LDAP server.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } return 0; } /* Choose a default base DN for the domain. */ static int cm_find_default_naming_context(LDAP *ld, char **basedn) { LDAPMessage *lresult = NULL, *lmsg = NULL; char *lncattrs[2] = {"defaultNamingContext", NULL}; struct berval **lbvalues; int i, c, rc; *basedn = NULL; rc = ldap_search_ext_s(ld, "", LDAP_SCOPE_BASE, NULL, lncattrs, 0, NULL, NULL, NULL, 1, &lresult); if (rc != LDAP_SUCCESS) { fprintf(stderr, "Error searching root DSE: %s.\n", ldap_err2string(rc)); return CM_SUBMIT_STATUS_UNCONFIGURED; } for (lmsg = ldap_first_entry(ld, lresult); lmsg != NULL; lmsg = ldap_next_entry(ld, lmsg)) { lbvalues = ldap_get_values_len(ld, lmsg, lncattrs[0]); if (lbvalues == NULL) { continue; } for (i = 0; lbvalues[i] != NULL; i++) { c = lbvalues[i]->bv_len; *basedn = malloc(c + 1); if (*basedn != NULL) { memcpy(*basedn, lbvalues[0]->bv_val, c); (*basedn)[c] = '\0'; break; } } } ldap_msgfree(lresult); return 0; } static int cm_locate_xmlrpc_service(const char *server, int ldap_uri_cmd, const char *ldap_uri, const char *host, const char *domain, char *basedn, const char *service, char ***uris) { LDAP *ld; LDAPMessage *lresult = NULL, *lmsg = NULL; LDAPDN rdn; struct berval *lbv; char *lattrs[2] = {"cn", NULL}; const char *relativedn = "cn=masters,cn=ipa,cn=etc", *dn; char ldn[LINE_MAX], lfilter[LINE_MAX], uri[LINE_MAX] = "", **list; int i, j, rc, n; unsigned int flags; *uris = NULL; /* Prepare to perform an LDAP search. */ i = cm_open_any_ldap(server, ldap_uri_cmd, ldap_uri, host, domain, uri, sizeof(uri), &ld); if (i != 0) { return i; } /* If we don't have a base DN to search yet, look for a default * that we can use. */ if (basedn == NULL) { i = cm_find_default_naming_context(ld, &basedn); if (i != 0) { return i; } } if (basedn == NULL) { printf(_("Unable to determine base DN of " "domain information on IPA server.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Now look up the names of the master CAs. */ snprintf(lfilter, sizeof(lfilter), "(&" "(objectClass=ipaConfigObject)" "(cn=%s)" "(ipaConfigString=enabledService)" ")", service); snprintf(ldn, sizeof(ldn), "%s,%s", relativedn, basedn); free(basedn); rc = ldap_search_ext_s(ld, ldn, LDAP_SCOPE_SUBTREE, lfilter, lattrs, 0, NULL, NULL, NULL, LDAP_NO_LIMIT, &lresult); if (rc != LDAP_SUCCESS) { fprintf(stderr, "Error searching '%s': %s.\n", ldn, ldap_err2string(rc)); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Read their parents' for "cn" values. */ n = ldap_count_entries(ld, lresult); if (n == 0) { fprintf(stderr, "No CA masters found.\n"); ldap_msgfree(lresult); return CM_SUBMIT_STATUS_UNCONFIGURED; } list = talloc_array_ptrtype(NULL, list, n + 2); if (list == NULL) { fprintf(stderr, "Out of memory.\n"); return CM_SUBMIT_STATUS_UNCONFIGURED; } i = 0; for (lmsg = ldap_first_entry(ld, lresult); lmsg != NULL; lmsg = ldap_next_entry(ld, lmsg)) { dn = ldap_get_dn(ld, lmsg); if (dn != NULL) { if (ldap_str2dn(dn, &rdn, 0) == 0) { lbv = NULL; flags = 0; /* Dig out the CN value of the second RDN. The * more correct thing to do would be to * construct the parent DN, do a base search * against it, and read its attribute normally, * but that could become time-consuming, so for * now do it a bit lazily. */ if ((rdn != NULL) && (rdn[0] != NULL) && (rdn[1] != NULL)) { for (j = 0; rdn[1][j] != NULL; j++) { lbv = &rdn[1][j]->la_attr; if ((lbv->bv_len == 2) && (((lbv->bv_val[0] == 'c') || (lbv->bv_val[0] == 'C')) && ((lbv->bv_val[1] == 'n') || (lbv->bv_val[1] == 'N')))) { lbv = &rdn[1][j]->la_value; flags = rdn[1][j]->la_flags; break; } if ((lbv->bv_len == 3) && (((lbv->bv_val[0] == 'c') || (lbv->bv_val[0] == 'C')) && ((lbv->bv_val[1] == 'n') || (lbv->bv_val[1] == 'N')) && ((lbv->bv_val[2] == '\0')))) { lbv = &rdn[1][j]->la_value; flags = rdn[1][j]->la_flags; break; } lbv = NULL; } } if (lbv != NULL) { switch (flags & 0x0f) { case LDAP_AVA_STRING: list[i] = talloc_asprintf(list, "https://%.*s/ipa/xml", (int) lbv->bv_len, lbv->bv_val); if (list[i] != NULL) { i++; } break; case LDAP_AVA_BINARY: break; } } ldap_dnfree(rdn); } } } ldap_msgfree(lresult); if (i == 0) { free(list); return CM_SUBMIT_STATUS_UNCONFIGURED; } list[i] = NULL; *uris = list; return CM_SUBMIT_STATUS_ISSUED; } /* Make an XML-RPC request to the "cert_request" method. */ static int submit_or_poll_uri(const char *uri, const char *cainfo, const char *capath, const char *csr, const char *reqprinc, const char *profile) { struct cm_submit_x_context *ctx; const char *args[2]; char *s, *p; int i; if ((uri == NULL) || (strlen(uri) == 0)) { return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Prepare to make an XML-RPC request. */ submit: ctx = cm_submit_x_init(NULL, uri, "cert_request", cainfo, capath, cm_submit_x_negotiate_on, cm_submit_x_delegate_on); if (ctx == NULL) { fprintf(stderr, "Error setting up for XMLRPC to %s on " "the client.\n", uri); printf(_("Error setting up for XMLRPC on the client.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Add the CSR contents as the sole unnamed argument. */ args[0] = csr; args[1] = NULL; cm_submit_x_add_arg_as(ctx, args); /* Add the principal name named argument. */ cm_submit_x_add_named_arg_s(ctx, "principal", reqprinc); /* Add the requested profile name named argument. */ if (profile != NULL) { cm_submit_x_add_named_arg_s(ctx, "profile_id", profile); } /* Tell the server to add entries for a principal if one * doesn't exist yet. */ cm_submit_x_add_named_arg_b(ctx, "add", 1); /* Submit the request. */ fprintf(stderr, "Submitting request to \"%s\".\n", uri); cm_submit_x_run(ctx); /* Check the results. */ if (cm_submit_x_faulted(ctx) == 0) { i = cm_submit_x_fault_code(ctx); /* Interpret the error. See errors.py to get the * classifications. */ switch (i / 1000) { case 2: /* authorization error - permanent */ case 3: /* invocation error - permanent */ if ((i == 3005) && (profile != NULL)) { /* Most likely the server didn't understand the * "profile_id" argument. At least, at this * point. Randomly dropping arguments is not * really an extensible solution, though. */ profile = NULL; goto submit; } printf("Server at %s denied our request, " "giving up: %d (%s).\n", uri, i, cm_submit_x_fault_text(ctx)); return CM_SUBMIT_STATUS_REJECTED; break; case 1: /* authentication error - transient? */ case 4: /* execution error - transient? */ case 5: /* generic error - transient? */ default: printf("Server at %s failed request, " "will retry: %d (%s).\n", uri, i, cm_submit_x_fault_text(ctx)); return CM_SUBMIT_STATUS_UNREACHABLE; break; } } else if (cm_submit_x_has_results(ctx) == 0) { if (cm_submit_x_get_named_s(ctx, "certificate", &s) == 0) { /* If we got a certificate, we're probably * okay. */ fprintf(stderr, "Certificate: \"%s\"\n", s); s = cm_submit_u_base64_from_text(s); if (s == NULL) { printf("Out of memory parsing server " "response, will retry.\n"); return CM_SUBMIT_STATUS_UNREACHABLE; } p = cm_submit_u_pem_from_base64("CERTIFICATE", FALSE, s); if (p != NULL) { printf("%s", p); } free(s); free(p); return CM_SUBMIT_STATUS_ISSUED; } else { return CM_SUBMIT_STATUS_REJECTED; } } else { /* No useful response, no fault. Try again, from * scratch, later. */ return CM_SUBMIT_STATUS_UNREACHABLE; } } static int submit_or_poll(const char *uri, const char *cainfo, const char *capath, const char *server, int ldap_uri_cmd, const char *ldap_uri, const char *host, const char *domain, char *basedn, const char *csr, const char *reqprinc, const char *profile) { int i, u; char **uris; i = submit_or_poll_uri(uri, cainfo, capath, csr, reqprinc, profile); if ((i == CM_SUBMIT_STATUS_UNREACHABLE) || (i == CM_SUBMIT_STATUS_UNCONFIGURED)) { u = cm_locate_xmlrpc_service(server, ldap_uri_cmd, ldap_uri, host, domain, basedn, "CA", &uris); if ((u == 0) && (uris != NULL)) { for (u = 0; uris[u] != NULL; u++) { if (strcmp(uris[u], uri) == 0) { continue; } i = submit_or_poll_uri(uris[u], cainfo, capath, csr, reqprinc, profile); if ((i != CM_SUBMIT_STATUS_UNREACHABLE) && (i != CM_SUBMIT_STATUS_UNCONFIGURED)) { talloc_free(uris); return i; } } talloc_free(uris); } } return i; } static int fetch_roots(const char *server, int ldap_uri_cmd, const char *ldap_uri, const char *host, const char *domain, char *basedn) { char *realm = NULL; LDAP *ld = NULL; LDAPMessage *lresult = NULL, *lmsg = NULL; char *lattrs[2] = {"caCertificate;binary", NULL}; const char *relativedn = "cn=cacert,cn=ipa,cn=etc"; char ldn[LINE_MAX], lfilter[LINE_MAX], uri[LINE_MAX] = "", *kerr = NULL; struct berval **lbvalues, *lbv; unsigned char *bv_val; const char *lb64; char *pem; int i, rc; /* Prepare to perform an LDAP search. */ i = cm_open_any_ldap(server, ldap_uri_cmd, ldap_uri, host, domain, uri, sizeof(uri), &ld); if (i != 0) { return i; } /* If we don't have a base DN to search yet, look for a default * that we can use. */ if (basedn == NULL) { i = cm_find_default_naming_context(ld, &basedn); if (i != 0) { return i; } } if (basedn == NULL) { printf(_("Unable to determine base DN of " "domain information on IPA server.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Now look up the root certificates for the domain. */ snprintf(lfilter, sizeof(lfilter), "(%s=*)", lattrs[0]); snprintf(ldn, sizeof(ldn), "%s,%s", relativedn, basedn); free(basedn); rc = ldap_search_ext_s(ld, ldn, LDAP_SCOPE_SUBTREE, lfilter, lattrs, 0, NULL, NULL, NULL, LDAP_NO_LIMIT, &lresult); if (rc != LDAP_SUCCESS) { fprintf(stderr, "Error searching '%s': %s.\n", ldn, ldap_err2string(rc)); return CM_SUBMIT_STATUS_ISSUED; } /* Read our realm name from our ccache. */ realm = cm_submit_x_ccache_realm(&kerr); /* Read all of the certificates. */ for (lmsg = ldap_first_entry(ld, lresult); lmsg != NULL; lmsg = ldap_next_entry(ld, lmsg)) { lbvalues = ldap_get_values_len(ld, lmsg, lattrs[0]); for (i = 0; (lbvalues != NULL) && (lbvalues[i] != NULL); i++) { lbv = lbvalues[i]; bv_val = (unsigned char *) lbv->bv_val, lb64 = cm_store_base64_from_bin(NULL, bv_val, lbv->bv_len); pem = cm_submit_u_pem_from_base64("CERTIFICATE", FALSE, lb64); if (realm != NULL) { printf("%s ", realm); } printf("%s\n%s", "IPA CA", pem); free(pem); } } ldap_msgfree(lresult); free(realm); free(kerr); return CM_SUBMIT_STATUS_ISSUED; } int main(int argc, const char **argv) { int c, make_keytab_ccache = TRUE; const char *host = NULL, *domain = NULL, *cainfo = NULL, *capath = NULL; const char *ktname = NULL, *kpname = NULL; char *csr, *p, uri[LINE_MAX], *reqprinc = NULL, *ipaconfig, *kerr; const char *xmlrpc_uri = NULL, *ldap_uri = NULL, *server = NULL, *csrfile; int xmlrpc_uri_cmd = 0, ldap_uri_cmd = 0, verbose = 0; const char *mode = CM_OP_SUBMIT; char ldn[LINE_MAX], *basedn = NULL, *profile = NULL; krb5_error_code kret; poptContext pctx; struct poptOption popts[] = { {"host", 'h', POPT_ARG_STRING, &host, 0, "IPA server hostname", "HOSTNAME"}, {"domain", 'd', POPT_ARG_STRING, &domain, 0, "IPA domain name", "NAME"}, {"xmlrpc-url", 'H', POPT_ARG_STRING, NULL, 'H', "IPA XMLRPC service location", "URL"}, {"ldap-url", 'L', POPT_ARG_STRING, NULL, 'L', "IPA LDAP service location", "URL"}, {"capath", 'C', POPT_ARG_STRING, &capath, 0, NULL, "DIRECTORY"}, {"cafile", 'c', POPT_ARG_STRING, &cainfo, 0, NULL, "FILENAME"}, {"keytab-name", 't', POPT_ARG_STRING, NULL, 't', "location of credentials to use for authenticating to server", "KEYTAB"}, {"submitter-principal", 'k', POPT_ARG_STRING, &kpname, 'k', "principal name to use for authenticating to server", "PRINCIPAL"}, {"use-ccache-creds", 'K', POPT_ARG_NONE, NULL, 'K', "use default ccache instead of creating a new one using keytab", NULL}, {"principal-of-request", 'P', POPT_ARG_STRING, &reqprinc, 0, "principal name in signing request", "PRINCIPAL"}, {"profile", 'T', POPT_ARG_STRING, &profile, 0, "request enrollment using the specified profile", "NAME"}, {"basedn", 'b', POPT_ARG_STRING, &basedn, 0, "IPA domain LDAP base DN", "DN"}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; #ifdef ENABLE_NLS bindtextdomain(PACKAGE, MYLOCALEDIR); #endif if (getenv(CM_SUBMIT_OPERATION_ENV) != NULL) { mode = getenv(CM_SUBMIT_OPERATION_ENV); } if (strcasecmp(mode, CM_OP_IDENTIFY) == 0) { printf("IPA (%s %s)\n", PACKAGE_NAME, PACKAGE_VERSION); return 0; } else if (strcasecmp(mode, CM_OP_FETCH_ENROLL_REQUIREMENTS) == 0) { printf("%s\n", CM_SUBMIT_REQ_PRINCIPAL_ENV); printf("%s\n", CM_SUBMIT_REQ_SUBJECT_ENV); return 0; } else if ((strcasecmp(mode, CM_OP_SUBMIT) == 0) || (strcasecmp(mode, CM_OP_POLL) == 0) || (strcasecmp(mode, CM_OP_FETCH_ROOTS) == 0)) { /* fall through */ } else { /* unsupported request */ return CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } pctx = poptGetContext(argv[0], argc, argv, popts, 0); if (pctx == NULL) { return CM_SUBMIT_STATUS_UNCONFIGURED; } poptSetOtherOptionHelp(pctx, "[options] [csrfile]"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'H': xmlrpc_uri = poptGetOptArg(pctx); xmlrpc_uri_cmd++; break; case 'L': ldap_uri = poptGetOptArg(pctx); ldap_uri_cmd++; break; case 't': ktname = poptGetOptArg(pctx); if (!make_keytab_ccache) { printf(_("The -t option can not be used with " "the -K option.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } break; case 'k': kpname = poptGetOptArg(pctx); if (!make_keytab_ccache) { printf(_("The -k option can not be used with " "the -K option.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } break; case 'K': make_keytab_ccache = FALSE; if ((kpname != NULL) || (ktname != NULL)) { printf(_("The -K option can not be used with " "either the -k or the -t option.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } break; case 'v': verbose++; break; } } if (c != -1) { return CM_SUBMIT_STATUS_UNCONFIGURED; } umask(S_IRWXG | S_IRWXO); cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); /* Start backfilling defaults, both hard-coded and from the IPA * configuration. */ if (cainfo == NULL) { cainfo = "/etc/ipa/ca.crt"; } if ((host == NULL) || (xmlrpc_uri == NULL) || (ldap_uri == NULL) || (basedn == NULL)) { ipaconfig = read_config_file("/etc/ipa/default.conf"); if (ipaconfig != NULL) { if (xmlrpc_uri == NULL) { xmlrpc_uri = get_config_entry(ipaconfig, "global", "xmlrpc_uri"); } if (ldap_uri == NULL) { /* Preferred, but likely to only be set on a * server. */ ldap_uri = get_config_entry(ipaconfig, "global", "ldap_uri"); } if (basedn == NULL) { basedn = get_config_entry(ipaconfig, "global", "basedn"); } if (host == NULL) { /* Preferred, but not always set. */ host = get_config_entry(ipaconfig, "global", "host"); } if (server == NULL) { /* Deprecated, but could be set if "host" is * not. */ server = get_config_entry(ipaconfig, "global", "server"); } if (domain == NULL) { domain = get_config_entry(ipaconfig, "global", "domain"); } } } csr = NULL; memset(uri, '\0', sizeof(uri)); memset(ldn, '\0', sizeof(ldn)); if ((strcasecmp(mode, CM_OP_SUBMIT) == 0) || (strcasecmp(mode, CM_OP_POLL) == 0)) { /* For SUBMIT/POLL, we need a requested-for principal name and * the URI of the XML-RPC server on the CA. */ if ((reqprinc == NULL) && (getenv(CM_SUBMIT_REQ_PRINCIPAL_ENV) != NULL)) { /* If it's multi-valued, just use the first one. */ reqprinc = strdup(getenv(CM_SUBMIT_REQ_PRINCIPAL_ENV)); if (reqprinc != NULL) { reqprinc[strcspn(reqprinc, "\r\n")] = '\0'; } } if ((reqprinc == NULL) || (strlen(reqprinc) == 0)) { printf(_("Unable to determine principal name for " "signing request.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } if ((profile == NULL) && (getenv(CM_SUBMIT_PROFILE_ENV) != NULL)) { profile = strdup(getenv(CM_SUBMIT_PROFILE_ENV)); } if ((server != NULL) && !xmlrpc_uri_cmd) { snprintf(uri, sizeof(uri), "https://%s/ipa/xml", server); } else if (xmlrpc_uri != NULL) { snprintf(uri, sizeof(uri), "%s", xmlrpc_uri); } else if (host != NULL) { snprintf(uri, sizeof(uri), "https://%s/ipa/xml", host); } /* Read the CSR from the environment, or from the file named on * the command-line. */ csrfile = poptGetArg(pctx); if (csrfile != NULL) { csr = cm_submit_u_from_file(csrfile); } else { csr = getenv(CM_SUBMIT_CSR_ENV); if (csr != NULL) { csr = strdup(csr); } } if ((csr == NULL) || (strlen(csr) == 0)) { printf(_("Unable to read signing request.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Change the CSR from the format we get it in to the one the * server expects. IPA just wants base64-encoded binary data, * no whitepace. */ p = strstr(csr, "-----BEGIN"); if (p != NULL) { p += strcspn(p, "\n"); if (*p == '\n') { p++; } memmove(csr, p, strlen(p) + 1); } p = strstr(csr, "\n-----END"); if (p != NULL) { *p = '\0'; } while ((p = strchr(csr, '\r')) != NULL) { memmove(p, p + 1, strlen(p)); } while ((p = strchr(csr, '\n')) != NULL) { memmove(p, p + 1, strlen(p)); } } else if (strcasecmp(mode, CM_OP_FETCH_ROOTS) == 0) { /* Stop now if we don't have an IPA domain name. */ if (domain == NULL) { printf(_("No IPA domain configured, and none " "specified.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } } /* Setup a ccache unless we're told to use the default one. */ kerr = NULL; if (make_keytab_ccache && ((kret = cm_submit_x_make_ccache(ktname, kpname, &kerr)) != 0)) { fprintf(stderr, "Error setting up ccache at the client: %s.\n", kerr); if (ktname == NULL) { if (kpname == NULL) { printf(_("Error setting up ccache for " "\"host\" service on client using " "default keytab: %s.\n"), kerr); } else { printf(_("Error setting up ccache for " "\"%s\" on client using " "default keytab: %s.\n"), kpname, kerr); } } else { if (kpname == NULL) { printf(_("Error setting up ccache for " "\"host\" service on client using " "keytab \"%s\": %s.\n"), ktname, kerr); } else { printf(_("Error setting up ccache for " "\"%s\" on client using keytab " "\"%s\": %s.\n"), kpname, ktname, kerr); } } free(kerr); switch (kret) { case KRB5_KDC_UNREACH: case KRB5_REALM_CANT_RESOLVE: return CM_SUBMIT_STATUS_UNREACHABLE; break; default: return CM_SUBMIT_STATUS_UNCONFIGURED; break; } } if ((strcasecmp(mode, CM_OP_SUBMIT) == 0) || (strcasecmp(mode, CM_OP_POLL) == 0)) { return submit_or_poll(uri, cainfo, capath, server, ldap_uri_cmd, ldap_uri, host, domain, basedn, csr, reqprinc, profile); } else if (strcasecmp(mode, CM_OP_FETCH_ROOTS) == 0) { return fetch_roots(server, ldap_uri_cmd, ldap_uri, host, domain, basedn); } return CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } certmonger-0.78.6/src/ipa-getcert.c0000664000175000017500000000011112645513264014044 00000000000000#include "config.h" #define FORCE_CA CM_IPA_CA_NAME #include "getcert.c" certmonger-0.78.6/src/getcert.c0000664000175000017500000045253212645513264013317 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "cm.h" #include "kudict.h" #include "oiddict.h" #include "store.h" #include "store-int.h" #include "submit-e.h" #include "submit-u.h" #include "tdbus.h" #include "tdbusm.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif #define N_(_msg) (_msg) #define HELP_TYPE_COMMAND _("COMMAND") #define HELP_TYPE_DIRECTORY _("DIRECTORY") #define HELP_TYPE_EKU _("LIST") #define HELP_TYPE_EMAIL _("ADDRESS") #define HELP_TYPE_FILENAME _("FILENAME") #define HELP_TYPE_HOSTNAME _("HOSTNAME") #define HELP_TYPE_ID _("ID") #define HELP_TYPE_IP _("ADDRESS") #define HELP_TYPE_KEYSIZE _("BITS") #define HELP_TYPE_KU _("LIST") #define HELP_TYPE_MODE _("MODE") #define HELP_TYPE_NAME _("NAME") #define HELP_TYPE_PRINCIPAL _("PRINCIPAL") #define HELP_TYPE_SUBJECT _("SUBJECT") #define HELP_TYPE_URL _("URL") #define HELP_TYPE_USER _("USERNAME[:GROUPNAME]") #ifdef FORCE_CA #define DEFAULT_CA FORCE_CA #else #define DEFAULT_CA NULL #endif static void help(const char *cmd, const char *category); static char *thumbprint(const char *s, SECOidTag tag, int bits); static struct { const char *argv0, *verb; DBusConnection *conn; void *tctx; } globals = { .conn = NULL, .tctx = NULL }; static char *find_ca_by_name(void *parent, enum cm_tdbus_type bus, const char *nickname, int verbose); static char *find_request_by_name(void *parent, enum cm_tdbus_type bus, const char *path, int verbose); static char *find_ca_name(void *parent, enum cm_tdbus_type bus, const char *path, int verbose); static char *find_request_name(void *parent, enum cm_tdbus_type bus, const char *path, int verbose); /* Ensure that a pathname is an absolute pathname. */ static char * ensure_path_is_absolute(void *parent, const char *path) { char buf[PATH_MAX + 1], *ret; if (path[0] == '/') { return talloc_strdup(parent, path); } else { if (getcwd(buf, sizeof(buf)) == buf) { ret = talloc_asprintf(parent, "%s/%s", buf, path); printf(_("Path \"%s\" is not absolute, " "attempting to " "use \"%s\" instead.\n"), path, ret); return ret; } else { printf(_("Path \"%s\" is not absolute, and " "there was an error determining the " "name of the current directory.\n"), path); exit(1); } } } /* Ensure that a pathname is a directory. */ static int ensure_path_is_directory(char *path) { struct stat st; int err; if (stat(path, &st) == 0) { if (S_ISDIR(st.st_mode)) { if (access(path, R_OK | W_OK) == 0) { return 0; } else { err = errno; printf(_("Path \"%s\": insufficient " "permissions.\n"), path); errno = err; return -1; } } else { printf(_("Path \"%s\" is not a directory.\n"), path); return -1; } } else { err = errno; printf(_("Path \"%s\": %s.\n"), path, strerror(errno)); errno = err; return -1; } } /* Ensure that a pathname is at least in a directory which exists. */ static int ensure_parent_is_directory(void *parent, const char *path) { char *tmp, *p; tmp = talloc_strdup(parent, path); if (tmp != NULL) { p = strrchr(tmp, '/'); if (p != NULL) { if (p > tmp) { *p = '\0'; } else { *(p + 1) = '\0'; } return ensure_path_is_directory(tmp); } } return -1; } /* Ensure that a pathname is a regular file or missing. */ static int ensure_path_is_regular(const char *path) { struct stat st; if (stat(path, &st) == 0) { if (S_ISREG(st.st_mode)) { return 0; } } else { if (errno == ENOENT) { return 0; } } printf(_("Path \"%s\" is not a regular file.\n"), path); return -1; } /* Ensure that we have a suitable NSS database location. */ static char * ensure_nss(void *parent, const char *path, char **nss_scheme) { char *ret; *nss_scheme = NULL; if (strncmp(path, "sql:", 4) == 0) { *nss_scheme = talloc_strdup(parent, "sql"); path += 4; } else if (strncmp(path, "dbm:", 4) == 0) { *nss_scheme = talloc_strdup(parent, "dbm"); path += 4; } else if (strncmp(path, "rdb:", 4) == 0) { *nss_scheme = talloc_strdup(parent, "rdb"); path += 4; } else if (strncmp(path, "extern:", 7) == 0) { *nss_scheme = talloc_strdup(parent, "extern"); path += 7; } ret = ensure_path_is_absolute(parent, path); if (ret != NULL) { ret = cm_store_canonicalize_path(parent, ret); } if (ret != NULL) { if (ensure_path_is_directory(ret) != 0) { ret = NULL; } } if (ret == NULL) { exit(1); } return ret; } /* Ensure that we have a suitable location for a PEM file. */ static char * ensure_pem(void *parent, const char *path) { char *ret; ret = ensure_path_is_absolute(parent, path); if (ret != NULL) { ret = cm_store_canonicalize_path(parent, ret); } if (ret != NULL) { if (ensure_parent_is_directory(parent, ret) != 0) { ret = NULL; } } if (ret != NULL) { if (ensure_path_is_regular(ret) != 0) { ret = NULL; } } if (ret == NULL) { exit(1); } return ret; } /* Escape any shell special characters. */ static char * shell_escape(void *parent, const char *s) { const char *specials = "|&;()<>\"' \t", *p; char *ret, *q; ret = talloc_size(parent, strlen(s) * 2 + 1); if (ret != NULL) { for (p = s, q = ret; *p != '\0'; p++) { if (strchr(specials, *p) != NULL) { *q++ = '\\'; } *q++ = *p; } *q++ = '\0'; } return ret; } /* Add a string to a list. */ static void add_string(void *parent, char ***dest, const char *value) { char **tmp; int i; for (i = 0; ((*dest) != NULL) && ((*dest)[i] != NULL); i++) { continue; } tmp = talloc_array_ptrtype(parent, tmp, i + 2); if (tmp == NULL) { printf(_("Out of memory.\n")); exit(1); } memcpy(tmp, *dest, sizeof(tmp[0]) * i); tmp[i] = talloc_strdup(tmp, value); i++; tmp[i] = NULL; *dest = tmp; } /* Connect to the bus, or not. */ static void prep_bus(enum cm_tdbus_type which, const char *mode, int verbose, int argc, const char **argv) { DBusError err; char *nargv[7] = { CM_CERTMONGER_DAEMON_PATH, "-n", "-L", "-c", }; char *cmd = NULL; int i; if ((which != cm_tdbus_system) || (globals.conn != NULL) || (getuid() != 0)) { return; } memset(&err, 0, sizeof(err)); globals.conn = dbus_bus_get(DBUS_BUS_SYSTEM, &err); if (globals.conn != NULL) { return; } if (!dbus_error_has_name(&err, DBUS_ERROR_NO_SERVER) && !dbus_error_has_name(&err, DBUS_ERROR_FILE_NOT_FOUND)) { return; } cmd = talloc_asprintf(NULL, "%s/%s %s", CM_GETCERT_DIR, globals.argv0, globals.verb); for (i = 1; i < argc; i++) { cmd = talloc_strdup_append(cmd, " "); cmd = talloc_strdup_append(cmd, shell_escape(cmd, argv[i])); } nargv[4] = cmd; if (verbose > 0) { nargv[5] = talloc_asprintf(cmd, "-d%d", verbose); } if (verbose) { printf(_("No system bus running.\n")); printf(_("Running as UID 0.\n")); printf(_("Launching temporary dedicated service daemon.\n")); } execv(nargv[0], nargv); } /* Connect to the bus and set up as much of the request as we can. */ static DBusMessage * prep_req(enum cm_tdbus_type which, const char *path, const char *interface, const char *method) { DBusMessage *msg; const char *busaddr; if (globals.conn == NULL) { switch (which) { case cm_tdbus_session: globals.conn = dbus_bus_get(DBUS_BUS_SESSION, NULL); break; case cm_tdbus_system: globals.conn = dbus_bus_get(DBUS_BUS_SYSTEM, NULL); break; case cm_tdbus_private: busaddr = getenv(CERTMONGER_PVT_ADDRESS_ENV); if (busaddr != NULL) { globals.conn = dbus_connection_open_private(busaddr, NULL); } break; } if (globals.conn == NULL) { printf(_("Error connecting to D-Bus.\n")); printf(_("Please verify that the message bus (D-Bus) service is running.\n")); exit(1); } } msg = dbus_message_new_method_call(CM_DBUS_NAME, path, interface, method); if (msg == NULL) { printf(_("Error creating DBus request message.\n")); exit(1); } return msg; } /* Try to offer some advice based on the error. */ static enum { hint_unknown, hint_found } print_hint(const char *error, const char *message) { char *text = NULL; void *ctx; ctx = talloc_new(NULL); text = cm_tdbusm_hint(ctx, error, message); if ((text == NULL) && (strncmp(error, CM_DBUS_ERROR_BASE, strlen(CM_DBUS_ERROR_BASE)) == 0)) { text = talloc_asprintf(ctx, "%s\n", _(message)); } if (text != NULL) { printf("%s", _(text)); } talloc_free(ctx); return text ? hint_found : hint_unknown; } /* Send our request and return the response. If there's an error, exit. */ static DBusMessage * send_req(DBusMessage *req, int verbose) { DBusMessage *rep; DBusError err; memset(&err, 0, sizeof(err)); rep = dbus_connection_send_with_reply_and_block(globals.conn, req, 30 * 1000, &err); if (rep == NULL) { if (dbus_error_is_set(&err)) { if (err.name != NULL) { if ((print_hint(err.name, err.message) == hint_unknown) || verbose) { if ((err.message != NULL) && verbose) { printf(_("Error %s: %s\n"), err.name, err.message); } else { printf(_("Error %s\n"), err.name); } } } else { if (err.message != NULL) { printf(_("Error: %s\n"), err.message); } else { printf(_("Received error response from " "local %s service.\n"), CM_DBUS_NAME); } } } else { printf(_("No response received from %s service.\n"), CM_DBUS_NAME); } exit(1); } dbus_message_unref(req); return rep; } /* Send the specified, argument-less method call to the named object and return * the reply message. */ static DBusMessage * query_rep(enum cm_tdbus_type which, const char *path, const char *interface, const char *method, int verbose) { return send_req(prep_req(which, path, interface, method), verbose); } /* Send the specified, argument-less method call to the named object, and * return a sole boolean response. */ static dbus_bool_t query_rep_b(enum cm_tdbus_type which, const char *path, const char *interface, const char *method, int verbose, void *parent) { DBusMessage *rep; dbus_bool_t b; rep = query_rep(which, path, interface, method, verbose); if (cm_tdbusm_get_b(rep, parent, &b) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); return b; } /* Send the specified, argument-less method call to the named object, and * return the single string from the response. */ static char * query_rep_s(enum cm_tdbus_type which, const char *path, const char *interface, const char *method, int verbose, void *parent) { DBusMessage *rep; char *s; rep = query_rep(which, path, interface, method, verbose); if (cm_tdbusm_get_s(rep, parent, &s) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); return s; } /* Send the specified, argument-less method call to the named object, and * return the array of strings from the response. */ static char ** query_rep_as(enum cm_tdbus_type which, const char *path, const char *interface, const char *method, int verbose, void *parent) { DBusMessage *rep; char **as; rep = query_rep(which, path, interface, method, verbose); if (cm_tdbusm_get_as(rep, parent, &as) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); return as; } /* Send the specified, argument-less method call to the named object, and * return the array of paths from the response. */ static char ** query_rep_ap(enum cm_tdbus_type which, const char *path, const char *interface, const char *method, int verbose, void *parent) { DBusMessage *rep; char **ap; rep = query_rep(which, path, interface, method, verbose); if (cm_tdbusm_get_ap(rep, parent, &ap) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); return ap; } /* Send the specified, argument-less method call to the named object, and * return from two to four strings from the response. */ static void query_rep_sososos(enum cm_tdbus_type which, const char *path, const char *interface, const char *method, int verbose, void *parent, char **s1, char **s2, char **s3, char **s4) { DBusMessage *rep; rep = query_rep(which, path, interface, method, verbose); if (cm_tdbusm_get_sososos(rep, parent, s1, s2, s3, s4) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); } /* Send a query for the value of the specified property to the named object and * return the reply message. */ static DBusMessage * query_prop(enum cm_tdbus_type which, const char *path, const char *interface, const char *prop, int verbose) { DBusMessage *req; req = prep_req(which, path, DBUS_INTERFACE_PROPERTIES, "Get"); cm_tdbusm_set_ss(req, interface, prop); return send_req(req, verbose); } /* Read a string property. */ static char * query_prop_s(enum cm_tdbus_type which, const char *path, const char *interface, const char *prop, int verbose, void *parent) { DBusMessage *rep; char *s; rep = query_prop(which, path, interface, prop, verbose); if (cm_tdbusm_get_vs(rep, parent, &s) != 0) { s = ""; } dbus_message_unref(rep); return s; } /* Read an array-of-strings property. */ static char ** query_prop_as(enum cm_tdbus_type which, const char *path, const char *interface, const char *prop, int verbose, void *parent) { DBusMessage *rep; char **as; rep = query_prop(which, path, interface, prop, verbose); if (cm_tdbusm_get_as(rep, parent, &as) != 0) { as = NULL; } dbus_message_unref(rep); return as; } /* Evaluate a single request's status. */ static int evaluate_status(const char *state, dbus_bool_t stuck) { if (strcmp(state, cm_store_state_as_string(CM_MONITORING)) == 0) { return CM_SUBMIT_STATUS_ISSUED; } if (strcmp(state, cm_store_state_as_string(CM_CA_REJECTED)) == 0) { return CM_SUBMIT_STATUS_REJECTED; } if (strcmp(state, cm_store_state_as_string(CM_CA_WORKING)) == 0) { return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } if (strcmp(state, cm_store_state_as_string(CM_CA_UNREACHABLE)) == 0) { return CM_SUBMIT_STATUS_UNREACHABLE; } if (stuck) { return CM_SUBMIT_STATUS_UNCONFIGURED; } return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } /* Read the status of a single request, and return a status value. */ static int waitfor(void *parent, enum cm_tdbus_type bus, const char *path, int timeout, int verbose) { DBusMessage *rep; char *state, *old_state = NULL; dbus_bool_t stuck; int i = 0; while (timeout != 0) { rep = query_rep(bus, path, CM_DBUS_REQUEST_INTERFACE, "get_status", verbose); if (cm_tdbusm_get_sb(rep, globals.tctx, &state, &stuck) != 0) { printf(_("Error parsing server response.\n")); exit(1); } if (verbose && ((old_state == NULL) || (strcmp(old_state, state) != 0))) { printf(_("State %s, stuck: %s.\n"), state, stuck ? "yes" : "no"); } if (strcmp(state, cm_store_state_as_string(CM_MONITORING)) == 0) { return CM_SUBMIT_STATUS_ISSUED; } if (strcmp(state, cm_store_state_as_string(CM_CA_REJECTED)) == 0) { return CM_SUBMIT_STATUS_REJECTED; } if (strcmp(state, cm_store_state_as_string(CM_CA_WORKING)) == 0) { return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } if (strcmp(state, cm_store_state_as_string(CM_CA_UNREACHABLE)) == 0) { return CM_SUBMIT_STATUS_UNREACHABLE; } if (stuck) { return CM_SUBMIT_STATUS_UNCONFIGURED; } old_state = talloc_strdup(parent, state); /* FIXME: we should be waiting for signals that the state * property has changed and then asking if we're stuck, not * just polling using a timer. But that would require a whole * event loop. */ usleep(125000); if (timeout > 0) { i++; if ((i % 8) == 0) { timeout--; i = 0; } } } return CM_SUBMIT_STATUS_WAIT; } /* Add a new request. */ static int request(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; char subject_default[LINE_MAX]; char *nss_scheme, *dbdir = NULL, *token = NULL, *nickname = NULL; char *keytype = NULL, *keyfile = NULL, *certfile = NULL, *capath; char **anchor_dbs = NULL, **anchor_files = NULL; char *pin = NULL, *pinfile = NULL, *cpass = NULL, *cpassfile = NULL; int keysize = 0, auto_renew = 1, verbose = 0, ku = 0, kubit, c, i, j; char *ca = DEFAULT_CA, *subject = NULL, **eku = NULL, *oid, *id = NULL; char *profile = NULL, kustring[16]; char **principal = NULL, **dns = NULL, **email = NULL, **ipaddr = NULL; char *key_owner = NULL, *key_perms = NULL; char *cert_owner = NULL, *cert_perms = NULL; struct cm_tdbusm_dict param[49]; const struct cm_tdbusm_dict *params[48]; DBusMessage *req, *rep; int waitreq = 0, timeout = -1; dbus_bool_t b; char *p; krb5_context kctx; krb5_error_code kret; krb5_principal kprinc; char *krealm, *kuprinc, *precommand = NULL, *postcommand = NULL; const char *poptarg; poptContext pctx; struct poptOption popts[] = { {"dbdir", 'd', POPT_ARG_STRING, NULL, 'd', _("NSS database for key and cert"), HELP_TYPE_DIRECTORY}, {"nickname", 'n', POPT_ARG_STRING, NULL, 'n', _("nickname for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"token", 't', POPT_ARG_STRING, NULL, 't', _("optional token name for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"keyfile", 'k', POPT_ARG_STRING, NULL, 'k', _("PEM file for private key"), HELP_TYPE_FILENAME}, {"certfile", 'f', POPT_ARG_STRING, NULL, 'f', _("PEM file for certificate (only valid with -k)"), HELP_TYPE_FILENAME}, {"pinfile", 'p', POPT_ARG_STRING, NULL, 'p', _("file which holds the private key encryption PIN"), HELP_TYPE_FILENAME}, {"pin", 'P', POPT_ARG_STRING, NULL, 'P', _("private key encryption PIN"), NULL}, {"key-owner", 'o', POPT_ARG_STRING, NULL, 'o', _("owner information for private key"), HELP_TYPE_USER}, {"key-perms", 'm', POPT_ARG_STRING, NULL, 'm', _("file permissions for private key"), HELP_TYPE_MODE}, {"cert-owner", 'O', POPT_ARG_STRING, NULL, 'O', _("owner information for certificate"), HELP_TYPE_USER}, {"cert-perms", 'M', POPT_ARG_STRING, NULL, 'M', _("file permissions for certificate"), HELP_TYPE_MODE}, {"ca-dbdir", 'a', POPT_ARG_STRING, NULL, 'a', _("NSS database in which to store the CA's certificates"), HELP_TYPE_DIRECTORY}, {"ca-file", 'F', POPT_ARG_STRING, NULL, 'F', _("file in which to store the CA's certificates"), HELP_TYPE_FILENAME}, {"before-command", 'B', POPT_ARG_STRING, NULL, 'B', _("command to run before saving the certificate"), HELP_TYPE_COMMAND}, {"after-command", 'C', POPT_ARG_STRING, NULL, 'C', _("command to run after saving the certificate"), HELP_TYPE_COMMAND}, {"id", 'I', POPT_ARG_STRING, NULL, 'I', _("nickname to assign to the request"), HELP_TYPE_ID}, {"key-type", 'G', POPT_ARG_STRING, NULL, 'G', _("type of key to be generated if one is not already in place"), NULL}, {"key-size", 'g', POPT_ARG_STRING, NULL, 'g', _("size of key to be generated if one is not already in place"), HELP_TYPE_KEYSIZE}, {"renew", 'r', POPT_ARG_NONE, NULL, 'r', _("attempt to renew the certificate when expiration nears (default)"), NULL}, {"no-renew", 'R', POPT_ARG_NONE, NULL, 'R', _("don't attempt to renew the certificate when expiration nears"), NULL}, #ifndef FORCE_CA {"ca", 'c', POPT_ARG_STRING, &ca, 0, _("use the specified CA configuration rather than the default"), HELP_TYPE_NAME}, #endif {"profile", 'T', POPT_ARG_STRING, NULL, 'T', _("ask the CA to process the request using the named profile or template"), HELP_TYPE_NAME}, {"subject-name", 'N', POPT_ARG_STRING, NULL, 'N', _("set requested subject name (default: CN=)"), HELP_TYPE_SUBJECT}, {"key-usage", 'u', POPT_ARG_STRING, NULL, 'u', _("set requested key usage value"), HELP_TYPE_KU}, {"extended-key-usage", 'U', POPT_ARG_STRING, NULL, 'U', _("set requested extended key usage OID"), HELP_TYPE_EKU}, {"principal", 'K', POPT_ARG_STRING, NULL, 'K', _("set requested principal name"), HELP_TYPE_PRINCIPAL}, {"dns", 'D', POPT_ARG_STRING, NULL, 'D', _("set requested DNS name"), HELP_TYPE_HOSTNAME}, {"email", 'E', POPT_ARG_STRING, NULL, 'E', _("set requested email address"), HELP_TYPE_EMAIL}, {"ip-address", 'A', POPT_ARG_STRING, NULL, 'A', _("set requested IP address"), HELP_TYPE_IP}, {"challenge-password-file", 'l', POPT_ARG_STRING, NULL, 'l', _("file which holds an optional challenge password value"), HELP_TYPE_FILENAME}, {"challenge-password", 'L', POPT_ARG_STRING, NULL, 'L', _("an optional challenge password value"), NULL}, {"wait", 'w', POPT_ARG_NONE, NULL, 'w', _("try to wait for the certificate to be issued"), NULL}, {"wait-timeout", 0, POPT_ARG_INT, &timeout, 0, _("maximum time to wait for the certificate to be issued"), NULL}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; memset(subject_default, '\0', sizeof(subject_default)); strcpy(subject_default, "CN="); if (gethostname(subject_default + 3, sizeof(subject_default) - 4) != 0) { strcpy(subject_default, "CN=localhost"); } subject = subject_default; kctx = NULL; if ((kret = krb5_init_context(&kctx)) != 0) { kctx = NULL; printf(_("Error initializing Kerberos library: %s.\n"), error_message(kret)); return 1; } krealm = NULL; if ((kret = krb5_get_default_realm(kctx, &krealm)) != 0) { krealm = NULL; } if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "request"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { poptarg = poptGetOptArg(pctx); switch (c) { case 'd': nss_scheme = NULL; dbdir = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (dbdir != NULL)) { dbdir = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, dbdir); } break; case 't': token = talloc_strdup(globals.tctx, poptarg); break; case 'n': nickname = talloc_strdup(globals.tctx, poptarg); break; case 'k': keyfile = ensure_pem(globals.tctx, poptarg); break; case 'o': key_owner = talloc_strdup(globals.tctx, poptarg); break; case 'm': key_perms = talloc_strdup(globals.tctx, poptarg); break; case 'O': cert_owner = talloc_strdup(globals.tctx, poptarg); break; case 'M': cert_perms = talloc_strdup(globals.tctx, poptarg); break; case 'f': certfile = ensure_pem(globals.tctx, poptarg); break; case 'G': if ((strcasecmp(poptarg, "RSA") != 0) #ifdef CM_ENABLE_DSA && (strcasecmp(poptarg, "DSA") != 0) #endif #ifdef CM_ENABLE_EC && (strcasecmp(poptarg, "ECDSA") != 0) && (strcasecmp(poptarg, "EC") != 0) #endif ) { printf(_("No support for generating \"%s\" keys.\n"), poptarg); printf(_("Known key types include:")); printf(" RSA"); #ifdef CM_ENABLE_DSA printf(" DSA"); #endif #ifdef CM_ENABLE_EC printf(" EC"); #endif printf("\n"); return 1; } keytype = talloc_strdup(globals.tctx, poptarg); break; case 'g': keysize = atoi(poptarg); break; case 'I': id = talloc_strdup(globals.tctx, poptarg); break; case 'r': auto_renew++; break; case 'R': auto_renew = 0; break; case 'c': ca = talloc_strdup(globals.tctx, poptarg); break; case 'T': profile = talloc_strdup(globals.tctx, poptarg); break; case 'N': subject = talloc_strdup(globals.tctx, poptarg); break; case 'u': kubit = cm_ku_from_name(poptarg); if (kubit == -1) { printf(_("Unrecognized keyUsage \"%s\".\n"), poptarg); return 1; } ku |= (1 << kubit); break; case 'U': oid = cm_oid_from_name(globals.tctx, poptarg); if ((oid == NULL) || (strspn(oid, "0123456789.") != strlen(oid))) { printf(_("Could not evaluate OID \"%s\".\n"), poptarg); return 1; } add_string(globals.tctx, &eku, oid); break; case 'K': kprinc = NULL; if (strlen(poptarg) > 0) { if ((kret = krb5_parse_name(kctx, poptarg, &kprinc)) != 0) { printf(_("Error parsing Kerberos " "principal name \"%s\": " "%s.\n"), poptarg, error_message(kret)); return 1; } kuprinc = NULL; if ((kret = krb5_unparse_name(kctx, kprinc, &kuprinc)) != 0) { printf(_("Error unparsing Kerberos " "principal name \"%s\": " "%s.\n"), poptarg, error_message(kret)); return 1; } add_string(globals.tctx, &principal, kuprinc); krb5_free_principal(kctx, kprinc); } else { add_string(globals.tctx, &principal, ""); } break; case 'D': add_string(globals.tctx, &dns, poptarg); break; case 'E': add_string(globals.tctx, &email, poptarg); break; case 'A': add_string(globals.tctx, &ipaddr, poptarg); break; case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'p': pinfile = talloc_strdup(globals.tctx, poptarg); break; case 'P': pin = talloc_strdup(globals.tctx, poptarg); break; case 'l': cpassfile = talloc_strdup(globals.tctx, poptarg); break; case 'L': cpass = talloc_strdup(globals.tctx, poptarg); break; case 'B': precommand = talloc_strdup(globals.tctx, poptarg); break; case 'C': postcommand = talloc_strdup(globals.tctx, poptarg); break; case 'a': p = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (p != NULL)) { p = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, p); } if (p != NULL) { add_string(globals.tctx, &anchor_dbs, p); } else { fprintf(stderr, _("%s: invalid value -- '%s'\n"), "request", poptarg); help(argv0, "request"); return 1; } break; case 'F': add_string(globals.tctx, &anchor_files, ensure_pem(globals.tctx, poptarg)); break; case 'w': waitreq++; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; default: if (c == ':') { fprintf(stderr, _("%s: option requires an argument -- '%c'\n"), "request", optopt); } else { fprintf(stderr, _("%s: invalid option -- '%c'\n"), "request", optopt); } help(argv0, "request"); return 1; } } if (c != -1) { help(argv0, "request"); return 1; } if (poptPeekArg(pctx) != NULL) { while (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra argument \"%s\".\n"), poptGetArg(pctx)); } printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "request"); return 1; } if (((dbdir != NULL) && (nickname == NULL)) || ((dbdir == NULL) && (nickname != NULL))) { printf(_("Database location or nickname specified " "without the other.\n")); help(argv0, "request"); return 1; } if ((dbdir != NULL) && (certfile != NULL)) { printf(_("Database directory and certificate file " "both specified.\n")); help(argv0, "request"); return 1; } if ((dbdir == NULL) && (nickname == NULL) && (certfile == NULL)) { printf(_("None of database directory and nickname or " "certificate file specified.\n")); help(argv0, "request"); return 1; } if ((certfile != NULL) && (keyfile != NULL) && (strcmp(certfile, keyfile) == 0)) { printf(_("Key and certificate can not both be saved to the " "same file.\n")); help(argv0, "request"); return 1; } prep_bus(bus, "request", verbose, argc, argv); i = 0; /* If the caller supplied _no_ naming information, substitute our own * defaults. */ if ((subject == subject_default) && (eku == NULL) && (principal == NULL) && (dns == NULL) && (email == NULL) && (ipaddr == NULL)) { add_string(globals.tctx, &eku, "id-kp-serverAuth"); if (krealm != NULL) { add_string(globals.tctx, &principal, talloc_asprintf(globals.tctx, "host/%s@%s", subject + 3, krealm)); } add_string(globals.tctx, &dns, subject + 3); } #ifdef WITH_IPA if ((ca != NULL) && (strcmp(ca, "IPA") == 0)) { if (principal == NULL) { printf(_("The IPA backend requires the use of the " "-K option (principal name) when the " "-N option (subject name) is used.\n")); help(argv0, "request"); return 1; } } #endif if ((dbdir != NULL) && (nickname != NULL)) { param[i].key = "KEY_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "NSSDB"; params[i] = ¶m[i]; i++; param[i].key = "KEY_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = dbdir; params[i] = ¶m[i]; i++; param[i].key = "KEY_NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = nickname; params[i] = ¶m[i]; i++; if (token != NULL) { param[i].key = "KEY_TOKEN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = token; params[i] = ¶m[i]; i++; } param[i].key = "CERT_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "NSSDB"; params[i] = ¶m[i]; i++; param[i].key = "CERT_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = dbdir; params[i] = ¶m[i]; i++; param[i].key = "CERT_NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = nickname; params[i] = ¶m[i]; i++; if (token != NULL) { param[i].key = "CERT_TOKEN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = token; params[i] = ¶m[i]; i++; } } else if (certfile != NULL) { if (keyfile != NULL) { param[i].key = "KEY_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "FILE"; params[i] = ¶m[i]; i++; param[i].key = "KEY_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = keyfile; params[i] = ¶m[i]; i++; } else { param[i].key = "KEY_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "NONE"; params[i] = ¶m[i]; i++; } param[i].key = "CERT_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "FILE"; params[i] = ¶m[i]; i++; param[i].key = "CERT_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = certfile; params[i] = ¶m[i]; i++; } if (pin != NULL) { param[i].key = "KEY_PIN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pin; params[i] = ¶m[i]; i++; } if (pinfile != NULL) { param[i].key = "KEY_PIN_FILE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pinfile; params[i] = ¶m[i]; i++; } if (cpass != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpass; params[i] = ¶m[i]; i++; } if (cpassfile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpassfile; params[i] = ¶m[i]; i++; } param[i].key = "TRACK"; param[i].value_type = cm_tdbusm_dict_b; param[i].value.b = TRUE; params[i] = ¶m[i]; i++; param[i].key = "RENEW"; param[i].value_type = cm_tdbusm_dict_b; param[i].value.b = auto_renew > 0; params[i] = ¶m[i]; i++; if (key_owner != NULL) { param[i].key = CM_DBUS_PROP_KEY_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = key_owner; params[i] = ¶m[i]; i++; } if (key_perms != NULL) { param[i].key = CM_DBUS_PROP_KEY_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(key_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (cert_owner != NULL) { param[i].key = CM_DBUS_PROP_CERT_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cert_owner; params[i] = ¶m[i]; i++; } if (cert_perms != NULL) { param[i].key = CM_DBUS_PROP_CERT_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(cert_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (keytype != NULL) { param[i].key = "KEY_TYPE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = keytype; params[i] = ¶m[i]; i++; } if (keysize > 0) { param[i].key = "KEY_SIZE"; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = keysize; params[i] = ¶m[i]; i++; } if (id != NULL) { param[i].key = "NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = id; params[i] = ¶m[i]; i++; } if (ca != NULL) { capath = find_ca_by_name(globals.tctx, bus, ca, verbose); if (capath == NULL) { printf(_("No CA with name \"%s\" found.\n"), ca); return 1; } param[i].key = "CA"; param[i].value_type = cm_tdbusm_dict_p; param[i].value.s = capath; params[i] = ¶m[i]; i++; } else { capath = NULL; } param[i].key = CM_DBUS_PROP_TEMPLATE_SUBJECT; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = subject; params[i] = ¶m[i]; i++; if (principal != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_PRINCIPAL; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = principal; params[i] = ¶m[i]; i++; } if (dns != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_HOSTNAME; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = dns; params[i] = ¶m[i]; i++; } if (email != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_EMAIL; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = email; params[i] = ¶m[i]; i++; } if (ipaddr != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_IP_ADDRESS; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = ipaddr; params[i] = ¶m[i]; i++; } if (ku != 0) { for (j = 0; (ku >> j) != 0; j++) { kustring[j] = ((ku >> j) & 1) ? '1' : '0'; } kustring[j] = '\0'; param[i].key = CM_DBUS_PROP_TEMPLATE_KU; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = kustring; params[i] = ¶m[i]; i++; } if (eku != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_EKU; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = eku; params[i] = ¶m[i]; i++; } if (profile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_PROFILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = profile; params[i] = ¶m[i]; i++; } if (precommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_PRESAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = precommand; params[i] = ¶m[i]; i++; } if (postcommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_POSTSAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = postcommand; params[i] = ¶m[i]; i++; } if (anchor_files != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_FILES; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_files; params[i] = ¶m[i]; i++; } if (anchor_dbs != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_NSSDBS; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_dbs; params[i] = ¶m[i]; i++; } params[i] = NULL; req = prep_req(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "add_request"); if (cm_tdbusm_set_d(req, params) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_bp(rep, globals.tctx, &b, &p) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (b) { nickname = find_request_name(globals.tctx, bus, p, verbose); printf(_("New signing request \"%s\" added.\n"), nickname ? nickname : p); if (waitreq) { return waitfor(globals.tctx, bus, p, timeout, verbose); } } else { printf(_("New signing request could not be added.\n")); exit(1); } return 0; } static char * find_request_name(void *parent, enum cm_tdbus_type bus, const char *path, int verbose) { return query_rep_s(bus, path, CM_DBUS_REQUEST_INTERFACE, "get_nickname", verbose, parent); } static char * find_ca_name(void *parent, enum cm_tdbus_type bus, const char *path, int verbose) { return query_rep_s(bus, path, CM_DBUS_CA_INTERFACE, "get_nickname", verbose, parent); } static char * find_request_by_name(void *parent, enum cm_tdbus_type bus, const char *name, int verbose) { char **requests; int i, which; char *thisname; requests = query_rep_ap(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "get_requests", verbose, globals.tctx); which = -1; for (i = 0; (requests != NULL) && (requests[i] != NULL); i++) { thisname = find_request_name(parent, bus, requests[i], verbose); if (thisname != NULL) { if (strcasecmp(name, thisname) == 0) { which = i; } talloc_free(thisname); } } if (which != -1) { return requests[which]; } return NULL; } static const char * find_request_by_storage(void *parent, enum cm_tdbus_type bus, const char *dbdir, const char *nickname, const char *token, const char *certfile, int verbose) { char **requests; int i, which; char *cert_stype, *cert_sloc, *cert_nick, *cert_tok; requests = query_rep_ap(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "get_requests", verbose, globals.tctx); which = -1; for (i = 0; (requests != NULL) && (requests[i] != NULL); i++) { query_rep_sososos(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_cert_storage_info", verbose, parent, &cert_stype, &cert_sloc, &cert_nick, &cert_tok); if (strcasecmp(cert_stype, "NSSDB") == 0) { if (dbdir == NULL) { continue; } if ((cert_sloc == NULL) || (strcmp(dbdir, cert_sloc) != 0)) { continue; } if (nickname == NULL) { continue; } if ((cert_nick == NULL) || (strcmp(nickname, cert_nick) != 0)) { continue; } if ((token != NULL) && ((cert_tok == NULL) || (strcmp(token, cert_tok) != 0))) { continue; } } else if (strcasecmp(cert_stype, "FILE") == 0) { if (certfile == NULL) { continue; } if (strcmp(certfile, cert_sloc) != 0) { continue; } } if (which != -1) { /* Multiple matches? We have to give up. */ return NULL; } which = i; } if (which != -1) { return requests[which]; } return NULL; } static char * find_ca_by_name(void *parent, enum cm_tdbus_type bus, const char *name, int verbose) { char **cas; int i, which; char *thisname; cas = query_rep_ap(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "get_known_cas", verbose, globals.tctx); which = -1; for (i = 0; (cas != NULL) && (cas[i] != NULL); i++) { thisname = find_ca_name(parent, bus, cas[i], verbose); if (thisname != NULL) { if (strcasecmp(name, thisname) == 0) { which = i; } talloc_free(thisname); } } if (which != -1) { return cas[which]; } return NULL; } static int add_basic_request(enum cm_tdbus_type bus, char *id, char *dbdir, char *nickname, char *token, char *keyfile, char *certfile, char *key_owner, char *cert_owner, char *key_perms, char *cert_perms, char *pin, char *pinfile, char *cpass, char *cpassfile, char *ca, char *profile, char *precommand, char *postcommand, char **anchor_dbs, char **anchor_files, dbus_bool_t auto_renew_stop, int waitreq, int timeout, int verbose) { DBusMessage *req, *rep; int i; struct cm_tdbusm_dict param[25]; const struct cm_tdbusm_dict *params[26]; dbus_bool_t b; const char *capath; char *p; i = 0; if (id != NULL) { param[i].key = "NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = id; params[i] = ¶m[i]; i++; } if ((dbdir != NULL) && (nickname != NULL)) { param[i].key = "KEY_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "NSSDB"; params[i] = ¶m[i]; i++; param[i].key = "KEY_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = dbdir; params[i] = ¶m[i]; i++; param[i].key = "KEY_NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = nickname; params[i] = ¶m[i]; i++; if (token != NULL) { param[i].key = "KEY_TOKEN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = token; params[i] = ¶m[i]; i++; } param[i].key = "CERT_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "NSSDB"; params[i] = ¶m[i]; i++; param[i].key = "CERT_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = dbdir; params[i] = ¶m[i]; i++; param[i].key = "CERT_NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = nickname; params[i] = ¶m[i]; i++; if (token != NULL) { param[i].key = "CERT_TOKEN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = token; params[i] = ¶m[i]; i++; } } else if (certfile != NULL) { if (keyfile != NULL) { param[i].key = "KEY_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "FILE"; params[i] = ¶m[i]; i++; param[i].key = "KEY_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = keyfile; params[i] = ¶m[i]; i++; } param[i].key = "CERT_STORAGE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = "FILE"; params[i] = ¶m[i]; i++; param[i].key = "CERT_LOCATION"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = certfile; params[i] = ¶m[i]; i++; } if (pin != NULL) { param[i].key = "KEY_PIN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pin; params[i] = ¶m[i]; i++; } if (pinfile != NULL) { param[i].key = "KEY_PIN_FILE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pinfile; params[i] = ¶m[i]; i++; } if (key_owner != NULL) { param[i].key = CM_DBUS_PROP_KEY_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = key_owner; params[i] = ¶m[i]; i++; } if (key_perms != NULL) { param[i].key = CM_DBUS_PROP_KEY_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(key_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (cert_owner != NULL) { param[i].key = CM_DBUS_PROP_CERT_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cert_owner; params[i] = ¶m[i]; i++; } if (cert_perms != NULL) { param[i].key = CM_DBUS_PROP_CERT_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(cert_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (cpass != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpass; params[i] = ¶m[i]; i++; } if (cpassfile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpassfile; params[i] = ¶m[i]; i++; } param[i].key = "TRACK"; param[i].value_type = cm_tdbusm_dict_b; param[i].value.b = TRUE; params[i] = ¶m[i]; i++; param[i].key = "RENEW"; param[i].value_type = cm_tdbusm_dict_b; param[i].value.b = !auto_renew_stop; params[i] = ¶m[i]; i++; if (profile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_PROFILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = profile; params[i] = ¶m[i]; i++; } if (precommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_PRESAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = precommand; params[i] = ¶m[i]; i++; } if (postcommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_POSTSAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = postcommand; params[i] = ¶m[i]; i++; } if (ca != NULL) { capath = find_ca_by_name(globals.tctx, bus, ca, verbose); if (capath == NULL) { printf(_("No CA with name \"%s\" found.\n"), ca); return 1; } param[i].key = "CA"; param[i].value_type = cm_tdbusm_dict_p; param[i].value.s = talloc_strdup(globals.tctx, capath); params[i] = ¶m[i]; i++; } else { capath = NULL; } if (anchor_files != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_FILES; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_files; params[i] = ¶m[i]; i++; } if (anchor_dbs != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_NSSDBS; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_dbs; params[i] = ¶m[i]; i++; } params[i] = NULL; req = prep_req(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "add_request"); if (cm_tdbusm_set_d(req, params) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_bp(rep, globals.tctx, &b, &p) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (b) { nickname = find_request_name(globals.tctx, bus, p, verbose); printf(_("New tracking request \"%s\" added.\n"), nickname ? nickname : p); if (waitreq) { return waitfor(globals.tctx, bus, p, timeout, verbose); } return 0; } else { printf(_("New tracking request could not be added.\n")); return 1; } } static int set_tracking(const char *argv0, const char *category, int argc, const char **argv, dbus_bool_t track) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; DBusMessage *req, *rep; const char *request, *capath; struct cm_tdbusm_dict param[25]; const struct cm_tdbusm_dict *params[26]; char *nss_scheme, *dbdir = NULL, *token = NULL, *nickname = NULL; char **anchor_dbs = NULL, **anchor_files = NULL; char *id = NULL, *new_id = NULL, *new_request; char *keyfile = NULL, *certfile = NULL, *ca = DEFAULT_CA; char *profile = NULL; char *pin = NULL, *pinfile = NULL, *cpass = NULL, *cpassfile = NULL; char *key_owner = NULL, *key_perms = NULL; char *cert_owner = NULL, *cert_perms = NULL; dbus_bool_t b; char *p; int c, auto_renew_start = 0, auto_renew_stop = 0, verbose = 0, i, j; int ku = 0, kubit, waitreq = 0, timeout = -1; char **eku = NULL, *oid, kustring[16]; char **principal = NULL, **dns = NULL, **email = NULL, **ipaddr = NULL; krb5_context kctx; krb5_error_code kret; krb5_principal kprinc; char *krealm, *kuprinc; char *precommand = NULL, *postcommand = NULL; const char *poptarg; poptContext pctx; struct poptOption popts[] = { {"dbdir", 'd', POPT_ARG_STRING, NULL, 'd', _("NSS database for key and cert"), HELP_TYPE_DIRECTORY}, {"nickname", 'n', POPT_ARG_STRING, NULL, 'n', _("nickname for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"token", 't', POPT_ARG_STRING, NULL, 't', _("optional token name for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"keyfile", 'k', POPT_ARG_STRING, NULL, 'k', _("PEM file for private key (only valid with -f)"), HELP_TYPE_FILENAME}, {"certfile", 'f', POPT_ARG_STRING, NULL, 'f', _("PEM file for certificate"), HELP_TYPE_FILENAME}, {"pinfile", 'p', POPT_ARG_STRING, NULL, 'p', _("file which holds the private key encryption PIN"), HELP_TYPE_FILENAME}, {"pin", 'P', POPT_ARG_STRING, NULL, 'P', _("private key encryption PIN"), NULL}, {"key-owner", 'o', POPT_ARG_STRING, NULL, 'o', _("owner information for private key"), HELP_TYPE_USER}, {"key-perms", 'm', POPT_ARG_STRING, NULL, 'm', _("file permissions for private key"), HELP_TYPE_MODE}, {"cert-owner", 'O', POPT_ARG_STRING, NULL, 'O', _("owner information for certificate"), HELP_TYPE_USER}, {"cert-perms", 'M', POPT_ARG_STRING, NULL, 'M', _("file permissions for certificate"), HELP_TYPE_MODE}, {"ca-dbdir", 'a', POPT_ARG_STRING, NULL, 'a', _("NSS database in which to store the CA's certificates"), HELP_TYPE_DIRECTORY}, {"ca-file", 'F', POPT_ARG_STRING, NULL, 'F', _("file in which to store the CA's certificates"), HELP_TYPE_FILENAME}, {"before-command", 'B', POPT_ARG_STRING, NULL, 'B', _("command to run before saving the certificate"), HELP_TYPE_COMMAND}, {"after-command", 'C', POPT_ARG_STRING, NULL, 'C', _("command to run after saving the certificate"), HELP_TYPE_COMMAND}, {"id", 'i', POPT_ARG_STRING, NULL, 'i', _("nickname of an existing request"), HELP_TYPE_ID}, {"new-id", 'I', POPT_ARG_STRING, NULL, 'I', _("nickname to give to tracking request"), HELP_TYPE_ID}, {"renew", 'r', POPT_ARG_NONE, NULL, 'r', _("attempt to renew the certificate when expiration nears (default)"), NULL}, {"no-renew", 'R', POPT_ARG_NONE, NULL, 'R', _("don't attempt to renew the certificate when expiration nears"), NULL}, #ifndef FORCE_CA {"ca", 'c', POPT_ARG_STRING, &ca, 0, _("use the specified CA configuration rather than the default"), HELP_TYPE_NAME}, #endif {"profile", 'T', POPT_ARG_STRING, NULL, 'T', _("ask the CA to process the request using the named profile or template"), HELP_TYPE_NAME}, {"key-usage", 'u', POPT_ARG_STRING, NULL, 'u', _("override requested key usage value"), HELP_TYPE_KU}, {"extended-key-usage", 'U', POPT_ARG_STRING, NULL, 'U', _("override requested extended key usage OID"), HELP_TYPE_EKU}, {"principal", 'K', POPT_ARG_STRING, NULL, 'K', _("override requested principal name"), HELP_TYPE_PRINCIPAL}, {"dns", 'D', POPT_ARG_STRING, NULL, 'D', _("override requested DNS name"), HELP_TYPE_HOSTNAME}, {"email", 'E', POPT_ARG_STRING, NULL, 'E', _("override requested email address"), HELP_TYPE_EMAIL}, {"ip-address", 'A', POPT_ARG_STRING, NULL, 'A', _("override requested IP address"), HELP_TYPE_IP}, {"challenge-password", 'L', POPT_ARG_STRING, NULL, 'L', _("an optional challenge password value"), NULL}, {"challenge-password-file", 'l', POPT_ARG_STRING, NULL, 'l', _("file which holds an optional challenge password value"), HELP_TYPE_FILENAME}, {"wait", 'w', POPT_ARG_NONE, NULL, 'w', _("try to wait for the certificate to be issued"), NULL}, {"wait-timeout", 0, POPT_ARG_INT, &timeout, 0, _("maximum time to wait for the certificate to be issued"), NULL}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; kctx = NULL; if ((kret = krb5_init_context(&kctx)) != 0) { kctx = NULL; printf(_("Error initializing Kerberos library: %s.\n"), error_message(kret)); return 1; } krealm = NULL; if ((kret = krb5_get_default_realm(kctx, &krealm)) != 0) { krealm = NULL; } if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, category); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { poptarg = poptGetOptArg(pctx); switch (c) { case 'd': nss_scheme = NULL; dbdir = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (dbdir != NULL)) { dbdir = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, dbdir); } break; case 't': token = talloc_strdup(globals.tctx, poptarg); break; case 'n': nickname = talloc_strdup(globals.tctx, poptarg); break; case 'k': keyfile = ensure_pem(globals.tctx, poptarg); break; case 'f': certfile = ensure_pem(globals.tctx, poptarg); break; case 'o': key_owner = talloc_strdup(globals.tctx, poptarg); break; case 'm': key_perms = talloc_strdup(globals.tctx, poptarg); break; case 'O': cert_owner = talloc_strdup(globals.tctx, poptarg); break; case 'M': cert_perms = talloc_strdup(globals.tctx, poptarg); break; case 'r': if (track) { auto_renew_start++; } else { help(argv0, category); return 1; } break; case 'R': if (track) { auto_renew_stop++; } else { help(argv0, category); return 1; } break; case 'c': if (track) { ca = talloc_strdup(globals.tctx, poptarg); } else { help(argv0, category); return 1; } break; case 'T': profile = talloc_strdup(globals.tctx, poptarg); break; case 'i': id = talloc_strdup(globals.tctx, poptarg); break; case 'I': new_id = talloc_strdup(globals.tctx, poptarg); break; case 'u': kubit = cm_ku_from_name(poptarg); if (kubit == -1) { printf(_("Unrecognized keyUsage \"%s\".\n"), poptarg); return 1; } ku |= (1 << kubit); break; case 'U': oid = cm_oid_from_name(globals.tctx, poptarg); if ((oid == NULL) || (strspn(oid, "0123456789.") != strlen(oid))) { printf(_("Could not evaluate OID \"%s\".\n"), poptarg); return 1; } add_string(globals.tctx, &eku, oid); break; case 'K': kprinc = NULL; if (strlen(poptarg) > 0) { if ((kret = krb5_parse_name(kctx, poptarg, &kprinc)) != 0) { printf(_("Error parsing Kerberos " "principal name \"%s\": " "%s.\n"), poptarg, error_message(kret)); return 1; } kuprinc = NULL; if ((kret = krb5_unparse_name(kctx, kprinc, &kuprinc)) != 0) { printf(_("Error unparsing Kerberos " "principal name \"%s\": " "%s.\n"), poptarg, error_message(kret)); return 1; } add_string(globals.tctx, &principal, kuprinc); krb5_free_principal(kctx, kprinc); } else { add_string(globals.tctx, &principal, ""); } break; case 'D': add_string(globals.tctx, &dns, poptarg); break; case 'E': add_string(globals.tctx, &email, poptarg); break; case 'A': add_string(globals.tctx, &ipaddr, poptarg); break; case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'p': pinfile = talloc_strdup(globals.tctx, poptarg); break; case 'P': pin = talloc_strdup(globals.tctx, poptarg); break; case 'l': cpassfile = talloc_strdup(globals.tctx, poptarg); break; case 'L': cpass = talloc_strdup(globals.tctx, poptarg); break; case 'B': precommand = talloc_strdup(globals.tctx, poptarg); break; case 'C': postcommand = talloc_strdup(globals.tctx, poptarg); break; case 'a': p = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (p != NULL)) { p = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, p); } if (p != NULL) { add_string(globals.tctx, &anchor_dbs, p); } else { fprintf(stderr, _("%s: invalid value -- '%s'\n"), "request", poptarg); help(argv0, "request"); return 1; } break; case 'F': add_string(globals.tctx, &anchor_files, ensure_pem(globals.tctx, poptarg)); break; case 'w': if (track) { waitreq++; } else { help(argv0, category); return 1; } break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; default: if (c == ':') { fprintf(stderr, _("%s: option requires an argument -- '%c'\n"), category, optopt); } else { fprintf(stderr, _("%s: invalid option -- '%c'\n"), category, optopt); } help(argv0, category); return 1; } } if (c != -1) { help(argv0, category); return 1; } krb5_free_context(kctx); if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, category); return 1; } if (((dbdir != NULL) && (nickname == NULL)) || ((dbdir == NULL) && (nickname != NULL))) { printf(_("Database location or nickname specified " "without the other.\n")); help(argv0, category); return 1; } if ((dbdir != NULL) && (certfile != NULL)) { printf(_("Database directory and certificate file " "both specified.\n")); help(argv0, category); return 1; } if ((id == NULL) && (dbdir == NULL) && (nickname == NULL) && (certfile == NULL)) { printf(_("None of ID or database directory and nickname or " "certificate file specified.\n")); help(argv0, category); return 1; } if ((certfile != NULL) && (keyfile != NULL) && (strcmp(certfile, keyfile) == 0)) { printf(_("Key and certificate can not both be saved to the " "same file.\n")); help(argv0, category); return 1; } prep_bus(bus, category, verbose, argc, argv); if (id != NULL) { request = find_request_by_name(globals.tctx, bus, id, verbose); } else { request = find_request_by_storage(globals.tctx, bus, dbdir, nickname, token, certfile, verbose); } if (track) { if (request != NULL) { /* Modify settings for an existing request. */ i = 0; param[i].key = "TRACK"; param[i].value_type = cm_tdbusm_dict_b; param[i].value.b = TRUE; params[i] = ¶m[i]; i++; if (auto_renew_start || auto_renew_stop) { param[i].key = "RENEW"; param[i].value_type = cm_tdbusm_dict_b; param[i].value.b = auto_renew_start > 0; params[i] = ¶m[i]; i++; } if (principal != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_PRINCIPAL; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = principal; params[i] = ¶m[i]; i++; } if (dns != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_HOSTNAME; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = dns; params[i] = ¶m[i]; i++; } if (email != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_EMAIL; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = email; params[i] = ¶m[i]; i++; } if (ipaddr != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_IP_ADDRESS; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = ipaddr; params[i] = ¶m[i]; i++; } if (ku != 0) { for (j = 0; (ku >> j) != 0; j++) { kustring[j] = ((ku >> j) & 1) ? '1' : '0'; } kustring[j] = '\0'; param[i].key = CM_DBUS_PROP_TEMPLATE_KU; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = kustring; params[i] = ¶m[i]; i++; } if (eku != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_EKU; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = eku; params[i] = ¶m[i]; i++; } if (new_id != NULL) { param[i].key = "NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = new_id; params[i] = ¶m[i]; i++; } if (key_owner != NULL) { param[i].key = CM_DBUS_PROP_KEY_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = key_owner; params[i] = ¶m[i]; i++; } if (key_perms != NULL) { param[i].key = CM_DBUS_PROP_KEY_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(key_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (cert_owner != NULL) { param[i].key = CM_DBUS_PROP_CERT_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cert_owner; params[i] = ¶m[i]; i++; } if (cert_perms != NULL) { param[i].key = CM_DBUS_PROP_CERT_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(cert_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (pin != NULL) { param[i].key = "KEY_PIN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pin; params[i] = ¶m[i]; i++; } if (pinfile != NULL) { param[i].key = "KEY_PIN_FILE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pinfile; params[i] = ¶m[i]; i++; } if (ca != NULL) { capath = find_ca_by_name(globals.tctx, bus, ca, verbose); if (capath == NULL) { printf(_("No CA with name \"%s\" " "found.\n"), ca); return 1; } param[i].key = "CA"; param[i].value_type = cm_tdbusm_dict_p; param[i].value.s = talloc_strdup(globals.tctx, capath); params[i] = ¶m[i]; i++; } else { capath = NULL; } if (cpass != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpass; params[i] = ¶m[i]; i++; } if (cpassfile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpassfile; params[i] = ¶m[i]; i++; } if (profile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_PROFILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = profile; params[i] = ¶m[i]; i++; } if (precommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_PRESAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = precommand; params[i] = ¶m[i]; i++; } if (postcommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_POSTSAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = postcommand; params[i] = ¶m[i]; i++; } if (anchor_files != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_FILES; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_files; params[i] = ¶m[i]; i++; } if (anchor_dbs != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_NSSDBS; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_dbs; params[i] = ¶m[i]; i++; } params[i] = NULL; req = prep_req(bus, request, CM_DBUS_REQUEST_INTERFACE, "modify"); if (cm_tdbusm_set_d(req, params) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_bp(rep, globals.tctx, &b, &new_request) != 0) { printf(_("Error parsing server response.\n")); exit(1); } request = new_request; dbus_message_unref(rep); nickname = find_request_name(globals.tctx, bus, request, verbose); if (b) { printf(_("Request \"%s\" modified.\n"), nickname ? nickname : request); return 0; } else { printf(_("Request \"%s\" could not be " "modified.\n"), nickname ? nickname : request); return 1; } } else { /* Add a new request. */ if (id != NULL) { printf(_("No request found with specified " "nickname.\n")); help(argv0, category); return 1; } if (((dbdir != NULL) && (nickname == NULL)) || ((dbdir == NULL) && (nickname != NULL))) { printf(_("Database location or nickname " "specified without the other.\n")); help(argv0, category); return 1; } if ((dbdir != NULL) && (certfile != NULL)) { printf(_("Database directory and certificate " "file both specified.\n")); help(argv0, category); return 1; } if ((dbdir == NULL) && (nickname == NULL) && (certfile == NULL)) { printf(_("None of database directory and " "nickname or certificate file " "specified.\n")); help(argv0, category); return 1; } return add_basic_request(bus, new_id, dbdir, nickname, token, keyfile, certfile, key_owner, cert_owner, key_perms, cert_perms, pin, pinfile, cpass, cpassfile, ca, profile, precommand, postcommand, anchor_dbs, anchor_files, (auto_renew_stop > 0), waitreq, timeout, verbose); } } else { /* Drop a request. */ if ((request == NULL) && (id == NULL) && (dbdir == NULL) && (nickname == NULL) && (certfile == NULL)) { help(argv0, category); return 1; } if (request == NULL) { printf(_("No request found that matched arguments.\n")); return 1; } nickname = find_request_name(globals.tctx, bus, request, verbose); req = prep_req(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "remove_request"); if (cm_tdbusm_set_p(req, request) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_b(rep, globals.tctx, &b) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (b) { printf(_("Request \"%s\" removed.\n"), nickname ? nickname : request); return 0; } else { printf(_("Request \"%s\" could not be removed.\n"), nickname ? nickname : request); return 1; } } } static int start_tracking(const char *argv0, int argc, const char **argv) { return set_tracking(argv0, "start-tracking", argc, argv, TRUE); } static int stop_tracking(const char *argv0, int argc, const char **argv) { return set_tracking(argv0, "stop-tracking", argc, argv, FALSE); } static int rekey_or_resubmit(const char *argv0, const char *category, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; DBusMessage *req, *rep; const char *request; char *capath; struct cm_tdbusm_dict param[29]; const struct cm_tdbusm_dict *params[30]; char *dbdir = NULL, *token = NULL, *nickname = NULL, *certfile = NULL; char **anchor_dbs = NULL, **anchor_files = NULL; char *pin = NULL, *pinfile = NULL, *cpass = NULL, *cpassfile = NULL; char *id = NULL, *new_id = NULL, *ca = NULL, *new_request, *nss_scheme; char *subject = NULL, **eku = NULL, *oid = NULL; char **principal = NULL, **dns = NULL, **email = NULL, **ipaddr = NULL; char *profile = NULL, kustring[16]; char *key_owner = NULL, *key_perms = NULL; char *cert_owner = NULL, *cert_perms = NULL; char *keytype = NULL; int keysize = 0; dbus_bool_t b; char *p; int verbose = 0, ku = 0, kubit, c, i, j, waitreq = 0, timeout = -1; krb5_context kctx; krb5_error_code kret; krb5_principal kprinc; char *kuprinc, *precommand = NULL, *postcommand = NULL; const char *poptarg; poptContext pctx; struct poptOption popts[] = { {"dbdir", 'd', POPT_ARG_STRING, NULL, 'd', _("NSS database for key and cert"), HELP_TYPE_DIRECTORY}, {"nickname", 'n', POPT_ARG_STRING, NULL, 'n', _("nickname for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"token", 't', POPT_ARG_STRING, NULL, 't', _("optional token name for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"certfile", 'f', POPT_ARG_STRING, NULL, 'f', _("PEM file for certificate"), HELP_TYPE_FILENAME}, {"id", 'i', POPT_ARG_STRING, NULL, 'i', _("nickname for tracking request"), HELP_TYPE_ID}, {"new-id", 'I', POPT_ARG_STRING, NULL, 'I', _("new nickname to give to tracking request"), HELP_TYPE_ID}, {"key-type", 'G', POPT_ARG_STRING, NULL, 'G', _("type of new key to be generated"), NULL}, {"key-size", 'g', POPT_ARG_STRING, NULL, 'g', _("size of new key to be generated"), HELP_TYPE_KEYSIZE}, {"pinfile", 'p', POPT_ARG_STRING, NULL, 'p', _("file which holds the private key encryption PIN"), HELP_TYPE_FILENAME}, {"pin", 'P', POPT_ARG_STRING, NULL, 'P', _("private key encryption PIN"), NULL}, {"key-owner", 'o', POPT_ARG_STRING, NULL, 'o', _("owner information for private key"), HELP_TYPE_USER}, {"key-perms", 'm', POPT_ARG_STRING, NULL, 'm', _("file permissions for private key"), HELP_TYPE_MODE}, {"cert-owner", 'O', POPT_ARG_STRING, NULL, 'O', _("owner information for certificate"), HELP_TYPE_USER}, {"cert-perms", 'M', POPT_ARG_STRING, NULL, 'M', _("file permissions for certificate"), HELP_TYPE_MODE}, {"ca-dbdir", 'a', POPT_ARG_STRING, NULL, 'a', _("NSS database in which to store the CA's certificates"), HELP_TYPE_DIRECTORY}, {"ca-file", 'F', POPT_ARG_STRING, NULL, 'F', _("file in which to store the CA's certificates"), HELP_TYPE_FILENAME}, {"before-command", 'B', POPT_ARG_STRING, NULL, 'B', _("command to run before saving the certificate"), HELP_TYPE_COMMAND}, {"after-command", 'C', POPT_ARG_STRING, NULL, 'C', _("command to run after saving the certificate"), HELP_TYPE_COMMAND}, #ifndef FORCE_CA {"ca", 'c', POPT_ARG_STRING, &ca, 0, _("use the specified CA configuration rather than the current one"), HELP_TYPE_NAME}, #endif {"profile", 'T', POPT_ARG_STRING, NULL, 'T', _("ask the CA to process the request using the named profile or template"), HELP_TYPE_NAME}, {"subject-name", 'N', POPT_ARG_STRING, NULL, 'N', _("set requested subject name (default: CN=)"), HELP_TYPE_SUBJECT}, {"key-usage", 'u', POPT_ARG_STRING, NULL, 'u', _("set requested key usage value"), HELP_TYPE_KU}, {"extended-key-usage", 'U', POPT_ARG_STRING, NULL, 'U', _("set requested extended key usage OID"), HELP_TYPE_EKU}, {"principal", 'K', POPT_ARG_STRING, NULL, 'K', _("set requested principal name"), HELP_TYPE_PRINCIPAL}, {"dns", 'D', POPT_ARG_STRING, NULL, 'D', _("set requested DNS name"), HELP_TYPE_HOSTNAME}, {"email", 'E', POPT_ARG_STRING, NULL, 'E', _("set requested email address"), HELP_TYPE_EMAIL}, {"ip-address", 'A', POPT_ARG_STRING, NULL, 'A', _("set requested IP address"), HELP_TYPE_IP}, {"challenge-password", 'L', POPT_ARG_STRING, NULL, 'L', _("an optional challenge password value"), NULL}, {"challenge-password-file", 'l', POPT_ARG_STRING, NULL, 'l', _("file which holds an optional challenge password value"), HELP_TYPE_FILENAME}, {"wait", 'w', POPT_ARG_NONE, NULL, 'w', _("try to wait for the certificate to be issued"), NULL}, {"wait-timeout", 0, POPT_ARG_INT, &timeout, 0, _("maximum time to wait for the certificate to be issued"), NULL}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; kctx = NULL; if ((kret = krb5_init_context(&kctx)) != 0) { kctx = NULL; printf(_("Error initializing Kerberos library: %s.\n"), error_message(kret)); return 1; } if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, category); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { poptarg = poptGetOptArg(pctx); switch (c) { case 'd': nss_scheme = NULL; dbdir = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (dbdir != NULL)) { dbdir = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, dbdir); } break; case 't': token = talloc_strdup(globals.tctx, poptarg); break; case 'n': nickname = talloc_strdup(globals.tctx, poptarg); break; case 'f': certfile = ensure_pem(globals.tctx, poptarg); break; case 'o': key_owner = talloc_strdup(globals.tctx, poptarg); break; case 'm': key_perms = talloc_strdup(globals.tctx, poptarg); break; case 'O': cert_owner = talloc_strdup(globals.tctx, poptarg); break; case 'M': cert_perms = talloc_strdup(globals.tctx, poptarg); break; case 'c': ca = talloc_strdup(globals.tctx, poptarg); break; case 'T': profile = talloc_strdup(globals.tctx, poptarg); break; case 'i': id = talloc_strdup(globals.tctx, poptarg); break; case 'I': new_id = talloc_strdup(globals.tctx, poptarg); break; case 'G': if ((strcasecmp(poptarg, "RSA") != 0) #ifdef CM_ENABLE_DSA && (strcasecmp(poptarg, "DSA") != 0) #endif #ifdef CM_ENABLE_EC && (strcasecmp(poptarg, "ECDSA") != 0) && (strcasecmp(poptarg, "EC") != 0) #endif ) { printf(_("No support for generating \"%s\" keys.\n"), poptarg); printf(_("Known key types include:")); printf(" RSA"); #ifdef CM_ENABLE_DSA printf(" DSA"); #endif #ifdef CM_ENABLE_EC printf(" EC"); #endif printf("\n"); return 1; } keytype = talloc_strdup(globals.tctx, poptarg); break; case 'g': keysize = atoi(poptarg); break; case 'N': subject = talloc_strdup(globals.tctx, poptarg); break; case 'u': kubit = cm_ku_from_name(poptarg); if (kubit == -1) { printf(_("Unrecognized keyUsage \"%s\".\n"), poptarg); return 1; } ku |= (1 << kubit); break; case 'U': oid = cm_oid_from_name(globals.tctx, poptarg); if ((oid == NULL) || (strspn(oid, "0123456789.") != strlen(oid))) { printf(_("Could not evaluate OID \"%s\".\n"), poptarg); return 1; } add_string(globals.tctx, &eku, oid); break; case 'K': kprinc = NULL; if (strlen(poptarg) > 0) { if ((kret = krb5_parse_name(kctx, poptarg, &kprinc)) != 0) { printf(_("Error parsing Kerberos " "principal name \"%s\": " "%s.\n"), poptarg, error_message(kret)); return 1; } kuprinc = NULL; if ((kret = krb5_unparse_name(kctx, kprinc, &kuprinc)) != 0) { printf(_("Error unparsing Kerberos " "principal name \"%s\": " "%s.\n"), poptarg, error_message(kret)); return 1; } add_string(globals.tctx, &principal, kuprinc); krb5_free_principal(kctx, kprinc); } else { add_string(globals.tctx, &principal, ""); } break; case 'D': add_string(globals.tctx, &dns, poptarg); break; case 'E': add_string(globals.tctx, &email, poptarg); break; case 'A': add_string(globals.tctx, &ipaddr, poptarg); break; case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'p': pinfile = talloc_strdup(globals.tctx, poptarg); break; case 'P': pin = talloc_strdup(globals.tctx, poptarg); break; case 'l': cpassfile = talloc_strdup(globals.tctx, poptarg); break; case 'L': cpass = talloc_strdup(globals.tctx, poptarg); break; case 'B': precommand = talloc_strdup(globals.tctx, poptarg); break; case 'C': postcommand = talloc_strdup(globals.tctx, poptarg); break; case 'a': p = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (p != NULL)) { p = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, p); } if (p != NULL) { add_string(globals.tctx, &anchor_dbs, p); } else { fprintf(stderr, _("%s: invalid value -- '%s'\n"), "request", poptarg); help(argv0, "request"); return 1; } break; case 'F': add_string(globals.tctx, &anchor_files, ensure_pem(globals.tctx, poptarg)); break; case 'w': waitreq++; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; default: if (c == ':') { fprintf(stderr, _("%s: option requires an argument -- '%c'\n"), category, optopt); } else { fprintf(stderr, _("%s: invalid option -- '%c'\n"), category, optopt); } help(argv0, category); return 1; } } if (c != -1) { help(argv0, category); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, category); return 1; } krb5_free_context(kctx); prep_bus(bus, category, verbose, argc, argv); if (id != NULL) { request = find_request_by_name(globals.tctx, bus, id, verbose); } else { request = find_request_by_storage(globals.tctx, bus, dbdir, nickname, token, certfile, verbose); } if (request == NULL) { if (id != NULL) { printf(_("No request found with specified " "nickname.\n")); help(argv0, category); return 1; } if (((dbdir != NULL) && (nickname == NULL)) || ((dbdir == NULL) && (nickname != NULL))) { printf(_("Database location or nickname " "specified without the other.\n")); help(argv0, category); return 1; } if ((dbdir != NULL) && (certfile != NULL)) { printf(_("Database directory and certificate " "file both specified.\n")); help(argv0, category); return 1; } if ((dbdir == NULL) && (nickname == NULL) && (certfile == NULL)) { printf(_("None of database directory and " "nickname or certificate file " "specified.\n")); help(argv0, category); return 1; } printf(_("No request found that matched arguments.\n")); return 1; } i = 0; if (key_owner != NULL) { param[i].key = CM_DBUS_PROP_KEY_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = key_owner; params[i] = ¶m[i]; i++; } if (key_perms != NULL) { param[i].key = CM_DBUS_PROP_KEY_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(key_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (cert_owner != NULL) { param[i].key = CM_DBUS_PROP_CERT_OWNER; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cert_owner; params[i] = ¶m[i]; i++; } if (cert_perms != NULL) { param[i].key = CM_DBUS_PROP_CERT_PERMS; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = strtol(cert_perms, NULL, 8); params[i] = ¶m[i]; i++; } if (keytype != NULL) { param[i].key = "KEY_TYPE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = keytype; params[i] = ¶m[i]; i++; } if (keysize > 0) { param[i].key = "KEY_SIZE"; param[i].value_type = cm_tdbusm_dict_n; param[i].value.n = keysize; params[i] = ¶m[i]; i++; } if (new_id != NULL) { param[i].key = "NICKNAME"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = new_id; params[i] = ¶m[i]; i++; } if (ca != NULL) { capath = find_ca_by_name(globals.tctx, bus, ca, verbose); if (capath == NULL) { printf(_("No CA with name \"%s\" found.\n"), ca); exit(1); } param[i].key = "CA"; param[i].value_type = cm_tdbusm_dict_p; param[i].value.s = talloc_strdup(globals.tctx, capath); params[i] = ¶m[i]; i++; } if (subject != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_SUBJECT; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = subject; params[i] = ¶m[i]; i++; } if (principal != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_PRINCIPAL; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = principal; params[i] = ¶m[i]; i++; } if (dns != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_HOSTNAME; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = dns; params[i] = ¶m[i]; i++; } if (email != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_EMAIL; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = email; params[i] = ¶m[i]; i++; } if (ipaddr != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_IP_ADDRESS; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = ipaddr; params[i] = ¶m[i]; i++; } if (ku != 0) { for (j = 0; (ku >> j) != 0; j++) { kustring[j] = ((ku >> j) & 1) ? '1' : '0'; } kustring[j] = '\0'; param[i].key = CM_DBUS_PROP_TEMPLATE_KU; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = kustring; params[i] = ¶m[i]; i++; } if (eku != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_EKU; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = eku; params[i] = ¶m[i]; i++; } if (pin != NULL) { param[i].key = "KEY_PIN"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pin; params[i] = ¶m[i]; i++; } if (pinfile != NULL) { param[i].key = "KEY_PIN_FILE"; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = pinfile; params[i] = ¶m[i]; i++; } if (cpass != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpass; params[i] = ¶m[i]; i++; } if (cpassfile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = cpassfile; params[i] = ¶m[i]; i++; } if (profile != NULL) { param[i].key = CM_DBUS_PROP_TEMPLATE_PROFILE; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = profile; params[i] = ¶m[i]; i++; } if (precommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_PRESAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = precommand; params[i] = ¶m[i]; i++; } if (postcommand != NULL) { param[i].key = CM_DBUS_PROP_CERT_POSTSAVE_COMMAND; param[i].value_type = cm_tdbusm_dict_s; param[i].value.s = postcommand; params[i] = ¶m[i]; i++; } if (anchor_files != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_FILES; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_files; params[i] = ¶m[i]; i++; } if (anchor_dbs != NULL) { param[i].key = CM_DBUS_PROP_ROOT_CERT_NSSDBS; param[i].value_type = cm_tdbusm_dict_as; param[i].value.as = anchor_dbs; params[i] = ¶m[i]; i++; } params[i] = NULL; if (i > 0) { req = prep_req(bus, request, CM_DBUS_REQUEST_INTERFACE, "modify"); if (cm_tdbusm_set_d(req, params) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_bp(rep, globals.tctx, &b, &new_request) != 0) { printf(_("Error parsing server response.\n")); exit(1); } request = new_request; dbus_message_unref(rep); if (!b) { nickname = find_request_name(globals.tctx, bus, request, verbose); printf(_("Error modifying \"%s\".\n"), nickname ? nickname : request); exit(1); } } rep = query_rep(bus, request, CM_DBUS_REQUEST_INTERFACE, "get_ca", verbose); if (cm_tdbusm_get_p(rep, globals.tctx, &capath) == 0) { ca = find_ca_name(globals.tctx, bus, capath, verbose); } else { ca = NULL; } nickname = find_request_name(globals.tctx, bus, request, verbose); if (query_rep_b(bus, request, CM_DBUS_REQUEST_INTERFACE, category, verbose, globals.tctx)) { if (ca != NULL) { printf(_("Resubmitting \"%s\" to \"%s\".\n"), nickname ? nickname : request, ca); } else { printf(_("Resubmitting \"%s\".\n"), nickname ? nickname : request); } if (waitreq) { return waitfor(globals.tctx, bus, request, timeout, verbose); } return 0; } else { if (ca != NULL) { printf(_("Error attempting to submit \"%s\" to " "\"%s\".\n"), request, ca); } else { printf(_("Error attempting to submit \"%s\".\n"), request); } return 1; } } static int rekey(const char *argv0, int argc, const char **argv) { return rekey_or_resubmit(argv0, "rekey", argc, argv); } static int resubmit(const char *argv0, int argc, const char **argv) { return rekey_or_resubmit(argv0, "resubmit", argc, argv); } static int refresh(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; DBusMessage *rep; const char *only_ca = DEFAULT_CA; char **requests, *p, *nickname, *ca_name; char *dbdir = NULL, *dbnickname = NULL, *certfile = NULL, *id = NULL; char *nss_scheme, *token = NULL; const char *capath; dbus_bool_t b, all = FALSE; char *s1, *s2, *s3, *s4; enum cm_state state; int verbose = 0, c, i; const char *poptarg; poptContext pctx; struct poptOption popts[] = { {"all", 'a', POPT_ARG_NONE, NULL, 'a', _("refresh information about all outstanding requests"), NULL}, #ifndef FORCE_CA {"ca", 'c', POPT_ARG_STRING, &only_ca, 0, _("refresh information only for requests using the specified CA configuration"), HELP_TYPE_NAME}, #endif {"dbdir", 'd', POPT_ARG_STRING, NULL, 'd', _("NSS database for key and cert"), HELP_TYPE_DIRECTORY}, {"nickname", 'n', POPT_ARG_STRING, NULL, 'n', _("nickname for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"token", 't', POPT_ARG_STRING, NULL, 't', _("optional token name for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"certfile", 'f', POPT_ARG_STRING, NULL, 'f', _("PEM file for certificate"), HELP_TYPE_FILENAME}, {"id", 'i', POPT_ARG_STRING, NULL, 'i', _("nickname for tracking request"), HELP_TYPE_ID}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "refresh"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { poptarg = poptGetOptArg(pctx); switch (c) { case 'c': only_ca = poptarg; break; case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'a': all = TRUE; nss_scheme = NULL; dbdir = NULL; dbnickname = NULL; certfile = NULL; id = NULL; break; case 'd': all = FALSE; nss_scheme = NULL; dbdir = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (dbdir != NULL)) { dbdir = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, dbdir); } break; case 't': token = talloc_strdup(globals.tctx, poptarg); break; case 'n': all = FALSE; dbnickname = talloc_strdup(globals.tctx, poptarg); break; case 'f': all = FALSE; certfile = ensure_pem(globals.tctx, poptarg); break; case 'i': all = FALSE; id = talloc_strdup(globals.tctx, poptarg); break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; default: if (c == ':') { fprintf(stderr, _("%s: option requires an argument -- '%c'\n"), "refresh", optopt); } else { fprintf(stderr, _("%s: invalid option -- '%c'\n"), "refresh", optopt); } help(argv0, "refresh"); return 1; } } if (c != -1) { help(argv0, "refresh"); return 1; } if (!all && (id == NULL) && ((dbdir == NULL) || (dbnickname == NULL)) && (certfile == NULL)) { printf(_("None of ID or database directory and nickname or " "certificate file specified.\n")); help(argv0, "refresh"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "refresh"); return 1; } prep_bus(bus, "refresh", verbose, argc, argv); if (only_ca != NULL) { capath = find_ca_by_name(globals.tctx, bus, only_ca, verbose); if (capath == NULL) { printf(_("No CA with name \"%s\" found.\n"), only_ca); return 1; } } requests = query_rep_ap(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "get_requests", verbose, globals.tctx); for (i = 0; (requests != NULL) && (requests[i] != NULL); i++) { /* Filter out based on the CA. */ ca_name = NULL; rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_ca", verbose); if (cm_tdbusm_get_p(rep, globals.tctx, &p) == 0) { ca_name = find_ca_name(globals.tctx, bus, p, verbose); } dbus_message_unref(rep); if (only_ca != NULL) { if (ca_name == NULL) { continue; } if (strcmp(only_ca, ca_name) != 0) { continue; } } /* Filter based on request name or storage. */ nickname = find_request_name(globals.tctx, bus, requests[i], verbose); if ((id != NULL) && (strcmp(nickname, id) != 0)) { continue; } if ((dbdir != NULL) || (dbnickname != NULL) || (certfile != NULL)) { rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_cert_storage_info", verbose); if (cm_tdbusm_get_ssosos(rep, globals.tctx, &s1, &s2, &s3, &s4) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if ((dbdir != NULL) || (dbnickname != NULL)) { if ((strcmp(s1, "NSSDB") != 0) || ((dbdir != NULL) && (strcmp(dbdir, s2) != 0)) || ((dbnickname != NULL) && (s3 != NULL) && (strcmp(dbnickname, s3) != 0)) || ((token != NULL) && (s4 != NULL) && (strcmp(token, s4) != 0))) { continue; } } if (certfile != NULL) { if ((strcmp(s1, "FILE") != 0) || (strcmp(certfile, s2) != 0)) { continue; } } } /* Get the status of this request. */ rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_status", verbose); if (cm_tdbusm_get_sb(rep, globals.tctx, &s1, &b) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); /* Filter out based on the current state. */ state = cm_store_state_from_string(s1); switch (state) { case CM_CA_WORKING: case CM_CA_UNREACHABLE: break; default: continue; break; } /* Tell the daemon to refresh for this request. */ b = query_rep_b(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "refresh", verbose, globals.tctx); if (b) { printf(_("Request ID '%s' being refreshed.\n"), nickname); } else { printf(_("Request ID '%s' NOT being refreshed.\n"), nickname); } } return 0; } /* Check if a CA is an SCEP CA. */ static dbus_bool_t ca_is_scep(void *parent, enum cm_tdbus_type bus, const char *nickname, int verbose) { char *busname, *s; if (nickname == NULL) { return FALSE; } busname = find_ca_by_name(parent, bus, nickname, verbose); if (busname == NULL) { return FALSE; } s = query_prop_s(bus, busname, CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_SCEP_RA_CERT, verbose, parent); if ((s != NULL) && (strlen(s) > 0)) { return TRUE; } s = query_prop_s(bus, busname, CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_SCEP_CA_CERT, verbose, parent); if ((s != NULL) && (strlen(s) > 0)) { return TRUE; } return FALSE; } static int list(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; enum cm_state state; DBusMessage *rep; char **requests, *s, *p, *nickname, *only_ca = DEFAULT_CA, *ca_name; char *dbdir = NULL, *dbnickname = NULL, *certfile = NULL, *id = NULL; char *nss_scheme, *token = NULL; const char *capath, *request; dbus_bool_t b; char *s1, *s2, *s3, *s4, *s5, *s6; long n1, n2; char **as, **as1, **as2, **as3, **as4, **as5, t[25]; int requests_only = 0, tracking_only = 0, verbose = 0, c, i, j; unsigned int k; char key_usages[LINE_MAX]; const char *poptarg; poptContext pctx; struct poptOption popts[] = { {"requests-only", 'r', POPT_ARG_NONE, NULL, 'r', _("list only information about outstanding requests"), NULL}, {"tracking-only", 't', POPT_ARG_NONE, NULL, 't', _("list only information about tracked certificates"), NULL}, #ifndef FORCE_CA {"ca", 'c', POPT_ARG_STRING, &only_ca, 0, _("list only requests and certs associated with this CA configuration"), HELP_TYPE_NAME}, #endif {"dbdir", 'd', POPT_ARG_STRING, NULL, 'd', _("NSS database for key and cert"), HELP_TYPE_DIRECTORY}, {"nickname", 'n', POPT_ARG_STRING, NULL, 'n', _("nickname for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"token", 't', POPT_ARG_STRING, NULL, 't', _("optional token name for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"certfile", 'f', POPT_ARG_STRING, NULL, 'f', _("PEM file for certificate"), HELP_TYPE_FILENAME}, {"id", 'i', POPT_ARG_STRING, NULL, 'i', _("nickname for tracking request"), HELP_TYPE_ID}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "list"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { poptarg = poptGetOptArg(pctx); switch (c) { case 'r': requests_only++; break; case 't': tracking_only++; break; case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'd': nss_scheme = NULL; dbdir = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (dbdir != NULL)) { dbdir = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, dbdir); } break; case 'n': dbnickname = talloc_strdup(globals.tctx, poptarg); break; case 'f': certfile = ensure_pem(globals.tctx, poptarg); break; case 'i': id = talloc_strdup(globals.tctx, poptarg); break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; default: if (c == ':') { fprintf(stderr, _("%s: option requires an argument -- '%c'\n"), "list", optopt); } else { fprintf(stderr, _("%s: invalid option -- '%c'\n"), "list", optopt); } help(argv0, "list"); return 1; } } if (c != -1) { help(argv0, "list"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "list"); return 1; } prep_bus(bus, "list", verbose, argc, argv); if (only_ca != NULL) { capath = find_ca_by_name(globals.tctx, bus, only_ca, verbose); if (capath == NULL) { printf(_("No CA with name \"%s\" found.\n"), only_ca); return 1; } } if (id != NULL) { request = find_request_by_name(globals.tctx, bus, id, verbose); if (request == NULL) { printf(_("No request found with specified " "nickname.\n")); return 1; } } else { request = find_request_by_storage(globals.tctx, bus, dbdir, dbnickname, token, certfile, verbose); if (request == NULL) { if (((dbdir != NULL) && (dbnickname != NULL)) || (certfile != NULL)) { printf(_("No request found that matched " "arguments.\n")); return 1; } } } requests = query_rep_ap(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "get_requests", verbose, globals.tctx); for (i = 0; (requests != NULL) && (requests[i] != NULL); i++) { continue; } printf(_("Number of certificates and requests being tracked: %d.\n"), i); for (i = 0; (requests != NULL) && (requests[i] != NULL); i++) { /* Filter out based on the CA. */ ca_name = NULL; rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_ca", verbose); if (cm_tdbusm_get_p(rep, globals.tctx, &p) == 0) { ca_name = find_ca_name(globals.tctx, bus, p, verbose); } dbus_message_unref(rep); if (only_ca != NULL) { if (ca_name == NULL) { continue; } if (strcmp(only_ca, ca_name) != 0) { continue; } } /* Get the status of this request. */ rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_status", verbose); if (cm_tdbusm_get_sb(rep, globals.tctx, &s, &b) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); /* Filter out based on the current state. */ state = cm_store_state_from_string(s); switch (state) { case CM_INVALID: printf(("'%s' is in an invalid state!\n"), s); continue; break; case CM_NEED_KEY_PAIR: case CM_NEED_KEY_GEN_PERMS: case CM_NEED_KEY_GEN_PIN: case CM_NEED_KEY_GEN_TOKEN: case CM_GENERATING_KEY_PAIR: case CM_HAVE_KEY_PAIR: case CM_NEED_KEYINFO: case CM_READING_KEYINFO: case CM_NEED_KEYINFO_READ_PIN: case CM_NEED_KEYINFO_READ_TOKEN: case CM_HAVE_KEYINFO: case CM_NEED_CSR: case CM_NEED_CSR_GEN_PIN: case CM_NEED_CSR_GEN_TOKEN: case CM_GENERATING_CSR: case CM_HAVE_CSR: case CM_NEED_SCEP_DATA: case CM_NEED_SCEP_GEN_PIN: case CM_NEED_SCEP_GEN_TOKEN: case CM_NEED_SCEP_ENCRYPTION_CERT: case CM_NEED_SCEP_RSA_CLIENT_KEY: case CM_GENERATING_SCEP_DATA: case CM_HAVE_SCEP_DATA: case CM_NEED_TO_SUBMIT: case CM_SUBMITTING: case CM_NEED_TO_SAVE_CERT: case CM_PRE_SAVE_CERT: case CM_START_SAVING_CERT: case CM_SAVING_CERT: case CM_NEED_CERTSAVE_PERMS: case CM_NEED_CERTSAVE_TOKEN: case CM_NEED_CERTSAVE_PIN: case CM_SAVED_CERT: case CM_POST_SAVED_CERT: case CM_NEED_TO_READ_CERT: case CM_READING_CERT: case CM_CA_WORKING: case CM_CA_REJECTED: case CM_CA_UNREACHABLE: case CM_CA_UNCONFIGURED: case CM_NEED_GUIDANCE: case CM_NEED_CA: case CM_NEWLY_ADDED: case CM_NEWLY_ADDED_START_READING_KEYINFO: case CM_NEWLY_ADDED_READING_KEYINFO: case CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN: case CM_NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN: case CM_NEWLY_ADDED_START_READING_CERT: case CM_NEWLY_ADDED_READING_CERT: case CM_NEWLY_ADDED_DECIDING: case CM_NEED_TO_SAVE_CA_CERTS: case CM_NEED_TO_SAVE_ONLY_CA_CERTS: case CM_START_SAVING_CA_CERTS: case CM_START_SAVING_ONLY_CA_CERTS: case CM_SAVING_CA_CERTS: case CM_SAVING_ONLY_CA_CERTS: case CM_NEED_CA_CERT_SAVE_PERMS: case CM_NEED_ONLY_CA_CERT_SAVE_PERMS: if (tracking_only) { continue; } break; case CM_MONITORING: case CM_NEED_TO_NOTIFY_VALIDITY: case CM_NOTIFYING_VALIDITY: case CM_NEED_TO_NOTIFY_REJECTION: case CM_NOTIFYING_REJECTION: case CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED: case CM_NOTIFYING_ISSUED_SAVE_FAILED: case CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED: case CM_NOTIFYING_ISSUED_CA_SAVE_FAILED: case CM_NEED_TO_NOTIFY_ISSUED_SAVED: case CM_NOTIFYING_ISSUED_SAVED: case CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED: case CM_NOTIFYING_ONLY_CA_SAVE_FAILED: if (requests_only) { continue; } break; } /* Basic info. */ nickname = find_request_name(globals.tctx, bus, requests[i], verbose); if ((id != NULL) && (strcmp(nickname, id) != 0)) { continue; } if ((dbdir != NULL) || (dbnickname != NULL) || (certfile != NULL)) { rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_cert_storage_info", verbose); if (cm_tdbusm_get_ssosos(rep, globals.tctx, &s1, &s2, &s3, &s4) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if ((dbdir != NULL) || (dbnickname != NULL)) { if ((strcmp(s1, "NSSDB") != 0) || ((dbdir != NULL) && (s2 != NULL) && (strcmp(dbdir, s2) != 0)) || ((dbnickname != NULL) && (s3 != NULL) && (strcmp(dbnickname, s3) != 0))) { continue; } } if (certfile != NULL) { if ((strcmp(s1, "FILE") != 0) || (strcmp(certfile, s2) != 0)) { continue; } } } printf(_("Request ID '%s':\n"), nickname); printf(_("\tstatus: %s\n"), s); rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_ca_error", verbose); if (cm_tdbusm_get_s(rep, globals.tctx, &s) == 0) { printf(_("\tca-error: %s\n"), s); } printf(_("\tstuck: %s\n"), b ? "yes" : "no"); /* Get key/cert storage info. */ rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_key_storage_info", verbose); if (cm_tdbusm_get_sososos(rep, globals.tctx, &s1, &s2, &s3, &s4) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); s5 = query_rep_s(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_key_pin", verbose, globals.tctx); if ((s5 != NULL) && (strlen(s5) == 0)) { s5 = NULL; } s6 = query_rep_s(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_key_pin_file", verbose, globals.tctx); if ((s6 != NULL) && (strlen(s6) == 0)) { s6 = NULL; } printf(_("\tkey pair storage: type=%s"), s1 ? s1 : _("NONE")); if (s2 != NULL) { printf(_(",location='%s'"), s2); } if (s3 != NULL) { printf(_(",nickname='%s'"), s3); } if (s4 != NULL) { printf(_(",token='%s'"), s4); } if (s5 != NULL) { printf(_(",pin set")); } if (s6 != NULL) { printf(_(",pinfile='%s'"), s6); } printf("\n"); rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_cert_storage_info", verbose); if (cm_tdbusm_get_ssosos(rep, globals.tctx, &s1, &s2, &s3, &s4) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); printf(_("\tcertificate: type=%s,location='%s'"), s1, s2); if (s3 != NULL) { printf(_(",nickname='%s'"), s3); } if (s4 != NULL) { printf(_(",token='%s'"), s4); } printf("\n"); /* Information about the CSR. */ if ((ca_name != NULL) && ca_is_scep(globals.tctx, bus, ca_name, verbose)) { s1 = query_prop_s(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_CSR, verbose, globals.tctx); if ((s1 != NULL) && (strlen(s1) > 0)) { s2 = thumbprint(s1, SEC_OID_MD5, 128); if ((s2 != NULL) && (strlen(s2) > 0)) { printf(_("\tsigning request thumbprint (MD5): %s\n"), s2); } free(s2); s2 = thumbprint(s1, SEC_OID_SHA1, 160); if ((s2 != NULL) && (strlen(s2) > 0)) { printf(_("\tsigning request thumbprint (SHA1): %s\n"), s2); } free(s2); } } /* Information from the certificate. */ rep = query_rep(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_cert_info", verbose); if (cm_tdbusm_get_sssnasasasnas(rep, globals.tctx, &s1, &s2, &s3, &n1, &as1, &as2, &as3, &n2, &as4) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (ca_name != NULL) { printf(_("\tCA: %s\n"), ca_name); } printf(_("\tissuer: %s\n"), s1); printf(_("\tsubject: %s\n"), s3); printf(_("\texpires: %s\n"), n1 ? cm_store_timestamp_from_time_for_display(n1, t) : _("unknown")); for (j = 0; (as1 != NULL) && (as1[j] != NULL); j++) { printf("%s%s%s", j == 0 ? _("\temail: ") : ",", as1[j], as1[j + 1] ? "" : "\n"); } for (j = 0; (as2 != NULL) && (as2[j] != NULL); j++) { printf("%s%s%s", j == 0 ? _("\tdns: ") : ",", as2[j], as2[j + 1] ? "" : "\n"); } for (j = 0; (as3 != NULL) && (as3[j] != NULL); j++) { printf("%s%s%s", j == 0 ? _("\tprincipal name: ") : ",", as3[j], as3[j + 1] ? "" : "\n"); } as5 = query_prop_as(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_TEMPLATE_IP_ADDRESS, verbose, globals.tctx); for (j = 0; (as5 != NULL) && (as5[j] != NULL); j++) { printf("%s%s%s", j == 0 ? _("\tIP address: ") : ",", as5[j], as5[j + 1] ? "" : "\n"); } if (n2 != 0) { const char *ku; memset(key_usages, '\0', sizeof(key_usages)); for (k = 0; (n2 >> k) != 0; k++) { if ((((n2 >> k) & 1) != 0) && ((ku = cm_ku_to_name(k)) != NULL)) { snprintf(key_usages + strlen(key_usages), sizeof(key_usages) - strlen(key_usages), "%s%s", strlen(key_usages) ? "," : "", ku); } } printf(_("\tkey usage: %s\n"), key_usages); } for (j = 0; (as4 != NULL) && (as4[j] != NULL); j++) { printf("%s%s%s", j == 0 ? _("\teku: ") : ",", cm_oid_to_name(NULL, as4[j]), as4[j + 1] ? "" : "\n"); } s1 = query_prop_s(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_CA_PROFILE, verbose, globals.tctx); if ((s1 != NULL) && (strlen(s1) > 0)) { printf(_("\tcertificate template/profile: %s\n"), s1); } as = query_prop_as(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_ROOT_CERT_FILES, verbose, globals.tctx); if (as != NULL) { printf(_("\troot certificates saved to files:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_OTHER_ROOT_CERT_FILES, verbose, globals.tctx); if (as != NULL) { printf(_("\tother root certificates saved to files:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_OTHER_CERT_FILES, verbose, globals.tctx); if (as != NULL) { printf(_("\tother certificates saved to files:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_ROOT_CERT_NSSDBS, verbose, globals.tctx); if (as != NULL) { printf(_("\troot certificates saved to databases:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS, verbose, globals.tctx); if (as != NULL) { printf(_("\tother root certificates saved to databases:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_OTHER_CERT_NSSDBS, verbose, globals.tctx); if (as != NULL) { printf(_("\tother certificates saved to databases:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } printf(_("\tpre-save command: %s\n"), query_prop_s(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_CERT_PRESAVE_COMMAND, verbose, globals.tctx)); printf(_("\tpost-save command: %s\n"), query_prop_s(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, CM_DBUS_PROP_CERT_POSTSAVE_COMMAND, verbose, globals.tctx)); printf(_("\ttrack: %s\n"), query_rep_b(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_monitoring", verbose, globals.tctx) ? "yes" : "no"); printf(_("\tauto-renew: %s\n"), query_rep_b(bus, requests[i], CM_DBUS_REQUEST_INTERFACE, "get_autorenew", verbose, globals.tctx) ? "yes" : "no"); } return 0; } static int status(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; DBusMessage *rep; char *dbdir = NULL, *dbnickname = NULL, *certfile = NULL, *id = NULL; char *nss_scheme, *token = NULL; const char *request; char *s; dbus_bool_t b; int verbose = 0, c; const char *poptarg; poptContext pctx; struct poptOption popts[] = { {"dbdir", 'd', POPT_ARG_STRING, NULL, 'd', _("NSS database for key and cert"), HELP_TYPE_DIRECTORY}, {"nickname", 'n', POPT_ARG_STRING, NULL, 'n', _("nickname for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"token", 't', POPT_ARG_STRING, NULL, 't', _("optional token name for NSS-based storage (only valid with -d)"), HELP_TYPE_NAME}, {"certfile", 'f', POPT_ARG_STRING, NULL, 'f', _("PEM file for certificate"), HELP_TYPE_FILENAME}, {"id", 'i', POPT_ARG_STRING, NULL, 'i', _("nickname for tracking request"), HELP_TYPE_ID}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "status"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { poptarg = poptGetOptArg(pctx); switch (c) { case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'd': nss_scheme = NULL; dbdir = ensure_nss(globals.tctx, poptarg, &nss_scheme); if ((nss_scheme != NULL) && (dbdir != NULL)) { dbdir = talloc_asprintf(globals.tctx, "%s:%s", nss_scheme, dbdir); } break; case 'n': dbnickname = talloc_strdup(globals.tctx, poptarg); break; case 'f': certfile = ensure_pem(globals.tctx, poptarg); break; case 'i': id = talloc_strdup(globals.tctx, poptarg); break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; } } if (c != -1) { help(argv0, "status"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "status"); return 1; } prep_bus(bus, "status", verbose, argc, argv); if (id != NULL) { request = find_request_by_name(globals.tctx, bus, id, verbose); if (request == NULL) { printf(_("No request found with specified " "nickname.\n")); return 1; } } else { request = find_request_by_storage(globals.tctx, bus, dbdir, dbnickname, token, certfile, verbose); if (request == NULL) { if (((dbdir != NULL) && (dbnickname != NULL)) || (certfile != NULL)) { printf(_("No request found that matched " "arguments.\n")); return 1; } else { printf(_("None of ID or database directory and " "and nickname or certificate file " "specified.\n")); help(argv0, "status"); return 1; } } } /* Get the status of this request. */ rep = query_rep(bus, request, CM_DBUS_REQUEST_INTERFACE, "get_status", verbose); if (cm_tdbusm_get_sb(rep, globals.tctx, &s, &b) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (verbose) { printf(_("State %s, stuck: %s.\n"), s, b ? "yes" : "no"); } return evaluate_status(s, b); } char * thumbprint(const char *s, SECOidTag tag, int bits) { unsigned char digest[CM_DIGEST_MAX], *u = NULL; char *t = NULL; char *ret = NULL; int length, i; const char *hexchars = "0123456789ABCDEF"; t = cm_submit_u_base64_from_text(s); if (t == NULL) { goto done; } length = strlen(t); if (length == 0) { goto done; } u = malloc(length); if (u == NULL) { goto done; } length = cm_store_base64_to_bin(t, -1, u, length); if (PK11_HashBuf(tag, digest, u, length) == SECSuccess) { free(t); t = malloc(bits / 4 + howmany(bits, 32)); if (t != NULL) { ret = t; for (i = 0; i < bits / 8; i++) { if ((i > 0) && ((i % 4) == 0)) { *t++ = ' '; } *t++ = hexchars[(digest[i] >> 4) & 0x0f]; *t++ = hexchars[(digest[i]) & 0x0f]; } *t++ = '\0'; } } done: free(u); return ret; } static int list_cas(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; char **cas, *s, *only_ca = DEFAULT_CA, *thumb, *ca_name; char **as; int c, i, j, verbose = 0; poptContext pctx; struct poptOption popts[] = { #ifndef FORCE_CA {"ca", 'c', POPT_ARG_STRING, &only_ca, 0, _("list only the specified CA configuration"), HELP_TYPE_NAME}, #endif {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "list-cas"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; default: if (c == ':') { fprintf(stderr, _("%s: option requires an argument -- '%c'\n"), "list-cas", optopt); } else { fprintf(stderr, _("%s: invalid option -- '%c'\n"), "list-cas", optopt); } help(argv0, "list-cas"); return 1; } } if (c != -1) { help(argv0, "list-cas"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "list-cas"); return 1; } prep_bus(bus, "list-cas", verbose, argc, argv); cas = query_rep_ap(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "get_known_cas", verbose, globals.tctx); for (i = 0; (cas != NULL) && (cas[i] != NULL); i++) { /* Filter out based on the CA. */ ca_name = find_ca_name(globals.tctx, bus, cas[i], verbose); if (ca_name != NULL) { if ((only_ca != NULL) && (strcmp(ca_name, only_ca) != 0)) { continue; } } printf(_("CA '%s':\n"), ca_name); if (verbose > 0) { s = query_prop_s(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_AKA, verbose, globals.tctx); if ((s != NULL) && (strlen(s) > 0)) { printf(_("\tself-identifies as: %s\n"), s); } } printf("\tis-default: %s\n", query_rep_b(bus, cas[i], CM_DBUS_CA_INTERFACE, "get_is_default", verbose, globals.tctx) ? "yes" : "no"); s = query_rep_s(bus, cas[i], CM_DBUS_CA_INTERFACE, "get_type", verbose, globals.tctx); printf(_("\tca-type: %s\n"), s); if (strcmp(s, "EXTERNAL") == 0) { printf(_("\thelper-location: %s\n"), query_rep_s(bus, cas[i], CM_DBUS_CA_INTERFACE, "get_location", verbose, globals.tctx)); } else { printf(_("\tnext-serial-number: %s\n"), query_rep_s(bus, cas[i], CM_DBUS_CA_INTERFACE, "get_serial", verbose, globals.tctx)); } as = query_rep_as(bus, cas[i], CM_DBUS_CA_INTERFACE, "get_issuer_names", verbose, globals.tctx); if (as != NULL) { printf(_("\tknown-issuer-names:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_DEFAULT_PROFILE, verbose, globals.tctx); if (as != NULL) { printf(_("\tknown profiles/templates/certtypes:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_ROOT_CERT_FILES, verbose, globals.tctx); if (as != NULL) { printf(_("\troot certificates saved to files:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_OTHER_ROOT_CERT_FILES, verbose, globals.tctx); if (as != NULL) { printf(_("\tother root certificates saved to files:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_OTHER_CERT_FILES, verbose, globals.tctx); if (as != NULL) { printf(_("\tother certificates saved to files:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_ROOT_CERT_NSSDBS, verbose, globals.tctx); if (as != NULL) { printf(_("\troot certificates saved to databases:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS, verbose, globals.tctx); if (as != NULL) { printf(_("\tother root certificates saved to databases:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } as = query_prop_as(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_OTHER_CERT_NSSDBS, verbose, globals.tctx); if (as != NULL) { printf(_("\tother certificates saved to databases:\n")); for (j = 0; as[j] != NULL; j++) { printf("\t\t%s\n", as[j]); } } s = query_prop_s(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_DEFAULT_PROFILE, verbose, globals.tctx); if ((s != NULL) && (strlen(s) > 0)) { printf(_("\tdefault profile/template/certtype: %s\n"), s); } if (ca_is_scep(globals.tctx, bus, ca_name, verbose)) { s = query_prop_s(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_SCEP_CA_IDENTIFIER, verbose, globals.tctx); if ((s != NULL) && (strlen(s) > 0)) { printf(_("\tSCEP CA identifier: %s\n"), s); } s = query_prop_s(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_SCEP_CA_CERT, verbose, globals.tctx); if ((s == NULL) || (strlen(s) == 0)) { s = query_prop_s(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_SCEP_RA_CERT, verbose, globals.tctx); } if ((s != NULL) && (strlen(s) > 0)) { thumb = thumbprint(s, SEC_OID_MD5, 128); if ((thumb != NULL) && (strlen(thumb) > 0)) { printf(_("\tSCEP CA certificate thumbprint (MD5): %s\n"), thumb); } free(thumb); thumb = thumbprint(s, SEC_OID_SHA1, 160); if ((thumb != NULL) && (strlen(thumb) > 0)) { printf(_("\tSCEP CA certificate thumbprint (SHA1): %s\n"), thumb); } free(thumb); } } s = query_prop_s(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_CA_PRESAVE_COMMAND, verbose, globals.tctx); if ((s != NULL) && (strlen(s) > 0)) { printf(_("\tpre-save command: %s\n"), s); } s = query_prop_s(bus, cas[i], CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_CA_POSTSAVE_COMMAND, verbose, globals.tctx); if ((s != NULL) && (strlen(s) > 0)) { printf(_("\tpost-save command: %s\n"), s); } } return 0; } static int refresh_ca(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; char **cas, *s, *only_ca = DEFAULT_CA; int c, i, verbose = 0; dbus_bool_t b, all = FALSE; poptContext pctx; struct poptOption popts[] = { #ifndef FORCE_CA {"ca", 'c', POPT_ARG_STRING, &only_ca, 0, _("refresh information about the CA configuration with this name"), HELP_TYPE_NAME}, #endif {"all", 'a', POPT_ARG_NONE, NULL, 'a', _("refresh information about all known CAs"), NULL}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "refresh-ca"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'a': all = TRUE; break; case 'c': all = FALSE; break; case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; } } if (c != -1) { help(argv0, "refresh-ca"); return 1; } if (!all && (only_ca == NULL)) { printf(_("Neither CA nickname nor -a flag specified.\n")); help(argv0, "refresh-ca"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "refresh-ca"); return 1; } prep_bus(bus, "refresh-ca", verbose, argc, argv); cas = query_rep_ap(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "get_known_cas", verbose, globals.tctx); for (i = 0; (cas != NULL) && (cas[i] != NULL); i++) { /* Filter out based on the CA. */ s = find_ca_name(globals.tctx, bus, cas[i], verbose); if ((s != NULL) && !all) { if ((only_ca != NULL) && (strcmp(s, only_ca) != 0)) { continue; } } b = query_rep_b(bus, cas[i], CM_DBUS_CA_INTERFACE, "refresh", verbose, globals.tctx); if (b) { if (s != NULL) { printf(_("Data for CA '%s' being refreshed.\n"), s); } else { printf(_("Data for unnamed CA being refreshed.\n")); } } else { printf(_("\terror refreshing CA data\n")); } } return 0; } #ifndef FORCE_CA static int add_ca(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; char *caname = NULL, *command = NULL, *p = NULL, *nickname; int c, verbose = 0; dbus_bool_t b; static DBusMessage *req, *rep; poptContext pctx; struct poptOption popts[] = { {"ca", 'c', POPT_ARG_STRING, &caname, 0, _("nickname to give to the new CA configuration"), HELP_TYPE_NAME}, {"command", 'e', POPT_ARG_STRING, &command, 0, _("helper command to run to communicate with CA"), HELP_TYPE_COMMAND}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "add-ca"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; } } if (c != -1) { help(argv0, "add-ca"); return 1; } if (caname == NULL) { printf(_("CA nickname not specified.\n")); help(argv0, "add-ca"); return 1; } if (command == NULL) { printf(_("CA helper command not specified.\n")); help(argv0, "add-ca"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "add-ca"); return 1; } prep_bus(bus, "add-ca", verbose, argc, argv); req = prep_req(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "add_known_ca"); if (cm_tdbusm_set_ssoas(req, caname, command, NULL) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_bp(rep, globals.tctx, &b, &p) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (b) { nickname = find_ca_name(globals.tctx, bus, p, verbose); printf(_("New CA \"%s\" added.\n"), nickname ? nickname : p); } else { printf(_("New CA could not be added.\n")); exit(1); } return 0; } static int add_scep_ca(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; char *caname = NULL, *url = NULL, *path = NULL, *id = NULL; char *root = NULL, *racert = NULL, *certs = NULL, *nickname, *command; const char *err; int c, prefer_non_renewal = 0, verbose = 0; dbus_bool_t b; static DBusMessage *req, *rep; poptContext pctx; struct poptOption popts[] = { {"ca", 'c', POPT_ARG_STRING, &caname, 0, _("nickname to give to the new CA configuration"), HELP_TYPE_NAME}, {"url", 'u', POPT_ARG_STRING, &url, 0, _("location of SCEP server"), HELP_TYPE_URL}, {"id", 'i', POPT_ARG_STRING, &id, 0, _("CA identifier"), HELP_TYPE_ID}, {"ca-cert", 'R', POPT_ARG_STRING, &root, 0, _("file containing CA's certificate"), HELP_TYPE_FILENAME}, {"ra-cert", 'r', POPT_ARG_STRING, &racert, 0, _("file containing RA's certificate"), HELP_TYPE_FILENAME}, {"other-certs", 'I', POPT_ARG_STRING, &certs, 0, _("file containing certificates in RA's certifying chain"), HELP_TYPE_FILENAME}, {"non-renewal", 'n', POPT_ARG_NONE, &prefer_non_renewal, 0, _("prefer to not use the SCEP Renewal feature"), NULL}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "add-scep-ca"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; } } if (c != -1) { help(argv0, "add-scep-ca"); return 1; } if (caname == NULL) { printf(_("CA nickname not specified.\n")); help(argv0, "add-scep-ca"); return 1; } if (url == NULL) { printf(_("server URL not specified.\n")); help(argv0, "add-scep-ca"); return 1; } if ((root == NULL) && (strncmp(url, "https:", 6) == 0)) { printf(_("HTTPS requires a CA certificate.\n")); help(argv0, "add-scep-ca"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "add-scep-ca"); return 1; } command = talloc_asprintf(globals.tctx, "%s -u %s %s %s %s %s %s %s %s", shell_escape(globals.tctx, CM_SCEP_HELPER_PATH), shell_escape(globals.tctx, url), root ? "-R" : "", root ? shell_escape(globals.tctx, root) : "", racert ? "-r" : "", racert ? shell_escape(globals.tctx, racert) : "", certs ? "-I" : "", certs ? shell_escape(globals.tctx, certs) : "", prefer_non_renewal ? "-n" : ""); if (command == NULL) { printf(_("Error building command line.\n")); exit(1); } prep_bus(bus, "add-scep-ca", verbose, argc, argv); req = prep_req(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "add_known_ca"); if (cm_tdbusm_set_ssoas(req, caname, command, NULL) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_bp(rep, globals.tctx, &b, &path) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (b) { nickname = find_ca_name(globals.tctx, bus, path, verbose); printf(_("New CA \"%s\" added.\n"), nickname ? nickname : path); if (id != NULL) { req = prep_req(bus, path, DBUS_INTERFACE_PROPERTIES, "Set"); if (cm_tdbusm_set_ssvs(req, CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_SCEP_CA_IDENTIFIER, id) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); err = dbus_message_get_error_name(rep); if (err != NULL) { printf(_("Error setting CA identifier.\n")); exit(1); } dbus_message_unref(rep); } } else { printf(_("New CA could not be added.\n")); exit(1); } return 0; } static int modify_ca(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; char *caname = NULL, *command = NULL, *nickname, *path; const char *err; int c, verbose = 0; static DBusMessage *req, *rep; poptContext pctx; struct poptOption popts[] = { {"ca", 'c', POPT_ARG_STRING, &caname, 0, _("nickname of the CA configuration"), HELP_TYPE_NAME}, {"command", 'e', POPT_ARG_STRING, &command, 0, _("updated helper command to run to communicate with CA"), HELP_TYPE_COMMAND}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "modify-ca"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; } } if (c != -1) { help(argv0, "modify-ca"); return 1; } if (caname == NULL) { printf(_("CA nickname not specified.\n")); help(argv0, "modify-ca"); return 1; } if (command == NULL) { printf(_("CA helper command not specified.\n")); help(argv0, "modify-ca"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "modify-ca"); return 1; } prep_bus(bus, "modify-ca", verbose, argc, argv); path = find_ca_by_name(globals.tctx, bus, caname, verbose); req = prep_req(bus, path, DBUS_INTERFACE_PROPERTIES, "Set"); if (cm_tdbusm_set_ssvs(req, CM_DBUS_CA_INTERFACE, CM_DBUS_PROP_EXTERNAL_HELPER, command) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); err = dbus_message_get_error_name(rep); if (err == NULL) { nickname = find_ca_name(globals.tctx, bus, path, verbose); printf(_("CA \"%s\" modified.\n"), nickname ? nickname : caname); } else { printf(_("CA could not be modified.\n")); exit(1); } dbus_message_unref(rep); return 0; } static int remove_ca(const char *argv0, int argc, const char **argv) { enum cm_tdbus_type bus = CM_DBUS_DEFAULT_BUS; char *caname = NULL, *path; int c, verbose = 0; dbus_bool_t b; static DBusMessage *req, *rep; poptContext pctx; struct poptOption popts[] = { {"ca", 'c', POPT_ARG_STRING, &caname, 0, _("nickname of CA configuration to remove"), HELP_TYPE_NAME}, {"session", 's', POPT_ARG_NONE, NULL, 's', _("connect to the certmonger service on the session bus"), NULL}, {"system", 'S', POPT_ARG_NONE, NULL, 'S', _("connect to the certmonger service on the system bus"), NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; if ((getenv(CERTMONGER_PVT_ADDRESS_ENV) != NULL) && (strlen(getenv(CERTMONGER_PVT_ADDRESS_ENV)) > 0)) { bus = cm_tdbus_private; } pctx = poptGetContext(argv0, argc, argv, popts, 0); if (pctx == NULL) { help(argv0, "remove-ca"); return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'v': verbose++; break; case 'H': poptPrintHelp(pctx, stdout, 0); return 1; break; } } if (c != -1) { help(argv0, "remove-ca"); return 1; } if (caname == NULL) { printf(_("CA nickname not specified.\n")); help(argv0, "remove-ca"); return 1; } if (poptPeekArg(pctx) != NULL) { printf(_("Error: unused extra arguments were supplied.\n")); help(argv0, "remove-ca"); return 1; } prep_bus(bus, "remove-ca", verbose, argc, argv); path = find_ca_by_name(globals.tctx, bus, caname, verbose); if (path == NULL) { printf(_("No CA with name \"%s\" found.\n"), caname); return 1; } req = prep_req(bus, CM_DBUS_BASE_PATH, CM_DBUS_BASE_INTERFACE, "remove_known_ca"); if (cm_tdbusm_set_p(req, path) != 0) { printf(_("Error setting request arguments.\n")); exit(1); } rep = send_req(req, verbose); if (cm_tdbusm_get_b(rep, globals.tctx, &b) != 0) { printf(_("Error parsing server response.\n")); exit(1); } dbus_message_unref(rep); if (b) { printf(_("CA \"%s\" removed.\n"), caname); } else { printf(_("CA could not be removed.\n")); exit(1); } return 0; } #endif static struct { const char *verb; int (*fn)(const char *, int, const char **); } verbs[] = { {"request", request}, {"start-tracking", start_tracking}, {"stop-tracking", stop_tracking}, {"resubmit", resubmit}, {"rekey", rekey}, {"refresh", refresh}, {"list", list}, {"status", status}, #ifndef FORCE_CA {"add-ca", add_ca}, {"add-scep-ca", add_scep_ca}, #endif {"list-cas", list_cas}, #ifndef FORCE_CA {"modify-ca", modify_ca}, #endif {"refresh-ca", refresh_ca}, #ifndef FORCE_CA {"remove-ca", remove_ca}, #endif }; static void help(const char *twopartcmd, const char *category) { unsigned int i, j; const char *general_help[] = { N_("%s - client certificate enrollment tool\n"), NULL, }; const char *request_help[] = { N_("Usage: %s request [options]\n"), "\n", N_("Required arguments:\n"), N_("* If using an NSS database for storage:\n"), N_(" -d DIR NSS database for key and cert\n"), N_(" -n NAME nickname for NSS-based storage (only valid with -d)\n"), N_(" -t NAME optional token name for NSS-based storage (only valid with -d)\n"), N_("* If using files for storage:\n"), N_(" -k FILE PEM file for private key\n"), N_(" -f FILE PEM file for certificate (only valid with -k)\n"), N_("* If keys are to be encrypted:\n"), N_(" -p FILE file which holds the encryption PIN\n"), N_(" -P PIN PIN value\n"), "\n", N_("Optional arguments:\n"), N_("* Certificate handling settings:\n"), N_(" -I NAME nickname to assign to the request\n"), N_(" -G TYPE type of key to be generated if one is not already in place\n"), N_(" -g SIZE size of key to be generated if one is not already in place\n"), N_(" -r attempt to renew the certificate when expiration nears (default)\n"), N_(" -R don't attempt to renew the certificate when expiration nears\n"), #ifndef FORCE_CA N_(" -c CA use the specified CA rather than the default\n"), #endif N_(" -T PROFILE ask the CA to process the request using the named profile or template\n"), N_("* Parameters for the signing request:\n"), N_(" -N NAME set requested subject name (default: CN=)\n"), N_(" -U EXTUSAGE set requested extended key usage OID\n"), N_(" -u KEYUSAGE set requested key usage value\n"), N_(" -K NAME set requested principal name\n"), N_(" -D DNSNAME set requested DNS name\n"), N_(" -E EMAIL set requested email address\n"), N_(" -A ADDRESS set requested IP address\n"), N_(" -l FILE file which holds an optional challenge password\n"), N_(" -L PASSWORD an optional challenge password value\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -B command to run before saving the certificate\n"), N_(" -C command to run after saving the certificate\n"), N_(" -F file in which to store the CA's certificates\n"), N_(" -a NSS database in which to store the CA's certificates\n"), N_(" -w try to wait for the certificate to be issued\n"), N_(" -v report all details of errors\n"), NULL, }; const char *start_tracking_help[] = { N_("Usage: %s start-tracking [options]\n"), "\n", N_("Required arguments:\n"), N_("* If modifying an existing request:\n"), N_(" -i NAME nickname of an existing tracking request\n"), N_("* If using an NSS database for storage:\n"), N_(" -d DIR NSS database for key and cert\n"), N_(" -n NAME nickname for NSS-based storage (only valid with -d)\n"), N_(" -t NAME optional token name for NSS-based storage (only valid with -d)\n"), N_("* If using files for storage:\n"), N_(" -k FILE PEM file for private key\n"), N_(" -f FILE PEM file for certificate (only valid with -k)\n"), N_("* If keys are encrypted:\n"), N_(" -p FILE file which holds the encryption PIN\n"), N_(" -P PIN PIN value\n"), "\n", N_("Optional arguments:\n"), N_("* Certificate handling settings:\n"), N_(" -I NAME nickname to give to tracking request\n"), N_(" -r attempt to renew the certificate when expiration nears (default)\n"), N_(" -R don't attempt to renew the certificate when expiration nears\n"), #ifndef FORCE_CA N_(" -c CA use the specified CA rather than the default\n"), #endif N_(" -T PROFILE ask the CA to process the request using the named profile or template\n"), N_("* Parameters for the signing request at renewal time:\n"), N_(" -U EXTUSAGE override requested extended key usage OID\n"), N_(" -u KEYUSAGE set requested key usage value\n"), N_(" -K NAME override requested principal name\n"), N_(" -D DNSNAME override requested DNS name\n"), N_(" -E EMAIL override requested email address\n"), N_(" -A ADDRESS override requested IP address\n"), N_(" -l FILE file which holds an optional challenge password\n"), N_(" -L PASSWORD an optional challenge password value\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -B command to run before saving the certificate\n"), N_(" -C command to run after saving the certificate\n"), N_(" -F file in which to store the CA's certificates\n"), N_(" -a NSS database in which to store the CA's certificates\n"), N_(" -w try to wait for the certificate to be issued\n"), N_(" -v report all details of errors\n"), NULL, }; const char *stop_tracking_help[] = { N_("Usage: %s stop-tracking [options]\n"), "\n", N_("Required arguments:\n"), N_("* By request identifier:\n"), N_(" -i NAME nickname for tracking request\n"), N_("* If using an NSS database for storage:\n"), N_(" -d DIR NSS database for key and cert\n"), N_(" -n NAME nickname for NSS-based storage (only valid with -d)\n"), N_(" -t NAME optional token name for NSS-based storage (only valid with -d)\n"), N_("* If using files for storage:\n"), N_(" -k FILE PEM file for private key\n"), N_(" -f FILE PEM file for certificate (only valid with -k)\n"), "\n", N_("Optional arguments:\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; const char *resubmit_help[] = { N_("Usage: %s resubmit [options]\n"), "\n", N_("Required arguments:\n"), N_("* By request identifier:\n"), N_(" -i NAME nickname for tracking request\n"), N_("* If using an NSS database for storage:\n"), N_(" -d DIR NSS database for key and cert\n"), N_(" -n NAME nickname for NSS-based storage (only valid with -d)\n"), N_(" -t NAME optional token name for NSS-based storage (only valid with -d)\n"), N_("* If using files for storage:\n"), N_(" -f FILE PEM file for certificate\n"), "\n", N_("* If keys are encrypted:\n"), N_(" -p FILE file which holds the encryption PIN\n"), N_(" -P PIN PIN value\n"), "\n", N_("* New parameter values for the signing request:\n"), N_(" -N NAME set requested subject name (default: CN=)\n"), N_(" -U EXTUSAGE set requested extended key usage OID\n"), N_(" -u KEYUSAGE set requested key usage value\n"), N_(" -K NAME set requested principal name\n"), N_(" -D DNSNAME set requested DNS name\n"), N_(" -E EMAIL set requested email address\n"), N_(" -A ADDRESS set requested IP address\n"), N_(" -l FILE file which holds an optional challenge password\n"), N_(" -L PASSWORD an optional challenge password value\n"), "\n", N_("Optional arguments:\n"), N_("* Certificate handling settings:\n"), N_(" -I NAME new nickname to give to tracking request\n"), #ifndef FORCE_CA N_(" -c CA use the specified CA rather than the current one\n"), #endif N_(" -T PROFILE ask the CA to process the request using the named profile or template\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -B command to run before saving the certificate\n"), N_(" -C command to run after saving the certificate\n"), N_(" -F file in which to store the CA's certificates\n"), N_(" -a NSS database in which to store the CA's certificates\n"), N_(" -w try to wait for the certificate to be issued\n"), N_(" -v report all details of errors\n"), NULL, }; const char *rekey_help[] = { N_("Usage: %s rekey [options]\n"), "\n", N_("Required arguments:\n"), N_("* By request identifier:\n"), N_(" -i NAME nickname for tracking request\n"), N_("* If using an NSS database for storage:\n"), N_(" -d DIR NSS database for key and cert\n"), N_(" -n NAME nickname for NSS-based storage (only valid with -d)\n"), N_(" -t NAME optional token name for NSS-based storage (only valid with -d)\n"), N_("* If using files for storage:\n"), N_(" -f FILE PEM file for certificate\n"), "\n", N_("* If keys are encrypted:\n"), N_(" -p FILE file which holds the encryption PIN\n"), N_(" -P PIN PIN value\n"), "\n", N_("* New parameter values for the signing request:\n"), N_(" -N NAME set requested subject name (default: CN=)\n"), N_(" -U EXTUSAGE set requested extended key usage OID\n"), N_(" -u KEYUSAGE set requested key usage value\n"), N_(" -K NAME set requested principal name\n"), N_(" -D DNSNAME set requested DNS name\n"), N_(" -E EMAIL set requested email address\n"), N_(" -A ADDRESS set requested IP address\n"), N_(" -l FILE file which holds an optional challenge password\n"), N_(" -L PASSWORD an optional challenge password value\n"), "\n", N_("Optional arguments:\n"), N_("* Certificate handling settings:\n"), N_(" -I NAME new nickname to give to tracking request\n"), #ifndef FORCE_CA N_(" -c CA use the specified CA rather than the current one\n"), #endif N_(" -T PROFILE ask the CA to process the request using the named profile or template\n"), N_(" -G TYPE type of new key to be generated\n"), N_(" -g SIZE size of new key to be generated\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -B command to run before saving the certificate\n"), N_(" -C command to run after saving the certificate\n"), N_(" -F file in which to store the CA's certificates\n"), N_(" -a NSS database in which to store the CA's certificates\n"), N_(" -w try to wait for the certificate to be issued\n"), N_(" -v report all details of errors\n"), NULL, }; const char *list_help[] = { N_("Usage: %s list [options]\n"), "\n", N_("Optional arguments:\n"), N_("* General options:\n"), #ifndef FORCE_CA N_(" -c CA list only requests and certs associated with this CA\n"), #endif N_(" -r list only information about outstanding requests\n"), N_(" -t list only information about tracked certificates\n"), N_("* If selecting a specific request:\n"), N_(" -i NAME nickname for tracking request\n"), N_("* If using an NSS database for storage:\n"), N_(" -d DIR only list requests and certs which use this NSS database\n"), N_(" -n NAME only list requests and certs which use this nickname\n"), N_("* If using files for storage:\n"), N_(" -f FILE only list requests and certs stored in this PEM file\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; const char *refresh_help[] = { N_("Usage: %s refresh [options]\n"), "\n", N_("* General options:\n"), N_(" -a refresh information about all outstanding requests\n"), "\n", N_("Required arguments:\n"), N_("* By request identifier:\n"), N_(" -i NAME nickname for tracking request\n"), N_("* If using an NSS database for storage:\n"), N_(" -d DIR NSS database for key and cert\n"), N_(" -n NAME nickname for NSS-based storage (only valid with -d)\n"), N_(" -t NAME optional token name for NSS-based storage (only valid with -d)\n"), N_("* If using files for storage:\n"), N_(" -f FILE PEM file for certificate\n"), "\n", N_("Optional arguments:\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_(" -v report all details of errors\n"), NULL, }; const char *status_help[] = { N_("Usage: %s status [options]\n"), "\n", N_("Optional arguments:\n"), N_("* Selecting a specific request:\n"), N_(" -i NAME nickname for tracking request\n"), N_("* When using an NSS database for storage:\n"), N_(" -d DIR return status for the request in this NSS database\n"), N_(" -n NAME return status for cert which uses this nickname\n"), N_("* When using files for storage:\n"), N_(" -f FILE return status for cert stored in this PEM file\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; const char *list_cas_help[] = { N_("Usage: %s list-cas [options]\n"), "\n", N_("Optional arguments:\n"), #ifndef FORCE_CA N_("* General options:\n"), N_(" -c CA list only information about the CA with this name\n"), #endif N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; const char *refresh_ca_help[] = { N_("Usage: %s refresh-ca [options]\n"), "\n", N_("Optional arguments:\n"), #ifndef FORCE_CA N_("* General options:\n"), N_(" -c CA refresh information about the CA with this name\n"), N_(" -a refresh information about all known CAs\n"), #endif N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; #ifndef FORCE_CA const char *add_ca_help[] = { N_("Usage: %s add-ca [options]\n"), "\n", N_("Optional arguments:\n"), N_("* General options:\n"), N_(" -c CA nickname to give to the new CA configuration\n"), N_(" -e CMD helper command to run to communicate with CA\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; const char *add_scep_ca_help[] = { N_("Usage: %s add-scep-ca [options]\n"), "\n", N_("Optional arguments:\n"), N_("* General options:\n"), N_(" -c CA nickname to give to the new CA configuration\n"), N_(" -u URL location of SCEP server\n"), N_(" -i ID CA identifier\n"), N_(" -R FILE file containing CA's certificate\n"), N_(" -r FILE file containing RA's certificate\n"), N_(" -I FILE file containing certificates in RA's certifying chain\n"), N_(" -n prefer not to use the SCEP Renewal feature\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; const char *modify_ca_help[] = { N_("Usage: %s modify-ca [options]\n"), "\n", N_("Optional arguments:\n"), N_("* General options:\n"), N_(" -c CA nickname of the CA configuration\n"), N_(" -e CMD updated helper command to run to communicate with CA\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; const char *remove_ca_help[] = { N_("Usage: %s remove-ca [options]\n"), "\n", N_("Optional arguments:\n"), N_("* General options:\n"), N_(" -c CA nickname of CA configuration to remove\n"), N_("* Bus options:\n"), N_(" -S connect to the certmonger service on the system bus\n"), N_(" -s connect to the certmonger service on the session bus\n"), N_("* Other options:\n"), N_(" -v report all details of errors\n"), NULL, }; #endif struct { const char *category; const char **msgs; const char *brief; } msgs[] = { {NULL, general_help, N_("Usage: %s command [options]\n")}, {"request", request_help, N_("request a new certificate from a CA\n")}, {"start-tracking", start_tracking_help, N_("begin monitoring an already-issued certificate\n")}, {"stop-tracking", stop_tracking_help, N_("stop monitoring a certificate\n")}, {"resubmit", resubmit_help, N_("resubmit an in-progress enrollment request, or start a new one\n")}, {"rekey", rekey_help, N_("generate a new private key and replace a certificate\n")}, {"refresh", refresh_help, N_("check on the status of an in-progress enrollment request\n")}, {"list", list_help, N_("list certificates being monitored and requested\n")}, {"status", status_help, N_("check the status of a certificate being monitored or requested\n")}, #ifndef FORCE_CA {"add-ca", add_ca_help, N_("add a CA configuration\n")}, {"add-scep-ca", add_scep_ca_help, N_("add an SCEP CA configuration\n")}, #endif {"list-cas", list_cas_help, N_("list known CA configurations\n")}, #ifndef FORCE_CA {"modify-ca", modify_ca_help, N_("modify a CA configuration\n")}, #endif {"refresh-ca", refresh_ca_help, N_("refresh cache of all information obtained from a CA\n")}, #ifndef FORCE_CA {"remove-ca", remove_ca_help, N_("remove a CA configuration\n")}, #endif }; char *cmd; cmd = strdup(twopartcmd); if (cmd == NULL) { return; } cmd[strcspn(cmd, " \t")] = '\0'; for (i = 0; i < sizeof(msgs) / sizeof(msgs[0]); i++) { if ((category != NULL) && (msgs[i].category != NULL) && (strcmp(category, msgs[i].category) != 0)) { continue; } if (category == NULL) { if (msgs[i].category != NULL) { printf("%-15s\t", msgs[i].category); } else { for (j = 0; msgs[i].msgs[j] != NULL; j++) { printf(_(msgs[i].msgs[j]), cmd); } printf("\n"); } printf(_(msgs[i].brief), cmd); } else { if (i > 0) { printf("\n"); } for (j = 0; msgs[i].msgs[j] != NULL; j++) { printf(_(msgs[i].msgs[j]), cmd); } } } free(cmd); } int main(int argc, const char **argv) { const char *p, *argv1; char poptname[LINE_MAX]; unsigned int i; int ret; #ifdef ENABLE_NLS bindtextdomain(PACKAGE, MYLOCALEDIR); #endif NSS_NoDB_Init(NULL); p = argv[0]; if (strchr(p, '/') != NULL) { p = strrchr(p, '/') + 1; } globals.argv0 = p; if (argc > 1) { globals.verb = argv[1]; snprintf(poptname, sizeof(poptname), "%s %s", globals.argv0, globals.verb); globals.tctx = talloc_new(NULL); for (i = 0; i < sizeof(verbs) / sizeof(verbs[0]); i++) { if (strcmp(verbs[i].verb, globals.verb) == 0) { argv1 = argv[1]; argv[1] = poptname; ret = (*verbs[i].fn)(poptname, argc - 1, argv + 1); argv[1] = argv1; return ret; } } fprintf(stderr, _("%s: unrecognized command\n"), globals.verb); if (globals.verb[0] == '-') { help(globals.argv0, NULL); } talloc_free(globals.tctx); globals.tctx = NULL; return 1; } else { help(globals.argv0, NULL); return 1; } } certmonger-0.78.6/src/dogtag-ipa.h0000664000175000017500000000146712645513264013700 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmdogtagipa_h #define cmdogtagipa_h void cm_dogtag_ipa_hostver(const char **host, const char **dogtag_version); #endif certmonger-0.78.6/src/dogtag-ipa.c0000664000175000017500000000254012645513264013664 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include "prefs.h" #include "util.h" #include "dogtag-ipa.h" #define IPACONFIG "/etc/ipa/default.conf" #define IPASECTION "dogtag" void cm_dogtag_ipa_hostver(const char **host, const char **dogtag_version) { static char *ipaconfig; if (ipaconfig == NULL) { ipaconfig = read_config_file(IPACONFIG); } if (ipaconfig != NULL) { *host = get_config_entry(ipaconfig, "global", "host"); if (*dogtag_version == NULL) { *dogtag_version = get_config_entry(ipaconfig, "global", "dogtag_version"); } } else { *host = NULL; *dogtag_version = NULL; } } certmonger-0.78.6/src/submit-h.h0000664000175000017500000000430412645513264013405 00000000000000/* * Copyright (C) 2010,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmith_h #define cmsubmith_h struct cm_submit_h_context; enum cm_submit_h_opt_env_modify { cm_submit_h_env_modify_off, cm_submit_h_env_modify_on }; enum cm_submit_h_opt_negotiate { cm_submit_h_negotiate_off, cm_submit_h_negotiate_on }; enum cm_submit_h_opt_delegate { cm_submit_h_delegate_off, cm_submit_h_delegate_on }; enum cm_submit_h_opt_clientauth { cm_submit_h_clientauth_off, cm_submit_h_clientauth_on }; enum cm_submit_h_opt_curl_verbose { cm_submit_h_curl_verbose_off, cm_submit_h_curl_verbose_on }; struct cm_submit_h_context *cm_submit_h_init(void *parent, const char *method, const char *uri, const char *args, const char *content_type, const char *accept, const char *cainfo, const char *capath, const char *sslcert, const char *sslkey, const char *sslpass, enum cm_submit_h_opt_negotiate neg, enum cm_submit_h_opt_delegate del, enum cm_submit_h_opt_clientauth cli, enum cm_submit_h_opt_env_modify env, enum cm_submit_h_opt_curl_verbose verbose); void cm_submit_h_run(struct cm_submit_h_context *ctx); int cm_submit_h_response_code(struct cm_submit_h_context *ctx); int cm_submit_h_result_code(struct cm_submit_h_context *ctx); const char *cm_submit_h_result_code_text(struct cm_submit_h_context *ctx); const char *cm_submit_h_results(struct cm_submit_h_context *ctx, int *length); const char *cm_submit_h_result_type(struct cm_submit_h_context *ctx); #endif certmonger-0.78.6/src/submit-h.c0000664000175000017500000002744212645513264013410 00000000000000/* * Copyright (C) 2010,2011,2012,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "submit-e.h" #include "submit-h.h" #if HAVE_DECL_CURLOPT_KEYPASSWD #define CM_CURLOPT_PKI_PASSWD CURLOPT_KEYPASSWD #else #if HAVE_DECL_CURLOPT_SSLKEYPASSWD #define CM_CURLOPT_PKI_PASSWD CURLOPT_SSLKEYPASSWD #else #if HAVE_DECL_CURLOPT_SSLCERTPASSWD #define CM_CURLOPT_PKI_PASSWD CURLOPT_SSLCERTPASSWD #endif #endif #endif struct cm_submit_h_context { int ret; long response_code; char *method, *uri, *args, *accept, *ctype, *cainfo, *capath, *result; int result_length; char *sslcert, *sslkey, *sslpass; enum cm_submit_h_opt_negotiate negotiate; enum cm_submit_h_opt_delegate negotiate_delegate; enum cm_submit_h_opt_clientauth client_auth; enum cm_submit_h_opt_env_modify modify_env; enum cm_submit_h_opt_curl_verbose verbose; CURL *curl; }; struct cm_submit_h_context * cm_submit_h_init(void *parent, const char *method, const char *uri, const char *args, const char *content_type, const char *accept, const char *cainfo, const char *capath, const char *sslcert, const char *sslkey, const char *sslpass, enum cm_submit_h_opt_negotiate neg, enum cm_submit_h_opt_delegate del, enum cm_submit_h_opt_clientauth cli, enum cm_submit_h_opt_env_modify env, enum cm_submit_h_opt_curl_verbose verbose) { struct cm_submit_h_context *ctx; ctx = talloc_ptrtype(parent, ctx); if (ctx != NULL) { memset(ctx, 0, sizeof(*ctx)); ctx->method = talloc_strdup(ctx, method); ctx->uri = talloc_strdup(ctx, uri); ctx->args = args ? talloc_strdup(ctx, args) : NULL; ctx->ctype = content_type ? talloc_strdup(ctx, content_type) : NULL; ctx->accept = accept ? talloc_strdup(ctx, accept) : NULL; ctx->cainfo = cainfo ? talloc_strdup(ctx, cainfo) : NULL; ctx->capath = capath ? talloc_strdup(ctx, capath) : NULL; ctx->sslcert = sslcert ? talloc_strdup(ctx, sslcert) : NULL; ctx->sslkey = sslkey ? talloc_strdup(ctx, sslkey) : NULL; ctx->sslpass = sslpass ? talloc_strdup(ctx, sslpass) : NULL; ctx->curl = NULL; ctx->ret = -1; ctx->response_code = 0; ctx->result = NULL; ctx->negotiate = neg; ctx->negotiate_delegate = del; ctx->client_auth = cli; ctx->modify_env = env; ctx->verbose = verbose; } return ctx; } static uint append_result(char *in, uint size, uint nmemb, struct cm_submit_h_context *ctx) { uint n; char *data; if (size < nmemb) { n = nmemb; nmemb = size; size = n; } for (n = 0; n < nmemb; n++) { data = talloc_realloc_size(ctx, ctx->result, ctx->result_length + size + 1); if (data == NULL) { return n * size; } memcpy(data + ctx->result_length, in + n * size, size); data[ctx->result_length + size] = '\0'; ctx->result = data; ctx->result_length += size; } return n * size; } void cm_submit_h_run(struct cm_submit_h_context *ctx) { struct curl_slist *headers = NULL; char *uri, *header; if (ctx->curl != NULL) { curl_easy_cleanup(ctx->curl); } if ((ctx->modify_env == cm_submit_h_env_modify_on) & (ctx->cainfo != NULL)) { setenv("SSL_DIR", ctx->cainfo, 1); } ctx->curl = curl_easy_init(); if (ctx->curl != NULL) { if (ctx->verbose) { curl_easy_setopt(ctx->curl, CURLOPT_VERBOSE, 1L); } if ((ctx->cainfo != NULL) || (ctx->capath != NULL)) { curl_easy_setopt(ctx->curl, CURLOPT_SSL_VERIFYPEER, 1L); curl_easy_setopt(ctx->curl, CURLOPT_SSL_VERIFYHOST, 2L); } if (ctx->cainfo != NULL) { curl_easy_setopt(ctx->curl, CURLOPT_CAINFO, ctx->cainfo); } if (ctx->capath != NULL) { curl_easy_setopt(ctx->curl, CURLOPT_CAPATH, ctx->capath); } if (strcasecmp(ctx->method, "GET") == 0) { uri = talloc_asprintf(ctx, "%s%s%s", ctx->uri, ctx->args ? "?" : "", ctx->args ? ctx->args : ""); curl_easy_setopt(ctx->curl, CURLOPT_URL, uri); curl_easy_setopt(ctx->curl, CURLOPT_HTTPGET, 1L); } else { curl_easy_setopt(ctx->curl, CURLOPT_URL, ctx->uri); curl_easy_setopt(ctx->curl, CURLOPT_HTTPGET, 0L); if ((ctx->args != NULL) && (strlen(ctx->args) > 0)) { curl_easy_setopt(ctx->curl, CURLOPT_POSTFIELDS, ctx->args); } } if (ctx->negotiate == cm_submit_h_negotiate_on) { #if defined(CURLOPT_HTTPAUTH) && defined(CURLAUTH_GSSNEGOTIATE) curl_easy_setopt(ctx->curl, CURLOPT_HTTPAUTH, CURLAUTH_GSSNEGOTIATE); #else cm_log(-1, "warning: libcurl doesn't appear to support " "Negotiate authentication, continuing\n"); #endif #if defined(CURLOPT_GSSAPI_DELEGATION) && defined(CURLGSSAPI_DELEGATION_FLAG) /* The default before CURLOPT_GSSAPI_DELEGATION existed * was CURLGSSAPI_DELEGATION_FLAG, so we should be fine * if it's not defined. */ curl_easy_setopt(ctx->curl, CURLOPT_GSSAPI_DELEGATION, ctx->negotiate_delegate == cm_submit_h_delegate_on ? CURLGSSAPI_DELEGATION_FLAG : CURLGSSAPI_DELEGATION_NONE); #endif } else if (ctx->client_auth == cm_submit_h_clientauth_on) { curl_easy_setopt(ctx->curl, CURLOPT_HTTPAUTH, CURLAUTH_NONE); if (ctx->sslcert != NULL) { curl_easy_setopt(ctx->curl, CURLOPT_SSLCERT, ctx->sslcert); } if (ctx->sslkey != NULL) { curl_easy_setopt(ctx->curl, CURLOPT_SSLKEY, ctx->sslkey); } if (ctx->sslpass != NULL) { curl_easy_setopt(ctx->curl, CM_CURLOPT_PKI_PASSWD, ctx->sslpass); } } else { curl_easy_setopt(ctx->curl, CURLOPT_FOLLOWLOCATION, 1); curl_easy_setopt(ctx->curl, CURLOPT_HTTPAUTH, CURLAUTH_NONE); } if (ctx->accept != NULL) { header = talloc_asprintf(ctx, "Accept: %s", ctx->accept); if (header != NULL) { headers = curl_slist_append(headers, header); } } if (ctx->ctype != NULL) { header = talloc_asprintf(ctx, "Content-Type: %s", ctx->ctype); if (header != NULL) { headers = curl_slist_append(headers, header); } } curl_easy_setopt(ctx->curl, CURLOPT_HTTPHEADER, headers); curl_easy_setopt(ctx->curl, CURLOPT_WRITEFUNCTION, append_result); curl_easy_setopt(ctx->curl, CURLOPT_WRITEDATA, ctx); if (ctx->result != NULL) { talloc_free(ctx->result); ctx->result = NULL; } ctx->ret = curl_easy_perform(ctx->curl); curl_easy_getinfo(ctx->curl, CURLINFO_RESPONSE_CODE, &ctx->response_code); if (headers != NULL) { curl_slist_free_all(headers); } } } int cm_submit_h_response_code(struct cm_submit_h_context *ctx) { return ctx->response_code; } int cm_submit_h_result_code(struct cm_submit_h_context *ctx) { return ctx->ret; } const char * cm_submit_h_result_code_text(struct cm_submit_h_context *ctx) { return curl_easy_strerror(ctx->ret); } const char * cm_submit_h_results(struct cm_submit_h_context *ctx, int *length) { if (length != NULL) { *length = ctx->result_length; } return ctx->result; } const char * cm_submit_h_result_type(struct cm_submit_h_context *ctx) { char *ret = NULL; if (ctx->curl != NULL) { if (curl_easy_getinfo(ctx->curl, CURLINFO_CONTENT_TYPE, &ret) != CURLE_OK) { ret = NULL; } } return ret; } #ifdef CM_SUBMIT_H_MAIN int main(int argc, const char **argv) { struct cm_submit_h_context *ctx; struct stat st; enum cm_submit_h_opt_negotiate negotiate; enum cm_submit_h_opt_delegate negotiate_delegate; enum cm_submit_h_opt_clientauth clientauth; int c, fd, l, verbose = 0, length = 0; char *ctype, *accept, *capath, *cainfo, *sslcert, *sslkey, *sslpass; char *pinfile; const char *method, *url; poptContext pctx; struct poptOption popts[] = { {"accept-type", 'a', POPT_ARG_STRING, &accept, 0, "acceptable response content-type", NULL}, {"capath", 'C', POPT_ARG_STRING, &capath, 0, "root certificate directory", "DIRECTORY"}, {"cainfo", 'c', POPT_ARG_STRING, &cainfo, 0, "root certificate info", NULL}, {"negotiate", 'N', POPT_ARG_NONE, NULL, 'N', "use Negotiate", NULL}, {"delegate", 'D', POPT_ARG_NONE, NULL, 'D', "use Negotiate with delegation", NULL}, {"sslcert", 'k', POPT_ARG_STRING, &sslcert, 'k', "use client authentication with cert", "CERT"}, {"sslkey", 'K', POPT_ARG_STRING, &sslkey, 'K', "use client authentication with key", "KEY"}, {"pinfile", 'p', POPT_ARG_STRING, &pinfile, 'p', "client authentication key pinfile", "FILENAME"}, {"pin", 'P', POPT_ARG_STRING, &sslpass, 0, "client authentication key pin", NULL}, {"content-type", 't', POPT_ARG_STRING, &ctype, 0, "client data content-type", NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; ctype = NULL; accept = NULL; capath = NULL; cainfo = NULL; sslcert = NULL; sslkey = NULL; sslpass = NULL; pinfile = NULL; negotiate = cm_submit_h_negotiate_off; negotiate_delegate = cm_submit_h_delegate_off; clientauth = cm_submit_h_clientauth_off; pctx = poptGetContext("submit-h", argc, argv, popts, 0); if (pctx == NULL) { exit(1); } poptSetOtherOptionHelp(pctx, "[options...] METHOD URL"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'N': negotiate = cm_submit_h_negotiate_on; break; case 'D': negotiate = cm_submit_h_negotiate_on; negotiate_delegate = cm_submit_h_delegate_on; break; case 'k': clientauth = cm_submit_h_clientauth_on; break; case 'K': clientauth = cm_submit_h_clientauth_on; break; case 'p': if (pinfile != NULL) { fd = open(pinfile, O_RDONLY); if (fd != -1) { if ((fstat(fd, &st) == 0) && (st.st_size > 0)) { sslpass = malloc(st.st_size + 1); if (sslpass != NULL) { if (read(fd, sslpass, st.st_size) != -1) { sslpass[st.st_size] = '\0'; l = strcspn(sslpass, "\r\n"); if (l != 0) { sslpass[l] = '\0'; } } else { fprintf(stderr, "Error reading \"%s\": %s.\n", pinfile, strerror(errno)); exit(1); } } } else { fprintf(stderr, "Error determining size of \"%s\": %s.\n", pinfile, strerror(errno)); exit(1); } close(fd); } else { fprintf(stderr, "Error reading PIN from \"%s\": %s.\n", pinfile, strerror(errno)); exit(1); } } break; case 'v': verbose++; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } method = poptGetArg(pctx); url = poptGetArg(pctx); if ((method == NULL) || (url == NULL)) { printf("Missing a required argument.\n"); poptPrintUsage(pctx, stdout, 0); return 1; } ctx = cm_submit_h_init(NULL, method, url, poptGetArg(pctx), ctype, accept, cainfo, capath, sslcert, sslkey, sslpass, negotiate, negotiate_delegate, clientauth, cm_submit_h_env_modify_on, verbose ? cm_submit_h_curl_verbose_on : cm_submit_h_curl_verbose_off); cm_submit_h_run(ctx); if (cm_submit_h_results(ctx, &length) != NULL) { printf("%.*s", length, cm_submit_h_results(ctx, NULL)); } if (cm_submit_h_result_code(ctx) != 0) { fflush(stdout); fprintf(stderr, "libcurl error %d:%s\n", cm_submit_h_result_code(ctx), cm_submit_h_result_code_text(ctx)); } return cm_submit_h_result_code(ctx); } #endif certmonger-0.78.6/src/submit-d.h0000664000175000017500000000657112645513264013411 00000000000000/* * Copyright (C) 2010,2012,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmitd_h #define cmsubmitd_h int cm_submit_d_submit_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId, char **cert); int cm_submit_d_check_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId); int cm_submit_d_reject_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId); int cm_submit_d_review_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId); int cm_submit_d_approve_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId); int cm_submit_d_fetch_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId, char **cert); int cm_submit_d_profiles_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char ***profiles); enum cm_external_status cm_submit_d_submit_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err); enum cm_external_status cm_submit_d_check_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err); enum cm_external_status cm_submit_d_reject_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err); enum cm_external_status cm_submit_d_review_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err); enum cm_external_status cm_submit_d_approve_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err); enum cm_external_status cm_submit_d_fetch_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err); enum cm_external_status cm_submit_d_profiles_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err); struct dogtag_default { enum { dogtag_none, dogtag_boolean, dogtag_int, dogtag_choice, dogtag_string, dogtag_string_list, dogtag_unknown } syntax; char *name; char *value; }; struct dogtag_default **cm_submit_d_xml_defaults(void *parent, const char *xml); #endif certmonger-0.78.6/src/submit-d.c0000664000175000017500000010657012645513264013404 00000000000000/* * Copyright (C) 2010,2011,2012,2013,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "submit-d.h" #include "submit-e.h" #include "submit-h.h" #include "submit-u.h" #include "util-m.h" #define DOGTAG_DEFAULTS_SET_PATH \ "/xml/output/set/record/list/record/set/defList/list/defList/set" #define DOGTAG_DEFAULTS_SET_MEMBER_NAME "defId" #define DOGTAG_DEFAULTS_SET_MEMBER_VALUE "defVal" #define DOGTAG_DEFAULTS_SET_MEMBER_CONSTRAINT "defConstraint" #define DOGTAG_DEFAULTS_SET_MEMBER_SYNTAX "defSyntax" static char * trim(void *parent, const char *value) { int l; if (value != NULL) { value += strspn(value, " \t\r\n"); l = strlen(value); while ((l > 0) && (strchr(" \t\r\n", value[l - 1]) != NULL)) { l--; } if (l > 0) { return talloc_strndup(parent, value, l); } else { return NULL; } } return NULL; } static char * cm_submit_d_xml_node_text(void *parent, xmlNodePtr node, const char *subname) { xmlNodePtr subnode; char *ret; const char *content; int i; subnode = NULL; if (subname != NULL) { /* point "node" at a child with the given name */ subnode = node->children; node = NULL; while (subnode != NULL) { if ((subnode->type == XML_ELEMENT_NODE) && (strcmp((const char *) subnode->name, subname) == 0)) { node = subnode; break; } subnode = subnode->next; } } if (node != NULL) { /* point "node" at its first text child, if it has one */ subnode = node->children; node = NULL; while (subnode != NULL) { if (subnode->type == XML_TEXT_NODE) { node = subnode; break; } subnode = subnode->next; } } ret = NULL; if (node != NULL) { content = (const char *) node->content; content += strspn(content, "\r\n"); i = strlen(content); while ((i > 0) && (strchr("\r\n", content[i - 1]) != NULL)) { i--; } ret = talloc_strndup(parent, content, i); } return ret; } static struct dogtag_default * cm_submit_d_xml_default(void *parent, xmlNodePtr node) { char *name, *value, *constraint, *syntax; const char *subname; struct dogtag_default *ret; subname = DOGTAG_DEFAULTS_SET_MEMBER_NAME; name = cm_submit_d_xml_node_text(parent, node, subname); subname = DOGTAG_DEFAULTS_SET_MEMBER_VALUE; value = cm_submit_d_xml_node_text(parent, node, subname); subname = DOGTAG_DEFAULTS_SET_MEMBER_CONSTRAINT; constraint = cm_submit_d_xml_node_text(parent, node, subname); subname = DOGTAG_DEFAULTS_SET_MEMBER_SYNTAX; syntax = cm_submit_d_xml_node_text(parent, node, subname); if ((value == NULL) && (syntax != NULL) && (strcmp(syntax, "choice") == 0)) { value = talloc_strdup(parent, constraint); if (value != NULL) { value[strcspn(value, ",")] = '\0'; } } if ((name == NULL) || (value == NULL) || (constraint == NULL) || (syntax == NULL)) { return NULL; } if (strcmp(constraint, "readonly") == 0) { return NULL; } ret = talloc_ptrtype(parent, ret); if (ret != NULL) { memset(ret, 0, sizeof(*ret)); ret->name = name; ret->value = value; if (strcmp(syntax, "int") == 0) { ret->syntax = dogtag_int; } else if (strcmp(syntax, "string") == 0) { ret->syntax = dogtag_string; } else if (strcmp(syntax, "boolean") == 0) { ret->syntax = dogtag_boolean; } else if (strcmp(syntax, "choice") == 0) { ret->syntax = dogtag_choice; } else if (strcmp(syntax, "string_list") == 0) { ret->syntax = dogtag_string_list; } else { ret->syntax = dogtag_unknown; } } return ret; } struct dogtag_default ** cm_submit_d_xml_defaults(void *parent, const char *xml) { /* "xpath" -> content */ struct dogtag_default **ret; xmlXPathContextPtr xpctx; xmlXPathObjectPtr obj; xmlDocPtr doc; xmlNodePtr node; xmlChar *xpath; int i, j; ret = NULL; doc = xmlParseMemory(xml, strlen(xml)); if (doc != NULL) { xpctx = xmlXPathNewContext(doc); if (xpctx != NULL) { xpath = xmlCharStrdup(DOGTAG_DEFAULTS_SET_PATH); obj = NULL; if (xpath != NULL) { obj = xmlXPathEval(xpath, xpctx); xmlFree(xpath); } node = NULL; if ((obj != NULL) && (obj->nodesetval != NULL) && (obj->nodesetval->nodeNr > 0)) { ret = malloc(sizeof(*ret) * (obj->nodesetval->nodeNr + 1)); if (ret == NULL) { return NULL; } memset(ret, 0, sizeof(*ret) * (obj->nodesetval->nodeNr + 1)); for (i = 0, j = 0; (i < obj->nodesetval->nodeNr); i++) { node = obj->nodesetval->nodeTab[i]; ret[j] = cm_submit_d_xml_default(parent, node); if (ret[j] != NULL) { j++; } } ret[j] = NULL; } xmlXPathFreeObject(obj); xmlXPathFreeContext(xpctx); } xmlFreeDoc(doc); } return ret; } static char * cm_submit_d_xml_value(void *parent, const char *xml, const char *path) { /* "xpath" -> content */ xmlXPathContextPtr xpctx; xmlXPathObjectPtr obj; xmlDocPtr doc; xmlNodePtr node; xmlChar *xpath; char *ret = NULL; const char *content; int i; doc = xmlParseMemory(xml, strlen(xml)); if (doc != NULL) { xpctx = xmlXPathNewContext(doc); if (xpctx != NULL) { xpath = xmlCharStrdup(path); obj = NULL; if (xpath != NULL) { obj = xmlXPathEval(xpath, xpctx); xmlFree(xpath); } node = NULL; if ((obj != NULL) && (obj->nodesetval != NULL) && (obj->nodesetval->nodeNr > 0)) { for (i = 0; (i < obj->nodesetval->nodeNr) && (node == NULL); i++) { node = obj->nodesetval->nodeTab[i]->children; while (node != NULL) { if (node->type == XML_TEXT_NODE) { break; } node = node->next; } } } if (node != NULL) { content = (const char *) node->content; content = content + strspn(content, "\n"); i = strlen(content) - 1; while ((i > 0) && (strchr("\n", content[i]) != NULL)) { i--; } ret = talloc_strndup(parent, content, i + 1); } xmlXPathFreeObject(obj); xmlXPathFreeContext(xpctx); } xmlFreeDoc(doc); } return ret; } static char * cm_submit_d_text_node(void *parent, xmlXPathObjectPtr obj) { xmlNodePtr node = NULL; const char *content; int i; if ((obj != NULL) && (obj->nodesetval != NULL) && (obj->nodesetval->nodeNr > 0)) { for (i = 0; (i < obj->nodesetval->nodeNr) && (node == NULL); i++) { node = obj->nodesetval->nodeTab[i]->children; while (node != NULL) { if (node->type == XML_TEXT_NODE) { break; } node = node->next; } } } if (node != NULL) { content = (const char *) node->content; content = content + strspn(content, "\n"); i = strlen(content) - 1; while ((i > 0) && (strchr("\n", content[i]) != NULL)) { i--; } return talloc_strndup(parent, content, i + 1); } return NULL; } static xmlXPathObjectPtr node_eval(const xmlChar *base, const xmlChar *rel, xmlXPathContextPtr xpctx) { xmlXPathObjectPtr ret = NULL; char *path = NULL; xmlChar *xpath = NULL; path = talloc_asprintf(NULL, "%s/%s", base, rel); xpath = xmlCharStrdup(path); ret = xmlXPathEval(xpath, xpctx); xmlFree(xpath); talloc_free(path); return ret; } static char * cm_submit_d_xml_value_if(void *parent, xmlXPathContextPtr xpctx, xmlNodePtr node, const char *value_path, const char *boolean_path1, const char *boolean_path2) { xmlChar *npath, *vpath, *bpath1, *bpath2; xmlXPathObjectPtr vobj, bobj1, bobj2; char *v, *b1, *b2; vpath = xmlCharStrdup(value_path); bpath1 = xmlCharStrdup(boolean_path1); bpath2 = xmlCharStrdup(boolean_path2); npath = xmlGetNodePath(node); vobj = NULL; if (vpath != NULL) { vobj = node_eval(npath, vpath, xpctx); xmlFree(vpath); } v = cm_submit_d_text_node(parent, vobj); xmlXPathFreeObject(vobj); if ((v == NULL) || (strlen(v) == 0)) { return NULL; } bobj1 = NULL; if (bpath1 != NULL) { bobj1 = node_eval(npath, bpath1, xpctx); xmlFree(bpath1); } bobj2 = NULL; if (bpath2 != NULL) { bobj2 = node_eval(npath, bpath2, xpctx); xmlFree(bpath2); } if (bobj1 != NULL) { b1 = cm_submit_d_text_node(parent, bobj1); if (strcasecmp(b1, "true") != 0) { v = NULL; } xmlXPathFreeObject(bobj1); } if (bobj2 != NULL) { b2 = cm_submit_d_text_node(parent, bobj2); if (strcasecmp(b2, "true") != 0) { v = NULL; } xmlXPathFreeObject(bobj2); } return (v != NULL) ? talloc_strdup(parent, v) : NULL; } static char ** cm_submit_d_xml_profiles(void *parent, const char *xml) { xmlXPathContextPtr xpctx; xmlXPathObjectPtr obj; xmlDocPtr doc; xmlNodePtr node; xmlChar *xpath; char **ret = NULL, **tmp, *profile; int i, n = 0; doc = xmlParseMemory(xml, strlen(xml)); if (doc != NULL) { xpctx = xmlXPathNewContext(doc); if (xpctx != NULL) { xpath = xmlCharStrdup("/xml/output/set/record/list/*"); obj = NULL; if (xpath != NULL) { obj = xmlXPathEval(xpath, xpctx); xmlFree(xpath); } node = NULL; if ((obj != NULL) && (obj->nodesetval != NULL) && (obj->nodesetval->nodeNr > 0)) { for (i = 0; (i < obj->nodesetval->nodeNr); i++) { node = obj->nodesetval->nodeTab[i]; if ((node->type == XML_ELEMENT_NODE) && (strcmp((const char *) node->name, "record") == 0)) { profile = cm_submit_d_xml_value_if(parent, xpctx, node, "set/profileId", "set/profileIsEnable", "set/profileIsVisible"); if (profile != NULL) { tmp = talloc_zero_array(parent, char *, n + 2); if (tmp != NULL) { if (n > 0) { memcpy(tmp, ret, sizeof(char *) * n); } tmp[n] = profile; n++; tmp[n] = NULL; ret = tmp; } } } } } xmlXPathFreeObject(obj); xmlXPathFreeContext(xpctx); } xmlFreeDoc(doc); } return ret; } int cm_submit_d_submit_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId, char **cert) { char *tmp; /* ProfileSubmitServlet.java: * 0: issued * 1: internal error * 2: deferred (or "pending") * 3: rejected */ *error_code = cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorCode"); *error_reason = cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorReason"); *error = cm_submit_d_xml_value(parent, xml, "/XMLResponse/Error"); *status = cm_submit_d_xml_value(parent, xml, "/XMLResponse/Status"); *requestId = trim(parent, cm_submit_d_xml_value(parent, xml, "/XMLResponse/RequestId")); *cert = cm_submit_d_xml_value(parent, xml, "/XMLResponse/Requests/Request/b64"); if ((*cert != NULL) && (strlen(*cert) > 0)) { tmp = cm_submit_u_pem_from_base64("CERTIFICATE", 0, *cert); *cert = talloc_strdup(parent, tmp); free(tmp); } return 0; } int cm_submit_d_check_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId) { /* RequestStatus.java: * begin * pending * approved * svc_pending * canceled * rejected * complete */ *error = cm_submit_d_xml_value(parent, xml, "/xml/fixed/unexpectedError"); *status = cm_submit_d_xml_value(parent, xml, "/xml/header/status"); *requestId = cm_submit_d_xml_value(parent, xml, "/xml/header/requestId"); return 0; } int cm_submit_d_reject_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId) { *error = cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorReason") ?: cm_submit_d_xml_value(parent, xml, "/XMLResponse/Error"); *status = cm_submit_d_xml_value(parent, xml, "/XMLResponse/Status"); *requestId = trim(parent, cm_submit_d_xml_value(parent, xml, "/XMLResponse/RequestId")); return 0; } int cm_submit_d_review_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId) { *error_code = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorCode")); *error_reason = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorReason")); *requestId = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/requestId")); *status = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/requestStatus")); return 0; } int cm_submit_d_approve_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId) { *error_code = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorCode")); *error_reason = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorReason")); *requestId = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/requestId")); *status = trim(parent, cm_submit_d_xml_value(parent, xml, "/xml/output/set/requestStatus")); return 0; } int cm_submit_d_fetch_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char **requestId, char **cert) { *error = cm_submit_d_xml_value(parent, xml, "/xml/fixed/unexpectedError"); *status = cm_submit_d_xml_value(parent, xml, "/xml/fixed/requestStatus"); *requestId = cm_submit_d_xml_value(parent, xml, "/xml/header/requestId"); *cert = cm_submit_d_xml_value(parent, xml, "/xml/records/record/base64Cert"); return 0; } int cm_submit_d_profiles_result(void *parent, const char *xml, char **error_code, char **error_reason, char **error, char **status, char ***profiles) { *error_code = cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorCode"); *error_reason = cm_submit_d_xml_value(parent, xml, "/xml/output/set/errorReason"); *profiles = cm_submit_d_xml_profiles(parent, xml); return 0; } enum cm_external_status cm_submit_d_submit_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err) { char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL, *cert = NULL; *out = NULL; *err = NULL; cm_submit_d_submit_result(parent, xml, &error_code, &error_reason, &error, &status, &requestId, &cert); if ((status != NULL) && (strcmp(status, "0") == 0) && (cert != NULL)) { *out = talloc_asprintf(parent, "%s\n", trim(parent, cert)); return CM_SUBMIT_STATUS_ISSUED; } if ((status != NULL) && (strcmp(status, "2") == 0) && (requestId != NULL)) { if (can_agent) { *out = talloc_asprintf(parent, "0\nstate=approve&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } else { *out = talloc_asprintf(parent, "state=check&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT; } } if ((error != NULL) || (error_code != NULL) || (error_reason != NULL)) { *out = talloc_asprintf(parent, "Server at \"%s\" replied", url); if (error != NULL) { *out = talloc_asprintf_append(*out, ": %s", error); } if (error_code != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_code); } if (error_reason != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_reason); } } return CM_SUBMIT_STATUS_REJECTED; } enum cm_external_status cm_submit_d_check_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err) { char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL; *out = NULL; *err = NULL; cm_submit_d_check_result(parent, xml, &error_code, &error_reason, &error, &status, &requestId); if ((status != NULL) && (strcmp(status, "complete") == 0) && (requestId != NULL)) { *out = talloc_asprintf(parent, "0\nstate=retrieve&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } if ((status != NULL) && (strcmp(status, "pending") == 0) && (requestId != NULL)) { if (can_agent) { *out = talloc_asprintf(parent, "0\nstate=approve&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } else { *out = talloc_asprintf(parent, "state=check&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT; } } if ((error != NULL) || (error_code != NULL) || (error_reason != NULL)) { *out = talloc_asprintf(parent, "Server at \"%s\" replied", url); if (error != NULL) { *out = talloc_asprintf_append(*out, ": %s", error); } if (error_code != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_code); } if (error_reason != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_reason); } } return CM_SUBMIT_STATUS_REJECTED; } enum cm_external_status cm_submit_d_reject_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err) { char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL; *out = NULL; *err = NULL; cm_submit_d_reject_result(parent, xml, &error_code, &error_reason, &error, &status, &requestId); if ((error != NULL) || (error_code != NULL) || (error_reason != NULL)) { *out = talloc_asprintf(parent, "Server at \"%s\" replied", url); if (error != NULL) { *out = talloc_asprintf_append(*out, ": %s", error); } if (error_code != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_code); } if (error_reason != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_reason); } } return CM_SUBMIT_STATUS_REJECTED; } enum cm_external_status cm_submit_d_review_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err) { char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL; *out = NULL; *err = NULL; cm_submit_d_review_result(parent, xml, &error_code, &error_reason, &error, &status, &requestId); if ((status != NULL) && (strcmp(status, "pending") == 0) && (requestId != NULL)) { *out = talloc_asprintf(parent, "0\nstate=approve&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } if ((status != NULL) && (strcmp(status, "complete") == 0) && (requestId != NULL)) { *out = talloc_asprintf(parent, "0\nstate=retrieve&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } if ((error != NULL) || (error_code != NULL) || (error_reason != NULL)) { *out = talloc_asprintf(parent, "Server at \"%s\" replied", url); if (error != NULL) { *out = talloc_asprintf_append(*out, ": %s", error); } if (error_code != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_code); } if (error_reason != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_reason); } } return CM_SUBMIT_STATUS_REJECTED; } enum cm_external_status cm_submit_d_approve_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err) { char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL; *out = NULL; *err = NULL; cm_submit_d_approve_result(parent, xml, &error_code, &error_reason, &error, &status, &requestId); if ((status != NULL) && (strcmp(status, "complete") == 0) && (requestId != NULL)) { *out = talloc_asprintf(parent, "0\nstate=retrieve&requestId=%s\n", cm_submit_u_url_encode(requestId)); return CM_SUBMIT_STATUS_WAIT_WITH_DELAY; } if ((error != NULL) || (error_code != NULL) || (error_reason != NULL)) { *out = talloc_asprintf(parent, "Server at \"%s\" replied", url); if (error != NULL) { *out = talloc_asprintf_append(*out, ": %s", error); } if (error_code != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_code); } if (error_reason != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_reason); } } return CM_SUBMIT_STATUS_REJECTED; } enum cm_external_status cm_submit_d_fetch_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err) { char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL, *cert = NULL; *out = NULL; *err = NULL; cm_submit_d_fetch_result(parent, xml, &error_code, &error_reason, &error, &status, &requestId, &cert); if (cert != NULL) { *out = talloc_asprintf(parent, "%s\n", trim(parent, cert)); return CM_SUBMIT_STATUS_ISSUED; } if ((error != NULL) || (error_code != NULL) || (error_reason != NULL)) { *out = talloc_asprintf(parent, "Server at \"%s\" replied", url); if (error != NULL) { *out = talloc_asprintf_append(*out, ": %s", error); } if (error_code != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_code); } if (error_reason != NULL) { *out = talloc_asprintf_append(*out, ": %s", error_reason); } } return CM_SUBMIT_STATUS_REJECTED; } enum cm_external_status cm_submit_d_profiles_eval(void *parent, const char *xml, const char *url, dbus_bool_t can_agent, char **out, char **err) { char *error_code = NULL, *error_reason = NULL, *status = NULL; char **profiles = NULL; int i; *out = NULL; *err = NULL; cm_submit_d_profiles_result(parent, xml, &error_code, &error_reason, err, &status, &profiles); if (profiles != NULL) { for (i = 0; profiles[i] != NULL; i++) { if (*out != NULL) { *out = talloc_asprintf(parent, "%s%s\n", *out, profiles[i]); } else { *out = talloc_asprintf(parent, "%s\n", profiles[i]); } } return CM_SUBMIT_STATUS_ISSUED; } return CM_SUBMIT_STATUS_REJECTED; } #ifdef CM_SUBMIT_D_MAIN int main(int argc, const char **argv) { void *ctx; enum { op_none, op_submit_csr, op_submit_serial, op_check, op_review, op_reject, op_approve, op_fetch } op; int c, i, id, agent, clientauth, verbose; const char *method = NULL, *eeurl, *agenturl, *cgi = NULL, *file; const char *serial, *profile, *name, *email, *tele; const char *nssdb, *capath, *cainfo, *sslkey, *sslcert, *sslpin; const char *result, *default_values; struct dogtag_default **defaults, *nodefault[] = { NULL }; char *params = NULL, *uri, *p, *q, *request; char *error = NULL, *error_code = NULL, *error_reason = NULL; char *status = NULL, *requestId = NULL, *cert = NULL; struct cm_submit_h_context *hctx; poptContext pctx; const struct poptOption popts[] = { {"submit-csr", 's', POPT_ARG_STRING, &file, 's', "submit request for signing", "FILENAME"}, {"submit-serial-hex", 'S', POPT_ARG_STRING, NULL, 'S', "request renewal using hex serial number", "HEXNUMBER"}, {"submit-serial-dec", 'D', POPT_ARG_STRING, NULL, 'D', "request renewal using serial number", "DECIMALNUMBER"}, {"check", 'c', POPT_ARG_INT, NULL, 'c', "check on pending request", "REQUESTNUMBER"}, {"review", 'R', POPT_ARG_INT, NULL, 'R', "review pending request", "REQUESTNUMBER"}, {"approve", 'A', POPT_ARG_INT, NULL, 'A', "approve pending request", "REQUESTNUMBER"}, {"reject", 'J', POPT_ARG_INT, NULL, 'J', "reject pending request", "REQUESTNUMBER"}, {"fetch", 'f', POPT_ARG_INT, NULL, 'f', "fetch certificate issued for request", "REQUESTNUMBER"}, {"values", 'V', POPT_ARG_STRING, &default_values, 0, "values to set when approving a request", NULL}, {"client-auth", 'a', POPT_ARG_NONE, NULL, 'a', "submit request using TLS client auth", NULL}, {"ee-url", 'u', POPT_ARG_STRING, &eeurl, 0, NULL, "URL"}, {"agent-url", 'U', POPT_ARG_STRING, &agenturl, 0, NULL, "URL"}, {"name", 'n', POPT_ARG_STRING, &name, 0, "pass \"name\" when submitting request", NULL}, {"email", 'e', POPT_ARG_STRING, &email, 0, "pass \"email\" when submitting request", "ADDRESS"}, {"tele", 't', POPT_ARG_STRING, &tele, 0, "pass \"tele\" when submitting request", "NUMBER"}, {"profile", 'T', POPT_ARG_STRING, &profile, 0, "enrollment profile to request", "NAME"}, {"dbdir", 'd', POPT_ARG_STRING, &nssdb, 0, NULL, "DIRECTORY"}, {"capath", 'P', POPT_ARG_STRING, &capath, 0, NULL, NULL}, {"cafile", 'I', POPT_ARG_STRING, &cainfo, 0, NULL, NULL}, {"sslkey", 'K', POPT_ARG_STRING, &sslkey, 0, NULL, NULL}, {"sslcert", 'C', POPT_ARG_STRING, &sslcert, 0, NULL, NULL}, {"sslpin", 'p', POPT_ARG_STRING, &sslpin, 0, NULL, NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; op = op_none; id = 0; verbose = 0; agent = 0; clientauth = 0; eeurl = NULL; agenturl = NULL; uri = NULL; file = NULL; serial = NULL; name = NULL; email = NULL; tele = NULL; nssdb = NULL; capath = NULL; cainfo = NULL; sslkey = NULL; sslcert = NULL; sslpin = NULL; defaults = NULL; default_values = NULL; profile = "caServerCert"; pctx = poptGetContext("submit-d", argc, argv, popts, 0); if (pctx == NULL) { return 1; } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': op = op_submit_csr; agent = 0; file = poptGetOptArg(pctx); break; case 'S': op = op_submit_serial; agent = 0; serial = util_dec_from_hex(poptGetOptArg(pctx)); break; case 'D': op = op_submit_serial; agent = 0; serial = poptGetOptArg(pctx); break; case 'c': op = op_check; agent = 0; id = strtol(poptGetOptArg(pctx), NULL, 0); break; case 'R': op = op_review; agent = 1; id = strtol(poptGetOptArg(pctx), NULL, 0); break; case 'A': op = op_approve; agent = 1; id = strtol(poptGetOptArg(pctx), NULL, 0); break; case 'J': op = op_reject; agent = 1; id = strtol(poptGetOptArg(pctx), NULL, 0); break; case 'f': op = op_fetch; agent = 0; id = strtol(poptGetOptArg(pctx), NULL, 0); break; case 'v': verbose++; break; case 'a': clientauth++; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return 1; } if (nssdb != NULL) { setenv("SSL_DIR", nssdb, 1); } restart: ctx = talloc_new(NULL); switch (op) { case op_submit_csr: method = "POST"; cgi = "profileSubmit"; p = cm_submit_u_from_file_single(file); if (p == NULL) { printf("Error reading CSR from \"%s\".\n", file); return 1; } request = cm_submit_u_url_encode(p); if (request == NULL) { printf("Error URL-encoding CSR.\n"); return 1; } params = talloc_asprintf(ctx, "profileId=%s&" "cert_request_type=pkcs10&" "cert_request=%s&" "xml=true", profile, request); if (name != NULL) { params = talloc_asprintf(ctx, "%s&requestor_name=%s", params, name); } if (email != NULL) { params = talloc_asprintf(ctx, "%s&requestor_email=%s", params, email); } if (tele != NULL) { params = talloc_asprintf(ctx, "%s&requestor_phone=%s", params, tele); } break; case op_submit_serial: method = "POST"; cgi = "profileSubmit"; params = talloc_asprintf(ctx, "profileId=%s&" "serial_num=%s&" "renewal=true&" "xml=true", profile, serial); if (name != NULL) { params = talloc_asprintf(ctx, "%s&requestor_name=%s", params, name); } if (email != NULL) { params = talloc_asprintf(ctx, "%s&requestor_email=%s", params, email); } if (tele != NULL) { params = talloc_asprintf(ctx, "%s&requestor_phone=%s", params, tele); } break; case op_review: method = "GET"; cgi = "profileReview"; params = talloc_asprintf(ctx, "requestId=%d&" "xml=true", id); break; case op_reject: method = "GET"; cgi = "profileProcess"; params = talloc_asprintf(ctx, "requestId=%d&" "op=reject&" "xml=true", id); break; case op_approve: if ((defaults == NULL) && (default_values == NULL)) { /* ask for defaults */ method = "GET"; cgi = "profileReview"; params = talloc_asprintf(ctx, "requestId=%d&" "xml=true", id); } else if (default_values != NULL) { /* use supplied defaults */ method = "GET"; cgi = "profileProcess"; params = talloc_asprintf(ctx, "requestId=%d&" "op=approve&" "xml=true&%s", id, default_values); } else { /* use asked-for defaults */ method = "GET"; cgi = "profileProcess"; params = talloc_asprintf(ctx, "requestId=%d&" "op=approve&" "xml=true", id); for (i = 0; (defaults != NULL) && (defaults[i] != NULL) && (defaults[i]->name != NULL) && (defaults[i]->value != NULL); i++) { p = cm_submit_u_url_encode(defaults[i]->name); q = cm_submit_u_url_encode(defaults[i]->value); if ((p != NULL) && (q != NULL)) { params = talloc_asprintf(ctx, "%s&%s=%s", params, p, q); } } } break; case op_check: method = "GET"; cgi = "checkRequest"; params = talloc_asprintf(ctx, "requestId=%d&" "importCert=true&" "xml=true", id); break; case op_fetch: method = "GET"; cgi = "displayCertFromRequest"; params = talloc_asprintf(ctx, "requestId=%d&" "importCert=true&" "xml=true", id); break; case op_none: printf("Error: no specific request (-s/-S/-D/-c/-R/-A/-J/-f) given.\n"); poptPrintUsage(pctx, stdout, 0); return 1; } if (agent) { if (agenturl == NULL) { printf("Error: CA AGENT-URL not given.\n"); poptPrintUsage(pctx, stdout, 0); return 1; } if (strstr(agenturl, "/") == NULL) { agenturl = talloc_asprintf(ctx, "%s/ca/agent/ca", agenturl); } if ((strstr(agenturl, "http://") == NULL) && (strstr(agenturl, "https://") == NULL)) { agenturl = talloc_asprintf(ctx, "https://%s", agenturl); } } else { if (eeurl == NULL) { printf("Error: CA EE-URL not given.\n"); poptPrintUsage(pctx, stdout, 0); return 1; } if (strstr(eeurl, "/") == NULL) { eeurl = talloc_asprintf(ctx, "%s/ca/ee/ca", eeurl); } if ((strstr(eeurl, "http://") == NULL) && (strstr(eeurl, "https://") == NULL)) { eeurl = talloc_asprintf(ctx, "http://%s", eeurl); } } uri = talloc_asprintf(ctx, "%s/%s", agent ? agenturl : eeurl, cgi); if (verbose > 0) { fprintf(stderr, "url = \"%s%s%s\"\n", uri, params ? "?" : "", params ? params : ""); } hctx = cm_submit_h_init(ctx, method, uri, params, NULL, NULL, cainfo, capath, sslcert, sslkey, sslpin, cm_submit_h_negotiate_off, cm_submit_h_delegate_off, clientauth ? cm_submit_h_clientauth_on : cm_submit_h_clientauth_off, cm_submit_h_env_modify_off, verbose > 1 ? cm_submit_h_curl_verbose_on : cm_submit_h_curl_verbose_off); cm_submit_h_run(hctx); c = cm_submit_h_result_code(hctx); if (c != 0) { if ((result = cm_submit_h_result_code_text(hctx)) != NULL) { printf("Error %d: %s\n", c, result); } else { printf("Error %d.\n", c); } return 1; } result = cm_submit_h_results(hctx, NULL) ?: ""; if (verbose > 0) { fprintf(stderr, "result = \"%s\"\n", result); } switch (op) { case op_submit_csr: case op_submit_serial: cm_submit_d_submit_result(hctx, result, &error_code, &error_reason, &error, &status, &requestId, &cert); if (error_code != NULL) { printf("error code: %s\n", error_code); } if (error_reason != NULL) { printf("error reason: %s\n", error_reason); } if (error != NULL) { printf("error: %s\n", error); } if (status != NULL) { printf("status: %s\n", status); } if (requestId != NULL) { printf("requestId: %s\n", requestId); } if (cert != NULL) { printf("cert: %s\n", cert); } break; case op_reject: cm_submit_d_reject_result(hctx, result, &error_code, &error_reason, &error, &status, &requestId); if (error_code != NULL) { printf("error code: %s\n", error_code); } if (error_reason != NULL) { printf("error reason: %s\n", error_reason); } if (error != NULL) { printf("error: %s\n", error); } if (status != NULL) { printf("status: %s\n", status); } if (requestId != NULL) { printf("requestId: %s\n", requestId); } break; case op_review: defaults = cm_submit_d_xml_defaults(hctx, result); for (i = 0; (defaults != NULL) && (defaults[i] != NULL) && (defaults[i]->name != NULL) && (defaults[i]->value != NULL); i++) { p = cm_submit_u_url_encode(defaults[i]->name); q = cm_submit_u_url_encode(defaults[i]->value); if ((p != NULL) && (q != NULL)) { printf("default: %s=%s\n", p, q); } } cm_submit_d_approve_result(hctx, result, &error_code, &error_reason, &error, &status, &requestId); if (error_code != NULL) { printf("error code: %s\n", error_code); } if (error_reason != NULL) { printf("error reason: %s\n", error_reason); } if (error != NULL) { printf("error: %s\n", error); } if (status != NULL) { printf("status: %s\n", status); } if (requestId != NULL) { printf("requestId: %s\n", requestId); } break; case op_approve: if ((defaults == NULL) && (default_values == NULL)) { /* ask for defaults */ defaults = cm_submit_d_xml_defaults(hctx, result); if (defaults == NULL) { defaults = nodefault; } goto restart; } else { cm_submit_d_approve_result(hctx, result, &error_code, &error_reason, &error, &status, &requestId); if (error_code != NULL) { printf("error code: %s\n", error_code); } if (error_reason != NULL) { printf("error reason: %s\n", error_reason); } if (error != NULL) { printf("error: %s\n", error); } if (status != NULL) { printf("status: %s\n", status); } if (requestId != NULL) { printf("requestId: %s\n", requestId); } } break; case op_check: cm_submit_d_check_result(hctx, result, &error_code, &error_reason, &error, &status, &requestId); if (error_code != NULL) { printf("error code: %s\n", error_code); } if (error_reason != NULL) { printf("error reason: %s\n", error_reason); } if (error != NULL) { printf("error: %s\n", error); } if (status != NULL) { printf("status: %s\n", status); } if (requestId != NULL) { printf("requestId: %s\n", requestId); } break; case op_fetch: cm_submit_d_fetch_result(hctx, result, &error_code, &error_reason, &error, &status, &requestId, &cert); if (error_code != NULL) { printf("error code: %s\n", error_code); } if (error_reason != NULL) { printf("error reason: %s\n", error_reason); } if (error != NULL) { printf("error: %s\n", error); } if (status != NULL) { printf("status: %s\n", status); } if (requestId != NULL) { printf("requestId: %s\n", requestId); } if (cert != NULL) { printf("cert: %s\n", cert); } break; case op_none: /* never reached */ break; } return 0; } #endif certmonger-0.78.6/src/dogtag.c0000664000175000017500000005651212645513264013125 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "prefs.h" #include "store.h" #include "submit-d.h" #include "submit-e.h" #include "submit-h.h" #include "submit-u.h" #include "util.h" #include "util-m.h" #include "util-n.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif #ifdef DOGTAG_IPA_RENEW_AGENT #include "dogtag-ipa.h" #endif static char * statevar(const char *state, const char *what) { const char *p; char *q; int len; p = state; len = strlen(what); while ((p != NULL) && (*p != '\0')) { if ((strncmp(p, what, len) == 0) && (p[len] == '=')) { p += (len + 1); len = strcspn(p, "&\r\n"); q = malloc(len + 1); if (q != NULL) { memcpy(q, p, len); q[len] = '\0'; } return q; } p += strcspn(p, "&"); while (*p == '&') { p++; } } return NULL; } static char * serial_hex_from_cert(const char *cert) { CERTCertificate *c; char *ret = NULL, *pem; if ((cert != NULL) && (strlen(cert) > 0)) { pem = talloc_strdup(NULL, cert); if (pem != NULL) { c = CERT_DecodeCertFromPackage(pem, strlen(pem)); if (c != NULL) { ret = cm_store_hex_from_bin(NULL, c->serialNumber.data, c->serialNumber.len); CERT_DestroyCertificate(c); } } } return ret; } int main(int argc, const char **argv) { const char *eeurl = NULL, *agenturl = NULL, *url = NULL, *url2 = NULL; const char *ssldir = NULL, *cainfo = NULL, *capath = NULL; const char *sslcert = NULL, *sslkey = NULL; const char *sslpin = NULL, *sslpinfile = NULL; const char *csr = NULL, *serial = NULL, *template = NULL; const char *uid = NULL, *pwd = NULL, *pwdfile = NULL; const char *udn = NULL, *pin = NULL, *pinfile = NULL; char *poptarg; struct { char *name; char *value; } *aoptions = NULL, *soptions = NULL; size_t num_aoptions = 0, num_soptions = 0, j; char *savedstate = NULL; char *p, *q, *params = NULL, *params2 = NULL; const char *lasturl = NULL, *lastparams = NULL; const char *tmp = NULL, *results = NULL; struct cm_submit_h_context *hctx; void *ctx; int c, verbose = 0, force_new = 0, force_renew = 0, i; #ifdef DOGTAG_IPA_RENEW_AGENT const char *host = NULL, *dogtag_version = NULL; int eeport, agentport; #endif enum { op_none, op_submit, op_check, op_approve, op_retrieve, op_profiles } op = op_submit; dbus_bool_t can_agent, use_agent_approval = FALSE, missing_args = FALSE; dbus_bool_t use_agent_submission = FALSE; struct dogtag_default **defaults; enum cm_external_status ret; NSSInitContext *nctx; const char *es; const char *mode = CM_OP_SUBMIT, *csrfile; poptContext pctx; const struct poptOption popts[] = { {"ee-url", 'E', POPT_ARG_STRING, &eeurl, 0, "end-entity services location", "URL"}, {"agent-url", 'A', POPT_ARG_STRING, &agenturl, 0, "agent services location", "URL"}, {"cafile", 'i', POPT_ARG_STRING, &cainfo, 0, NULL, "FILENAME"}, {"capath", 'C', POPT_ARG_STRING, &capath, 0, NULL, "DIRECTORY"}, {"dbdir", 'd', POPT_ARG_STRING, &ssldir, 0, "database containing agent or client creds", "DIRECTORY"}, {"nickname", 'n', POPT_ARG_STRING, &sslcert, 0, "nickname of agent or client creds", "NAME"}, {"certfile", 'c', POPT_ARG_STRING, &sslcert, 0, "agent or client certificate", "FILENAME"}, {"keyfile", 'k', POPT_ARG_STRING, &sslkey, 0, "agent or client key", "FILENAME"}, {"sslpinfile", 'p', POPT_ARG_STRING, &sslpinfile, 0, "agent or client key pinfile", "FILENAME"}, {"sslpin", 'P', POPT_ARG_STRING, &sslpin, 0, "agent or client key pin", NULL}, {"hex-serial", 's', POPT_ARG_STRING, NULL, 's', "request renewal for certificate by serial number (hexadecimal)", "NUMBER"}, {"serial", 'D', POPT_ARG_STRING, &serial, 'D', "request renewal for certificate by serial number", "NUMBER"}, {"submit-option", 'o', POPT_ARG_STRING, NULL, 'o', "key-value pair to send to server", NULL}, {"approval-option", 'O', POPT_ARG_STRING, NULL, 'O', "key-value pair to set in certificate", NULL}, {"profile", 'T', POPT_ARG_STRING, &template, 0, "enrollment profile", "NAME"}, {"profile-list", 't', POPT_ARG_NONE, NULL, 't', "list enrollment profiles", NULL}, {"state", 'S', POPT_ARG_STRING, &savedstate, 0, "previously-provided state data", "STATE-VALUE"}, #ifdef DOGTAG_IPA_RENEW_AGENT {"dogtag-version", 'V', POPT_ARG_STRING, &dogtag_version, 'V', NULL, "NUMBER"}, #endif {"force-new", 'N', POPT_ARG_NONE, NULL, 'N', "prefer to obtain a new certificate", NULL}, {"force-renew", 'R', POPT_ARG_NONE, NULL, 'R', "prefer to renew a certificate", NULL}, {"agent-submit", 'a', POPT_ARG_NONE, NULL, 'a', "submit enrollment or renewal request using agent or client creds", NULL}, {"uid", 'u', POPT_ARG_STRING, &uid, 0, "submit enrollment or renewal request using user name", "USERNAME"}, {"udn", 'U', POPT_ARG_STRING, &udn, 0, "submit enrollment or renewal request using user DN", "USERDN"}, {"userpwd", 'W', POPT_ARG_STRING, &pwd, 0, "submit password with enrollment or renewal request", NULL}, {"userpwdfile", 'w', POPT_ARG_STRING, &pwdfile, 0, "submit password from file with enrollment or renewal request", "FILENAME"}, {"userpin", 'Y', POPT_ARG_STRING, &pin, 0, "submit pin with enrollment or renewal request", NULL}, {"userpinfile", 'y', POPT_ARG_STRING, &pinfile, 0, "submit pin from file with enrollment or renewal request", "FILENAME"}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; if (getenv(CM_SUBMIT_OPERATION_ENV) != NULL) { mode = getenv(CM_SUBMIT_OPERATION_ENV); } if ((strcasecmp(mode, CM_OP_SUBMIT) == 0) || (strcasecmp(mode, CM_OP_POLL) == 0)) { /* fall through */ } else if (strcasecmp(mode, CM_OP_FETCH_PROFILES) == 0) { op = op_profiles; } else if (strcasecmp(mode, CM_OP_IDENTIFY) == 0) { #ifdef DOGTAG_IPA_RENEW_AGENT printf("Dogtag (IPA,renew,agent) (%s %s)\n", PACKAGE_NAME, PACKAGE_VERSION); #else printf("Dogtag (%s %s)\n", PACKAGE_NAME, PACKAGE_VERSION); #endif return 0; } else { /* unsupported request */ return CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } #ifdef ENABLE_NLS bindtextdomain(PACKAGE, MYLOCALEDIR); #endif savedstate = getenv(CM_SUBMIT_COOKIE_ENV); pctx = poptGetContext(argv[0], argc, argv, popts, 0); if (pctx == NULL) { return CM_SUBMIT_STATUS_UNCONFIGURED; } poptSetOtherOptionHelp(pctx, "[options] -E EE-URL -A AGENT-URL [csrfile]"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': serial = util_dec_from_hex(poptGetOptArg(pctx)); break; case 'O': poptarg = poptGetOptArg(pctx); if (strchr(poptarg, '=') == NULL) { printf(_("Profile params (-O) must be in the form of param=value.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } aoptions = realloc(aoptions, ++num_aoptions * sizeof(*aoptions)); if (aoptions == NULL) { printf(_("Out of memory.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } p = strdup(poptarg); if (p == NULL) { printf(_("Out of memory.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } i = strcspn(p, "="); aoptions[num_aoptions - 1].name = p; p[i] = '\0'; aoptions[num_aoptions - 1].value = p + i + 1; break; case 'o': poptarg = poptGetOptArg(pctx); if (strchr(poptarg, '=') == NULL) { printf(_("Submit params (-o) must be in the form of param=value.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } soptions = realloc(soptions, ++num_soptions * sizeof(*soptions)); if (soptions == NULL) { printf(_("Out of memory.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } p = strdup(poptarg); if (p == NULL) { printf(_("Out of memory.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } i = strcspn(p, "="); soptions[num_soptions - 1].name = p; p[i] = '\0'; soptions[num_soptions - 1].value = p + i + 1; break; case 't': op = op_profiles; break; case 'v': verbose++; break; #ifdef DOGTAG_IPA_RENEW_AGENT case 'V': dogtag_version = poptGetOptArg(pctx); break; #endif case 'N': force_new++; force_renew = 0; break; case 'R': force_renew++; force_new = 0; break; case 'a': use_agent_submission = TRUE; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } umask(S_IRWXG | S_IRWXO); cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); nctx = NSS_InitContext(CM_DEFAULT_CERT_STORAGE_LOCATION, NULL, NULL, NULL, NULL, NSS_INIT_NOCERTDB | NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (nctx == NULL) { cm_log(1, "Unable to initialize NSS.\n"); _exit(1); } es = util_n_fips_hook(); if (es != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", es); _exit(1); } ctx = talloc_new(NULL); #ifdef DOGTAG_IPA_RENEW_AGENT cm_dogtag_ipa_hostver(&host, &dogtag_version); if ((dogtag_version != NULL) && (atof(dogtag_version) >= 10)) { eeport = 8080; agentport = 8443; } else { eeport = 9180; agentport = 9443; } if (eeurl == NULL) { eeurl = cm_prefs_dogtag_ee_url(); if ((eeurl == NULL) && (host != NULL)) { eeurl = talloc_asprintf(ctx, "http://%s:%d/ca/ee/ca", host, eeport); } } if (agenturl == NULL) { agenturl = cm_prefs_dogtag_agent_url(); if ((agenturl == NULL) && (host != NULL)) { agenturl = talloc_asprintf(ctx, "https://%s:%d/ca/agent/ca", host, agentport); } } #endif if (template == NULL) { template = getenv(CM_SUBMIT_PROFILE_ENV); if (template == NULL) { template = cm_prefs_dogtag_profile(); if (template == NULL) { /* Maybe we should ask the server for which * profiles it supports, but for now we just * assume that this one hasn't been removed. */ template = "caServerCert"; } } } if (serial == NULL) { tmp = getenv(CM_SUBMIT_CERTIFICATE_ENV); if (tmp != NULL) { if (cm_prefs_dogtag_renew()) { serial = serial_hex_from_cert(tmp); if (serial != NULL) { serial = util_dec_from_hex(serial); } } } } if (cainfo == NULL) { cainfo = cm_prefs_dogtag_ca_info(); } if (capath == NULL) { capath = cm_prefs_dogtag_ca_path(); } if (ssldir == NULL) { ssldir = cm_prefs_dogtag_ssldir(); } if (sslcert == NULL) { sslcert = cm_prefs_dogtag_sslcert(); } if (sslkey == NULL) { sslkey = cm_prefs_dogtag_sslkey(); } if ((sslpinfile == NULL) && (sslpin == NULL)) { sslpinfile = cm_prefs_dogtag_sslpinfile(); } #ifdef DOGTAG_IPA_RENEW_AGENT if ((cainfo == NULL) && (capath == NULL) && (ssldir == NULL) && (sslcert == NULL) && (sslkey == NULL) && (sslpin == NULL) && (sslpinfile == NULL)) { cainfo = "/etc/ipa/ca.crt"; ssldir = "/etc/httpd/alias"; sslcert = "ipaCert"; sslpinfile = "/etc/httpd/alias/pwdfile.txt"; } #endif if ((sslcert != NULL) && (strlen(sslcert) > 0)) { can_agent = TRUE; } else { can_agent = FALSE; } if (use_agent_approval && !can_agent) { printf(_("No agent credentials specified, and no " "default known.\n")); missing_args = TRUE; } if (use_agent_submission && !can_agent) { printf(_("No agent credentials specified, and no " "default known.\n")); missing_args = TRUE; } if (force_renew && (serial == NULL)) { printf(_("Requested renewal, but no serial number provided.\n")); missing_args = TRUE; } if (eeurl == NULL) { printf(_("No end-entity URL (-E) given, and no default known.\n")); missing_args = TRUE; } #ifdef DOGTAG_IPA_RENEW_AGENT if (agenturl == NULL) { printf(_("No agent URL (-A) given, and no default known.\n")); missing_args = TRUE; } #endif if (template == NULL) { printf(_("No profile/template (-T) given, and no default known.\n")); missing_args = TRUE; } if (aoptions != NULL) { if (agenturl == NULL) { printf(_("No agent URL (-A) given, and no default " "known.\n")); missing_args = TRUE; } if (!can_agent) { printf(_("No agent credentials specified, and no " "default known.\n")); missing_args = TRUE; } } if (missing_args) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } if (NSS_ShutdownContext(nctx) != SECSuccess) { printf(_("Error shutting down NSS.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } /* Figure out where we are in the multi-step process. */ if ((savedstate != NULL) && ((p = statevar(savedstate, "state")) != NULL) && ((q = statevar(savedstate, "requestId")) != NULL)) { if (strcmp(p, "check") == 0) { op = op_check; } if ((strcmp(p, "review") == 0) || (strcmp(p, "approve") == 0)) { op = op_approve; } if ((strcmp(p, "fetch") == 0) || (strcmp(p, "retrieve") == 0)) { op = op_retrieve; } params = talloc_asprintf(ctx, "requestId=%s", q); } else { params = ""; } /* Read the client password and/or PIN, if we need to. */ if ((pwdfile != NULL) && (pwd == NULL)) { pwd = cm_submit_u_from_file(pwdfile); } if ((pinfile != NULL) && (pin == NULL)) { pin = cm_submit_u_from_file(pinfile); } /* Figure out which form and arguments to use. */ switch (op) { case op_none: printf(_("Internal error: unknown state.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; break; case op_submit: url = talloc_asprintf(ctx, "%s/%s", eeurl, use_agent_submission ? "profileSubmitSSLClient" : "profileSubmit"); template = cm_submit_u_url_encode(template); if ((serial != NULL) && (strlen(serial) > 0) && !force_new) { /* Renew-by-serial. */ serial = cm_submit_u_url_encode(serial); params = talloc_asprintf(ctx, "profileId=%s&" "serial_num=%s&" "renewal=true&" "xml=true", template, serial); } else { /* Fresh enrollment. Read the CSR from the * environment, or from the command-line, that we're * going to submit for signing. */ csrfile = poptGetArg(pctx); if (csrfile != NULL) { csr = cm_submit_u_from_file(csrfile); } else { csr = getenv(CM_SUBMIT_CSR_ENV); if (csr != NULL) { csr = strdup(csr); } } if ((csr == NULL) || (strlen(csr) == 0)) { printf(_("Unable to read signing request.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } csr = cm_submit_u_url_encode(csr); params = talloc_asprintf(ctx, "profileId=%s&" "cert_request_type=pkcs10&" "cert_request=%s&" "xml=true", template, csr); } /* Check for creds specified as options. */ for (j = 0; j < num_soptions; j++) { if (strcmp(soptions[j].name, "uid") == 0) { uid = NULL; } if (strcmp(soptions[j].name, "udn") == 0) { udn = NULL; } if (strcmp(soptions[j].name, "pwd") == 0) { pwd = NULL; } if (strcmp(soptions[j].name, "pin") == 0) { pin = NULL; } } /* Add client creds. */ if (uid != NULL) { uid = cm_submit_u_url_encode(uid); params = talloc_asprintf(ctx, "%s&uid=%s", params, uid); } if (udn != NULL) { udn = cm_submit_u_url_encode(udn); params = talloc_asprintf(ctx, "%s&udn=%s", params, udn); } if (pwd != NULL) { pwd = cm_submit_u_url_encode(pwd); params = talloc_asprintf(ctx, "%s&pwd=%s", params, pwd); } if (pin != NULL) { pin = cm_submit_u_url_encode(pin); params = talloc_asprintf(ctx, "%s&pin=%s", params, pin); } /* Add parameters specified on command line */ for (j = 0; j < num_soptions; j++) { p = cm_submit_u_url_encode(soptions[j].name); q = cm_submit_u_url_encode(soptions[j].value); params = talloc_asprintf(ctx, "%s&%s=%s", params, p, q); } use_agent_approval = FALSE; break; case op_check: /* Check if the certificate has been issued or rejected. */ url = talloc_asprintf(ctx, "%s/checkRequest", eeurl); params = talloc_asprintf(ctx, "%s&" "xml=true", params); use_agent_approval = FALSE; break; case op_approve: if (agenturl == NULL) { printf(_("No agent URL (-A) given, and no default " "known.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } if ((sslcert == NULL) || (strlen(sslcert) == 0)) { printf(_("No agent credentials (-n) given, but they " "are needed.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Reading profile defaults for this certificate, then applying * them and issuing a new certificate. */ url = talloc_asprintf(ctx, "%s/profileReview", agenturl); url2 = talloc_asprintf(ctx, "%s/profileProcess", agenturl); params = talloc_asprintf(ctx, "%s&" "xml=true", params); params2 = talloc_asprintf(ctx, "%s&" "op=approve", params); use_agent_approval = TRUE; break; case op_retrieve: /* Retrieving the new certificate. */ url = talloc_asprintf(ctx, "%s/displayCertFromRequest", eeurl); params = talloc_asprintf(ctx, "%s&" "importCert=true&" "xml=true", params); use_agent_approval = FALSE; break; case op_profiles: /* Retrieving the list of profiles. */ url = talloc_asprintf(ctx, "%s/profileList", eeurl); if (strlen(params) > 0) { params = talloc_asprintf(ctx, "%s&" "xml=true", params); } else { params = "xml=true"; } use_agent_approval = FALSE; break; } /* Read the PIN, if we need to. */ if ((sslpinfile != NULL) && (sslpin == NULL)) { sslpin = cm_submit_u_from_file(sslpinfile); if (sslpin != NULL) { sslpin = talloc_strndup(ctx, sslpin, strcspn(sslpin, "\r\n")); } } if (ssldir != NULL) { setenv("SSL_DIR", ssldir, 1); } /* Submit the form(s). */ hctx = NULL; while (url != NULL) { hctx = cm_submit_h_init(ctx, "GET", url, params, NULL, NULL, cainfo, capath, sslcert, sslkey, sslpin, cm_submit_h_negotiate_off, cm_submit_h_delegate_off, use_agent_approval || use_agent_submission ? cm_submit_h_clientauth_on : cm_submit_h_clientauth_off, cm_submit_h_env_modify_off, verbose > 1 ? cm_submit_h_curl_verbose_on : cm_submit_h_curl_verbose_off); lasturl = url; lastparams = params; cm_submit_h_run(hctx); if (verbose > 0) { fprintf(stderr, "%s \"%s?%s\"\n", "GET", url, params); fprintf(stderr, "code = %d\n", cm_submit_h_result_code(hctx)); fprintf(stderr, "code_text = \"%s\"\n", cm_submit_h_result_code_text(hctx)); syslog(LOG_DEBUG, "%s %s?%s\n", "GET", url, params); } results = cm_submit_h_results(hctx, NULL); if (verbose > 0) { fprintf(stderr, "results = \"%s\"\n", results); syslog(LOG_DEBUG, "%s", results); } if (cm_submit_h_result_code(hctx) != 0) { break; } /* If there's a next form, get ready to submit it. */ switch (op) { case op_approve: /* We just reviewed the request. Read the defaults and * add them to the set of parameters for our next form * submission. */ if (results != NULL) { defaults = cm_submit_d_xml_defaults(ctx, results); } else { defaults = NULL; } for (i = 0; (defaults != NULL) && (defaults[i] != NULL); i++) { /* Check if this default is one of the * parameters we've been explicitly provided. */ for (j = 0; j < num_aoptions; j++) { if (strcmp(defaults[i]->name, aoptions[j].name) == 0) { break; } } /* If we have a non-default value for it, skip * this default. */ if (j < num_aoptions) { continue; } p = cm_submit_u_url_encode(defaults[i]->name); q = cm_submit_u_url_encode(defaults[i]->value); if (verbose > 0) { fprintf(stderr, "setting \"%s\" to " "default value \"%s\"\n", p, q); } params2 = talloc_asprintf(ctx, "%s&%s=%s", params2, p, q); }; /* Add parameters specified on command line */ for (j = 0; j < num_aoptions; j++) { p = cm_submit_u_url_encode(aoptions[j].name); q = cm_submit_u_url_encode(aoptions[j].value); params2 = talloc_asprintf(ctx, "%s&%s=%s", params2, p, q); if (verbose > 0) { fprintf(stderr, "setting \"%s\" to " "specified value \"%s\"\n", p, q); } } break; case op_none: case op_submit: case op_check: case op_retrieve: case op_profiles: /* No second form for these. */ break; } url = url2; url2 = NULL; params = params2; params2 = NULL; } /* Figure out what to output. */ if (cm_submit_h_result_code(hctx) != 0) { if (cm_submit_h_result_code_text(hctx) != NULL) { printf(_("Error %d connecting to %s: %s.\n"), cm_submit_h_result_code(hctx), lasturl, cm_submit_h_result_code_text(hctx)); } else { printf(_("Error %d connecting to %s.\n"), cm_submit_h_result_code(hctx), lasturl); } talloc_free(ctx); return CM_SUBMIT_STATUS_UNREACHABLE; } if (results == NULL) { printf(_("Internal error: no response to \"%s?%s\".\n"), lasturl, lastparams); talloc_free(ctx); return CM_SUBMIT_STATUS_REJECTED; } switch (op) { case op_none: printf(_("Internal error: unknown state.\n")); talloc_free(ctx); return CM_SUBMIT_STATUS_UNCONFIGURED; break; case op_submit: ret = cm_submit_d_submit_eval(ctx, results, lasturl, can_agent, &p, &q); if (p != NULL) { fprintf(stdout, "%s", p); } if (q != NULL) { fprintf(stderr, "%s", q); } talloc_free(ctx); return ret; break; case op_check: ret = cm_submit_d_check_eval(ctx, results, lasturl, can_agent, &p, &q); if (p != NULL) { fprintf(stdout, "%s", p); } if (q != NULL) { fprintf(stderr, "%s", q); } talloc_free(ctx); return ret; break; case op_approve: if (url2 == NULL) { ret = cm_submit_d_approve_eval(ctx, results, lasturl, can_agent, &p, &q); if (p != NULL) { fprintf(stdout, "%s", p); } if (q != NULL) { fprintf(stderr, "%s", q); } talloc_free(ctx); return ret; } else { ret = cm_submit_d_review_eval(ctx, results, lasturl, can_agent, &p, &q); if (p != NULL) { fprintf(stdout, "%s", p); } if (q != NULL) { fprintf(stderr, "%s", q); } talloc_free(ctx); return ret; } break; case op_retrieve: ret = cm_submit_d_fetch_eval(ctx, results, lasturl, can_agent, &p, &q); if (p != NULL) { fprintf(stdout, "%s", p); } if (q != NULL) { fprintf(stderr, "%s", q); } talloc_free(ctx); return ret; break; case op_profiles: ret = cm_submit_d_profiles_eval(ctx, results, lasturl, can_agent, &p, &q); if (p != NULL) { fprintf(stdout, "%s", p); } if (q != NULL) { fprintf(stderr, "%s", q); } talloc_free(ctx); return ret; break; } talloc_free(ctx); return CM_SUBMIT_STATUS_UNCONFIGURED; } certmonger-0.78.6/src/env-session.c0000664000175000017500000001061612645513264014124 00000000000000/* * Copyright (C) 2011,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "env.h" #include "log.h" #include "tdbus.h" static char * cm_env_homedir(const char *subdir, const char *subfile) { struct passwd *pwd; char *home; char *ret; int len; dbus_bool_t free_home; home = getenv("HOME"); if (home == NULL) { pwd = getpwuid(getuid()); if (pwd != NULL) { home = pwd->pw_name; } } free_home = FALSE; if (home != NULL) { home = realpath(home, NULL); free_home = (home != NULL); } if (home != NULL) { len = strlen(home); if (subdir != NULL) { len += (strlen(subdir) + 1); } if (subfile != NULL) { len += (strlen(subfile) + 1); } ret = malloc(len + 1); if (ret != NULL) { strcpy(ret, home); if (subdir != NULL) { strcat(ret, "/"); strcat(ret, subdir); } if (subfile != NULL) { strcat(ret, "/"); strcat(ret, subfile); } } } else { ret = NULL; } if (free_home) { free(home); } return ret; } char * cm_env_home_dir(void) { return cm_env_homedir(NULL, NULL); } static void cm_env_ensure_dir(char *path) { char *p, *q, *tmp; int i; if (path != NULL) { tmp = strdup(path); if (tmp != NULL) { p = tmp + strlen(tmp); for (q = tmp + 1; q < p; q++) { if (*q == '/') { *q = '\0'; i = mkdir(tmp, S_IRWXU); if ((i != 0) && (errno != EEXIST)) { cm_log(0, "Error ensuring " "that directory '%s' " "exists: %s.\n", tmp, strerror(errno)); _exit(1); } *q = '/'; } } i = mkdir(tmp, S_IRWXU); if ((i != 0) && (errno != EEXIST)) { cm_log(0, "Error ensuring " "that directory '%s' " "exists: %s.\n", tmp, strerror(errno)); _exit(1); } free(tmp); } } } char * cm_env_config_dir(void) { static char *ret = NULL; if (ret == NULL) { ret = getenv(CM_STORE_CONFIG_DIRECTORY_ENV); if (ret == NULL) { ret = cm_env_homedir(CM_STORE_SESSION_CONFIG_DIRECTORY, NULL); } if (ret != NULL) { cm_env_ensure_dir(ret); } } return ret; } char * cm_env_request_dir(void) { static char *ret = NULL; if (ret == NULL) { ret = getenv(CM_STORE_REQUESTS_DIRECTORY_ENV); if (ret == NULL) { ret = cm_env_homedir(CM_STORE_SESSION_REQUESTS_DIRECTORY, NULL); } if (ret != NULL) { cm_env_ensure_dir(ret); } } return ret; } char * cm_env_ca_dir(void) { static char *ret = NULL; if (ret == NULL) { ret = getenv(CM_STORE_CAS_DIRECTORY_ENV); if (ret == NULL) { ret = cm_env_homedir(CM_STORE_SESSION_CAS_DIRECTORY, NULL); } if (ret != NULL) { cm_env_ensure_dir(ret); } } return ret; } char * cm_env_local_ca_dir(void) { static char *ret = NULL; if (ret == NULL) { ret = getenv(CM_STORE_LOCAL_CA_DIRECTORY_ENV); if (ret == NULL) { ret = cm_env_homedir(CM_STORE_SESSION_LOCAL_CA_DIRECTORY, NULL); } if (ret != NULL) { cm_env_ensure_dir(ret); } } return ret; } char * cm_env_tmp_dir(void) { char *ret; ret = getenv(CM_TMPDIR_ENV); if ((ret == NULL) || (strlen(ret) == 0)) { ret = getenv("TMPDIR"); if ((ret == NULL) || (strlen(ret) == 0)) { ret = _PATH_VARTMP; } cm_env_ensure_dir(ret); } return ret; } char * cm_env_whoami(void) { return "certmonger-session"; } enum cm_tdbus_type cm_env_default_bus(void) { return cm_tdbus_session; } dbus_bool_t cm_env_default_fork(void) { return FALSE; } int cm_env_default_bus_timeout(void) { return CM_DEFAULT_IDLE_TIMEOUT; } char * cm_env_lock_file(void) { return cm_env_config(NULL, "lock"); } certmonger-0.78.6/src/env-system.c0000664000175000017500000000444412645513264013767 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include "env.h" #include "tdbus.h" char * cm_env_home_dir(void) { return CM_HOMEDIR; } char * cm_env_config_dir(void) { char *ret; ret = getenv(CM_STORE_CONFIG_DIRECTORY_ENV); if (ret == NULL) { ret = CM_STORE_CONFIG_DIRECTORY; } return ret; } char * cm_env_request_dir(void) { char *ret; ret = getenv(CM_STORE_REQUESTS_DIRECTORY_ENV); if (ret == NULL) { ret = CM_STORE_REQUESTS_DIRECTORY; } return ret; } char * cm_env_ca_dir(void) { char *ret; ret = getenv(CM_STORE_CAS_DIRECTORY_ENV); if (ret == NULL) { ret = CM_STORE_CAS_DIRECTORY; } return ret; } char * cm_env_local_ca_dir(void) { static char *ret = NULL; if (ret == NULL) { ret = getenv(CM_STORE_LOCAL_CA_DIRECTORY_ENV); if (ret == NULL) { ret = CM_STORE_LOCAL_CA_DIRECTORY; } } return ret; } char * cm_env_tmp_dir(void) { char *ret; ret = getenv(CM_TMPDIR_ENV); if ((ret == NULL) || (strlen(ret) == 0)) { ret = CM_TMPDIR; if ((ret == NULL) || (strlen(ret) == 0)) { ret = getenv("TMPDIR"); if ((ret == NULL) || (strlen(ret) == 0)) { ret = _PATH_VARTMP; } } } return ret; } char * cm_env_whoami(void) { return "certmonger"; } enum cm_tdbus_type cm_env_default_bus(void) { return cm_tdbus_system; } dbus_bool_t cm_env_default_fork(void) { return TRUE; } int cm_env_default_bus_timeout(void) { return 0; } char * cm_env_lock_file(void) { char *ret; ret = getenv(CM_STORE_SYSTEM_LOCK_FILE_ENV); if (ret == NULL) { ret = CM_STORE_SYSTEM_LOCK_FILE; } return ret; } certmonger-0.78.6/src/main.c0000664000175000017500000002765312645513264012610 00000000000000/* * Copyright (C) 2009,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "cm.h" #include "env.h" #include "log.h" #include "tdbus.h" #include "tdbusm.h" #include "util-n.h" #ifdef ENABLE_NLS #include #define N_(_text) _text #define _(_text) dgettext(PACKAGE, _text) #else #define N_(_text) _text #define _(_text) (_text) #endif int main(int argc, const char **argv) { struct tevent_context *ec; struct cm_context *ctx; enum cm_tdbus_type bus; int i, c, dlevel = 0, pfd = -1, lfd = -1, version = 0; unsigned int u; long l; pid_t pid; FILE *pfp; const char *pidfile = NULL, *tmpdir, *gate_command = NULL, *path = NULL; char *env_tmpdir, *hint, *address; dbus_bool_t dofork, server, server_only; enum force_fips_mode forcefips; int bustime; DBusError error; poptContext pctx; struct poptOption popts[] = { {"session-bus", 's', POPT_ARG_NONE, NULL, 's', N_("use session bus"), NULL}, {"system-bus", 'S', POPT_ARG_NONE, NULL, 'S', N_("use system bus"), NULL}, {"listening-socket", 'l', POPT_ARG_NONE, NULL, 'l', N_("start a dedicated listening socket"), NULL}, {"only-listening-socket", 'L', POPT_ARG_NONE, NULL, 'L', N_("only use a dedicated listening socket"), NULL}, {"listening-socket-path", 'P', POPT_ARG_STRING, &path, 0, N_("specify the dedicated listening socket"), N_("PATHNAME")}, {"nofork", 'n', POPT_ARG_NONE, NULL, 'n', N_("don't become a daemon"), NULL}, {"fork", 'f', POPT_ARG_NONE, NULL, 'f', N_("do become a daemon"), NULL, NULL}, {"bus-activation-timeout", 'b', POPT_ARG_INT, NULL, 'b', N_("bus-activated, idle timeout"), N_("SECONDS")}, {"no-bus-activation-timeout", 'B', POPT_ARG_NONE, NULL, 'B', N_("don't use an idle timeout"), NULL}, {"debug-level", 'd', POPT_ARG_INT, NULL, 'd', N_("set debugging level (implies -n)"), N_("NUMBER")}, {"command", 'c', POPT_ARG_STRING, &gate_command, 'c', N_("start COMMAND and exit when it does"), N_("COMMAND")}, /* this next one is there to paper over documentation that named the flag wrong */ {NULL, 'C', POPT_ARG_STRING | POPT_ARGFLAG_DOC_HIDDEN, &gate_command, 'c', N_("start COMMAND and exit when it does"), N_("COMMAND")}, {"pidfile", 'p', POPT_ARG_STRING, &pidfile, 0, N_("write service PID to file"), N_("FILENAME")}, {"fips", 'F', POPT_ARG_NONE, NULL, 'F', N_("force NSS into FIPS mode"), NULL}, {"help", 'h', POPT_ARG_NONE, NULL, 'h', NULL, NULL}, {"version", 'v', POPT_ARG_NONE, &version, 0, N_("print version information"), NULL}, {"autohelp", 'H', POPT_ARG_NONE | POPT_ARGFLAG_DOC_HIDDEN, NULL, 'H', NULL, NULL}, POPT_TABLEEND }; bus = cm_env_default_bus(); dofork = cm_env_default_fork(); bustime = cm_env_default_bus_timeout(); forcefips = do_not_force_fips; server = FALSE; server_only = FALSE; #ifdef ENABLE_NLS bindtextdomain(PACKAGE, MYLOCALEDIR); for (u = 0; u < sizeof(popts) / sizeof(popts[0]); u++) { if (popts[u].descrip != NULL) { popts[u].descrip = dgettext(PACKAGE, popts[u].descrip); } if (popts[u].argDescrip != NULL) { popts[u].argDescrip = dgettext(PACKAGE, popts[u].argDescrip); } } #endif if (cm_env_whoami() == NULL) { printf("internal error\n"); exit(1); } if ((cm_env_config_dir() == NULL) || (cm_env_request_dir() == NULL) || (cm_env_ca_dir() == NULL) || (cm_env_tmp_dir() == NULL)) { printf("%s: unable to determine storage locations\n", cm_env_whoami()); exit(1); }; pctx = poptGetContext(argv[0], argc, argv, popts, 0); if (pctx == NULL) { exit(1); } while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 's': bus = cm_tdbus_session; break; case 'S': bus = cm_tdbus_system; break; case 'l': server = TRUE; break; case 'L': server = TRUE; server_only = TRUE; break; case 'c': bustime = 0; break; case 'f': dofork = TRUE; break; case 'b': gate_command = NULL; bustime = atoi(poptGetOptArg(pctx)); break; case 'B': bustime = 0; break; case 'd': dlevel = atoi(poptGetOptArg(pctx)); /* fall through */ case 'n': dofork = FALSE; break; case 'F': forcefips = do_force_fips; break; case 'H': poptPrintHelp(pctx, stdout, 0); exit(1); break; default: printf(_("Usage: %s [-s|-S] [-n|-f] [-d LEVEL] " "[-p FILE] [-F] [-v]\n"), cm_env_whoami()); printf("%s%s%s%s%s%s%s%s%s%s%s%s%s%s", _("\t-s use session bus\n"), _("\t-S use system bus\n"), _("\t-l start a dedicated listening socket\n"), _("\t-L only use a dedicated listening socket\n"), _("\t-P PATH specify the dedicated listening socket\n"), _("\t-n don't become a daemon\n"), _("\t-f do become a daemon\n"), _("\t-b TIMEOUT bus-activated, idle timeout\n"), _("\t-B don't use an idle timeout\n"), _("\t-d LEVEL set debugging level (implies -n)\n"), _("\t-c COMMAND start COMMAND and exit when it does\n"), _("\t-p FILE write service PID to file\n"), _("\t-F force NSS into FIPS mode\n"), _("\t-v print version information and exit\n")); exit(1); break; } } if (c != -1) { exit(1); } if (version) { printf("%s %s\n", PACKAGE, PACKAGE_VERSION); exit(0); } cm_log_set_level(dlevel); cm_log_set_method(dofork ? cm_log_syslog : cm_log_stderr); util_n_set_fips(forcefips); cm_log(3, "Starting up.\n"); tmpdir = cm_env_tmp_dir(); if (tmpdir != NULL) { env_tmpdir = malloc(8 + strlen(tmpdir)); if (env_tmpdir == NULL) { fprintf(stderr, "Out of memory.\n"); exit(1); } snprintf(env_tmpdir, 8 + strlen(tmpdir), "TMPDIR=%s", tmpdir); if (putenv(env_tmpdir) != 0) { printf("internal error: %s\n", strerror(errno)); exit(1); } } ec = tevent_context_init(NULL); if (ec == NULL) { fprintf(stderr, "Error initializing tevent.\n"); exit(1); } if (dlevel > 0) { tevent_set_debug_stderr(ec); } umask(S_IRWXG | S_IRWXO); /* Set our working directory - the root for a system instance, the * configuration directory for a session instance. */ switch (bus) { case cm_tdbus_private: case cm_tdbus_system: cm_log(2, "Changing to root directory.\n"); if (chdir("/") != 0) { cm_log(0, "Error in chdir(\"/\"): %s.\n", strerror(errno)); } cm_log(2, "Obtaining system lock.\n"); break; case cm_tdbus_session: cm_log(2, "Changing to config directory.\n"); if (chdir(cm_env_config_dir()) != 0) { cm_log(2, "Error in chdir(\"%s\"): %s.\n", cm_env_config_dir(), strerror(errno)); } cm_log(2, "Obtaining session lock.\n"); break; } /* Open the lock file. This is primarily here to avoid having multiple * session copies attempting to read and write and operate on the same * records at the same time. */ lfd = open(cm_env_lock_file(), O_RDWR | O_CREAT, S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH); if (lfd == -1) { fprintf(stderr, "Error opening lockfile \"%s\": %s\n", cm_env_lock_file(), strerror(errno)); exit(1); } if (lockf(lfd, F_LOCK, 0) != 0) { fprintf(stderr, "Error locking lockfile \"%s\": %s\n", cm_env_lock_file(), strerror(errno)); close(lfd); exit(1); } l = fcntl(lfd, F_GETFD); if (l != -1) { l = fcntl(lfd, F_SETFD, l | FD_CLOEXEC); if (l == -1) { fprintf(stderr, "Error setting close-on-exec flag on " "\"%s\": %s\n", cm_env_lock_file(), strerror(errno)); close(lfd); exit(1); } } /* Load up all of our data. */ ctx = NULL; i = cm_init(ec, &ctx, bustime, gate_command); if (i != 0) { fprintf(stderr, "Error: %s\n", strerror(i)); talloc_free(ec); exit(1); } if (!server_only) { /* Join a bus and obtain our well-known name. */ if (cm_tdbus_setup_public(ec, bus, ctx, &error) != 0) { fprintf(stderr, "Error connecting to D-Bus.\n"); hint = cm_tdbusm_hint(ec, error.name, error.message); if (hint != NULL) { fprintf(stderr, "%s", hint); } talloc_free(ec); exit(1); } } if (server) { /* Set up a private listening socket. */ if (cm_tdbus_setup_private(ec, ctx, path, &address, &error) != 0) { fprintf(stderr, "Error setting up D-Bus listener.\n"); hint = cm_tdbusm_hint(ec, error.name, error.message); if (hint != NULL) { fprintf(stderr, "%s", hint); } talloc_free(ec); exit(1); } cm_set_server_address(ctx, address); } /* Create the pid file, if we need to. */ if (pidfile != NULL) { pfd = open(pidfile, O_RDWR | O_CREAT, S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH); if (pfd == -1) { fprintf(stderr, "Error opening pidfile \"%s\": %s\n", pidfile, strerror(errno)); exit(1); } if (lockf(pfd, F_TLOCK, 0) != 0) { fprintf(stderr, "Error locking pidfile \"%s\": %s\n", pidfile, strerror(errno)); close(pfd); exit(1); } if (ftruncate(pfd, 0) != 0) { fprintf(stderr, "Error truncating pidfile \"%s\": %s\n", pidfile, strerror(errno)); close(pfd); exit(1); } l = fcntl(pfd, F_GETFD); if (l != -1) { if (fcntl(pfd, F_SETFD, l | FD_CLOEXEC) != 0) { fprintf(stderr, "Error marking pidfile \"%s\" " "as close-on-exec: %s\n", pidfile, strerror(errno)); close(pfd); exit(1); } } pfp = fdopen(pfd, "w"); if (pfp == NULL) { fprintf(stderr, "Error opening pidfile \"%s\": %s\n", pidfile, strerror(errno)); close(pfd); exit(1); } } else { pfp = NULL; } if (dofork) { pid = fork(); switch (pid) { case -1: /* failure */ fprintf(stderr, "fork() error: %s\n", strerror(errno)); if ((pidfile != NULL) && (pfp != NULL)) { fclose(pfp); } exit(1); break; case 0: /* child; keep going */ if (daemon(0, 0) != 0) { fprintf(stderr, "daemon() error: %s\n", strerror(errno)); exit(1); } /* lock the pid file now that our parent is exiting and * thus losing its lock; it should be safe to block * here, even if the parent gives up the lock before we * get here, because we've already ensured that only we * and our parent have the named connection to the bus, * and wouldn't have gotten here otherwise */ if ((pidfile != NULL) && (pfp != NULL)) { if (lockf(pfd, F_LOCK, 0) != 0) { cm_log(0, "Error locking pidfile \"%s\": " "%s\n", pidfile, strerror(errno)); exit(1); } fprintf(pfp, "%ld\n", (long) getpid()); fflush(pfp); } break; default: /* parent; exit cleanly */ exit(0); break; } } else { if ((pidfile != NULL) && (pfp != NULL)) { fprintf(pfp, "%ld\n", (long) getpid()); fflush(pfp); } } /* Kick each request and CA's state machine off. */ if (cm_start_all(ctx) == 0) { do { i = tevent_loop_once(ec); if (i != 0) { cm_log(3, "Event loop exits with status %d.\n", i); break; } } while (cm_keep_going(ctx) == 0); cm_log(3, "Shutting down.\n"); cm_stop_all(ctx); } /* Clean up. */ talloc_free(ctx); talloc_free(ec); /* Remove the PID file. */ if ((pidfile != NULL) && (pfp != NULL)) { if (remove(pidfile) != 0) { cm_log(0, "Error removing pidfile \"%s\": %s.\n", pidfile, strerror(errno)); } fclose(pfp); } return 0; } certmonger-0.78.6/src/certmaster.c0000664000175000017500000001317612645513264014030 00000000000000/* * Copyright (C) 2009,2010,2011,2013,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "submit-e.h" #include "submit-u.h" #include "submit-x.h" #include "util.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif int main(int argc, const char **argv) { int i, c, verbose = 0; const char *host = NULL, *port = NULL, *cainfo = NULL, *capath = NULL; char *csr, *p, uri[LINE_MAX], *s1, *s2, *config; struct cm_submit_x_context *ctx; struct stat st; const char *mode = CM_OP_SUBMIT, *csrfile; poptContext pctx; const struct poptOption popts[] = { {"server-host", 'h', POPT_ARG_STRING, &host, 0, NULL, "HOSTNAME"}, {"capath", 'C', POPT_ARG_STRING, &capath, 0, NULL, "DIRECTORY"}, {"cafile", 'c', POPT_ARG_STRING, &cainfo, 0, NULL, "FILENAME"}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; if (getenv(CM_SUBMIT_OPERATION_ENV) != NULL) { mode = getenv(CM_SUBMIT_OPERATION_ENV); } if ((strcasecmp(mode, CM_OP_SUBMIT) == 0) || (strcasecmp(mode, CM_OP_POLL) == 0)) { /* fall through */ } else if (strcasecmp(mode, CM_OP_IDENTIFY) == 0) { printf("certmaster (%s %s)\n", PACKAGE_NAME, PACKAGE_VERSION); return 0; } else { /* unsupported request */ return CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED; } #ifdef ENABLE_NLS bindtextdomain(PACKAGE, MYLOCALEDIR); #endif cm_log_set_method(cm_log_stderr); pctx = poptGetContext(argv[0], argc, argv, popts, 0); if (pctx == NULL) { return CM_SUBMIT_STATUS_UNCONFIGURED; } poptSetOtherOptionHelp(pctx, "[options...] [csrfile]"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'v': verbose++; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } umask(S_IRWXG | S_IRWXO); cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); if (host == NULL) { /* Okay, we have to figure out what the master name is. Hope * the minion is configured. */ config = read_config_file("/etc/certmaster/" "minion.conf"); if (config != NULL) { host = get_config_entry(config, "main", "certmaster"); port = get_config_entry(config, "main", "certmaster_port"); } else { if (stat("/var/run/certmaster.pid", &st) == 0) { /* Guess that it's us if we have the service * running. */ config = read_config_file("/etc/certmaster/" "certmaster.conf"); host = "localhost"; if (config != NULL) { port = get_config_entry(config, "main", "listen_port"); } } } } if (host == NULL) { printf(_("Unable to determine hostname of CA.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Read the CSR from the environment, or from the command-line. */ csrfile = poptGetArg(pctx); if (csrfile != NULL) { csr = cm_submit_u_from_file(csrfile); } else { csr = getenv(CM_SUBMIT_CSR_ENV); if (csr != NULL) { csr = strdup(csr); } } if ((csr == NULL) || (strlen(csr) == 0)) { printf(_("Unable to read signing request.\n")); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Clean up the CSR -- make sure it's not a "NEW" request. certmaster * rewrites the incoming request to cache previously-received * requests, and in doing so uses a different PEM header than the one * we default to using. So turn any "NEW CERTIFICATE REQUEST" notes * into "CERTIFICATE REQUEST" before sending them. */ while ((p = strstr(csr, "NEW CERTIFICATE REQUEST")) != NULL) { memmove(p, p + 4, strlen(p + 4) + 1); } /* Initialize for XML-RPC. */ snprintf(uri, sizeof(uri), "http%s://%s%s%s/", ((cainfo != NULL) || (capath != NULL)) ? "s" : "", host, ((port != NULL) && (strlen(port) > 0)) ? ":" : "", port ? port : ""); ctx = cm_submit_x_init(NULL, uri, "wait_for_cert", cainfo, capath, cm_submit_x_negotiate_off, cm_submit_x_delegate_off); if (ctx == NULL) { fprintf(stderr, "Error setting up for XMLRPC.\n"); printf(_("Error setting up for XMLRPC.\n")); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Add the CSR as the sole argument. */ cm_submit_x_add_arg_s(ctx, csr); /* Submit the request. */ fprintf(stderr, "Submitting request to \"%s\".\n", uri); cm_submit_x_run(ctx); /* Check the results. */ if (cm_submit_x_has_results(ctx) == 0) { if (cm_submit_x_get_bss(ctx, &i, &s1, &s2) == 0) { if (i) { printf("%s", s1); return CM_SUBMIT_STATUS_ISSUED; } else { printf("SUBMITTED COOKIE\n"); return CM_SUBMIT_STATUS_WAIT; } } else { printf(_("Error parsing server response.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } } else { printf(_("Server error.\n")); return CM_SUBMIT_STATUS_UNREACHABLE; } } certmonger-0.78.6/src/tm.h0000664000175000017500000000137312645513264012300 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmtm_h #define cmtm_h time_t cm_time(time_t *dest); #endif certmonger-0.78.6/src/tm.c0000664000175000017500000000144412645513264012272 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include "tm.h" time_t cm_time(time_t *dest) { return time(dest); } certmonger-0.78.6/src/certmaster-getcert.c0000664000175000017500000000012012645513264015444 00000000000000#include "config.h" #define FORCE_CA CM_CERTMASTER_CA_NAME #include "getcert.c" certmonger-0.78.6/src/util-n.h0000664000175000017500000000231612645513264013066 00000000000000/* * Copyright (C) 2012,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef utiln_h #define utiln_h struct cm_store_entry; enum force_fips_mode { do_not_force_fips, do_force_fips }; void util_n_set_fips(enum force_fips_mode force); const char *util_n_fips_hook(void); char *util_build_next_nickname(const char *prefix, const char *marker); char *util_build_old_nickname(const char *prefix, const char *serial); void util_set_db_entry_key_owner(const char *dbdir, struct cm_store_entry *entry); void util_set_db_entry_cert_owner(const char *dbdir, struct cm_store_entry *entry); #endif certmonger-0.78.6/src/util-n.c0000664000175000017500000001462212645513264013064 00000000000000/* * Copyright (C) 2012,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "store-int.h" #include "util-n.h" #define NODE "/proc/sys/crypto/fips_enabled" static PRBool force_fips = PR_FALSE; void util_n_set_fips(enum force_fips_mode force) { if (force == do_not_force_fips) { force_fips = PR_FALSE; } else { force_fips = PR_TRUE; } } const char * util_n_fips_hook(void) { SECMODModule *module; PRBool fips_detected; const char *name; FILE *fp; char buf[LINE_MAX]; if (!force_fips) { fips_detected = PR_FALSE; fp = fopen(NODE, "r"); if (fp != NULL) { if (fgets(buf, sizeof(buf), fp) != NULL) { buf[strcspn(buf, "\r\n")] = '\0'; cm_log(4, "Read value \"%s\" from \"%s\".\n", buf, NODE); if (strlen(buf) > 0) { if (atoi(buf) == 1) { fips_detected = PR_TRUE; } } } fclose(fp); } else { cm_log(4, "Error opening \"%s\": %s, assuming 0.\n", NODE, strerror(errno)); } if (!fips_detected) { cm_log(4, "Not attempting to set NSS FIPS mode.\n"); return NULL; } } if (!PK11_IsFIPS()) { cm_log(4, "Attempting to set NSS FIPS mode.\n"); module = SECMOD_GetInternalModule(); if (module == NULL) { return "error obtaining handle to internal " "cryptographic token's module"; } name = module->commonName; if (SECMOD_DeleteInternalModule(name) != SECSuccess) { return "error unloading (reloading) NSS's internal " "cryptographic module"; } if (!PK11_IsFIPS()) { return "unloading (reloading) the internal " "cryptographic module wasn't sufficient to " "enable FIPS mode"; } cm_log(4, "Successfully set NSS FIPS mode.\n"); } return NULL; } char * util_build_next_nickname(const char *prefix, const char *marker) { size_t len; char *ret; len = strlen(prefix) + strlen(marker) + sizeof("%s (candidate %s)"); ret = malloc(len + 1); if (ret != NULL) { snprintf(ret, len, "%s (candidate %s)", prefix, marker); } return ret; } char * util_build_old_nickname(const char *prefix, const char *serial) { size_t len; char *ret; len = strlen(prefix) + strlen(serial) + sizeof("%s (serial %s)"); ret = malloc(len + 1); if (ret != NULL) { snprintf(ret, len, "%s (serial %s)", prefix, serial); } return ret; } static void util_set_db_owner_perms(const char *dbdir, const char *filename, const char *owner, mode_t perms) { char *user, *group, *pathname = NULL; struct passwd *pwd; struct group *grp; uid_t uid; gid_t gid; struct stat st, before; int fd; if (filename == NULL) { return; } pathname = malloc(strlen(dbdir) + strlen(filename) + 2); if (pathname == NULL) { return; } sprintf(pathname, "%s/%s", dbdir, filename); fd = open(pathname, O_RDWR); if (fd == -1) { free(pathname); return; } if ((lstat(pathname, &before) == -1) || !S_ISREG(before.st_mode)) { close(fd); free(pathname); return; } if ((fstat(fd, &st) == -1) || !S_ISREG(st.st_mode)) { close(fd); free(pathname); return; } if ((st.st_dev != before.st_dev) || (st.st_ino != before.st_ino)) { close(fd); free(pathname); return; } if (owner != NULL) { user = strdup(owner); group = strchr(user, ':'); if (group != NULL) { *group++ = '\0'; if (strlen(group) == 0) { group = NULL; } } pwd = getpwnam(user); if (pwd == NULL) { cm_log(1, "Error looking up user \"%s\", " "not setting ownership of \"%s\".\n", user, pathname); } else { uid = pwd->pw_uid; gid = pwd->pw_gid; if (group != NULL) { grp = getgrnam(group); if (grp != NULL) { gid = grp->gr_gid; } else { cm_log(1, "Error looking up group " "\"%s\", setting group of \"%s\"" " to primary group of \"%s\".\n", group, pathname, user); } } if (fchown(fd, uid, gid) == -1) { cm_log(1, "Error setting ownership on " "file \"%s\": %s. Continuing\n", pathname, strerror(errno)); } } free(user); } if (perms != 0) { if (fchmod(fd, perms) == -1) { cm_log(1, "Error setting permissions on " "file \"%s\": %s. Continuing\n", pathname, strerror(errno)); } } close(fd); free(pathname); } void util_set_db_entry_key_owner(const char *dbdir, struct cm_store_entry *entry) { const char *keydb = NULL; if (dbdir == NULL) { return; } if (strncmp(dbdir, "sql:", 4) == 0) { keydb = "key4.db"; dbdir += 4; } else if (strncmp(dbdir, "dbm:", 4) == 0) { keydb = "key3.db"; dbdir += 4; } else if (strncmp(dbdir, "rdb:", 4) == 0) { keydb = "key3.db"; dbdir += 4; } else if (strncmp(dbdir, "extern:", 7) == 0) { keydb = "key4.db"; dbdir += 7; } else { keydb = "key3.db"; } util_set_db_owner_perms(dbdir, keydb, entry->cm_key_owner, entry->cm_key_perms); } void util_set_db_entry_cert_owner(const char *dbdir, struct cm_store_entry *entry) { const char *certdb = NULL, *secmoddb = NULL; if (dbdir == NULL) { return; } if (strncmp(dbdir, "sql:", 4) == 0) { certdb = "cert9.db"; secmoddb = "pkcs11.txt"; dbdir += 4; } else if (strncmp(dbdir, "dbm:", 4) == 0) { certdb = "cert8.db"; secmoddb = "secmod.db"; dbdir += 4; } else if (strncmp(dbdir, "rdb:", 4) == 0) { certdb = "cert8.db"; secmoddb = "secmod.db"; dbdir += 4; } else if (strncmp(dbdir, "extern:", 7) == 0) { certdb = "cert9.db"; secmoddb = "pkcs11.txt"; dbdir += 7; } else { certdb = "cert8.db"; secmoddb = "secmod.db"; } util_set_db_owner_perms(dbdir, certdb, entry->cm_cert_owner, entry->cm_cert_perms); util_set_db_owner_perms(dbdir, secmoddb, entry->cm_cert_owner, entry->cm_cert_perms); } certmonger-0.78.6/src/util-m.h0000664000175000017500000000141112645513264013060 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef utilm_h #define utilm_h char *util_dec_from_hex(const char *hex); #endif certmonger-0.78.6/src/util-m.c0000664000175000017500000000317512645513264013064 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #ifdef HAVE_GMP_H #include #endif #ifdef HAVE_OPENSSL #include #include #endif #ifdef HAVE_GMP char * util_dec_from_hex(const char *hex) { mpz_t m; char *ret; mpz_init(m); if (mpz_set_str(m, hex, 16) != 0) { return NULL; } ret = mpz_get_str(NULL, 10, m); mpz_clear(m); return ret; } #else #ifdef HAVE_OPENSSL #if defined(HAVE_DECL_OPENSSL_FREE) && HAVE_DECL_OPENSSL_FREE static void free_bn_bn2dec_result(void *p) { OPENSSL_free(p); } #else static void free_bn_bn2dec_result(void *p) { free(p); } #endif char * util_dec_from_hex(const char *hex) { BIGNUM *bn = NULL; char *tmp, *ret = NULL; if (strlen(hex) > 0) { if (BN_hex2bn(&bn, hex) == 0) { return NULL; } tmp = BN_bn2dec(bn); BN_free(bn); if (tmp != NULL) { ret = strdup(tmp); free_bn_bn2dec_result(tmp); } } else { ret = strdup(""); } return ret; } #endif #endif certmonger-0.78.6/src/util.h0000664000175000017500000000152512645513264012634 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef util_h #define util_h char *read_config_file(const char *filename); char *get_config_entry(char *data, const char *section, const char *key); #endif certmonger-0.78.6/src/util.c0000664000175000017500000001120712645513264012625 00000000000000/* Authors: Rob Crittenden * John Dennis * * Copyright (C) 2009,2010 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ /* Simple INI-style file reader. * * usage is: * char * data = read_config_file("/path/to/something.conf") * char * entry = get_config_entry(data, "section", "mykey") * * caller must free data and entry. */ #define _GNU_SOURCE #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "util.h" char * read_config_file(const char *filename) { int fd; struct stat st; char *data, *dest; size_t left; fd = open(filename, O_RDONLY); if (fd == -1) { cm_log(1, "Cannot open configuration file \"%s\": %s.\n", filename, strerror(errno)); return NULL; } /* stat() the file so we know the size and can pre-allocate the right * amount of memory. */ if (fstat(fd, &st) == -1) { close(fd); cm_log(1, "Cannot stat() configuration file \"%s\": %s.\n", filename, strerror(errno)); return NULL; } left = st.st_size; data = malloc(st.st_size + 1); if (data == NULL) { close(fd); cm_log(1, "Out of memory reading configuration file \"%s\".\n", filename); return NULL; } dest = data; while (left != 0) { ssize_t res; res = read(fd, dest, left); if (res == 0) break; if (res < 0) { cm_log(1, "Read error reading \"%s\": %s\n", filename, strerror(errno)); close(fd); free(dest); return NULL; } dest += res; left -= res; } close(fd); *dest = '\0'; return data; } char * get_config_entry(char * in_data, const char *section, const char *key) { char *ptr = NULL, *p, *tmp; char *line; int in_section = 0; char * data = strdup(in_data); for (line = strtok_r(data, "\n", &ptr); line != NULL; line = strtok_r(NULL, "\n", &ptr)) { /* Skip initial whitespace. */ while (isspace((unsigned char)*line) && (*line != '\0')) line++; /* If it's a comment, bail. */ if (*line == '#') { continue; } /* If it's the beginning of a section, process it and clear the key * and value values. */ if (*line == '[') { line++; p = strchr(line, ']'); if (p) { tmp = strndup(line, p - line); if (in_section) { /* We exited the matching section without a match */ free(data); free(tmp); return NULL; } if (strcmp(section, tmp) == 0) { free(tmp); in_section = 1; continue; } } } /* [ */ p = strchr(line, '='); if (p != NULL && in_section) { /* Trim any trailing whitespace off the key name. */ while (p != line && isspace((unsigned char)p[-1])) p--; /* Save the key. */ tmp = strndup(line, p - line); if (strcmp(key, tmp) != 0) { free(tmp); } else { free(tmp); /* Skip over any whitespace after the equal sign. */ line = strchr(line, '='); line++; while (isspace((unsigned char)*line) && (*line != '\0')) line++; /* Trim off any trailing whitespace. */ p = strchr(line, '\0'); while (p != line && isspace((unsigned char)p[-1])) p--; /* Save the value. */ tmp = strndup(line, p - line); free(data); return tmp; } } } free(data); return NULL; } certmonger-0.78.6/src/tdbusm.h0000664000175000017500000001426412645513264013161 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmtdbusm_h #define cmtdbusm_h int cm_tdbusm_get_b(DBusMessage *msg, void *parent, dbus_bool_t *b); int cm_tdbusm_get_n(DBusMessage *msg, void *parent, long *n); int cm_tdbusm_get_p(DBusMessage *msg, void *parent, char **p); int cm_tdbusm_get_s(DBusMessage *msg, void *parent, char **s); int cm_tdbusm_get_vs(DBusMessage *msg, void *parent, char **s); int cm_tdbusm_get_bp(DBusMessage *msg, void *parent, dbus_bool_t *b, char **p); int cm_tdbusm_get_bs(DBusMessage *msg, void *parent, dbus_bool_t *b, char **s); int cm_tdbusm_get_sb(DBusMessage *msg, void *parent, char **s, dbus_bool_t *b); int cm_tdbusm_get_sn(DBusMessage *msg, void *parent, char **s, long *n); int cm_tdbusm_get_ss(DBusMessage *msg, void *parent, char **s1, char **s2); int cm_tdbusm_get_ap(DBusMessage *msg, void *parent, char ***ap); int cm_tdbusm_get_as(DBusMessage *msg, void *parent, char ***as); int cm_tdbusm_get_ass(DBusMessage *msg, void *parent, char ***ass); int cm_tdbusm_get_sss(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3); int cm_tdbusm_get_ssb(DBusMessage *msg, void *parent, char **s1, char **s2, dbus_bool_t *b); int cm_tdbusm_get_ssn(DBusMessage *msg, void *parent, char **s1, char **s2, long *n); int cm_tdbusm_get_ssas(DBusMessage *msg, void *parent, char **s1, char **s2, char ***as); int cm_tdbusm_get_ssass(DBusMessage *msg, void *parent, char **s1, char **s2, char ***ass); int cm_tdbusm_get_ssss(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char **s4); int cm_tdbusm_get_ssosos(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char **s4); int cm_tdbusm_get_sososos(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char **s4); int cm_tdbusm_get_ssoas(DBusMessage *msg, void *parent, char **s1, char **s2, char ***as); int cm_tdbusm_get_sssas(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char ***as); int cm_tdbusm_get_sssnasasasnas(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, long *n1, char ***as1, char ***as2, char ***as3, long *n2, char ***as4); int cm_tdbusm_get_sasasasnas(DBusMessage *msg, void *parent, char **s, char ***as1, char ***as2, char ***as3, long *n, char ***as4); struct cm_tdbusm_dict { char *key; enum cm_tdbusm_dict_value_type { cm_tdbusm_dict_invalid, cm_tdbusm_dict_s, cm_tdbusm_dict_p, cm_tdbusm_dict_as, cm_tdbusm_dict_ass, cm_tdbusm_dict_n, cm_tdbusm_dict_b, cm_tdbusm_dict_d, } value_type; union cm_tdbusm_variant { char *s; char **as; char **ass; long n; dbus_bool_t b; const struct cm_tdbusm_dict **d; } value; }; int cm_tdbusm_get_d(DBusMessage *msg, void *parent, struct cm_tdbusm_dict ***d); int cm_tdbusm_get_sd(DBusMessage *msg, void *parent, char **s, struct cm_tdbusm_dict ***d); int cm_tdbusm_set_b(DBusMessage *msg, dbus_bool_t b); int cm_tdbusm_set_n(DBusMessage *msg, long n); int cm_tdbusm_set_p(DBusMessage *msg, const char *p); int cm_tdbusm_set_s(DBusMessage *msg, const char *s); int cm_tdbusm_set_bp(DBusMessage *msg, dbus_bool_t b, const char *p); int cm_tdbusm_set_bs(DBusMessage *msg, dbus_bool_t b, const char *s); int cm_tdbusm_set_sb(DBusMessage *msg, const char *s, dbus_bool_t b); int cm_tdbusm_set_sn(DBusMessage *msg, const char *s, long n); int cm_tdbusm_set_ss(DBusMessage *msg, const char *s1, const char *s2); int cm_tdbusm_set_ap(DBusMessage *msg, const char **p); int cm_tdbusm_set_as(DBusMessage *msg, const char **s); int cm_tdbusm_set_ass(DBusMessage *msg, const char **ss); int cm_tdbusm_set_sss(DBusMessage *msg, const char *s1, const char *s2, const char *s3); int cm_tdbusm_get_ssv(DBusMessage *msg, void *parent, char **s1, char **s2, enum cm_tdbusm_dict_value_type *type, union cm_tdbusm_variant *value); int cm_tdbusm_set_ssb(DBusMessage *msg, const char *s1, const char *s2, dbus_bool_t b); int cm_tdbusm_set_ssn(DBusMessage *msg, const char *s1, const char *s2, long n); int cm_tdbusm_set_ssas(DBusMessage *msg, const char *s1, const char *s2, const char **as); int cm_tdbusm_set_ssass(DBusMessage *msg, const char *s1, const char *s2, const char **ass); int cm_tdbusm_set_ssss(DBusMessage *msg, const char *s1, const char *s2, const char *s3, const char *s4); int cm_tdbusm_set_ssvs(DBusMessage *msg, const char *s1, const char *s2, const char *s3); int cm_tdbusm_set_ssoas(DBusMessage *msg, const char *s1, const char *s2, const char **as); int cm_tdbusm_set_sssas(DBusMessage *msg, const char *s1, const char *s2, const char *s3, const char **as); int cm_tdbusm_set_sssnasasasnas(DBusMessage *msg, const char *s1, const char *s2, const char *s3, long n1, const char **as1, const char **as2, const char **as3, long n2, const char **as4); int cm_tdbusm_set_sasasasnas(DBusMessage *msg, const char *s, const char **as1, const char **as2, const char **as3, long n, const char **as4); int cm_tdbusm_set_d(DBusMessage *msg, const struct cm_tdbusm_dict **d); int cm_tdbusm_set_v(DBusMessage *msg, enum cm_tdbusm_dict_value_type value_type, const union cm_tdbusm_variant *value); int cm_tdbusm_set_sd(DBusMessage *msg, const char *s, const struct cm_tdbusm_dict **d); struct cm_tdbusm_dict *cm_tdbusm_find_dict_entry(struct cm_tdbusm_dict **d, const char *key, enum cm_tdbusm_dict_value_type value_type); char *cm_tdbusm_hint(void *parent, const char *error, const char *message); #endif certmonger-0.78.6/src/tdbusm.c0000664000175000017500000014306712645513264013160 00000000000000/* * Copyright (C) 2009,2010,2011,2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include "log.h" #include "tdbusm.h" #define N_(_text) _text static char empty_string[] = ""; static const char *empty_string_array[] = {NULL}; static struct cm_tdbusm_dict **cm_tdbusm_get_d_array(DBusMessageIter *array, void *parent); static struct cm_tdbusm_dict *cm_tdbusm_get_d_item(DBusMessageIter *item, void *parent); static struct cm_tdbusm_dict *cm_tdbusm_get_d_value(DBusMessageIter *item, void *parent, struct cm_tdbusm_dict *dict); static int cm_tdbusm_append_d(DBusMessage *msg, DBusMessageIter *args, const struct cm_tdbusm_dict **d); static int cm_tdbusm_append_d_value(DBusMessage *msg, DBusMessageIter *args, enum cm_tdbusm_dict_value_type value_type, const union cm_tdbusm_variant *value); static int cm_tdbusm_array_length(const char **array) { int i; for (i = 0; (array != NULL) && (array[i] != NULL); i++) { continue; } return i; } static char ** cm_tdbusm_take_dbus_string_array(void *parent, char **array, int len) { int i; char **ret; if (len == -1) { len = cm_tdbusm_array_length((const char **) array); } if (len > 0) { ret = talloc_zero_array(parent, char *, len + 1); if (ret != NULL) { for (i = 0; (array != NULL) && (i < len) && (array[i] != NULL); i++) { ret[i] = talloc_strdup(ret, array[i]); } ret[i] = NULL; } } else { ret = NULL; } if (array != NULL) { dbus_free_string_array(array); } return ret; } int cm_tdbusm_get_b(DBusMessage *msg, void *parent, dbus_bool_t *b) { DBusError err; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_BOOLEAN, b, DBUS_TYPE_INVALID)) { return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_n(DBusMessage *msg, void *parent, long *n) { DBusError err; int64_t i64; int32_t i32; uint32_t u32; int16_t i16; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_INT64, &i64, DBUS_TYPE_INVALID)) { *n = i64; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (dbus_message_get_args(msg, &err, DBUS_TYPE_INT32, &i32, DBUS_TYPE_INVALID)) { *n = i32; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (dbus_message_get_args(msg, &err, DBUS_TYPE_UINT32, &u32, DBUS_TYPE_INVALID)) { *n = u32; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (dbus_message_get_args(msg, &err, DBUS_TYPE_INT16, &i16, DBUS_TYPE_INVALID)) { *n = i16; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } } } } int cm_tdbusm_get_p(DBusMessage *msg, void *parent, char **p) { DBusError err; *p = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_OBJECT_PATH, p, DBUS_TYPE_INVALID)) { *p = *p ? talloc_strdup(parent, *p) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_vs(DBusMessage *msg, void *parent, char **s) { DBusError err; DBusMessageIter iter, sub_iter; *s = NULL; dbus_error_init(&err); if (dbus_message_iter_init(msg, &iter) == FALSE) { if (dbus_error_is_set(&err)) { cm_log(3, "DBus error: %s", err.message); dbus_error_free(&err); } else { cm_log(3, "Unknown DBus error."); } return -1; } if (dbus_message_iter_get_arg_type(&iter) == DBUS_TYPE_VARIANT) { dbus_message_iter_recurse(&iter, &sub_iter); if (dbus_message_iter_get_arg_type(&sub_iter) == DBUS_TYPE_STRING) { dbus_message_iter_get_basic(&sub_iter, s); *s = *s ? talloc_strdup(parent, *s) : NULL; return 0; } } if (dbus_error_is_set(&err)) { cm_log(3, "Failed to extract data from DBus message: %s", err.message); dbus_error_free(&err); } else { cm_log(3, "Failed to extract data from DBus message."); } *s = NULL; return -1; } int cm_tdbusm_get_s(DBusMessage *msg, void *parent, char **s) { DBusError err; *s = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_INVALID)) { *s = *s ? talloc_strdup(parent, *s) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_bp(DBusMessage *msg, void *parent, dbus_bool_t *b, char **p) { DBusError err; *p = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_BOOLEAN, b, DBUS_TYPE_OBJECT_PATH, p, DBUS_TYPE_INVALID)) { *p = *p ? talloc_strdup(parent, *p) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_bs(DBusMessage *msg, void *parent, dbus_bool_t *b, char **s) { DBusError err; *s = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_BOOLEAN, b, DBUS_TYPE_STRING, s, DBUS_TYPE_INVALID)) { *s = *s ? talloc_strdup(parent, *s) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_sb(DBusMessage *msg, void *parent, char **s, dbus_bool_t *b) { DBusError err; *s = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_BOOLEAN, b, DBUS_TYPE_INVALID)) { *s = *s ? talloc_strdup(parent, *s) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_sn(DBusMessage *msg, void *parent, char **s, long *n) { DBusError err; int64_t i64; int64_t i32; int64_t i16; *s = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_INT64, &i64, DBUS_TYPE_INVALID)) { *s = *s ? talloc_strdup(parent, *s) : NULL; *n = i64; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_INT32, &i32, DBUS_TYPE_INVALID)) { *s = *s ? talloc_strdup(parent, *s) : NULL; *n = i32; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_INT16, &i16, DBUS_TYPE_INVALID)) { *s = *s ? talloc_strdup(parent, *s) : NULL; *n = i16; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } } } int cm_tdbusm_get_ss(DBusMessage *msg, void *parent, char **s1, char **s2) { DBusError err; *s1 = NULL; *s2 = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_INVALID)) { *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_ap(DBusMessage *msg, void *parent, char ***ap) { DBusError err; char **tmp; int i; *ap = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_ARRAY, DBUS_TYPE_OBJECT_PATH, &tmp, &i, DBUS_TYPE_INVALID)) { *ap = cm_tdbusm_take_dbus_string_array(parent, tmp, i); return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_ass(DBusMessage *msg, void *parent, char ***ass) { DBusMessageIter args, array, element; const char *p, *q; char **ret, **tmp; int i = 0; ret = NULL; if (!dbus_message_iter_init(msg, &args)) { talloc_free(ret); return -1; } if (dbus_message_iter_get_arg_type(&args) != DBUS_TYPE_ARRAY) { talloc_free(ret); return -1; } memset(&array, 0, sizeof(array)); dbus_message_iter_recurse(&args, &array); for (;;) { if (dbus_message_iter_get_arg_type(&array) != DBUS_TYPE_STRUCT) { talloc_free(ret); return -1; } dbus_message_iter_recurse(&array, &element); if (dbus_message_iter_get_arg_type(&element) != DBUS_TYPE_STRING) { talloc_free(ret); return -1; } p = NULL; dbus_message_iter_get_basic(&element, &p); if (!dbus_message_iter_has_next(&element) || !dbus_message_iter_next(&element) || (dbus_message_iter_get_arg_type(&element) != DBUS_TYPE_STRING)) { talloc_free(ret); return -1; } q = NULL; dbus_message_iter_get_basic(&element, &q); tmp = talloc_realloc(parent, ret, char *, i + 3); if (tmp == NULL) { talloc_free(ret); return -1; } ret = tmp; ret[i++] = talloc_strdup(ret, p); ret[i++] = talloc_strdup(ret, q); ret[i] = NULL; if (!dbus_message_iter_has_next(&array)) { break; } if (!dbus_message_iter_next(&array)) { talloc_free(ret); return -1; } } *ass = ret; return 0; } int cm_tdbusm_get_as(DBusMessage *msg, void *parent, char ***as) { DBusError err; char **tmp; int i; *as = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp, &i, DBUS_TYPE_INVALID)) { *as = cm_tdbusm_take_dbus_string_array(parent, tmp, i); return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_sss(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3) { DBusError err; *s1 = NULL; *s2 = NULL; *s3 = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_STRING, s3, DBUS_TYPE_INVALID)) { *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; *s3 = *s3 ? talloc_strdup(parent, *s3) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_ssv(DBusMessage *msg, void *parent, char **s1, char **s2, enum cm_tdbusm_dict_value_type *type, union cm_tdbusm_variant *value) { DBusMessageIter iter; struct cm_tdbusm_dict *d; *s1 = NULL; *s2 = NULL; if (!dbus_message_iter_init(msg, &iter)) { return -1; } if (dbus_message_iter_get_arg_type(&iter) != DBUS_TYPE_STRING) { return -1; } dbus_message_iter_get_basic(&iter, s1); if (!dbus_message_iter_has_next(&iter) || !dbus_message_iter_next(&iter)) { return -1; } d = cm_tdbusm_get_d_item(&iter, parent); if (d == NULL) { return -1; } *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = talloc_strdup(parent, d->key); *type = d->value_type; *value = d->value; return 0; } int cm_tdbusm_get_ssb(DBusMessage *msg, void *parent, char **s1, char **s2, dbus_bool_t *b) { DBusError err; *s1 = NULL; *s2 = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_BOOLEAN, b, DBUS_TYPE_INVALID)) { *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_ssn(DBusMessage *msg, void *parent, char **s1, char **s2, long *l) { DBusError err; int64_t i64; int32_t i32; int16_t i16; *s1 = NULL; *s2 = NULL; dbus_error_init(&err); if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_INT64, &i64, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_INT32, &i32, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_INT16, &i16, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } i32 = i16; } i64 = i32; } *l = i64; *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; return 0; } int cm_tdbusm_get_ssss(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char **s4) { DBusError err; *s1 = NULL; *s2 = NULL; *s3 = NULL; *s4 = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_STRING, s3, DBUS_TYPE_STRING, s4, DBUS_TYPE_INVALID)) { *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; *s3 = *s3 ? talloc_strdup(parent, *s3) : NULL; *s4 = *s4 ? talloc_strdup(parent, *s4) : NULL; return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_ssosos(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char **s4) { int i; i = cm_tdbusm_get_ssss(msg, parent, s1, s2, s3, s4); if (i != 0) { *s4 = NULL; i = cm_tdbusm_get_sss(msg, parent, s1, s2, s3); if (i != 0) { *s3 = NULL; i = cm_tdbusm_get_ss(msg, parent, s1, s2); } } return i; } int cm_tdbusm_get_sososos(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char **s4) { int i; i = cm_tdbusm_get_ssss(msg, parent, s1, s2, s3, s4); if (i != 0) { *s4 = NULL; i = cm_tdbusm_get_sss(msg, parent, s1, s2, s3); if (i != 0) { *s3 = NULL; i = cm_tdbusm_get_ss(msg, parent, s1, s2); if (i != 0) { *s2 = NULL; i = cm_tdbusm_get_s(msg, parent, s1); } } } return i; } int cm_tdbusm_get_ssas(DBusMessage *msg, void *parent, char **s1, char **s2, char ***as) { DBusError err; char **tmp; int i; *s1 = NULL; *s2 = NULL; *as = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp, &i, DBUS_TYPE_INVALID)) { *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; *as = cm_tdbusm_take_dbus_string_array(parent, tmp, i); return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_ssass(DBusMessage *msg, void *parent, char **s1, char **s2, char ***ass) { DBusMessageIter args, array, element; const char *p, *q, *r, *s; char **ret, **tmp; int i = 0; ret = NULL; if (!dbus_message_iter_init(msg, &args)) { return -1; } if (dbus_message_iter_get_arg_type(&args) != DBUS_TYPE_STRING) { return -1; } dbus_message_iter_get_basic(&args, &p); if (!dbus_message_iter_has_next(&args) || !dbus_message_iter_next(&args) || (dbus_message_iter_get_arg_type(&args) != DBUS_TYPE_STRING)) { return -1; } dbus_message_iter_get_basic(&args, &q); if (!dbus_message_iter_has_next(&args) || !dbus_message_iter_next(&args) || (dbus_message_iter_get_arg_type(&args) != DBUS_TYPE_ARRAY)) { return -1; } memset(&array, 0, sizeof(array)); dbus_message_iter_recurse(&args, &array); for (;;) { if (dbus_message_iter_get_arg_type(&array) != DBUS_TYPE_STRUCT) { talloc_free(ret); return -1; } dbus_message_iter_recurse(&array, &element); if (dbus_message_iter_get_arg_type(&element) != DBUS_TYPE_STRING) { talloc_free(ret); return -1; } r = NULL; dbus_message_iter_get_basic(&element, &r); if (!dbus_message_iter_has_next(&element) || !dbus_message_iter_next(&element) || (dbus_message_iter_get_arg_type(&element) != DBUS_TYPE_STRING)) { talloc_free(ret); return -1; } s = NULL; dbus_message_iter_get_basic(&element, &s); tmp = talloc_realloc(parent, ret, char *, i + 3); if (tmp == NULL) { talloc_free(ret); return -1; } ret = tmp; ret[i++] = talloc_strdup(ret, r); ret[i++] = talloc_strdup(ret, s); ret[i] = NULL; if (!dbus_message_iter_has_next(&array)) { break; } if (!dbus_message_iter_next(&array)) { talloc_free(ret); return -1; } } *s1 = talloc_strdup(parent, p); *s2 = talloc_strdup(parent, q); *ass = ret; return 0; } int cm_tdbusm_get_sssas(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, char ***as) { DBusError err; char **tmp; int i; *s1 = NULL; *s2 = NULL; *s3 = NULL; *as = NULL; dbus_error_init(&err); if (dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_STRING, s3, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp, &i, DBUS_TYPE_INVALID)) { *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; *s3 = *s3 ? talloc_strdup(parent, *s3) : NULL; *as = cm_tdbusm_take_dbus_string_array(parent, tmp, i); return 0; } else { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } } int cm_tdbusm_get_ssoas(DBusMessage *msg, void *parent, char **s1, char **s2, char ***as) { int i; i = cm_tdbusm_get_ssas(msg, parent, s1, s2, as); if (i != 0) { *as = NULL; i = cm_tdbusm_get_ss(msg, parent, s1, s2); if (i != 0) { *s2 = NULL; i = cm_tdbusm_get_s(msg, parent, s1); } } return i; } int cm_tdbusm_get_sssnasasasnas(DBusMessage *msg, void *parent, char **s1, char **s2, char **s3, long *n1, char ***as1, char ***as2, char ***as3, long *n2, char ***as4) { DBusError err; char **tmp1, **tmp2, **tmp3, **tmp4; int64_t i641, i642; int32_t i321, i322; int16_t i161, i162; int i, j, k, l; *s1 = NULL; *s2 = NULL; *s3 = NULL; *as1 = NULL; *as2 = NULL; *as3 = NULL; *as4 = NULL; dbus_error_init(&err); if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_STRING, s3, DBUS_TYPE_INT64, &i641, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp1, &i, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp2, &j, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp3, &k, DBUS_TYPE_INT64, &i642, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp4, &l, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_STRING, s3, DBUS_TYPE_INT32, &i321, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp1, &i, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp2, &j, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp3, &k, DBUS_TYPE_INT32, &i322, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp4, &l, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s1, DBUS_TYPE_STRING, s2, DBUS_TYPE_STRING, s3, DBUS_TYPE_INT16, &i161, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp1, &i, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp2, &j, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp3, &k, DBUS_TYPE_INT16, &i162, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp4, &l, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } i321 = i161; i322 = i162; } i641 = i321; i642 = i322; } *s1 = *s1 ? talloc_strdup(parent, *s1) : NULL; *s2 = *s2 ? talloc_strdup(parent, *s2) : NULL; *s3 = *s3 ? talloc_strdup(parent, *s3) : NULL; *n1 = i641; *n2 = i642; *as1 = cm_tdbusm_take_dbus_string_array(parent, tmp1, i); *as2 = cm_tdbusm_take_dbus_string_array(parent, tmp2, j); *as3 = cm_tdbusm_take_dbus_string_array(parent, tmp3, k); *as4 = cm_tdbusm_take_dbus_string_array(parent, tmp4, l); return 0; } int cm_tdbusm_get_sasasasnas(DBusMessage *msg, void *parent, char **s, char ***as1, char ***as2, char ***as3, long *n, char ***as4) { DBusError err; char **tmp1, **tmp2, **tmp3, **tmp4; int64_t i64; int32_t i32; int16_t i16; int i, j, k, l; *s = NULL; *as1 = NULL; *as2 = NULL; *as3 = NULL; *as4 = NULL; dbus_error_init(&err); if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp1, &i, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp2, &j, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp3, &k, DBUS_TYPE_INT64, &i64, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp4, &l, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp1, &i, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp2, &j, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp3, &k, DBUS_TYPE_INT32, &i32, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp4, &l, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } if (!dbus_message_get_args(msg, &err, DBUS_TYPE_STRING, s, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp1, &i, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp2, &j, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp3, &k, DBUS_TYPE_INT16, &i16, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &tmp4, &l, DBUS_TYPE_INVALID)) { if (dbus_error_is_set(&err)) { dbus_error_free(&err); dbus_error_init(&err); } return -1; } i32 = i16; } i64 = i32; } *s = *s ? talloc_strdup(parent, *s) : NULL; *as1 = cm_tdbusm_take_dbus_string_array(parent, tmp1, i); *as2 = cm_tdbusm_take_dbus_string_array(parent, tmp2, j); *as3 = cm_tdbusm_take_dbus_string_array(parent, tmp3, k); *n = i64; *as4 = cm_tdbusm_take_dbus_string_array(parent, tmp4, l); return 0; } static struct cm_tdbusm_dict * cm_tdbusm_get_d_value(DBusMessageIter *item, void *parent, struct cm_tdbusm_dict *dict) { struct cm_tdbusm_dict **dicts; char *s, **as, **ass; int64_t i64; int32_t i32; int16_t i16; int n_values; DBusMessageIter value, sval, fields; /* Pull out a variant. */ switch (dbus_message_iter_get_arg_type(item)) { case DBUS_TYPE_VARIANT: memset(&value, 0, sizeof(value)); dbus_message_iter_recurse(item, &value); switch (dbus_message_iter_get_arg_type(&value)) { /* The variant value can be a boolean. */ case DBUS_TYPE_BOOLEAN: dict->value_type = cm_tdbusm_dict_b; dbus_message_iter_get_basic(&value, &dict->value.b); break; /* It can be a path. */ case DBUS_TYPE_OBJECT_PATH: dict->value_type = cm_tdbusm_dict_p; dbus_message_iter_get_basic(&value, &s); dict->value.s = talloc_strdup(dict, s); break; /* It can be a string. */ case DBUS_TYPE_STRING: dict->value_type = cm_tdbusm_dict_s; dbus_message_iter_get_basic(&value, &s); dict->value.s = talloc_strdup(dict, s); break; /* It can be an integer type. */ case DBUS_TYPE_INT16: dict->value_type = cm_tdbusm_dict_n; dbus_message_iter_get_basic(&value, &i16); dict->value.n = i16; break; case DBUS_TYPE_INT32: dict->value_type = cm_tdbusm_dict_n; dbus_message_iter_get_basic(&value, &i32); dict->value.n = i32; break; case DBUS_TYPE_INT64: dict->value_type = cm_tdbusm_dict_n; dbus_message_iter_get_basic(&value, &i64); dict->value.n = i64; break; /* It can be an array of strings. */ case DBUS_TYPE_ARRAY: memset(&sval, 0, sizeof(sval)); dbus_message_iter_recurse(&value, &sval); as = NULL; ass = NULL; n_values = 0; for (;;) { /* This had better be a string or a struct * containing two strings. */ switch (dbus_message_iter_get_arg_type(&sval)) { case DBUS_TYPE_STRING: dict->value_type = cm_tdbusm_dict_as; dbus_message_iter_get_basic(&sval, &s); as = talloc_realloc(dict, as, char *, n_values + 2); if (as == NULL) { talloc_free(dict); return NULL; } as[n_values] = talloc_strdup(as, s); if (as[n_values] == NULL) { talloc_free(dict); return NULL; } n_values++; as[n_values] = NULL; dict->value.as = as; break; case DBUS_TYPE_STRUCT: dict->value_type = cm_tdbusm_dict_ass; dbus_message_iter_recurse(&sval, &fields); if (dbus_message_iter_get_arg_type(&fields) != DBUS_TYPE_STRING) { talloc_free(dict); return NULL; } ass = talloc_realloc(dict, ass, char *, n_values + 3); if (ass == NULL) { talloc_free(dict); return NULL; } dbus_message_iter_get_basic(&fields, &s); ass[n_values] = talloc_strdup(ass, s); if (!dbus_message_iter_has_next(&fields) || (dbus_message_iter_get_arg_type(&fields) != DBUS_TYPE_STRING) || !dbus_message_iter_next(&fields)) { talloc_free(dict); return NULL; } dbus_message_iter_get_basic(&fields, &s); ass[n_values + 1] = talloc_strdup(ass, s); n_values += 2; ass[n_values] = NULL; dict->value.ass = ass; break; case DBUS_TYPE_DICT_ENTRY: dict->value_type = cm_tdbusm_dict_d; dicts = cm_tdbusm_get_d_array(&sval, dict); dict->value.d = (const struct cm_tdbusm_dict **) dicts; break; case DBUS_TYPE_INVALID: dict->value_type = cm_tdbusm_dict_invalid; memset(&dict->value, 0, sizeof(dict->value)); break; default: cm_log(6, "Unexpected array member type %c (%d)\n", dbus_message_iter_get_arg_type(&sval), dbus_message_iter_get_arg_type(&sval)); talloc_free(dict); return NULL; break; } /* Move on to the next element. */ if (dbus_message_iter_has_next(&sval)) { if (!dbus_message_iter_next(&sval)) { talloc_free(dict); return NULL; } } else { /* Out of elements. */ break; } } break; default: /* It had better not be something else. */ talloc_free(dict); return NULL; break; } break; default: talloc_free(dict); return NULL; break; } return dict; } static struct cm_tdbusm_dict * cm_tdbusm_get_d_item(DBusMessageIter *item, void *parent) { struct cm_tdbusm_dict *dict; char *s; dict = talloc_ptrtype(parent, dict); if (dict == NULL) { return NULL; } memset(dict, 0, sizeof(*dict)); /* Pull out a string. */ switch (dbus_message_iter_get_arg_type(item)) { case DBUS_TYPE_STRING: dbus_message_iter_get_basic(item, &s); dict->key = talloc_strdup(dict, s); break; default: talloc_free(dict); return NULL; break; } if (!dbus_message_iter_has_next(item) || !dbus_message_iter_next(item)) { talloc_free(dict); return NULL; } /* Pull out the corresponding value, whatever it is. */ return cm_tdbusm_get_d_value(item, parent, dict); } static struct cm_tdbusm_dict ** cm_tdbusm_get_d_array(DBusMessageIter *array, void *parent) { struct cm_tdbusm_dict *ditem, **dict, **tmp; int n_items; DBusMessageIter item; dict = NULL; n_items = 0; for (;;) { /* We'd better be walking a list of dictionary entries. */ switch (dbus_message_iter_get_arg_type(array)) { case DBUS_TYPE_DICT_ENTRY: /* Found a dictionary entry. */ memset(&item, 0, sizeof(item)); dbus_message_iter_recurse(array, &item); ditem = cm_tdbusm_get_d_item(&item, parent); if (ditem == NULL) { talloc_free(dict); return NULL; } tmp = talloc_realloc(parent, dict, struct cm_tdbusm_dict *, n_items + 2); if (tmp != NULL) { tmp[n_items] = ditem; n_items++; tmp[n_items] = NULL; dict = tmp; } break; default: /* Found... something else. */ talloc_free(dict); return NULL; break; } if (dbus_message_iter_has_next(array)) { if (!dbus_message_iter_next(array)) { talloc_free(dict); return NULL; } } else { break; } } return dict; } int cm_tdbusm_get_d(DBusMessage *msg, void *parent, struct cm_tdbusm_dict ***d) { struct cm_tdbusm_dict **tdicts, **dicts, **tmp; DBusMessageIter args, array; int i, n_dicts; *d = NULL; dicts = NULL; n_dicts = 0; memset(&args, 0, sizeof(args)); if (dbus_message_iter_init(msg, &args)) { for (;;) { switch (dbus_message_iter_get_arg_type(&args)) { case DBUS_TYPE_ARRAY: memset(&array, 0, sizeof(array)); dbus_message_iter_recurse(&args, &array); tdicts = cm_tdbusm_get_d_array(&array, parent); if (tdicts == NULL) { talloc_free(dicts); return -1; } for (i = 0; tdicts[i] != NULL; i++) { continue; } tmp = talloc_realloc(parent, dicts, struct cm_tdbusm_dict *, n_dicts + i + 1); if (tmp != NULL) { memcpy(tmp + n_dicts, tdicts, i * sizeof(tdicts[0])); n_dicts += i; tmp[n_dicts] = NULL; dicts = tmp; } else { talloc_free(tdicts); talloc_free(dicts); return -1; } break; default: talloc_free(dicts); return -1; break; } if (dbus_message_iter_has_next(&args)) { if (!dbus_message_iter_next(&args)) { talloc_free(dicts); return -1; } } else { break; } } *d = dicts; return 0; } return -1; } int cm_tdbusm_get_sd(DBusMessage *msg, void *parent, char **s, struct cm_tdbusm_dict ***d) { struct cm_tdbusm_dict **tdicts, **dicts, **tmp; DBusMessageIter args, array; int i, n_dicts; *d = NULL; dicts = NULL; n_dicts = 0; memset(&args, 0, sizeof(args)); if (dbus_message_iter_init(msg, &args)) { if (dbus_message_iter_get_arg_type(&args) != DBUS_TYPE_STRING) { return -1; } dbus_message_iter_get_basic(&args, s); if (*s == NULL) { return -1; } *s = talloc_strdup(parent, *s); if (!dbus_message_iter_has_next(&args) || !dbus_message_iter_next(&args)) { return -1; } if (dbus_message_iter_get_arg_type(&args) != DBUS_TYPE_ARRAY) { return -1; } memset(&array, 0, sizeof(array)); dbus_message_iter_recurse(&args, &array); tdicts = cm_tdbusm_get_d_array(&array, parent); if (tdicts != NULL) { for (i = 0; tdicts[i] != NULL; i++) { continue; } tmp = talloc_realloc(parent, dicts, struct cm_tdbusm_dict *, n_dicts + i + 1); if (tmp != NULL) { memcpy(tmp + n_dicts, tdicts, i * sizeof(tdicts[0])); n_dicts += i; tmp[n_dicts] = NULL; dicts = tmp; } else { talloc_free(tdicts); talloc_free(dicts); return -1; } } if (dbus_message_iter_has_next(&args)) { if (!dbus_message_iter_next(&args)) { talloc_free(dicts); return -1; } } *d = dicts; return 0; } return -1; } int cm_tdbusm_set_b(DBusMessage *msg, dbus_bool_t b) { if (dbus_message_append_args(msg, DBUS_TYPE_BOOLEAN, &b, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_n(DBusMessage *msg, long n) { int64_t i = n; if (dbus_message_append_args(msg, DBUS_TYPE_INT64, &i, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_p(DBusMessage *msg, const char *p) { if (dbus_message_append_args(msg, DBUS_TYPE_OBJECT_PATH, &p, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_s(DBusMessage *msg, const char *s) { if (s == NULL) { s = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_bs(DBusMessage *msg, dbus_bool_t b, const char *s) { if (s == NULL) { s = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_BOOLEAN, &b, DBUS_TYPE_STRING, &s, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_bp(DBusMessage *msg, dbus_bool_t b, const char *p) { if (dbus_message_append_args(msg, DBUS_TYPE_BOOLEAN, &b, DBUS_TYPE_OBJECT_PATH, &p, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_sb(DBusMessage *msg, const char *s, dbus_bool_t b) { if (s == NULL) { s = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s, DBUS_TYPE_BOOLEAN, &b, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_sn(DBusMessage *msg, const char *s, long n) { int64_t i = n; if (s == NULL) { s = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s, DBUS_TYPE_INT64, &i, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ss(DBusMessage *msg, const char *s1, const char *s2) { if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ssb(DBusMessage *msg, const char *s1, const char *s2, dbus_bool_t b) { if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_BOOLEAN, &b, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ssn(DBusMessage *msg, const char *s1, const char *s2, long n) { int64_t i = n; if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_INT64, &i, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ap(DBusMessage *msg, const char **ap) { if (dbus_message_append_args(msg, DBUS_TYPE_ARRAY, DBUS_TYPE_OBJECT_PATH, &ap, cm_tdbusm_array_length(ap), DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_as(DBusMessage *msg, const char **as) { if (as == NULL) { as = empty_string_array; } if (dbus_message_append_args(msg, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as, cm_tdbusm_array_length(as), DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ass(DBusMessage *msg, const char **ss) { DBusMessageIter args, array, entry; const char *p; int i; memset(&args, 0, sizeof(args)); dbus_message_iter_init_append(msg, &args); memset(&array, 0, sizeof(array)); dbus_message_iter_open_container(&args, DBUS_TYPE_ARRAY, DBUS_STRUCT_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_STRUCT_END_CHAR_AS_STRING, &array); for (i = 0; (ss != NULL) && (ss[i] != NULL) && (ss[i + 1] != NULL); i += 2) { memset(&entry, 0, sizeof(entry)); dbus_message_iter_open_container(&array, DBUS_TYPE_STRUCT, NULL, &entry); p = ss[i]; dbus_message_iter_append_basic(&entry, DBUS_TYPE_STRING, &p); p = ss[i + 1]; dbus_message_iter_append_basic(&entry, DBUS_TYPE_STRING, &p); dbus_message_iter_close_container(&array, &entry); } dbus_message_iter_close_container(&args, &array); return (i > 0) ? 0 : -1; } int cm_tdbusm_set_sss(DBusMessage *msg, const char *s1, const char *s2, const char *s3) { if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (s3 == NULL) { s3 = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_STRING, &s3, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ssvs(DBusMessage *msg, const char *s1, const char *s2, const char *s3) { DBusMessageIter args; union cm_tdbusm_variant v; char *p; memset(&args, 0, sizeof(args)); dbus_message_iter_init_append(msg, &args); dbus_message_iter_append_basic(&args, DBUS_TYPE_STRING, &s1); dbus_message_iter_append_basic(&args, DBUS_TYPE_STRING, &s2); p = strdup(s3); memset(&v, 0, sizeof(v)); v.s = p; cm_tdbusm_append_d_value(msg, &args, cm_tdbusm_dict_s, &v); free(p); return 0; } int cm_tdbusm_set_ssss(DBusMessage *msg, const char *s1, const char *s2, const char *s3, const char *s4) { if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (s3 == NULL) { s3 = empty_string; } if (s4 == NULL) { s4 = empty_string; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_STRING, &s3, DBUS_TYPE_STRING, &s4, DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ssas(DBusMessage *msg, const char *s1, const char *s2, const char **as) { if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (as == NULL) { as = empty_string_array; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as, cm_tdbusm_array_length(as), DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_ssass(DBusMessage *msg, const char *s1, const char *s2, const char **ass) { DBusMessageIter args, elt, fields; int i; memset(&args, 0, sizeof(args)); if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (ass == NULL) { ass = empty_string_array; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_INVALID)) { dbus_message_iter_init_append(msg, &args); dbus_message_iter_open_container(&args, DBUS_TYPE_ARRAY, DBUS_STRUCT_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_STRUCT_END_CHAR_AS_STRING, &elt); for (i = 0; (ass != NULL) && (ass[i] != NULL) && (ass[i + 1] != NULL); i += 2) { dbus_message_iter_open_container(&elt, DBUS_TYPE_STRUCT, NULL, &fields); dbus_message_iter_append_basic(&fields, DBUS_TYPE_STRING, &ass[i]); dbus_message_iter_append_basic(&fields, DBUS_TYPE_STRING, &ass[i + 1]); dbus_message_iter_close_container(&elt, &fields); } dbus_message_iter_close_container(&args, &elt); return 0; } else { return -1; } } int cm_tdbusm_set_ssoas(DBusMessage *msg, const char *s1, const char *s2, const char **as) { if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (as == NULL) { as = empty_string_array; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as, cm_tdbusm_array_length(as), DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_sssas(DBusMessage *msg, const char *s1, const char *s2, const char *s3, const char **as) { if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (s3 == NULL) { s3 = empty_string; } if (as == NULL) { as = empty_string_array; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_STRING, &s3, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as, cm_tdbusm_array_length(as), DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_sssnasasasnas(DBusMessage *msg, const char *s1, const char *s2, const char *s3, long n1, const char **as1, const char **as2, const char **as3, long n2, const char **as4) { int64_t i1 = n1, i2 = n2; if (s1 == NULL) { s1 = empty_string; } if (s2 == NULL) { s2 = empty_string; } if (s3 == NULL) { s3 = empty_string; } if (as1 == NULL) { as1 = empty_string_array; } if (as2 == NULL) { as2 = empty_string_array; } if (as3 == NULL) { as3 = empty_string_array; } if (as4 == NULL) { as4 = empty_string_array; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s1, DBUS_TYPE_STRING, &s2, DBUS_TYPE_STRING, &s3, DBUS_TYPE_INT64, &i1, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as1, cm_tdbusm_array_length(as1), DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as2, cm_tdbusm_array_length(as2), DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as3, cm_tdbusm_array_length(as3), DBUS_TYPE_INT64, &i2, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as4, cm_tdbusm_array_length(as4), DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } int cm_tdbusm_set_sasasasnas(DBusMessage *msg, const char *s, const char **as1, const char **as2, const char **as3, long n, const char **as4) { int64_t i = n; if (s == NULL) { s = empty_string; } if (as1 == NULL) { as1 = empty_string_array; } if (as2 == NULL) { as2 = empty_string_array; } if (as3 == NULL) { as3 = empty_string_array; } if (as4 == NULL) { as4 = empty_string_array; } if (dbus_message_append_args(msg, DBUS_TYPE_STRING, &s, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as1, cm_tdbusm_array_length(as1), DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as2, cm_tdbusm_array_length(as2), DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as3, cm_tdbusm_array_length(as3), DBUS_TYPE_INT64, &i, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING, &as4, cm_tdbusm_array_length(as4), DBUS_TYPE_INVALID)) { return 0; } else { return -1; } } static int cm_tdbusm_append_d_value(DBusMessage *msg, DBusMessageIter *args, enum cm_tdbusm_dict_value_type value_type, const union cm_tdbusm_variant *value) { DBusMessageIter val, elt, fields; int subs = 0; int64_t l; memset(&val, 0, sizeof(val)); switch (value_type) { case cm_tdbusm_dict_invalid: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_INVALID_AS_STRING, &val); dbus_message_iter_append_basic(&val, DBUS_TYPE_INVALID, NULL); dbus_message_iter_close_container(args, &val); break; case cm_tdbusm_dict_b: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_BOOLEAN_AS_STRING, &val); dbus_message_iter_append_basic(&val, DBUS_TYPE_BOOLEAN, &value->b); dbus_message_iter_close_container(args, &val); break; case cm_tdbusm_dict_n: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_INT64_AS_STRING, &val); l = value->n; dbus_message_iter_append_basic(&val, DBUS_TYPE_INT64, &l); dbus_message_iter_close_container(args, &val); break; case cm_tdbusm_dict_p: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_OBJECT_PATH_AS_STRING, &val); dbus_message_iter_append_basic(&val, DBUS_TYPE_OBJECT_PATH, &value->s); dbus_message_iter_close_container(args, &val); break; case cm_tdbusm_dict_s: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_STRING_AS_STRING, &val); dbus_message_iter_append_basic(&val, DBUS_TYPE_STRING, &value->s); dbus_message_iter_close_container(args, &val); break; case cm_tdbusm_dict_as: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, &val); memset(&elt, 0, sizeof(elt)); dbus_message_iter_open_container(&val, DBUS_TYPE_ARRAY, DBUS_TYPE_STRING_AS_STRING, &elt); for (l = 0; (value->as != NULL) && (value->as[l] != NULL); l++) { dbus_message_iter_append_basic(&elt, DBUS_TYPE_STRING, &value->as[l]); } dbus_message_iter_close_container(&val, &elt); dbus_message_iter_close_container(args, &val); break; case cm_tdbusm_dict_ass: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_ARRAY_AS_STRING DBUS_STRUCT_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_STRUCT_END_CHAR_AS_STRING, &val); memset(&elt, 0, sizeof(elt)); dbus_message_iter_open_container(&val, DBUS_TYPE_ARRAY, DBUS_STRUCT_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_STRUCT_END_CHAR_AS_STRING, &elt); for (l = 0; (value->ass != NULL) && (value->ass[l] != NULL) && (value->ass[l + 1] != NULL); l += 2) { memset(&fields, 0, sizeof(fields)); dbus_message_iter_open_container(&elt, DBUS_TYPE_STRUCT, NULL, &fields); dbus_message_iter_append_basic(&fields, DBUS_TYPE_STRING, &value->ass[l]); dbus_message_iter_append_basic(&fields, DBUS_TYPE_STRING, &value->ass[l + 1]); dbus_message_iter_close_container(&elt, &fields); } dbus_message_iter_close_container(&val, &elt); dbus_message_iter_close_container(args, &val); break; case cm_tdbusm_dict_d: dbus_message_iter_open_container(args, DBUS_TYPE_VARIANT, DBUS_TYPE_ARRAY_AS_STRING DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_VARIANT_AS_STRING DBUS_DICT_ENTRY_END_CHAR_AS_STRING, &val); subs += cm_tdbusm_append_d(msg, &val, (const struct cm_tdbusm_dict **) value->d); dbus_message_iter_close_container(args, &val); break; } return subs; } static int cm_tdbusm_append_d_item(DBusMessage *msg, DBusMessageIter *args, const struct cm_tdbusm_dict *d) { DBusMessageIter entry; int subs = 0; memset(&entry, 0, sizeof(entry)); dbus_message_iter_open_container(args, DBUS_TYPE_DICT_ENTRY, NULL, &entry); dbus_message_iter_append_basic(&entry, DBUS_TYPE_STRING, &d->key); subs = cm_tdbusm_append_d_value(msg, &entry, d->value_type, &d->value); dbus_message_iter_close_container(args, &entry); return subs; } static int cm_tdbusm_append_d(DBusMessage *msg, DBusMessageIter *args, const struct cm_tdbusm_dict **d) { DBusMessageIter array; int i, subs = 0; memset(&array, 0, sizeof(array)); dbus_message_iter_open_container(args, DBUS_TYPE_ARRAY, DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_VARIANT_AS_STRING DBUS_DICT_ENTRY_END_CHAR_AS_STRING, &array); for (i = 0; (d != NULL) && (d[i] != NULL); i++) { subs += cm_tdbusm_append_d_item(msg, &array, d[i]); } dbus_message_iter_close_container(args, &array); return i + subs; } static int cm_tdbusm_set_osd(DBusMessage *msg, const char *s, const struct cm_tdbusm_dict **d) { DBusMessageIter args; int i; memset(&args, 0, sizeof(args)); dbus_message_iter_init_append(msg, &args); if (s != NULL) { dbus_message_iter_append_basic(&args, DBUS_TYPE_STRING, &s); } i = cm_tdbusm_append_d(msg, &args, d); return (i > 0) ? 0 : -1; } int cm_tdbusm_set_d(DBusMessage *msg, const struct cm_tdbusm_dict **d) { return cm_tdbusm_set_osd(msg, NULL, d); } int cm_tdbusm_set_v(DBusMessage *msg, enum cm_tdbusm_dict_value_type value_type, const union cm_tdbusm_variant *value) { DBusMessageIter args; int i = 0; memset(&args, 0, sizeof(args)); dbus_message_iter_init_append(msg, &args); if (value != NULL) { i = cm_tdbusm_append_d_value(msg, &args, value_type, value); } return (i > 0) ? 0 : -1; } int cm_tdbusm_set_sd(DBusMessage *msg, const char *s, const struct cm_tdbusm_dict **d) { if (s == NULL) { return -1; } return cm_tdbusm_set_osd(msg, s, d); } struct cm_tdbusm_dict * cm_tdbusm_find_dict_entry(struct cm_tdbusm_dict **d, const char *key, enum cm_tdbusm_dict_value_type value_type) { int i; struct cm_tdbusm_dict *ret; ret = NULL; for (i = 0; (d != NULL) && (d[i] != NULL); i++) { if ((value_type == d[i]->value_type) && (strcasecmp(key, d[i]->key) == 0)) { ret = d[i]; } if ((value_type == cm_tdbusm_dict_p) && (d[i]->value_type == cm_tdbusm_dict_s) && (strcasecmp(key, d[i]->key) == 0)) { ret = d[i]; } if ((value_type == cm_tdbusm_dict_s) && (d[i]->value_type == cm_tdbusm_dict_p) && (strcasecmp(key, d[i]->key) == 0)) { ret = d[i]; } } return ret; } char * cm_tdbusm_hint(void *parent, const char *error, const char *message) { char *text = NULL; if (error == NULL) { return NULL; } if (strcmp(error, DBUS_ERROR_ACCESS_DENIED) == 0) { text = N_("Insufficient access. Please retry operation as root.\n"); } else if ((strcmp(error, DBUS_ERROR_NAME_HAS_NO_OWNER) == 0) || (strcmp(error, DBUS_ERROR_SERVICE_UNKNOWN) == 0)) { text = N_("Please verify that the certmonger service has been started.\n"); } else if (strcmp(error, DBUS_ERROR_NO_REPLY) == 0) { text = N_("Please verify that the certmonger service is still running.\n"); } else if (strcmp(error, DBUS_ERROR_NO_SERVER) == 0) { text = N_("Please verify that the message bus (D-Bus) service is running.\n"); } return text; } certmonger-0.78.6/src/tdbush.h0000664000175000017500000000360512645513264013151 00000000000000/* * Copyright (C) 2009,2012,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmtdbush_h #define cmtdbush_h struct cm_context; DBusHandlerResult cm_tdbush_handle(DBusConnection *conn, DBusMessage *msg, struct cm_context *ctx); struct cm_context; DBusHandlerResult cm_tdbush_handle_method_call(DBusConnection *conn, DBusMessage *msg, enum cm_tdbus_type bus, struct cm_context *ctx); struct cm_context; DBusHandlerResult cm_tdbush_handle_method_return(DBusConnection *conn, DBusMessage *msg, enum cm_tdbus_type bus, struct cm_context *ctx); void cm_tdbush_property_emit_entry_changes(struct cm_context *ctx, struct cm_store_entry *old_entry, struct cm_store_entry *new_entry); void cm_tdbush_property_emit_ca_changes(struct cm_context *ctx, struct cm_store_ca *old_ca, struct cm_store_ca *new_ca); DBusHandlerResult cm_tdbush_property_emit_changed(struct cm_context *ctx, const char *path, const char *interface, const char **properties); void cm_tdbush_property_emit_entry_saved_cert(struct cm_context *ctx, struct cm_store_entry *entry); char *cm_tdbush_canonicalize_directory(void *parent, const char *path); int cm_name_cmp(const char *a, const char *b); #endif certmonger-0.78.6/src/tdbush.c0000664000175000017500000075724312645513264013162 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "cm.h" #include "prefs.h" #include "store.h" #include "store-int.h" #include "submit-int.h" #include "tdbus.h" #include "tdbush.h" #include "tdbusm.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif /* Things we know about the calling client. */ struct cm_client_info { uid_t uid; pid_t pid; }; /* Convenience functions. */ static struct cm_store_entry * get_entry_for_path(struct cm_context *ctx, const char *path) { int initial; if (path != NULL) { initial = strlen(CM_DBUS_REQUEST_PATH); if (strncmp(path, CM_DBUS_REQUEST_PATH, initial) == 0) { if (path[initial] == '/') { return cm_get_entry_by_busname(ctx, path + initial + 1); } } } return NULL; } static struct cm_store_entry * get_entry_for_request_message(DBusMessage *msg, struct cm_context *ctx) { return msg ? get_entry_for_path(ctx, dbus_message_get_path(msg)) : NULL; } static struct cm_store_ca * get_ca_for_path(struct cm_context *ctx, const char *path) { int initial; if (path != NULL) { initial = strlen(CM_DBUS_CA_PATH); if (strncmp(path, CM_DBUS_CA_PATH, initial) == 0) { if (path[initial] == '/') { return cm_get_ca_by_busname(ctx, path + initial + 1); } } } return NULL; } static struct cm_store_ca * get_ca_for_request_message(DBusMessage *msg, struct cm_context *ctx) { return msg ? get_ca_for_path(ctx, dbus_message_get_path(msg)) : NULL; } /* These used to be local functions, but we ended up using them elsewhere. * Should probably just be reworked where we use them. */ static char * maybe_strdup(void *parent, const char *s) { return cm_store_maybe_strdup(parent, s); } static char ** maybe_strdupv(void *parent, char **s) { return cm_store_maybe_strdupv(parent, s); } /* Convenience functions for returning errors from the base object to callers. */ static DBusHandlerResult send_internal_base_error(DBusConnection *conn, DBusMessage *req) { DBusMessage *msg; msg = dbus_message_new_error(req, CM_DBUS_ERROR_BASE_INTERNAL, _("An internal error has occurred.")); if (msg != NULL) { dbus_connection_send(conn, msg, NULL); dbus_message_unref(msg); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } static DBusHandlerResult send_internal_base_missing_arg_error(DBusConnection *conn, DBusMessage *req, const char *text, const char *arg) { DBusMessage *msg; msg = dbus_message_new_error(req, CM_DBUS_ERROR_BASE_MISSING_ARG, text); if (msg != NULL) { cm_tdbusm_set_s(msg, arg); dbus_connection_send(conn, msg, NULL); dbus_message_unref(msg); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } static DBusHandlerResult send_internal_base_bad_arg_error(DBusConnection *conn, DBusMessage *req, const char *text, const char *badval, const char *arg) { DBusMessage *msg; msg = dbus_message_new_error_printf(req, CM_DBUS_ERROR_BASE_BAD_ARG, text, badval); if (msg != NULL) { cm_tdbusm_set_s(msg, arg); dbus_connection_send(conn, msg, NULL); dbus_message_unref(msg); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } static DBusHandlerResult send_internal_base_duplicate_error(DBusConnection *conn, DBusMessage *req, const char *text, const char *dup, const char *arg1, const char *arg2) { DBusMessage *msg; const char *args[] = {arg1, arg2, NULL}; msg = dbus_message_new_error_printf(req, CM_DBUS_ERROR_BASE_DUPLICATE, text, dup); if (msg != NULL) { cm_tdbusm_set_as(msg, args); dbus_connection_send(conn, msg, NULL); dbus_message_unref(msg); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } static DBusHandlerResult send_internal_base_no_such_entry_error(DBusConnection *conn, DBusMessage *req) { DBusMessage *msg; msg = dbus_message_new_error(req, CM_DBUS_ERROR_BASE_NO_SUCH_ENTRY, _("No matching entry found.\n")); if (msg != NULL) { dbus_connection_send(conn, msg, NULL); dbus_message_unref(msg); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Some validity-testing we do for caller-supplied arguments. */ static int check_arg_is_absolute_path(const char *path) { if (path[0] == '/') { return 0; } else { errno = EINVAL; return -1; } } static int check_arg_is_absolute_nss_path(const char *path) { if (strncmp(path, "sql:", 4) == 0) { path += 4; } else if (strncmp(path, "dbm:", 4) == 0) { path += 4; } else if (strncmp(path, "rdb:", 4) == 0) { path += 4; } else if (strncmp(path, "extern:", 7) == 0) { path += 7; } if (path[0] == '/') { return 0; } else { errno = EINVAL; return -1; } } static int check_arg_is_directory(const char *path) { struct stat st; if (stat(path, &st) == 0) { if (S_ISDIR(st.st_mode)) { if (access(path, R_OK | W_OK) == 0) { return 0; } } } return -1; } static int check_arg_is_nss_directory(const char *path) { struct stat st; if (strncmp(path, "sql:", 4) == 0) { path += 4; } else if (strncmp(path, "dbm:", 4) == 0) { path += 4; } else if (strncmp(path, "rdb:", 4) == 0) { path += 4; } else if (strncmp(path, "extern:", 7) == 0) { path += 7; } if (stat(path, &st) == 0) { if (S_ISDIR(st.st_mode)) { if (access(path, R_OK | W_OK) == 0) { return 0; } } } return -1; } static int check_arg_is_reg_or_missing(const char *path) { struct stat st; if (stat(path, &st) == 0) { if (S_ISREG(st.st_mode)) { return 0; } } else { if (errno == ENOENT) { return 0; } } return -1; } static int check_arg_parent_is_directory(const char *path) { char *tmp, *p; int ret, err; if (check_arg_is_absolute_path(path) != 0) { return -1; } tmp = strdup(path); if (tmp != NULL) { p = strrchr(tmp, '/'); if (p != NULL) { if (p > tmp) { *p = '\0'; } else { *(p + 1) = '\0'; } ret = check_arg_is_directory(tmp); err = errno; free(tmp); errno = err; return ret; } else { free(tmp); errno = EINVAL; return -1; } } errno = ENOMEM; return -1; } /* org.fedorahosted.certmonger.add_known_ca */ static DBusHandlerResult base_add_known_ca(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; void *parent; char *ca_name, *ca_command, **ca_issuer_names, *path; struct cm_store_ca *ca, *new_ca; int i, n_cas; parent = talloc_new(NULL); if (cm_tdbusm_get_ssoas(msg, parent, &ca_name, &ca_command, &ca_issuer_names) != 0) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } n_cas = cm_get_n_cas(ctx); for (i = 0; i < n_cas; i++) { ca = cm_get_ca_by_index(ctx, i); if (strcasecmp(ca->cm_nickname, ca_name) == 0) { cm_log(1, "There is already a CA with " "the nickname \"%s\": %s.\n", ca->cm_nickname, ca->cm_busname); talloc_free(parent); return send_internal_base_duplicate_error(conn, msg, _("There is already a CA with the nickname \"%s\"."), ca->cm_nickname, NULL, NULL); } } /* Okay, we can go ahead and add the CA. */ new_ca = cm_store_ca_new(parent); if (new_ca == NULL) { talloc_free(parent); return send_internal_base_error(conn, msg); } memset(new_ca, 0, sizeof(*new_ca)); /* Populate it with all of the information we have. */ new_ca->cm_busname = cm_store_ca_next_busname(new_ca); new_ca->cm_nickname = talloc_strdup(new_ca, ca_name); new_ca->cm_ca_known_issuer_names = maybe_strdupv(new_ca, ca_issuer_names); new_ca->cm_ca_is_default = 0; new_ca->cm_ca_type = cm_ca_external; new_ca->cm_ca_external_helper = talloc_strdup(new_ca, ca_command); /* Hand it off to the main loop. */ if (cm_add_ca(ctx, new_ca) != 0) { cm_log(1, "Error adding CA to main context.\n"); rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_b(rep, FALSE); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); } talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { rep = dbus_message_new_method_return(msg); if (rep != NULL) { path = talloc_asprintf(parent, "%s/%s", CM_DBUS_CA_PATH, new_ca->cm_busname); cm_tdbusm_set_bp(rep, TRUE, path); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { talloc_free(parent); return send_internal_base_error(conn, msg); } } } /* org.fedorahosted.certmonger.add_request */ static DBusHandlerResult base_add_request(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; DBusHandlerResult ret; void *parent; struct cm_tdbusm_dict **d; const struct cm_tdbusm_dict *param; struct cm_store_entry *e, *new_entry; struct cm_store_ca *ca; int i, n_entries; enum cm_key_storage_type key_storage; char *key_location, *key_nickname, *key_token, *key_pin, *key_pin_file; char *challenge_password, *challenge_password_file; enum cm_cert_storage_type cert_storage; char *cert_location, *cert_nickname, *cert_token; char *cert_owner, *key_owner; mode_t cert_perms, key_perms; char *path, *pre_command, *post_command; char **root_cert_nssdbs, **root_cert_files; char **other_root_cert_nssdbs, **other_root_cert_files; char **other_cert_nssdbs, **other_cert_files; parent = talloc_new(NULL); if (cm_tdbusm_get_d(msg, parent, &d) != 0) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Certificate storage. */ param = cm_tdbusm_find_dict_entry(d, "CERT_STORAGE", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_LOCATION_TYPE, cm_tdbusm_dict_s); } if (param == NULL) { /* This is a required parameter. */ cm_log(1, "Certificate storage type not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Certificate storage type not specified."), "CERT_STORAGE"); } else { /* Check that it's a known/supported type. */ if (strcasecmp(param->value.s, "FILE") == 0) { cert_storage = cm_cert_storage_file; } else if (strcasecmp(param->value.s, "NSSDB") == 0) { cert_storage = cm_cert_storage_nssdb; } else { cm_log(1, "Unknown cert storage type \"%s\".\n", param->value.s); ret = send_internal_base_bad_arg_error(conn, msg, _("Certificate storage type \"%s\" not supported."), param->value.s, "CERT_STORAGE"); talloc_free(parent); return ret; } } /* Handle parameters for either a PIN or the location of a PIN. */ param = cm_tdbusm_find_dict_entry(d, "KEY_PIN", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_PIN, cm_tdbusm_dict_s); } if ((param == NULL) || (param->value.s == NULL) || (strlen(param->value.s) == 0)) { key_pin = NULL; } else { key_pin = param->value.s; key_pin_file = NULL; } param = cm_tdbusm_find_dict_entry(d, "KEY_PIN_FILE", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_PIN_FILE, cm_tdbusm_dict_s); } if ((param == NULL) || (param->value.s == NULL) || (strlen(param->value.s) == 0)) { key_pin_file = NULL; } else { if (check_arg_is_absolute_path(param->value.s) != 0) { cm_log(1, "PIN storage location is not an absolute " "path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, "KEY_PIN_FILE"); talloc_free(parent); return ret; } key_pin_file = param->value.s; key_pin = NULL; } /* Check that other required information about the * certificate's location is provided. */ cert_location = NULL; cert_nickname = NULL; cert_token = NULL; switch (cert_storage) { case cm_cert_storage_file: param = cm_tdbusm_find_dict_entry(d, "CERT_LOCATION", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_LOCATION_FILE, cm_tdbusm_dict_s); } if (param == NULL) { cm_log(1, "Certificate storage location not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Certificate storage location not specified."), "CERT_LOCATION"); } if (check_arg_is_absolute_path(param->value.s) != 0) { cm_log(1, "Certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, "CERT_LOCATION"); talloc_free(parent); return ret; } if (check_arg_parent_is_directory(param->value.s) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.s, "CERT_LOCATION"); break; default: cm_log(1, "Certificate storage location is not inside of a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" must be a valid directory."), param->value.s, "CERT_LOCATION"); break; } talloc_free(parent); return ret; } if (check_arg_is_reg_or_missing(param->value.s) != 0) { cm_log(1, "Certificate storage location is not a regular file.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a file."), param->value.s, "CERT_LOCATION"); talloc_free(parent); return ret; } cert_location = param->value.s; cert_nickname = NULL; cert_token = NULL; break; case cm_cert_storage_nssdb: param = cm_tdbusm_find_dict_entry(d, "CERT_LOCATION", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_LOCATION_DATABASE, cm_tdbusm_dict_s); } if (param == NULL) { cm_log(1, "Certificate storage location not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Certificate storage location not specified."), "CERT_LOCATION"); } if (check_arg_is_absolute_nss_path(param->value.s) != 0) { cm_log(1, "Certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, "CERT_LOCATION"); talloc_free(parent); return ret; } if (check_arg_is_nss_directory(param->value.s) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.s, "CERT_LOCATION"); break; default: cm_log(1, "Certificate storage location must be a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a directory."), param->value.s, "CERT_LOCATION"); break; } talloc_free(parent); return ret; } cert_location = cm_store_canonicalize_path(parent, param->value.s); param = cm_tdbusm_find_dict_entry(d, "CERT_NICKNAME", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_LOCATION_NICKNAME, cm_tdbusm_dict_s); } if (param == NULL) { cm_log(1, "Certificate nickname not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Certificate nickname not specified."), "CERT_NICKNAME"); } cert_nickname = param->value.s; param = cm_tdbusm_find_dict_entry(d, "CERT_TOKEN", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_LOCATION_TOKEN, cm_tdbusm_dict_s); } if (param == NULL) { cert_token = NULL; } else { cert_token = param->value.s; } break; } if (cert_location == NULL) { cm_log(1, "Certificate storage location not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Certificate storage location not specified."), "CERT_LOCATION"); } /* Check that the requested nickname will be unique. */ param = cm_tdbusm_find_dict_entry(d, "NICKNAME", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_NICKNAME, cm_tdbusm_dict_s); } if (param != NULL) { n_entries = cm_get_n_entries(ctx); for (i = 0; i < n_entries; i++) { e = cm_get_entry_by_index(ctx, i); if (strcasecmp(e->cm_nickname, param->value.s) == 0) { cm_log(1, "There is already a request with " "the nickname \"%s\": %s.\n", e->cm_nickname, e->cm_busname); talloc_free(parent); return send_internal_base_duplicate_error(conn, msg, _("There is already a request with the nickname \"%s\"."), e->cm_nickname, "NICKNAME", NULL); } } } /* Check for a duplicate of another entry's certificate storage * information. */ n_entries = cm_get_n_entries(ctx); for (i = 0; i < n_entries; i++) { e = cm_get_entry_by_index(ctx, i); if (cert_storage != e->cm_cert_storage_type) { continue; } if (strcmp(cert_location, e->cm_cert_storage_location) != 0) { continue; } switch (cert_storage) { case cm_cert_storage_file: break; case cm_cert_storage_nssdb: if (strcmp(cert_nickname, e->cm_cert_nickname) != 0) { continue; } break; } break; } if (i < n_entries) { /* We found a match, and that's bad. */ cm_log(1, "Certificate at same location is already being " "used for request %s with nickname \"%s\".\n", e->cm_busname, e->cm_nickname); talloc_free(parent); return send_internal_base_duplicate_error(conn, msg, _("Certificate at same location is already used by request with nickname \"%s\"."), e->cm_nickname, "CERT_LOCATION", cert_storage == cm_cert_storage_nssdb ? "CERT_NICKNAME" : NULL); } /* Key storage. We can afford to be a bit more lax about this because * we don't require that we know anything about the key. */ param = cm_tdbusm_find_dict_entry(d, "KEY_STORAGE", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_LOCATION_TYPE, cm_tdbusm_dict_s); } if (param == NULL) { key_storage = cm_key_storage_none; key_location = NULL; key_token = NULL; key_nickname = NULL; } else { /* Check that it's a known/supported type. */ if (strcasecmp(param->value.s, "FILE") == 0) { key_storage = cm_key_storage_file; } else if (strcasecmp(param->value.s, "NSSDB") == 0) { key_storage = cm_key_storage_nssdb; } else if (strcasecmp(param->value.s, "NONE") == 0) { key_storage = cm_key_storage_none; } else { cm_log(1, "Unknown key storage type \"%s\".\n", param->value.s); ret = send_internal_base_bad_arg_error(conn, msg, _("Key storage type \"%s\" not supported."), param->value.s, "KEY_STORAGE"); talloc_free(parent); return ret; } /* Check that other required information about the key's * location is provided. */ switch (key_storage) { case cm_key_storage_none: key_location = NULL; key_nickname = NULL; key_token = NULL; break; case cm_key_storage_file: param = cm_tdbusm_find_dict_entry(d, "KEY_LOCATION", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_LOCATION_FILE, cm_tdbusm_dict_s); } if (param == NULL) { cm_log(1, "Key storage location not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Key storage location not specified."), "KEY_LOCATION"); } if (check_arg_is_absolute_path(param->value.s) != 0) { cm_log(1, "Key storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, "KEY_LOCATION"); talloc_free(parent); return ret; } if (check_arg_parent_is_directory(param->value.s) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access key storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.s, "KEY_LOCATION"); break; default: cm_log(1, "Key storage location is not inside of a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" must be a valid directory."), param->value.s, "KEY_LOCATION"); break; } talloc_free(parent); return ret; } if (check_arg_is_reg_or_missing(param->value.s) != 0) { cm_log(1, "Key storage location is not a regular file.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a file."), param->value.s, "KEY_LOCATION"); talloc_free(parent); return ret; } key_location = param->value.s; key_nickname = NULL; key_token = NULL; break; case cm_key_storage_nssdb: param = cm_tdbusm_find_dict_entry(d, "KEY_LOCATION", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_LOCATION_DATABASE, cm_tdbusm_dict_s); } if (param == NULL) { cm_log(1, "Key storage location not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Key storage location not specified."), "KEY_LOCATION"); } if (check_arg_is_absolute_nss_path(param->value.s) != 0) { cm_log(1, "Key storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, "KEY_LOCATION"); talloc_free(parent); return ret; } if (check_arg_is_nss_directory(param->value.s) != 0) { cm_log(1, "Key storage location must be a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a directory."), param->value.s, "KEY_LOCATION"); talloc_free(parent); return ret; } key_location = cm_store_canonicalize_path(parent, param->value.s); param = cm_tdbusm_find_dict_entry(d, "KEY_NICKNAME", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_LOCATION_NICKNAME, cm_tdbusm_dict_s); } if (param == NULL) { cm_log(1, "Key nickname not specified.\n"); talloc_free(parent); return send_internal_base_missing_arg_error(conn, msg, _("Key nickname not specified."), "KEY_NICKNAME"); } key_nickname = param->value.s; param = cm_tdbusm_find_dict_entry(d, "KEY_TOKEN", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_LOCATION_TOKEN, cm_tdbusm_dict_s); } if (param == NULL) { key_token = NULL; } else { key_token = param->value.s; } break; } /* Check for a duplicate of another entry's key storage * information. */ n_entries = cm_get_n_entries(ctx); for (i = 0; i < n_entries; i++) { e = cm_get_entry_by_index(ctx, i); if (key_storage != e->cm_key_storage_type) { continue; } switch (key_storage) { case cm_key_storage_none: continue; break; case cm_key_storage_file: if (strcmp(key_location, e->cm_key_storage_location) != 0) { continue; } break; case cm_key_storage_nssdb: if (strcmp(key_location, e->cm_key_storage_location) != 0) { continue; } if (strcmp(key_nickname, e->cm_key_nickname) != 0) { continue; } break; } break; } if (i < n_entries) { /* We found a match, and that's bad. */ cm_log(1, "Key at same location is already being " "used for request %s with nickname \"%s\".\n", e->cm_busname, e->cm_nickname); talloc_free(parent); return send_internal_base_duplicate_error(conn, msg, _("Key at same location is already used by request with nickname \"%s\"."), e->cm_nickname, "KEY_LOCATION", key_storage == cm_key_storage_nssdb ? "KEY_NICKNAME" : NULL); } } /* Find out where to save the root certificates. */ param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_ROOT_CERT_NSSDBS, cm_tdbusm_dict_as); for (i = 0; (param != NULL) && (param->value.as != NULL) && (param->value.as[i] != NULL); i++) { if (check_arg_is_absolute_nss_path(param->value.as[i]) != 0) { cm_log(1, "Root certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.as[i], CM_DBUS_PROP_ROOT_CERT_NSSDBS); talloc_free(parent); return ret; } if (check_arg_is_nss_directory(param->value.as[i]) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access root certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.s, CM_DBUS_PROP_ROOT_CERT_NSSDBS); break; default: cm_log(1, "Certificate storage location must be a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a directory."), param->value.s, CM_DBUS_PROP_ROOT_CERT_NSSDBS); break; } talloc_free(parent); return ret; } } if (param != NULL) { root_cert_nssdbs = param->value.as; } else { root_cert_nssdbs = NULL; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_ROOT_CERT_FILES, cm_tdbusm_dict_as); for (i = 0; (param != NULL) && (param->value.as != NULL) && (param->value.as[i] != NULL); i++) { if (check_arg_is_absolute_path(param->value.as[i]) != 0) { cm_log(1, "Root certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.as[i], CM_DBUS_PROP_ROOT_CERT_FILES); talloc_free(parent); return ret; } if (check_arg_parent_is_directory(param->value.as[i]) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access root certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.as[i], CM_DBUS_PROP_ROOT_CERT_FILES); break; default: cm_log(1, "Root certificate storage location is not inside of a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" must be a valid directory."), param->value.as[i], CM_DBUS_PROP_ROOT_CERT_FILES); break; } talloc_free(parent); return ret; } if (check_arg_is_reg_or_missing(param->value.as[i]) != 0) { cm_log(1, "Root certificate storage location is not a regular file.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a file."), param->value.as[i], CM_DBUS_PROP_ROOT_CERT_FILES); talloc_free(parent); return ret; } } if (param != NULL) { root_cert_files = param->value.as; } else { root_cert_files = NULL; } /* Find out where to save the other root certificates. */ param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS, cm_tdbusm_dict_as); for (i = 0; (param != NULL) && (param->value.as != NULL) && (param->value.as[i] != NULL); i++) { if (check_arg_is_absolute_nss_path(param->value.as[i]) != 0) { cm_log(1, "Other root certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.as[i], CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS); talloc_free(parent); return ret; } if (check_arg_is_nss_directory(param->value.as[i]) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access root certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.s, CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS); break; default: cm_log(1, "Certificate storage location must be a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a directory."), param->value.s, CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS); break; } talloc_free(parent); return ret; } } if (param != NULL) { other_root_cert_nssdbs = param->value.as; } else { other_root_cert_nssdbs = NULL; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_OTHER_ROOT_CERT_FILES, cm_tdbusm_dict_as); for (i = 0; (param != NULL) && (param->value.as != NULL) && (param->value.as[i] != NULL); i++) { if (check_arg_is_absolute_path(param->value.as[i]) != 0) { cm_log(1, "Other root certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.as[i], CM_DBUS_PROP_OTHER_ROOT_CERT_FILES); talloc_free(parent); return ret; } if (check_arg_parent_is_directory(param->value.as[i]) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access other root certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.as[i], CM_DBUS_PROP_OTHER_ROOT_CERT_FILES); break; default: cm_log(1, "Other root certificate storage location is not inside of a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" must be a valid directory."), param->value.as[i], CM_DBUS_PROP_OTHER_ROOT_CERT_FILES); break; } talloc_free(parent); return ret; } if (check_arg_is_reg_or_missing(param->value.as[i]) != 0) { cm_log(1, "Other root certificate storage location is not a regular file.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a file."), param->value.as[i], CM_DBUS_PROP_OTHER_ROOT_CERT_FILES); talloc_free(parent); return ret; } } if (param != NULL) { other_root_cert_files = param->value.as; } else { other_root_cert_files = NULL; } /* Find out where to save the other certificates supplied by the CA. */ param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_OTHER_CERT_NSSDBS, cm_tdbusm_dict_as); for (i = 0; (param != NULL) && (param->value.as != NULL) && (param->value.as[i] != NULL); i++) { if (check_arg_is_absolute_nss_path(param->value.as[i]) != 0) { cm_log(1, "Other certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.as[i], CM_DBUS_PROP_OTHER_CERT_NSSDBS); talloc_free(parent); return ret; } if (check_arg_is_nss_directory(param->value.as[i]) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access other certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.s, CM_DBUS_PROP_OTHER_CERT_NSSDBS); break; default: cm_log(1, "Other certificate storage location must be a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a directory."), param->value.s, CM_DBUS_PROP_OTHER_CERT_NSSDBS); break; } talloc_free(parent); return ret; } } if (param != NULL) { other_cert_nssdbs = param->value.as; } else { other_cert_nssdbs = NULL; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_OTHER_CERT_FILES, cm_tdbusm_dict_as); for (i = 0; (param != NULL) && (param->value.as != NULL) && (param->value.as[i] != NULL); i++) { if (check_arg_is_absolute_path(param->value.as[i]) != 0) { cm_log(1, "Other root certificate storage location is not an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.as[i], CM_DBUS_PROP_OTHER_CERT_FILES); talloc_free(parent); return ret; } if (check_arg_parent_is_directory(param->value.as[i]) != 0) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Not allowed to access other root certificate storage location.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" could not be accessed due " "to insufficient permissions."), param->value.as[i], CM_DBUS_PROP_OTHER_CERT_FILES); break; default: cm_log(1, "Other root certificate storage location is not inside of a directory.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The parent of location \"%s\" must be a valid directory."), param->value.as[i], CM_DBUS_PROP_OTHER_CERT_FILES); break; } talloc_free(parent); return ret; } if (check_arg_is_reg_or_missing(param->value.as[i]) != 0) { cm_log(1, "Other root certificate storage location is not a regular file.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be a file."), param->value.as[i], CM_DBUS_PROP_OTHER_CERT_FILES); talloc_free(parent); return ret; } } if (param != NULL) { other_cert_files = param->value.as; } else { other_cert_files = NULL; } /* What to run before we save the certificate. */ param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_PRESAVE_COMMAND, cm_tdbusm_dict_s); if (param != NULL) { pre_command = param->value.s; } else { pre_command = NULL; } /* What to run after we save the certificate. */ param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_POSTSAVE_COMMAND, cm_tdbusm_dict_s); if (param != NULL) { post_command = param->value.s; } else { post_command = NULL; } /* Permissions to set on the keys and certificates. */ param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_OWNER, cm_tdbusm_dict_s); if (param != NULL) { cert_owner = param->value.s; } else { cert_owner = NULL; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CERT_PERMS, cm_tdbusm_dict_n); if (param != NULL) { cert_perms = param->value.n; } else { cert_perms = 0; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_OWNER, cm_tdbusm_dict_s); if (param != NULL) { key_owner = param->value.s; } else { key_owner = NULL; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_PERMS, cm_tdbusm_dict_n); if (param != NULL) { key_perms = param->value.n; } else { key_perms = 0; } /* Okay, we can go ahead and add the entry. */ new_entry = cm_store_entry_new(parent); if (new_entry == NULL) { talloc_free(parent); return send_internal_base_error(conn, msg); } memset(new_entry, 0, sizeof(*new_entry)); /* Populate it with all of the information we have. */ new_entry->cm_busname = cm_store_entry_next_busname(new_entry); param = cm_tdbusm_find_dict_entry(d, "NICKNAME", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_NICKNAME, cm_tdbusm_dict_s); } if (param != NULL) { new_entry->cm_nickname = talloc_strdup(new_entry, param->value.s); } param = cm_tdbusm_find_dict_entry(d, "KEY_TYPE", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_TYPE, cm_tdbusm_dict_s); } if (param != NULL) { if (strcasecmp(param->value.s, "RSA") == 0) { new_entry->cm_key_type.cm_key_gen_algorithm = cm_key_rsa; #ifdef CM_ENABLE_DSA } else if (strcasecmp(param->value.s, "DSA") == 0) { new_entry->cm_key_type.cm_key_gen_algorithm = cm_key_dsa; #endif #ifdef CM_ENABLE_EC } else if ((strcasecmp(param->value.s, "ECDSA") == 0) || (strcasecmp(param->value.s, "EC") == 0)) { new_entry->cm_key_type.cm_key_gen_algorithm = cm_key_ecdsa; #endif } else { cm_log(1, "No support for generating \"%s\" keys.\n", param->value.s); ret = send_internal_base_bad_arg_error(conn, msg, _("No support for key type \"%s\"."), param->value.s, "KEY_TYPE"); talloc_free(parent); return ret; } } else { new_entry->cm_key_type.cm_key_gen_algorithm = cm_prefs_preferred_key_algorithm(); } new_entry->cm_key_next_type.cm_key_gen_algorithm = new_entry->cm_key_type.cm_key_gen_algorithm; param = cm_tdbusm_find_dict_entry(d, "KEY_SIZE", cm_tdbusm_dict_n); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_KEY_SIZE, cm_tdbusm_dict_n); } if (param != NULL) { new_entry->cm_key_type.cm_key_gen_size = param->value.n; } else { new_entry->cm_key_type.cm_key_gen_size = CM_DEFAULT_PUBKEY_SIZE; } switch (new_entry->cm_key_type.cm_key_gen_algorithm) { case cm_key_rsa: if (new_entry->cm_key_type.cm_key_gen_size < CM_MINIMUM_RSA_KEY_SIZE) { new_entry->cm_key_type.cm_key_gen_size = CM_MINIMUM_RSA_KEY_SIZE; } break; #ifdef CM_ENABLE_DSA case cm_key_dsa: if (new_entry->cm_key_type.cm_key_gen_size < CM_MINIMUM_DSA_KEY_SIZE) { new_entry->cm_key_type.cm_key_gen_size = CM_MINIMUM_DSA_KEY_SIZE; } break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: if (new_entry->cm_key_type.cm_key_gen_size < CM_MINIMUM_EC_KEY_SIZE) { new_entry->cm_key_type.cm_key_gen_size = CM_MINIMUM_EC_KEY_SIZE; } break; #endif case cm_key_unspecified: default: break; } new_entry->cm_key_next_type.cm_key_gen_size = new_entry->cm_key_type.cm_key_gen_size; /* Key and certificate storage. */ new_entry->cm_key_storage_type = key_storage; new_entry->cm_key_storage_location = maybe_strdup(new_entry, key_location); new_entry->cm_key_nickname = maybe_strdup(new_entry, key_nickname); new_entry->cm_key_token = maybe_strdup(new_entry, key_token); new_entry->cm_key_pin = maybe_strdup(new_entry, key_pin); new_entry->cm_key_pin_file = maybe_strdup(new_entry, key_pin_file); new_entry->cm_key_owner = maybe_strdup(new_entry, key_owner); new_entry->cm_key_perms = key_perms; new_entry->cm_cert_storage_type = cert_storage; new_entry->cm_cert_storage_location = maybe_strdup(new_entry, cert_location); new_entry->cm_cert_nickname = maybe_strdup(new_entry, cert_nickname); new_entry->cm_cert_token = maybe_strdup(new_entry, cert_token); new_entry->cm_cert_owner = maybe_strdup(new_entry, cert_owner); new_entry->cm_cert_perms = cert_perms; new_entry->cm_root_cert_store_nssdbs = maybe_strdupv(new_entry, root_cert_nssdbs); new_entry->cm_root_cert_store_files = maybe_strdupv(new_entry, root_cert_files); new_entry->cm_other_root_cert_store_nssdbs = maybe_strdupv(new_entry, other_root_cert_nssdbs); new_entry->cm_other_root_cert_store_files = maybe_strdupv(new_entry, other_root_cert_files); new_entry->cm_other_cert_store_nssdbs = maybe_strdupv(new_entry, other_cert_nssdbs); new_entry->cm_other_cert_store_files = maybe_strdupv(new_entry, other_cert_files); /* Which CA to use. */ param = cm_tdbusm_find_dict_entry(d, "CA", cm_tdbusm_dict_p); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CA, cm_tdbusm_dict_p); } if (param != NULL) { ca = get_ca_for_path(ctx, param->value.s); if (ca != NULL) { new_entry->cm_ca_nickname = talloc_strdup(new_entry, ca->cm_nickname); } else { cm_log(1, "No CA with path \"%s\" known.\n", param->value.s); ret = send_internal_base_bad_arg_error(conn, msg, _("No such CA."), param->value.s, "CA"); talloc_free(parent); return ret; } } /* What to tell the CA we want. */ param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CA_PROFILE, cm_tdbusm_dict_s); if (param != NULL) { new_entry->cm_template_profile = maybe_strdup(new_entry, param->value.s); } /* Behavior settings. */ param = cm_tdbusm_find_dict_entry(d, "TRACK", cm_tdbusm_dict_b); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_MONITORING, cm_tdbusm_dict_b); } if (param != NULL) { new_entry->cm_monitor = param->value.b; } else { new_entry->cm_monitor = cm_prefs_monitor(); } param = cm_tdbusm_find_dict_entry(d, "RENEW", cm_tdbusm_dict_b); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_AUTORENEW, cm_tdbusm_dict_b); } if (param != NULL) { new_entry->cm_autorenew = param->value.b; } else { new_entry->cm_autorenew = cm_prefs_autorenew(); } if (pre_command != NULL) { new_entry->cm_pre_certsave_uid = talloc_asprintf(new_entry, "%lu", (unsigned long) ci->uid); if (new_entry->cm_pre_certsave_uid != NULL) { new_entry->cm_pre_certsave_command = maybe_strdup(new_entry, pre_command); } } if (post_command != NULL) { new_entry->cm_post_certsave_uid = talloc_asprintf(new_entry, "%lu", (unsigned long) ci->uid); if (new_entry->cm_post_certsave_uid != NULL) { new_entry->cm_post_certsave_command = maybe_strdup(new_entry, post_command); } } /* Template information. */ param = cm_tdbusm_find_dict_entry(d, "SUBJECT", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_SUBJECT, cm_tdbusm_dict_s); } if (param != NULL) { new_entry->cm_template_subject = maybe_strdup(new_entry, param->value.s); } param = cm_tdbusm_find_dict_entry(d, "KU", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_KU, cm_tdbusm_dict_s); } if (param != NULL) { new_entry->cm_template_ku = maybe_strdup(new_entry, param->value.s); } param = cm_tdbusm_find_dict_entry(d, "EKU", cm_tdbusm_dict_as); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_EKU, cm_tdbusm_dict_as); } if (param != NULL) { new_entry->cm_template_eku = cm_submit_maybe_joinv(new_entry, ",", param->value.as); } param = cm_tdbusm_find_dict_entry(d, "PRINCIPAL", cm_tdbusm_dict_as); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_PRINCIPAL, cm_tdbusm_dict_as); } if (param != NULL) { new_entry->cm_template_principal = maybe_strdupv(new_entry, param->value.as); } param = cm_tdbusm_find_dict_entry(d, "DNS", cm_tdbusm_dict_as); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_HOSTNAME, cm_tdbusm_dict_as); } if (param != NULL) { new_entry->cm_template_hostname = maybe_strdupv(new_entry, param->value.as); } param = cm_tdbusm_find_dict_entry(d, "EMAIL", cm_tdbusm_dict_as); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_EMAIL, cm_tdbusm_dict_as); } if (param != NULL) { new_entry->cm_template_email = maybe_strdupv(new_entry, param->value.as); } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_IP_ADDRESS, cm_tdbusm_dict_as); if (param != NULL) { new_entry->cm_template_ipaddress = maybe_strdupv(new_entry, param->value.as); } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_IS_CA, cm_tdbusm_dict_b); if (param != NULL) { new_entry->cm_template_is_ca = param->value.b; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_CA_PATH_LENGTH, cm_tdbusm_dict_n); if (param != NULL) { new_entry->cm_template_ca_path_length = param->value.n; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_OCSP, cm_tdbusm_dict_as); if (param != NULL) { new_entry->cm_template_ocsp_location = maybe_strdupv(new_entry, param->value.as); } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_CRL_DP, cm_tdbusm_dict_as); if (param != NULL) { new_entry->cm_template_crl_distribution_point = maybe_strdupv(new_entry, param->value.as); } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_NS_COMMENT, cm_tdbusm_dict_s); if (param != NULL) { new_entry->cm_template_ns_comment = maybe_strdup(new_entry, param->value.s); } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_PROFILE, cm_tdbusm_dict_s); if (param != NULL) { new_entry->cm_template_profile = maybe_strdup(new_entry, param->value.s); } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD, cm_tdbusm_dict_s); if ((param != NULL) && (param->value.s != NULL) && (strlen(param->value.s) != 0)) { challenge_password = param->value.s; challenge_password_file = NULL; } else { challenge_password = NULL; } param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE, cm_tdbusm_dict_s); if ((param != NULL) && (param->value.s != NULL) && (strlen(param->value.s) != 0)) { if (check_arg_is_absolute_path(param->value.s) != 0) { cm_log(1, "Challenge password storage location is not " "an absolute path.\n"); ret = send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE); talloc_free(parent); return ret; } challenge_password_file = param->value.s; challenge_password = NULL; } else { challenge_password_file = NULL; } new_entry->cm_template_challenge_password = maybe_strdup(new_entry, challenge_password); new_entry->cm_template_challenge_password_file = maybe_strdup(new_entry, challenge_password_file); /* Hand it off to the main loop. */ new_entry->cm_state = CM_NEWLY_ADDED; if (cm_add_entry(ctx, new_entry) != 0) { cm_log(1, "Error adding entry to main loop.\n"); rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_b(rep, FALSE); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); } talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { rep = dbus_message_new_method_return(msg); if (rep != NULL) { path = talloc_asprintf(parent, "%s/%s", CM_DBUS_REQUEST_PATH, new_entry->cm_busname); cm_tdbusm_set_bp(rep, TRUE, path); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { talloc_free(parent); return send_internal_base_error(conn, msg); } } } /* org.fedorahosted.certmonger.find_request_by_nickname */ static DBusHandlerResult base_find_request_by_nickname(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { struct cm_store_entry *entry; DBusMessage *rep; void *parent; char *arg, *path; int i, n_entries; parent = talloc_new(NULL); path = NULL; if (cm_tdbusm_get_s(msg, parent, &arg) != 0) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } else { n_entries = cm_get_n_entries(ctx); for (i = 0; i < n_entries; i++) { entry = cm_get_entry_by_index(ctx, i); if (strcmp(arg, entry->cm_nickname) == 0) { path = talloc_asprintf(ctx, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); break; } } } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (path != NULL) { cm_tdbusm_set_p(rep, path); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { talloc_free(parent); return send_internal_base_error(conn, msg); } } /* org.fedorahosted.certmonger.find_ca_by_nickname */ static DBusHandlerResult base_find_ca_by_nickname(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { struct cm_store_ca *ca; DBusMessage *rep; void *parent; char *arg, *path; int i, n_cas; parent = talloc_new(NULL); path = NULL; if (cm_tdbusm_get_s(msg, parent, &arg) != 0) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } else { n_cas = cm_get_n_cas(ctx); for (i = 0; i < n_cas; i++) { ca = cm_get_ca_by_index(ctx, i); if (strcmp(arg, ca->cm_nickname) == 0) { path = talloc_asprintf(ctx, "%s/%s", CM_DBUS_CA_PATH, ca->cm_busname); break; } } } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (path != NULL) { cm_tdbusm_set_p(rep, path); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { talloc_free(parent); return send_internal_base_error(conn, msg); } } /* org.fedorahosted.certmonger.get_known_cas */ static DBusHandlerResult base_get_known_cas(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { int i, n_cas; struct cm_store_ca *ca; char **ret; DBusMessage *rep; n_cas = cm_get_n_cas(ctx); ret = talloc_array(ctx, char *, n_cas + 1); if (ret != NULL) { for (i = 0; i < n_cas; i++) { ca = cm_get_ca_by_index(ctx, i); if (ca == NULL) { break; } ret[i] = talloc_asprintf(ret, "%s/%s", CM_DBUS_CA_PATH, ca->cm_busname); } ret[i] = NULL; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_ap(rep, (const char **) ret); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(ret); return DBUS_HANDLER_RESULT_HANDLED; } else { talloc_free(ret); return send_internal_base_error(conn, msg); } } /* org.fedorahosted.certmonger.get_requests */ static DBusHandlerResult base_get_requests(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { int i, n_entries; struct cm_store_entry *entry; char **ret; DBusMessage *rep; n_entries = cm_get_n_entries(ctx); ret = talloc_array(ctx, char *, n_entries + 1); if (ret != NULL) { for (i = 0; i < n_entries; i++) { entry = cm_get_entry_by_index(ctx, i); if (entry == NULL) { break; } ret[i] = talloc_asprintf(ret, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); } ret[i] = NULL; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_ap(rep, (const char **) ret); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(ret); return DBUS_HANDLER_RESULT_HANDLED; } else { talloc_free(ret); return send_internal_base_error(conn, msg); } } /* org.fedorahosted.certmonger.get_supported_key_types */ static DBusHandlerResult base_get_supported_key_types(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { const char *key_types[] = { "RSA", #ifdef CM_ENABLE_DSA "DSA", #endif #ifdef CM_ENABLE_EC "EC", #endif NULL }; DBusMessage *rep; rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_as(rep, key_types); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_base_error(conn, msg); } } static DBusHandlerResult base_get_supported_key_and_cert_storage(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { #ifdef HAVE_OPENSSL const char *maybe_file = "FILE"; #else const char *maybe_file = NULL; #endif const char *storage_types[] = {"NSSDB", maybe_file, NULL}; DBusMessage *rep; rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_as(rep, storage_types); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_base_error(conn, msg); } } /* org.fedorahosted.certmonger.get_supported_key_storage */ static DBusHandlerResult base_get_supported_key_storage(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { return base_get_supported_key_and_cert_storage(conn, msg, ci, ctx); } /* org.fedorahosted.certmonger.get_supported_cert_storage */ static DBusHandlerResult base_get_supported_cert_storage(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { return base_get_supported_key_and_cert_storage(conn, msg, ci, ctx); } /* org.fedorahosted.certmonger.remove_known_ca */ static DBusHandlerResult base_remove_known_ca(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; int ret; void *parent; char *path; rep = dbus_message_new_method_return(msg); if (rep == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } parent = talloc_new(NULL); if (cm_tdbusm_get_p(msg, parent, &path) == 0) { ca = get_ca_for_path(ctx, path); talloc_free(parent); if (ca != NULL) { ret = cm_remove_ca(ctx, ca->cm_nickname); cm_tdbusm_set_b(rep, (ret == 0)); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { dbus_message_unref(rep); return send_internal_base_no_such_entry_error(conn, msg); } } else { talloc_free(parent); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } } /* org.fedorahosted.certmonger.remove_request */ static DBusHandlerResult base_remove_request(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; int ret; void *parent; char *path; rep = dbus_message_new_method_return(msg); if (rep == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } parent = talloc_new(NULL); if (cm_tdbusm_get_p(msg, parent, &path) == 0) { entry = get_entry_for_path(ctx, path); talloc_free(parent); if (entry != NULL) { ret = cm_remove_entry(ctx, entry->cm_nickname); cm_tdbusm_set_b(rep, (ret == 0)); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { dbus_message_unref(rep); return send_internal_base_no_such_entry_error(conn, msg); } } else { talloc_free(parent); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } } /* Convenience functions for returning errors from a CA object to callers. */ static DBusHandlerResult send_internal_ca_error(DBusConnection *conn, DBusMessage *req) { DBusMessage *msg; msg = dbus_message_new_error(req, CM_DBUS_ERROR_CA_INTERNAL, _("An internal error has occurred.")); if (msg != NULL) { dbus_connection_send(conn, msg, NULL); dbus_message_unref(msg); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Functions implemented for CA objects. Most of the "get_XXX" functions * predate the properties interface being added, so they're redundant now. */ /* org.fedorahosted.certonger.ca.get_nickname */ static DBusHandlerResult ca_get_nickname(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; ca = get_ca_for_request_message(msg, ctx); if (ca == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (ca->cm_nickname != NULL) { cm_tdbusm_set_s(rep, ca->cm_nickname); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_ca_error(conn, msg); } } /* org.fedorahosted.certonger.ca.get_is_default */ static DBusHandlerResult ca_get_is_default(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; ca = get_ca_for_request_message(msg, ctx); if (ca == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_b(rep, ca->cm_ca_is_default); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_ca_error(conn, msg); } } /* org.fedorahosted.certonger.ca.get_issuer_names */ static DBusHandlerResult ca_get_issuer_names(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; const char **names; ca = get_ca_for_request_message(msg, ctx); if (ca == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { names = (const char **) ca->cm_ca_known_issuer_names; cm_tdbusm_set_as(rep, names); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_ca_error(conn, msg); } } /* org.fedorahosted.certonger.ca.get_location */ static DBusHandlerResult ca_get_location(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; ca = get_ca_for_request_message(msg, ctx); if (ca == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_s(rep, ca->cm_ca_external_helper); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_ca_error(conn, msg); } } /* org.fedorahosted.certonger.ca.get_type */ static DBusHandlerResult ca_get_type(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; const char *ca_type; ca = get_ca_for_request_message(msg, ctx); if (ca == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { ca_type = NULL; switch (ca->cm_ca_type) { case cm_ca_internal_self: ca_type = "INTERNAL:SELF"; break; case cm_ca_external: ca_type = "EXTERNAL"; break; } cm_tdbusm_set_s(rep, ca_type); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_ca_error(conn, msg); } } /* org.fedorahosted.certonger.ca.get_serial */ static DBusHandlerResult ca_get_serial(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; const char *serial; ca = get_ca_for_request_message(msg, ctx); if (ca == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { switch (ca->cm_ca_type) { case cm_ca_internal_self: serial = ca->cm_ca_internal_serial; cm_tdbusm_set_s(rep, serial); break; case cm_ca_external: break; } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_ca_error(conn, msg); } } /* org.fedorahosted.certonger.ca.refresh */ static DBusHandlerResult ca_refresh(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_ca *ca; enum cm_ca_phase phase; dbus_bool_t result = TRUE; ca = get_ca_for_request_message(msg, ctx); if (ca == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } for (phase = 0; phase < cm_ca_phase_invalid; phase++) { if (!cm_restart_ca(ctx, ca->cm_nickname, phase)) { result = FALSE; } } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_b(rep, result); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_ca_error(conn, msg); } } /* Custom property get/set logic for CA structures. */ static dbus_bool_t ca_prop_get_is_default(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_ca *ca = record; if (strcmp(name, CM_DBUS_PROP_IS_DEFAULT) == 0) { return ca->cm_ca_is_default ? TRUE : FALSE; } return FALSE; } static void ca_prop_set_is_default(struct cm_context *ctx, void *parent, void *record, const char *name, dbus_bool_t new_value) { const char *propname[2], *path; struct cm_store_ca *ca = record, *other; int i; if (strcmp(name, CM_DBUS_PROP_IS_DEFAULT) == 0) { propname[0] = CM_DBUS_PROP_IS_DEFAULT; propname[1] = NULL; if (new_value) { i = 0; /* There can be only one... default. */ while ((other = cm_get_ca_by_index(ctx, i++)) != NULL) { if ((other != ca) && (other->cm_ca_is_default)) { other->cm_ca_is_default = FALSE; path = talloc_asprintf(parent, "%s/%s", CM_DBUS_CA_PATH, other->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_CA_INTERFACE, propname); } } } if ((!ca->cm_ca_is_default && new_value) || (ca->cm_ca_is_default && !new_value)) { ca->cm_ca_is_default = new_value; path = talloc_asprintf(parent, "%s/%s", CM_DBUS_CA_PATH, ca->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_CA_INTERFACE, propname); } } } static const char * ca_prop_get_external_helper(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_ca *ca = record; if (strcmp(name, CM_DBUS_PROP_EXTERNAL_HELPER) == 0) { if (ca->cm_ca_type != cm_ca_external) { return ""; } if (ca->cm_ca_external_helper != NULL) { return ca->cm_ca_external_helper; } else { return ""; } } return NULL; } static void ca_prop_set_external_helper(struct cm_context *ctx, void *parent, void *record, const char *name, const char *new_value) { const char *propname[2], *path; struct cm_store_ca *ca = record; enum cm_ca_phase phase; if (strcmp(name, CM_DBUS_PROP_EXTERNAL_HELPER) == 0) { if (ca->cm_ca_type != cm_ca_external) { return; } talloc_free(ca->cm_ca_external_helper); ca->cm_ca_external_helper = new_value ? talloc_strdup(ca, new_value) : NULL; for (phase = 0; phase < cm_ca_phase_invalid; phase++) { cm_restart_ca(ctx, ca->cm_nickname, phase); } propname[0] = CM_DBUS_PROP_EXTERNAL_HELPER; propname[1] = NULL; path = talloc_asprintf(parent, "%s/%s", CM_DBUS_CA_PATH, ca->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_CA_INTERFACE, propname); } } static const char * ca_prop_get_scep_ca_identifier(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_ca *ca = record; if (strcmp(name, CM_DBUS_PROP_SCEP_CA_IDENTIFIER) == 0) { if (ca->cm_ca_type != cm_ca_external) { return ""; } if (ca->cm_ca_scep_ca_identifier != NULL) { return ca->cm_ca_scep_ca_identifier; } else { return ""; } } return NULL; } static void ca_prop_set_scep_ca_identifier(struct cm_context *ctx, void *parent, void *record, const char *name, const char *new_value) { const char *propname[2], *path; struct cm_store_ca *ca = record; enum cm_ca_phase phase; if (strcmp(name, CM_DBUS_PROP_SCEP_CA_IDENTIFIER) == 0) { if (ca->cm_ca_type != cm_ca_external) { return; } talloc_free(ca->cm_ca_scep_ca_identifier); ca->cm_ca_scep_ca_identifier = new_value ? talloc_strdup(ca, new_value) : NULL; for (phase = 0; phase < cm_ca_phase_invalid; phase++) { cm_restart_ca(ctx, ca->cm_nickname, phase); } propname[0] = CM_DBUS_PROP_SCEP_CA_IDENTIFIER; propname[1] = NULL; path = talloc_asprintf(parent, "%s/%s", CM_DBUS_CA_PATH, ca->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_CA_INTERFACE, propname); } } static const char ** ca_prop_read_nickcerts(struct cm_context *ctx, void *parent, struct cm_nickcert **nickcerts) { char **ret = NULL, **tmp; int i; for (i = 0; (nickcerts != NULL) && (nickcerts[i] != NULL); i++) { tmp = talloc_realloc(parent, ret, char *, i * 2 + 3); if (tmp == NULL) { talloc_free(ret); return NULL; } tmp[i * 2] = talloc_strdup(tmp, nickcerts[i]->cm_nickname); tmp[i * 2 + 1] = talloc_strdup(tmp, nickcerts[i]->cm_cert); tmp[i * 2 + 2] = NULL; ret = tmp; } return (const char **) ret; } static const char ** ca_prop_get_nickcerts(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; struct cm_store_ca *ca = record; if (strcmp(name, CM_DBUS_PROP_CERT_CHAIN) == 0) { return ca_prop_read_nickcerts(ctx, parent, entry->cm_cert_chain); } else if (strcmp(name, CM_DBUS_PROP_CERT_ROOTS) == 0) { return ca_prop_read_nickcerts(ctx, parent, entry->cm_cert_roots); } else if (strcmp(name, CM_DBUS_PROP_ROOT_CERTS) == 0) { return ca_prop_read_nickcerts(ctx, parent, ca->cm_ca_root_certs); } else if (strcmp(name, CM_DBUS_PROP_OTHER_ROOT_CERTS) == 0) { return ca_prop_read_nickcerts(ctx, parent, ca->cm_ca_other_root_certs); } else if (strcmp(name, CM_DBUS_PROP_OTHER_CERTS) == 0) { return ca_prop_read_nickcerts(ctx, parent, ca->cm_ca_other_certs); } return NULL; } /* Convenience functions for returning errors from a request object to callers. */ static DBusHandlerResult send_internal_request_error(DBusConnection *conn, DBusMessage *req) { DBusMessage *msg; msg = dbus_message_new_error(req, CM_DBUS_ERROR_REQUEST_INTERNAL, _("An internal error has occurred.")); if (msg != NULL) { dbus_connection_send(conn, msg, NULL); dbus_message_unref(msg); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Functions implemented for request objects. Most of the "get_XXX" functions * predate the properties interface being added, so they're redundant now. */ /* org.fedorahosted.certmonger.request.get_nickname */ static DBusHandlerResult request_get_nickname(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (entry->cm_nickname != NULL) { cm_tdbusm_set_s(rep, entry->cm_nickname); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_key_pin */ static DBusHandlerResult request_get_key_pin(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_s(rep, entry->cm_key_pin); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_key_pin_file */ static DBusHandlerResult request_get_key_pin_file(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_s(rep, entry->cm_key_pin_file); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_autorenew */ static DBusHandlerResult request_get_autorenew(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_b(rep, entry->cm_autorenew); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_cert_data */ static DBusHandlerResult request_get_cert_data(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (entry->cm_cert != NULL) { cm_tdbusm_set_s(rep, entry->cm_cert); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* convert our text bit string into a number */ static long ku_from_string(const char *ku) { long i = 0, mask = 1; while ((ku != NULL) && (*ku != '\0')) { switch (*ku++) { case '1': i |= mask; break; case '0': default: break; } mask <<= 1; } return i; } #if 0 /* convert our number into a text bit string */ static const char * ku_to_string(unsigned long ku, char *output, ssize_t len) { static char local_output[33]; char *p; if (output == NULL) { output = local_output; len = sizeof(local_output); } p = output; while (((p - output) < len) && (ku != 0)) { *p++ = (ku & 1) ? '1' : '0'; ku >>= 1; } if (p - output == len) { return NULL; } *p++ = '\0'; return output; } #endif /* split the comma-separated list into an array */ static char ** eku_splitv(void *parent, const char *eku) { char **ret = NULL; const char *p, *q; int i; if ((eku != NULL) && (strlen(eku) > 0)) { ret = talloc_array_ptrtype(parent, ret, strlen(eku) + 1); p = eku; i = 0; while (*p != '\0') { q = p + strcspn(p, ","); if (p != q) { ret[i++] = talloc_strndup(ret, p, q - p); } p = q + strspn(q, ","); } ret[i] = NULL; if (i == 0) { talloc_free(ret); ret = NULL; } } return ret; } /* org.fedorahosted.certmonger.request.get_cert_info */ static DBusHandlerResult request_get_cert_info(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; char **eku; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { eku = eku_splitv(entry, entry->cm_cert_eku); cm_tdbusm_set_sssnasasasnas(rep, entry->cm_cert_issuer, entry->cm_cert_serial, entry->cm_cert_subject, entry->cm_cert_not_after, (const char **) entry->cm_cert_email, (const char **) entry->cm_cert_hostname, (const char **) entry->cm_cert_principal, ku_from_string(entry->cm_cert_ku), (const char **) eku); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(eku); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_cert_last_checked */ static DBusHandlerResult request_get_cert_last_checked(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (entry->cm_submitted != 0) { cm_tdbusm_set_n(rep, entry->cm_submitted); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_cert_storage_info */ static DBusHandlerResult request_get_cert_storage_info(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; const char *type, *location, *nick, *token; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { location = entry->cm_cert_storage_location; switch (entry->cm_cert_storage_type) { case cm_cert_storage_file: type = "FILE"; cm_tdbusm_set_ss(rep, type, location); dbus_connection_send(conn, rep, NULL); break; case cm_cert_storage_nssdb: type = "NSSDB"; token = entry->cm_cert_token; nick = entry->cm_cert_nickname; if (token != NULL) { cm_tdbusm_set_ssss(rep, type, location, nick, token); dbus_connection_send(conn, rep, NULL); } else if (nick != NULL) { cm_tdbusm_set_sss(rep, type, location, nick); dbus_connection_send(conn, rep, NULL); } else { cm_tdbusm_set_ss(rep, type, location); dbus_connection_send(conn, rep, NULL); } break; } dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_csr_data */ static DBusHandlerResult request_get_csr_data(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (entry->cm_csr != NULL) { cm_tdbusm_set_s(rep, entry->cm_csr); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_csr_info */ static DBusHandlerResult request_get_csr_info(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; char **eku; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (entry->cm_csr != NULL) { eku = eku_splitv(entry, entry->cm_template_eku); cm_tdbusm_set_sasasasnas(rep, entry->cm_template_subject, (const char **) entry->cm_template_email, (const char **) entry->cm_template_hostname, (const char **) entry->cm_template_principal, ku_from_string(entry->cm_template_ku), (const char **) eku); talloc_free(eku); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_key_storage_info */ static DBusHandlerResult request_get_key_storage_info(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; const char *type, *location, *nick, *token; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { location = entry->cm_key_storage_location; switch (entry->cm_key_storage_type) { case cm_key_storage_none: type = "NONE"; cm_tdbusm_set_s(rep, type); dbus_connection_send(conn, rep, NULL); break; case cm_key_storage_file: type = "FILE"; cm_tdbusm_set_ss(rep, type, location); dbus_connection_send(conn, rep, NULL); break; case cm_key_storage_nssdb: type = "NSSDB"; token = entry->cm_key_token; nick = entry->cm_key_nickname; if (token != NULL) { cm_tdbusm_set_ssss(rep, type, location, nick, token); dbus_connection_send(conn, rep, NULL); } else if (nick != NULL) { cm_tdbusm_set_sss(rep, type, location, nick); dbus_connection_send(conn, rep, NULL); } else { cm_tdbusm_set_ss(rep, type, location); dbus_connection_send(conn, rep, NULL); } break; } dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_key_type_and_size */ static DBusHandlerResult request_get_key_type_and_size(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; const char *type; int size; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); type = "UNKNOWN"; switch (entry->cm_key_type.cm_key_algorithm) { case cm_key_unspecified: type = "UNKNOWN"; break; case cm_key_rsa: type = "RSA"; break; #ifdef CM_ENABLE_DSA case cm_key_dsa: type = "DSA"; break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: type = "EC"; break; #endif } if (rep != NULL) { size = entry->cm_key_type.cm_key_size; cm_tdbusm_set_sn(rep, type, size); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_monitoring */ static DBusHandlerResult request_get_monitoring(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_b(rep, entry->cm_monitor); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_notification_info */ static DBusHandlerResult request_get_notification_info(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; enum cm_notification_method m; const char *method, *d; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } m = cm_prefs_notification_method(); d = cm_prefs_notification_destination(); method = NULL; switch (m) { case cm_notification_unspecified: abort(); break; case cm_notification_none: method = "none"; break; case cm_notification_stdout: method = "stdout"; break; case cm_notification_syslog: method = "syslog"; break; case cm_notification_email: method = "email"; break; case cm_notification_command: method = "command"; break; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_ss(rep, method, d); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } static dbus_bool_t request_prop_get_stuck(struct cm_context *ctx, void *parent, void *record, const char *name); /* org.fedorahosted.certmonger.request.get_status */ static DBusHandlerResult request_get_status(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; const char *state; dbus_bool_t stuck; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { state = cm_store_state_as_string(entry->cm_state); stuck = request_prop_get_stuck(ctx, NULL, entry, CM_DBUS_PROP_STUCK); cm_tdbusm_set_sb(rep, state, stuck); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_ca */ static DBusHandlerResult request_get_ca(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { void *parent; DBusMessage *rep; struct cm_store_entry *entry; struct cm_store_ca *ca; char *path; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { parent = talloc_new(NULL); if ((entry->cm_ca_nickname != NULL) && (strlen(entry->cm_ca_nickname) > 0)) { ca = cm_get_ca_by_nickname(ctx, entry->cm_ca_nickname); if ((ca != NULL) && (ca->cm_busname != NULL) && (strlen(ca->cm_busname) > 0)) { path = talloc_asprintf(parent, "%s/%s", CM_DBUS_CA_PATH, ca->cm_busname); cm_tdbusm_set_p(rep, path); } } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_ca_error */ static DBusHandlerResult request_get_ca_error(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { void *parent; DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { parent = talloc_new(NULL); if ((entry->cm_ca_error != NULL) && (strlen(entry->cm_ca_error) > 0)) { cm_tdbusm_set_s(rep, entry->cm_ca_error); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_submitted_cookie */ static DBusHandlerResult request_get_submitted_cookie(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (entry->cm_ca_cookie != NULL) { cm_tdbusm_set_s(rep, entry->cm_ca_cookie); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.get_submitted_date */ static DBusHandlerResult request_get_submitted_date(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (entry->cm_submitted != 0) { cm_tdbusm_set_n(rep, entry->cm_submitted); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.modify */ static DBusHandlerResult request_modify(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; struct cm_store_ca *ca; struct cm_tdbusm_dict **d; const struct cm_tdbusm_dict *param; char *new_request_path; void *parent; const char *propname[sizeof(*entry)]; int i; size_t n_propname = 0; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } parent = talloc_new(NULL); if (cm_tdbusm_get_d(msg, parent, &d) != 0) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { /* Check any new nickname values, because we need to reject * those outright if the new value's already being used. */ param = cm_tdbusm_find_dict_entry(d, "NICKNAME", cm_tdbusm_dict_s); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_NICKNAME, cm_tdbusm_dict_s); } if (param != NULL) { if (cm_get_entry_by_nickname(ctx, param->value.s) != NULL) { return send_internal_base_duplicate_error(conn, msg, _("There is already a request with the nickname \"%s\"."), param->value.s, "NICKNAME", NULL); } } /* If we're being asked to change the CA, check that the new CA * exists. */ param = cm_tdbusm_find_dict_entry(d, "CA", cm_tdbusm_dict_p); if (param == NULL) { param = cm_tdbusm_find_dict_entry(d, CM_DBUS_PROP_CA, cm_tdbusm_dict_p); } if (param != NULL) { ca = get_ca_for_path(ctx, param->value.s); if (ca == NULL) { return send_internal_base_bad_arg_error(conn, msg, _("Certificate authority \"%s\" not known."), param->value.s, "CA"); } } /* Now walk the list of other things the client asked us to * change. */ for (i = 0; (d != NULL) && (d[i] != NULL); i++) { param = d[i]; if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_CERT_OWNER) == 0)) { entry->cm_cert_owner = talloc_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_CERT_OWNER; } } else if ((param->value_type == cm_tdbusm_dict_n) && (strcasecmp(param->key, CM_DBUS_PROP_CERT_PERMS) == 0)) { entry->cm_cert_perms = param->value.n; if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_CERT_PERMS; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_KEY_OWNER) == 0)) { entry->cm_key_owner = talloc_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_KEY_OWNER; } } else if ((param->value_type == cm_tdbusm_dict_n) && (strcasecmp(param->key, CM_DBUS_PROP_KEY_PERMS) == 0)) { entry->cm_key_perms = param->value.n; if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_KEY_PERMS; } } else if ((param->value_type == cm_tdbusm_dict_b) && ((strcasecmp(param->key, "RENEW") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_AUTORENEW) == 0))) { entry->cm_autorenew = param->value.b; if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_AUTORENEW; } } else if ((param->value_type == cm_tdbusm_dict_b) && ((strcasecmp(param->key, "TRACK") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_MONITORING) == 0))) { entry->cm_monitor = param->value.b; if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_MONITORING; } } else if (((param->value_type == cm_tdbusm_dict_s) || (param->value_type == cm_tdbusm_dict_p)) && ((strcasecmp(param->key, "CA") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_CA) == 0))) { ca = get_ca_for_path(ctx, param->value.s); talloc_free(entry->cm_ca_nickname); entry->cm_ca_nickname = talloc_strdup(entry, ca->cm_nickname); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_CA; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_CA_PROFILE) == 0)) { talloc_free(entry->cm_template_profile); entry->cm_template_profile = talloc_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_CA_PROFILE; } } else if ((param->value_type == cm_tdbusm_dict_s) && ((strcasecmp(param->key, "NICKNAME") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_NICKNAME) == 0))) { talloc_free(entry->cm_nickname); entry->cm_nickname = talloc_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_NICKNAME; } } else if ((param->value_type == cm_tdbusm_dict_s) && ((strcasecmp(param->key, "SUBJECT") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_SUBJECT) == 0))) { talloc_free(entry->cm_template_subject); entry->cm_template_subject = maybe_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_SUBJECT; } /* Clear the would-be-preferred DER version. */ talloc_free(entry->cm_template_subject_der); entry->cm_template_subject_der = NULL; } else if ((param->value_type == cm_tdbusm_dict_s) && ((strcasecmp(param->key, "KEY_PIN") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_KEY_PIN) == 0))) { talloc_free(entry->cm_key_pin); entry->cm_key_pin = maybe_strdup(entry, param->value.s); if (entry->cm_key_pin != NULL) { entry->cm_key_pin_file = NULL; } if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_KEY_PIN; } } else if ((param->value_type == cm_tdbusm_dict_s) && ((strcasecmp(param->key, "KEY_PIN_FILE") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_KEY_PIN_FILE) == 0))) { if ((param->value.s != NULL) && (strlen(param->value.s) != 0) && (check_arg_is_absolute_path(param->value.s) != 0)) { cm_log(1, "PIN storage location is not " "an absolute path.\n"); return send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, "KEY_PIN_FILE"); } talloc_free(entry->cm_key_pin_file); entry->cm_key_pin_file = maybe_strdup(entry, param->value.s); if (entry->cm_key_pin_file != NULL) { entry->cm_key_pin = NULL; } if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_KEY_PIN_FILE; } } else if ((param->value_type == cm_tdbusm_dict_s) && ((strcasecmp(param->key, "KU") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_KU) == 0))) { talloc_free(entry->cm_template_ku); entry->cm_template_ku = maybe_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_KU; } } else if ((param->value_type == cm_tdbusm_dict_as) && ((strcasecmp(param->key, "EKU") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_EKU) == 0))) { talloc_free(entry->cm_template_eku); entry->cm_template_eku = cm_submit_maybe_joinv(entry, ",", param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_EKU; } } else if ((param->value_type == cm_tdbusm_dict_as) && ((strcasecmp(param->key, "PRINCIPAL") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_PRINCIPAL) == 0))) { talloc_free(entry->cm_template_principal); entry->cm_template_principal = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_PRINCIPAL; } } else if ((param->value_type == cm_tdbusm_dict_as) && ((strcasecmp(param->key, "DNS") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_HOSTNAME) == 0))) { talloc_free(entry->cm_template_hostname); entry->cm_template_hostname = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_HOSTNAME; } } else if ((param->value_type == cm_tdbusm_dict_as) && ((strcasecmp(param->key, "EMAIL") == 0) || (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_EMAIL) == 0))) { talloc_free(entry->cm_template_email); entry->cm_template_email = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_EMAIL; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_IP_ADDRESS) == 0)) { entry->cm_template_ipaddress = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_IP_ADDRESS; } } else if ((param->value_type == cm_tdbusm_dict_b) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_IS_CA) == 0)) { entry->cm_template_is_ca = param->value.b; if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_IS_CA; } } else if ((param->value_type == cm_tdbusm_dict_n) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_CA_PATH_LENGTH) == 0)) { entry->cm_template_ca_path_length = param->value.n; if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_CA_PATH_LENGTH; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_OCSP) == 0)) { talloc_free(entry->cm_template_ocsp_location); entry->cm_template_ocsp_location = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_OCSP; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_CRL_DP) == 0)) { talloc_free(entry->cm_template_crl_distribution_point); entry->cm_template_crl_distribution_point = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_CRL_DP; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_NS_COMMENT) == 0)) { talloc_free(entry->cm_template_ns_comment); entry->cm_template_ns_comment = maybe_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_NS_COMMENT; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_PROFILE) == 0)) { talloc_free(entry->cm_template_profile); entry->cm_template_profile = maybe_strdup(entry, param->value.s); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_PROFILE; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD) == 0)) { talloc_free(entry->cm_template_challenge_password); entry->cm_template_challenge_password = maybe_strdup(entry, param->value.s); if (entry->cm_template_challenge_password != NULL) { entry->cm_template_challenge_password_file = NULL; } if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE) == 0)) { if ((param->value.s != NULL) && (strlen(param->value.s) != 0) && (check_arg_is_absolute_path(param->value.s) != 0)) { cm_log(1, "Challenge password storage " "location is not an absolute " "path.\n"); return send_internal_base_bad_arg_error(conn, msg, _("The location \"%s\" must be an absolute path."), param->value.s, CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE); } talloc_free(entry->cm_template_challenge_password_file); entry->cm_template_challenge_password_file = maybe_strdup(entry, param->value.s); if (entry->cm_template_challenge_password_file != NULL) { entry->cm_template_challenge_password = NULL; } if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_CERT_PRESAVE_COMMAND) == 0)) { talloc_free(entry->cm_pre_certsave_command); entry->cm_pre_certsave_command = maybe_strdup(entry, param->value.s); talloc_free(entry->cm_pre_certsave_uid); if (entry->cm_pre_certsave_command != NULL) { entry->cm_pre_certsave_uid = talloc_asprintf(entry, "%lu", (unsigned long) ci->uid); if (entry->cm_pre_certsave_uid == NULL) { talloc_free(entry->cm_pre_certsave_command); entry->cm_pre_certsave_command = NULL; } } else { entry->cm_pre_certsave_uid = NULL; } if (n_propname + 3 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_CERT_PRESAVE_COMMAND; propname[n_propname++] = CM_DBUS_PROP_CERT_PRESAVE_UID; } } else if ((param->value_type == cm_tdbusm_dict_s) && (strcasecmp(param->key, CM_DBUS_PROP_CERT_POSTSAVE_COMMAND) == 0)) { talloc_free(entry->cm_post_certsave_command); entry->cm_post_certsave_command = maybe_strdup(entry, param->value.s); talloc_free(entry->cm_post_certsave_uid); if (entry->cm_post_certsave_command != NULL) { entry->cm_post_certsave_uid = talloc_asprintf(entry, "%lu", (unsigned long) ci->uid); if (entry->cm_post_certsave_uid == NULL) { talloc_free(entry->cm_post_certsave_command); entry->cm_post_certsave_command = NULL; } } else { entry->cm_post_certsave_uid = NULL; } if (n_propname + 3 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_CERT_POSTSAVE_COMMAND; propname[n_propname++] = CM_DBUS_PROP_CERT_POSTSAVE_UID; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_ROOT_CERT_FILES) == 0)) { talloc_free(entry->cm_root_cert_store_files); entry->cm_root_cert_store_files = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_ROOT_CERT_FILES; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_OTHER_ROOT_CERT_FILES) == 0)) { talloc_free(entry->cm_other_root_cert_store_files); entry->cm_other_root_cert_store_files = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_OTHER_ROOT_CERT_FILES; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_OTHER_CERT_FILES) == 0)) { talloc_free(entry->cm_other_cert_store_nssdbs); entry->cm_other_cert_store_nssdbs = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_OTHER_CERT_FILES; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_ROOT_CERT_NSSDBS) == 0)) { talloc_free(entry->cm_root_cert_store_nssdbs); entry->cm_root_cert_store_nssdbs = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_ROOT_CERT_NSSDBS; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS) == 0)) { talloc_free(entry->cm_other_root_cert_store_nssdbs); entry->cm_other_root_cert_store_nssdbs = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS; } } else if ((param->value_type == cm_tdbusm_dict_as) && (strcasecmp(param->key, CM_DBUS_PROP_OTHER_CERT_NSSDBS) == 0)) { talloc_free(entry->cm_other_cert_store_nssdbs); entry->cm_other_cert_store_nssdbs = maybe_strdupv(entry, param->value.as); if (n_propname + 2 < sizeof(propname) / sizeof(propname[0])) { propname[n_propname++] = CM_DBUS_PROP_OTHER_CERT_NSSDBS; } } else { break; } } if (d[i] == NULL) { new_request_path = talloc_asprintf(parent, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); if ((n_propname > 0) && (n_propname + 1 < sizeof(propname) / sizeof(propname[0]))) { propname[n_propname] = NULL; cm_tdbush_property_emit_changed(ctx, new_request_path, CM_DBUS_REQUEST_INTERFACE, propname); } cm_tdbusm_set_bp(rep, cm_restart_entry(ctx, entry->cm_nickname), new_request_path); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(new_request_path); return DBUS_HANDLER_RESULT_HANDLED; } else { dbus_message_unref(rep); rep = dbus_message_new_error(msg, CM_DBUS_ERROR_REQUEST_BAD_ARG, _("Unrecognized parameter or wrong value type.")); if (rep != NULL) { cm_tdbusm_set_s(rep, d[i]->key); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } } else { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } } /* org.fedorahosted.certmonger.request.resubmit */ static DBusHandlerResult request_resubmit(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; const char *propname[2]; char *path; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (cm_stop_entry(ctx, entry->cm_nickname)) { /* if we have a key of the right type and size, the * thing to do now is to generate a new CSR, otherwise * we have to generate a new key first */ if ((entry->cm_key_type.cm_key_size == 0) || (entry->cm_key_type.cm_key_algorithm != entry->cm_key_type.cm_key_gen_algorithm) || (entry->cm_key_type.cm_key_size != entry->cm_key_type.cm_key_gen_size)) { entry->cm_state = CM_NEED_KEY_PAIR; } else { entry->cm_state = CM_NEED_CSR; } /* emit a properties-changed signal for the state */ propname[0] = CM_DBUS_PROP_STATUS; propname[1] = NULL; path = talloc_asprintf(entry, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_REQUEST_INTERFACE, propname); talloc_free(path); if (cm_start_entry(ctx, entry->cm_nickname)) { cm_tdbusm_set_b(rep, TRUE); } else { cm_tdbusm_set_b(rep, FALSE); } } else { cm_tdbusm_set_b(rep, FALSE); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.refresh */ static DBusHandlerResult request_refresh(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { switch (entry->cm_state) { case CM_CA_WORKING: case CM_CA_UNREACHABLE: if (cm_stop_entry(ctx, entry->cm_nickname)) { if (cm_start_entry(ctx, entry->cm_nickname)) { cm_tdbusm_set_b(rep, TRUE); } else { cm_tdbusm_set_b(rep, FALSE); } } else { cm_tdbusm_set_b(rep, FALSE); } break; default: cm_tdbusm_set_b(rep, FALSE); break; } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* org.fedorahosted.certmonger.request.rekey */ static DBusHandlerResult request_rekey(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { DBusMessage *rep; struct cm_store_entry *entry; const char *propname[2]; char *path; entry = get_entry_for_request_message(msg, ctx); if (entry == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } rep = dbus_message_new_method_return(msg); if (rep != NULL) { if (cm_stop_entry(ctx, entry->cm_nickname)) { /* need a new key pair */ entry->cm_state = CM_NEED_KEY_PAIR; /* emit a properties-changed signal for the state */ propname[0] = CM_DBUS_PROP_STATUS; propname[1] = NULL; path = talloc_asprintf(entry, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_REQUEST_INTERFACE, propname); talloc_free(path); if (cm_start_entry(ctx, entry->cm_nickname)) { cm_tdbusm_set_b(rep, TRUE); } else { cm_tdbusm_set_b(rep, FALSE); } } else { cm_tdbusm_set_b(rep, FALSE); } dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); return DBUS_HANDLER_RESULT_HANDLED; } else { return send_internal_request_error(conn, msg); } } /* Custom property get/set logic for request structures. */ static dbus_bool_t request_prop_get_autorenew(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_autorenew ? TRUE : FALSE; } static dbus_bool_t request_prop_get_monitoring(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_monitor ? TRUE : FALSE; } static const char * request_prop_get_cert_location_type(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_cert_storage_type) { case cm_cert_storage_file: return "FILE"; break; case cm_cert_storage_nssdb: return "NSSDB"; break; } return ""; } static const char * request_prop_get_cert_location_file(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: break; case cm_cert_storage_file: return entry->cm_cert_storage_location; break; } return ""; } static const char * request_prop_get_cert_location_database(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_cert_storage_type) { case cm_cert_storage_file: break; case cm_cert_storage_nssdb: return entry->cm_cert_storage_location; break; } return ""; } static const char * request_prop_get_cert_location_nickname(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_cert_storage_type) { case cm_cert_storage_file: break; case cm_cert_storage_nssdb: return entry->cm_cert_nickname; break; } return ""; } static const char * request_prop_get_cert_location_token(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_cert_storage_type) { case cm_cert_storage_file: break; case cm_cert_storage_nssdb: return entry->cm_cert_token; break; } return ""; } static const char * request_prop_get_key_location_type(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_key_storage_type) { case cm_key_storage_none: return "NONE"; break; case cm_key_storage_file: return "FILE"; break; case cm_key_storage_nssdb: return "NSSDB"; break; } return ""; } static const char * request_prop_get_key_location_file(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_key_storage_type) { case cm_key_storage_none: case cm_key_storage_nssdb: break; case cm_key_storage_file: return entry->cm_key_storage_location; break; } return ""; } static const char * request_prop_get_key_location_database(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_key_storage_type) { case cm_key_storage_none: case cm_key_storage_file: break; case cm_key_storage_nssdb: return entry->cm_key_storage_location; break; } return ""; } static const char * request_prop_get_key_location_nickname(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_key_storage_type) { case cm_key_storage_none: case cm_key_storage_file: break; case cm_key_storage_nssdb: return entry->cm_key_nickname; break; } return ""; } static const char * request_prop_get_key_location_token(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_key_storage_type) { case cm_key_storage_none: case cm_key_storage_file: break; case cm_key_storage_nssdb: return entry->cm_key_token; break; } return ""; } static const char * request_prop_get_key_type(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_key_type.cm_key_algorithm) { case cm_key_unspecified: return ""; break; case cm_key_rsa: return "RSA"; break; #ifdef CM_ENABLE_DSA case cm_key_dsa: return "DSA"; break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: return "EC"; break; #endif } return ""; } static long request_prop_get_key_size(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_key_type.cm_key_algorithm) { case cm_key_unspecified: return 0; break; case cm_key_rsa: /* fall through */ #ifdef CM_ENABLE_DSA case cm_key_dsa: /* fall through */ #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: #endif return entry->cm_key_type.cm_key_size; break; } return 0; } static const char * request_prop_get_notification_type(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_notification_method) { case cm_notification_unspecified: case cm_notification_none: return ""; break; case cm_notification_syslog: return "SYSLOG"; break; case cm_notification_email: return "EMAIL"; break; case cm_notification_stdout: return "STDOUT"; break; case cm_notification_command: return "COMMAND"; break; } return ""; } static const char * request_prop_get_notification_syslog(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_notification_method) { case cm_notification_unspecified: case cm_notification_none: case cm_notification_email: case cm_notification_stdout: case cm_notification_command: return ""; break; case cm_notification_syslog: return entry->cm_notification_destination; break; } return ""; } static const char * request_prop_get_notification_email(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_notification_method) { case cm_notification_unspecified: case cm_notification_none: case cm_notification_syslog: case cm_notification_stdout: case cm_notification_command: return ""; break; case cm_notification_email: return entry->cm_notification_destination; break; } return ""; } static const char * request_prop_get_notification_command(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; switch (entry->cm_notification_method) { case cm_notification_unspecified: case cm_notification_none: case cm_notification_email: case cm_notification_stdout: case cm_notification_syslog: return ""; break; case cm_notification_command: return entry->cm_notification_destination; break; } return ""; } static const char * request_prop_get_key_pin(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_key_pin ? entry->cm_key_pin : ""; } static void request_prop_set_key_pin(struct cm_context *ctx, void *parent, void *record, const char *name, const char *value) { struct cm_store_entry *entry = record; const char *properties[2]; char *path; entry->cm_key_pin = maybe_strdup(entry, value); if (entry->cm_key_pin != NULL) { entry->cm_key_pin_file = NULL; properties[0] = CM_DBUS_PROP_KEY_PIN_FILE; properties[1] = NULL; path = talloc_asprintf(record, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_REQUEST_INTERFACE, properties); } } static const char * request_prop_get_key_pin_file(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_key_pin_file ? entry->cm_key_pin_file : ""; } static void request_prop_set_key_pin_file(struct cm_context *ctx, void *parent, void *record, const char *name, const char *value) { struct cm_store_entry *entry = record; const char *properties[2]; char *path; entry->cm_key_pin_file = maybe_strdup(entry, value); if (entry->cm_key_pin_file != NULL) { entry->cm_key_pin = NULL; properties[0] = CM_DBUS_PROP_KEY_PIN; properties[1] = NULL; path = talloc_asprintf(record, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_REQUEST_INTERFACE, properties); } } static long request_prop_get_key_issued_count(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_key_issued_count; } static const char * request_prop_get_challenge_password(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_template_challenge_password ? entry->cm_template_challenge_password : ""; } static void request_prop_set_challenge_password(struct cm_context *ctx, void *parent, void *record, const char *name, const char *value) { struct cm_store_entry *entry = record; const char *properties[2]; char *path; entry->cm_template_challenge_password = maybe_strdup(entry, value); if (entry->cm_template_challenge_password != NULL) { entry->cm_template_challenge_password_file = NULL; properties[0] = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE, properties[1] = NULL; path = talloc_asprintf(record, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_REQUEST_INTERFACE, properties); } } static const char * request_prop_get_challenge_password_file(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_template_challenge_password_file ? entry->cm_template_challenge_password_file : ""; } static void request_prop_set_challenge_password_file(struct cm_context *ctx, void *parent, void *record, const char *name, const char *value) { struct cm_store_entry *entry = record; const char *properties[2]; char *path; entry->cm_template_challenge_password_file = maybe_strdup(entry, value); if (entry->cm_template_challenge_password_file != NULL) { entry->cm_template_challenge_password = NULL; properties[0] = CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD, properties[1] = NULL; path = talloc_asprintf(record, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); cm_tdbush_property_emit_changed(ctx, path, CM_DBUS_REQUEST_INTERFACE, properties); } } static const char * request_prop_get_status(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return cm_store_state_as_string(entry->cm_state); } static dbus_bool_t request_prop_get_stuck(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; dbus_bool_t stuck = FALSE; switch (entry->cm_state) { case CM_INVALID: case CM_NEED_KEY_PAIR: case CM_GENERATING_KEY_PAIR: case CM_HAVE_KEY_PAIR: case CM_NEED_KEYINFO: case CM_READING_KEYINFO: case CM_HAVE_KEYINFO: case CM_NEED_CSR: case CM_GENERATING_CSR: case CM_HAVE_CSR: case CM_NEED_SCEP_DATA: case CM_GENERATING_SCEP_DATA: case CM_HAVE_SCEP_DATA: case CM_NEED_TO_SUBMIT: case CM_SUBMITTING: case CM_CA_WORKING: case CM_CA_UNREACHABLE: case CM_NEED_TO_SAVE_CERT: case CM_PRE_SAVE_CERT: case CM_START_SAVING_CERT: case CM_SAVING_CERT: case CM_NEED_TO_READ_CERT: case CM_READING_CERT: case CM_SAVED_CERT: case CM_POST_SAVED_CERT: case CM_MONITORING: case CM_NEED_TO_NOTIFY_VALIDITY: case CM_NOTIFYING_VALIDITY: case CM_NEED_TO_NOTIFY_REJECTION: case CM_NOTIFYING_REJECTION: case CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED: case CM_NOTIFYING_ISSUED_SAVE_FAILED: case CM_NEED_TO_NOTIFY_ISSUED_SAVED: case CM_NOTIFYING_ISSUED_SAVED: case CM_NEWLY_ADDED: case CM_NEWLY_ADDED_START_READING_KEYINFO: case CM_NEWLY_ADDED_READING_KEYINFO: case CM_NEWLY_ADDED_START_READING_CERT: case CM_NEWLY_ADDED_READING_CERT: case CM_NEWLY_ADDED_DECIDING: case CM_NEED_TO_SAVE_CA_CERTS: case CM_START_SAVING_CA_CERTS: case CM_SAVING_CA_CERTS: case CM_NEED_TO_SAVE_ONLY_CA_CERTS: case CM_START_SAVING_ONLY_CA_CERTS: case CM_SAVING_ONLY_CA_CERTS: case CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED: case CM_NOTIFYING_ONLY_CA_SAVE_FAILED: case CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED: case CM_NOTIFYING_ISSUED_CA_SAVE_FAILED: stuck = FALSE; break; case CM_NEED_KEYINFO_READ_TOKEN: case CM_NEED_KEYINFO_READ_PIN: case CM_NEED_KEY_GEN_PERMS: case CM_NEED_KEY_GEN_TOKEN: case CM_NEED_KEY_GEN_PIN: case CM_NEED_CSR_GEN_TOKEN: case CM_NEED_CSR_GEN_PIN: case CM_NEED_SCEP_GEN_TOKEN: case CM_NEED_SCEP_GEN_PIN: case CM_NEED_SCEP_ENCRYPTION_CERT: case CM_NEED_SCEP_RSA_CLIENT_KEY: case CM_NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN: case CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN: case CM_NEED_CA_CERT_SAVE_PERMS: case CM_NEED_CERTSAVE_PERMS: case CM_NEED_CERTSAVE_TOKEN: case CM_NEED_CERTSAVE_PIN: case CM_NEED_ONLY_CA_CERT_SAVE_PERMS: case CM_NEED_GUIDANCE: case CM_NEED_CA: case CM_CA_REJECTED: case CM_CA_UNCONFIGURED: stuck = TRUE; break; } return stuck; } static const char * request_prop_get_ca(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; struct cm_store_ca *ca; if (entry->cm_ca_nickname != NULL) { ca = cm_get_ca_by_nickname(ctx, entry->cm_ca_nickname); if (ca != NULL) { return talloc_asprintf(parent, "%s/%s", CM_DBUS_REQUEST_PATH, ca->cm_busname); } } return ""; } static dbus_bool_t request_prop_get_template_is_ca(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_template_is_ca != 0; } static long request_prop_get_template_ca_path_length(struct cm_context *ctx, void *parent, void *record, const char *name) { struct cm_store_entry *entry = record; return entry->cm_template_is_ca != 0 ? entry->cm_template_ca_path_length : -1; } /* the types of objects we have in our D-Bus object tree */ enum cm_tdbush_object_type { cm_tdbush_object_type_none, cm_tdbush_object_type_parent_of_base, cm_tdbush_object_type_base, cm_tdbush_object_type_parent_of_cas, cm_tdbush_object_type_group_of_cas, cm_tdbush_object_type_ca, cm_tdbush_object_type_parent_of_requests, cm_tdbush_object_type_group_of_requests, cm_tdbush_object_type_request }; /* an annotation attached to a method or data field */ struct cm_tdbush_member_annotation { const char *cm_name; const char *cm_value; struct cm_tdbush_member_annotation *cm_next; }; /* a callable method on an object */ struct cm_tdbush_method { const char *cm_name; struct cm_tdbush_method_arg { const char *cm_name; const char *cm_bus_type; enum cm_tdbush_method_arg_direction { cm_tdbush_method_arg_in, cm_tdbush_method_arg_out, } cm_direction; struct cm_tdbush_method_arg *cm_next; } *cm_args; struct cm_tdbush_member_annotation *cm_annotations; DBusHandlerResult (*cm_fn)(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx); }; /* a signal emitted by an object */ struct cm_tdbush_signal { const char *cm_name; struct cm_tdbush_signal_arg { const char *cm_name; const char *cm_bus_type; struct cm_tdbush_signal_arg *cm_next; } *cm_args; }; /* a data property of an object */ struct cm_tdbush_property { const char *cm_name; /* what it looks like on the bus */ enum cm_tdbush_property_bus_type { cm_tdbush_property_path, cm_tdbush_property_string, cm_tdbush_property_strings, cm_tdbush_property_string_pairs, cm_tdbush_property_boolean, cm_tdbush_property_number } cm_bus_type; enum cm_tdbush_property_access { cm_tdbush_property_read, cm_tdbush_property_write, cm_tdbush_property_readwrite } cm_access; /* how we represent it internally */ enum cm_tdbush_property_local_type { cm_tdbush_property_special, cm_tdbush_property_char_p, cm_tdbush_property_char_pp, cm_tdbush_property_time_t, cm_tdbush_property_long_long, cm_tdbush_property_comma_list, cm_tdbush_property_mode_t, } cm_local_type; /* for char_p, char_pp, time_t, long long, comma_list, mode_t members */ ptrdiff_t cm_offset; /* for "special" members */ const char * (*cm_read_string)(struct cm_context *ctx, void *parent, void *structure, const char *name); const char ** (*cm_read_strings)(struct cm_context *ctx, void *parent, void *structure, const char *name); const char ** (*cm_read_string_pairs)(struct cm_context *ctx, void *parent, void *structure, const char *name); dbus_bool_t (*cm_read_boolean)(struct cm_context *ctx, void *parent, void *structure, const char *name); long (*cm_read_number)(struct cm_context *ctx, void *parent, void *structure, const char *name); void (*cm_write_string)(struct cm_context *ctx, void *parent, void *structure, const char *name, const char *new_value); void (*cm_write_strings)(struct cm_context *ctx, void *parent, void *structure, const char *name, const char **new_value); void (*cm_write_string_pairs)(struct cm_context *ctx, void *parent, void *structure, const char *name, const char **new_value); void (*cm_write_boolean)(struct cm_context *ctx, void *parent, void *structure, const char *name, dbus_bool_t new_value); void (*cm_write_number)(struct cm_context *ctx, void *parent, void *structure, const char *name, long new_value); struct cm_tdbush_member_annotation *cm_annotations; }; /* methods, signals, and members are grouped by interface name */ struct cm_tdbush_interface { const char *cm_name; struct cm_tdbush_interface_item { enum cm_tdbush_interface_member_type { cm_tdbush_interface_method, cm_tdbush_interface_signal, cm_tdbush_interface_property, } cm_member_type; struct cm_tdbush_method *cm_method; struct cm_tdbush_signal *cm_signal; struct cm_tdbush_property *cm_property; struct cm_tdbush_interface_item *cm_next; } *cm_items; }; /* a mapping from an object type to an interface that applies to it */ struct cm_tdbush_interface_map { enum cm_tdbush_object_type cm_type; struct cm_tdbush_interface * (*cm_interface)(void); }; static enum cm_tdbush_object_type cm_tdbush_classify_path(struct cm_context *ctx, const char *path); static struct cm_tdbush_interface_map *cm_tdbush_object_type_map_get_n(unsigned int i); static struct cm_tdbush_method_arg * make_method_arg(const char *name, const char *bus_type, enum cm_tdbush_method_arg_direction direction, struct cm_tdbush_method_arg *next) { struct cm_tdbush_method_arg *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_name = name; ret->cm_bus_type = bus_type; ret->cm_direction = direction; ret->cm_next = next; return ret; } static struct cm_tdbush_member_annotation * make_member_annotation(const char *name, const char *value, struct cm_tdbush_member_annotation *next) { struct cm_tdbush_member_annotation *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_name = name; ret->cm_value = value; ret->cm_next = next; return ret; } static struct cm_tdbush_method * make_method(const char *name, DBusHandlerResult (*fn)(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx), struct cm_tdbush_method_arg *args, struct cm_tdbush_member_annotation *annotations) { struct cm_tdbush_method *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_name = name; ret->cm_fn = fn; ret->cm_args = args; ret->cm_annotations = annotations; return ret; } static struct cm_tdbush_signal_arg * make_signal_arg(const char *name, const char *bus_type, struct cm_tdbush_signal_arg *next) { struct cm_tdbush_signal_arg *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_name = name; ret->cm_bus_type = bus_type; ret->cm_next = next; return ret; } static struct cm_tdbush_signal * make_signal(const char *name, struct cm_tdbush_signal_arg *args) { struct cm_tdbush_signal *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_name = name; ret->cm_args = args; return ret; } static struct cm_tdbush_property * make_property(const char *name, enum cm_tdbush_property_bus_type bus_type, enum cm_tdbush_property_access acces, enum cm_tdbush_property_local_type local_type, ptrdiff_t offset, const char * (*read_string)(struct cm_context *ctx, void *parent, void *structure, const char *name), const char ** (*read_strings)(struct cm_context *ctx, void *parent, void *structure, const char *name), const char ** (*read_string_pairs)(struct cm_context *ctx, void *parent, void *structure, const char *name), dbus_bool_t (*read_boolean)(struct cm_context *ctx, void *parent, void *structure, const char *name), long (*read_number)(struct cm_context *ctx, void *parent, void *structure, const char *name), void (*write_string)(struct cm_context *ctx, void *parent, void *structure, const char *name, const char *new_value), void (*write_strings)(struct cm_context *ctx, void *parent, void *structure, const char *name, const char **new_values), void (*write_string_pairs)(struct cm_context *ctx, void *parent, void *structure, const char *name, const char **new_values), void (*write_boolean)(struct cm_context *ctx, void *parent, void *structure, const char *name, dbus_bool_t), void (*write_number)(struct cm_context *ctx, void *parent, void *structure, const char *name, long new_value), struct cm_tdbush_member_annotation *annotations) { struct cm_tdbush_property *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_name = name; ret->cm_bus_type = bus_type; ret->cm_access = acces; ret->cm_local_type = local_type; ret->cm_offset = offset; ret->cm_read_string = read_string; ret->cm_read_strings = read_strings; ret->cm_read_string_pairs = read_string_pairs; ret->cm_read_number = read_number; ret->cm_read_boolean = read_boolean; ret->cm_write_string = write_string; ret->cm_write_strings = write_strings; ret->cm_write_string_pairs = write_string_pairs; ret->cm_write_number = write_number; ret->cm_write_boolean = write_boolean; ret->cm_annotations = annotations; switch (ret->cm_local_type) { case cm_tdbush_property_char_p: case cm_tdbush_property_char_pp: case cm_tdbush_property_time_t: case cm_tdbush_property_long_long: case cm_tdbush_property_comma_list: case cm_tdbush_property_mode_t: assert(ret->cm_offset != 0); break; case cm_tdbush_property_special: assert(ret->cm_offset == 0); if ((ret->cm_access == cm_tdbush_property_read) || (ret->cm_access == cm_tdbush_property_readwrite)) { switch (ret->cm_bus_type) { case cm_tdbush_property_path: case cm_tdbush_property_string: assert(ret->cm_read_string != NULL); break; case cm_tdbush_property_strings: assert(ret->cm_read_strings != NULL); break; case cm_tdbush_property_string_pairs: assert(ret->cm_read_string_pairs != NULL); break; case cm_tdbush_property_boolean: assert(ret->cm_read_boolean != NULL); break; case cm_tdbush_property_number: assert(ret->cm_read_number != NULL); break; } } if ((ret->cm_access == cm_tdbush_property_readwrite) || (ret->cm_access == cm_tdbush_property_write)) { switch (ret->cm_bus_type) { case cm_tdbush_property_path: case cm_tdbush_property_string: assert(ret->cm_write_string != NULL); break; case cm_tdbush_property_strings: assert(ret->cm_write_strings != NULL); break; case cm_tdbush_property_string_pairs: assert(ret->cm_write_string_pairs != NULL); break; case cm_tdbush_property_boolean: assert(ret->cm_write_boolean != NULL); break; case cm_tdbush_property_number: assert(ret->cm_write_number != NULL); break; } } break; } return ret; } static struct cm_tdbush_interface_item * make_interface_item(enum cm_tdbush_interface_member_type member_type, void *ptr, struct cm_tdbush_interface_item *next) { struct cm_tdbush_interface_item *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_member_type = member_type; switch (ret->cm_member_type) { case cm_tdbush_interface_method: ret->cm_method = ptr; break; case cm_tdbush_interface_signal: ret->cm_signal = ptr; break; case cm_tdbush_interface_property: ret->cm_property = ptr; break; } ret->cm_next = next; return ret; } static struct cm_tdbush_interface * make_interface(const char *name, struct cm_tdbush_interface_item *items) { struct cm_tdbush_interface *ret; ret = malloc(sizeof(*ret)); if (ret == NULL) { return NULL; } ret->cm_name = name; ret->cm_items = items; return ret; } /* introspection callbacks for specific parts of an interface */ static char * cm_tdbush_introspect_method(void *parent, struct cm_tdbush_method *method) { char *ret = NULL; const char *direction; struct cm_tdbush_method_arg *arg; struct cm_tdbush_member_annotation *annotation; ret = talloc_asprintf(parent, " ", method->cm_name); arg = method->cm_args; while (arg != NULL) { direction = "unknown"; switch (arg->cm_direction) { case cm_tdbush_method_arg_in: direction = "in"; break; case cm_tdbush_method_arg_out: direction = "out"; break; } ret = talloc_asprintf(parent, "%s\n ", ret, arg->cm_name, arg->cm_bus_type, direction); arg = arg->cm_next; } annotation = method->cm_annotations; while (annotation != NULL) { ret = talloc_asprintf(parent, "%s\n ", ret, annotation->cm_name, annotation->cm_value); annotation = annotation->cm_next; } ret = talloc_asprintf(parent, "%s\n ", ret); return ret; } static char * cm_tdbush_introspect_signal(void *parent, struct cm_tdbush_signal *sig) { char *ret = NULL; struct cm_tdbush_signal_arg *arg; ret = talloc_asprintf(parent, " ", sig->cm_name); arg = sig->cm_args; while (arg != NULL) { ret = talloc_asprintf(parent, "%s\n ", ret, arg->cm_name, arg->cm_bus_type); arg = arg->cm_next; } ret = talloc_asprintf(parent, "%s\n ", ret); return ret; } static char * cm_tdbush_introspect_property(void *parent, struct cm_tdbush_property *prop) { char *ret = NULL; const char *bus_type = "unknown", *access_type = "unknown"; struct cm_tdbush_member_annotation *annotation; switch (prop->cm_bus_type) { case cm_tdbush_property_path: bus_type = DBUS_TYPE_OBJECT_PATH_AS_STRING; break; case cm_tdbush_property_string: bus_type = DBUS_TYPE_STRING_AS_STRING; break; case cm_tdbush_property_strings: bus_type = DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING; break; case cm_tdbush_property_string_pairs: bus_type = DBUS_TYPE_ARRAY_AS_STRING DBUS_STRUCT_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_STRUCT_END_CHAR_AS_STRING; break; case cm_tdbush_property_boolean: bus_type = DBUS_TYPE_BOOLEAN_AS_STRING; break; case cm_tdbush_property_number: bus_type = DBUS_TYPE_INT64_AS_STRING; break; } switch (prop->cm_access) { case cm_tdbush_property_read: access_type = "read"; break; case cm_tdbush_property_write: access_type = "write"; break; case cm_tdbush_property_readwrite: access_type = "readwrite"; break; } annotation = prop->cm_annotations; if (annotation == NULL) { ret = talloc_asprintf(parent, " ", prop->cm_name, bus_type, access_type); } else { ret = talloc_asprintf(parent, " ", prop->cm_name, bus_type, access_type); while (annotation != NULL) { ret = talloc_asprintf(parent, "%s\n ", ret, annotation->cm_name, annotation->cm_value); annotation = annotation->cm_next; } ret = talloc_asprintf(parent, "%s\n ", ret); } return ret; } /* when we're introspecting a node, we need to return a list of its direct * children as part of that node's data */ static char * cm_tdbush_introspect_childlist(struct cm_context *ctx, void *parent, const char *path, enum cm_tdbush_object_type type) { struct cm_store_entry *entry; struct cm_store_ca *ca; char *ret = NULL; const char *p; int i; switch (type) { case cm_tdbush_object_type_none: case cm_tdbush_object_type_request: case cm_tdbush_object_type_ca: /* these have no child nodes */ break; case cm_tdbush_object_type_parent_of_base: /* the next intermediate node in the base object's path */ p = CM_DBUS_BASE_PATH + strlen(path); p += strspn(p, "/"); i = strcspn(p, "/"); ret = talloc_asprintf(parent, "\n ", i, p); break; case cm_tdbush_object_type_base: /* the base itself is a parent of the groups of other objects, * so include the next nodes in those paths */ p = CM_DBUS_REQUEST_PATH + strlen(path); p += strspn(p, "/"); i = strcspn(p, "/"); ret = talloc_asprintf(parent, "\n ", i, p); p = CM_DBUS_CA_PATH + strlen(path); p += strspn(p, "/"); i = strcspn(p, "/"); ret = talloc_asprintf(parent, "%s\n ", ret, i, p); break; case cm_tdbush_object_type_parent_of_cas: /* a child of the base node that is not the immediate parent of * the CAs */ p = CM_DBUS_CA_PATH + strlen(path); p += strspn(p, "/"); i = strcspn(p, "/"); ret = talloc_asprintf(parent, "\n ", i, p); break; case cm_tdbush_object_type_group_of_cas: /* a child of the base node that is the immediate parent of the * CAs */ i = cm_get_n_cas(ctx) - 1; while (i >= 0) { ca = cm_get_ca_by_index(ctx, i); if (ca != NULL) { ret = talloc_asprintf(parent, "\n %s", ca->cm_busname, ret ? ret : ""); } i--; } break; case cm_tdbush_object_type_parent_of_requests: /* a child of the base node that is not the immediate parent of * the requests */ p = CM_DBUS_REQUEST_PATH + strlen(path); p += strspn(p, "/"); i = strcspn(p, "/"); ret = talloc_asprintf(parent, "\n ", i, p); break; case cm_tdbush_object_type_group_of_requests: /* a child of the base node that is the immediate parent of the * requests */ i = cm_get_n_entries(ctx) - 1; while (i >= 0) { entry = cm_get_entry_by_index(ctx, i); if (entry != NULL) { ret = talloc_asprintf(parent, "\n %s", entry->cm_busname, ret ? ret : ""); } i--; } break; } return ret; } /* org.freedesktop.DBus.Introspectable.Introspect */ static DBusHandlerResult cm_tdbush_introspect(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { const char *path; void *parent; char *xml, *member; static struct cm_tdbush_interface_map *map; struct cm_tdbush_interface *iface; struct cm_tdbush_interface_item *item; enum cm_tdbush_object_type type; unsigned int i; DBusMessage *rep; path = dbus_message_get_path(msg); type = cm_tdbush_classify_path(ctx, path); parent = talloc_new(NULL); xml = talloc_asprintf(parent, "%s\n", DBUS_INTROSPECT_1_0_XML_DOCTYPE_DECL_NODE, path); for (i = 0; (map = cm_tdbush_object_type_map_get_n(i)) != NULL; i++) { if (map->cm_type != type) { continue; } iface = (*(map->cm_interface))(); xml = talloc_asprintf(parent, "%s\n ", xml, iface->cm_name); for (item = iface->cm_items; item != NULL; item = item->cm_next) { member = NULL; switch (item->cm_member_type) { case cm_tdbush_interface_method: member = cm_tdbush_introspect_method(parent, item->cm_method); if (member != NULL) { xml = talloc_asprintf(parent, "%s\n%s", xml, member); } break; case cm_tdbush_interface_signal: member = cm_tdbush_introspect_signal(parent, item->cm_signal); if (member != NULL) { xml = talloc_asprintf(parent, "%s\n%s", xml, member); } break; case cm_tdbush_interface_property: member = cm_tdbush_introspect_property(parent, item->cm_property); if (member != NULL) { xml = talloc_asprintf(parent, "%s\n%s", xml, member); } break; } } xml = talloc_asprintf(parent, "%s\n ", xml); } member = cm_tdbush_introspect_childlist(ctx, parent, path, type); if (member != NULL) { xml = talloc_asprintf(parent, "%s%s", xml, member); } xml = talloc_asprintf(parent, "%s\n", xml); rep = dbus_message_new_method_return(msg); if (rep != NULL) { cm_tdbusm_set_s(rep, xml); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); } talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } /* Loose name matching: consider '-' and '_' equivalent, and consider either * followed by a lower-case character to be equivalent to just that character * in upper case. */ static int cm_is_lower(char c) { return (c >= 'a') && (c <= 'z'); } static int cm_is_upper(char c) { return (c >= 'A') && (c <= 'Z'); } static char cm_to_upper(char c) { return c - ('a' - 'A'); } int cm_name_cmp(const char *a, const char *b) { const char *p, *q; if (strcmp(a, b) == 0) { return 0; } p = a; q = b; while ((*p != '\0') && (*q != '\0')) { if (*p == *q) { p++; q++; continue; } if (((*p == '-') && (*q == '_')) || ((*p == '_') && (*q == '-'))) { p++; q++; continue; } if ((p == a) && (q == b)) { if (cm_is_lower(*p) && cm_is_upper(*q) && (cm_to_upper(*p) == *q)) { p++; q++; continue; } if (cm_is_lower(*q) && cm_is_upper(*p) && (cm_to_upper(*q) == *p)) { p++; q++; continue; } } if ((*p == '-') || (*p == '_')) { if (cm_is_lower(*(p + 1)) && cm_is_upper(*q) && (cm_to_upper(*(p + 1)) == *q)) { p += 2; q++; continue; } } if ((*q == '-') || (*q == '_')) { if (cm_is_lower(*(q + 1)) && cm_is_upper(*p) && (cm_to_upper(*(q + 1)) == *p)) { p++; q += 2; continue; } } return *p - *q; } return *p - *q; } /* org.freedesktop.DBus.Properties.Get */ static DBusHandlerResult cm_tdbush_property_get(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { const char *path; char *interface, *property; void *parent; static struct cm_tdbush_interface_map *map; struct cm_tdbush_interface *iface; struct cm_tdbush_interface_item *item; struct cm_tdbush_property *prop; enum cm_tdbush_object_type type; unsigned int i; struct cm_store_entry *entry; struct cm_store_ca *ca; char *record, **wpp, ***wppp; const char *p, **pp; dbus_bool_t b; long l; long long *llp; time_t *tp; mode_t *mp; enum cm_tdbusm_dict_value_type value_type; union cm_tdbusm_variant value; DBusMessage *rep; path = dbus_message_get_path(msg); type = cm_tdbush_classify_path(ctx, path); /* Get a pointer to the record. */ record = NULL; switch (type) { case cm_tdbush_object_type_none: case cm_tdbush_object_type_parent_of_base: case cm_tdbush_object_type_parent_of_requests: case cm_tdbush_object_type_parent_of_cas: case cm_tdbush_object_type_group_of_requests: case cm_tdbush_object_type_group_of_cas: cm_log(1, "No properties on (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; break; case cm_tdbush_object_type_base: /* no object */ record = NULL; break; case cm_tdbush_object_type_ca: ca = get_ca_for_path(ctx, path); if (ca == NULL) { cm_log(1, "No such CA (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record = (char *) ca; break; case cm_tdbush_object_type_request: entry = get_entry_for_path(ctx, path); if (entry == NULL) { cm_log(1, "No such request (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record = (char *) entry; break; } if ((record == NULL) && (type != cm_tdbush_object_type_base)) { cm_log(1, "No properties on (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } parent = talloc_new(NULL); if (cm_tdbusm_get_ss(msg, parent, &interface, &property) != 0) { cm_log(1, "Error parsing arguments.\n"); rep = dbus_message_new_error(msg, CM_DBUS_ERROR_REQUEST_BAD_ARG, _("Error parsing arguments.")); if (rep != NULL) { cm_tdbusm_set_s(rep, property); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Locate the property. */ item = NULL; for (i = 0; (map = cm_tdbush_object_type_map_get_n(i)) != NULL; i++) { if (map->cm_type != type) { continue; } iface = (*(map->cm_interface))(); if ((interface != NULL) && (strlen(interface) > 0) && (cm_name_cmp(interface, iface->cm_name) != 0)) { continue; } for (item = iface->cm_items; item != NULL; item = item->cm_next) { if (item->cm_member_type != cm_tdbush_interface_property) { continue; } prop = item->cm_property; if ((property != NULL) && (cm_name_cmp(property, prop->cm_name) != 0)) { continue; } switch (prop->cm_access) { case cm_tdbush_property_read: case cm_tdbush_property_readwrite: break; case cm_tdbush_property_write: /* not allowed! should we return an error? */ continue; break; } break; } if (item != NULL) { break; } } if (item == NULL) { rep = dbus_message_new_error(msg, CM_DBUS_ERROR_REQUEST_BAD_ARG, _("Unrecognized property name.")); if (rep != NULL) { cm_tdbusm_set_s(rep, property); dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } prop = item->cm_property; rep = dbus_message_new_method_return(msg); if (rep == NULL) { talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Read the property data and set it as an argument. */ memset(&value, 0, sizeof(value)); switch (prop->cm_local_type) { case cm_tdbush_property_char_p: record += prop->cm_offset; wpp = (char **) record; value.s = *wpp; break; case cm_tdbush_property_char_pp: record += prop->cm_offset; wppp = (char ***) record; value.as = *wppp; value.ass = *wppp; break; case cm_tdbush_property_time_t: record += prop->cm_offset; tp = (time_t *) record; value.n = *tp; break; case cm_tdbush_property_long_long: record += prop->cm_offset; llp = (long long *) record; value.n = *llp; break; case cm_tdbush_property_comma_list: record += prop->cm_offset; pp = (const char **) record; wpp = eku_splitv(record - prop->cm_offset, *pp); if (wpp != NULL) { value.as = wpp; } break; case cm_tdbush_property_mode_t: record += prop->cm_offset; mp = (mode_t *) record; value.n = *mp; break; case cm_tdbush_property_special: switch (prop->cm_bus_type) { case cm_tdbush_property_path: p = (*(prop->cm_read_string))(ctx, parent, record, property); value.s = (char *) p; break; case cm_tdbush_property_string: p = (*(prop->cm_read_string))(ctx, parent, record, property); value.s = (char *) p; break; case cm_tdbush_property_strings: pp = (*(prop->cm_read_strings))(ctx, parent, record, property); value.as = (char **) pp; break; case cm_tdbush_property_string_pairs: pp = (*(prop->cm_read_string_pairs))(ctx, parent, record, property); value.ass = (char **) pp; break; case cm_tdbush_property_boolean: b = (*(prop->cm_read_boolean))(ctx, parent, record, property); value.b = b; break; case cm_tdbush_property_number: l = (*(prop->cm_read_number))(ctx, parent, record, property); value.n = l; break; } break; } switch (prop->cm_bus_type) { case cm_tdbush_property_path: value_type = cm_tdbusm_dict_p; if ((value.s != NULL) && (strlen(value.s) > 0)) { cm_tdbusm_set_v(rep, value_type, &value); } break; case cm_tdbush_property_string: value_type = cm_tdbusm_dict_s; if (value.s != NULL) { cm_tdbusm_set_v(rep, value_type, &value); } break; case cm_tdbush_property_strings: value_type = cm_tdbusm_dict_as; cm_tdbusm_set_v(rep, value_type, &value); break; case cm_tdbush_property_string_pairs: value_type = cm_tdbusm_dict_ass; cm_tdbusm_set_v(rep, value_type, &value); break; case cm_tdbush_property_boolean: value_type = cm_tdbusm_dict_b; cm_tdbusm_set_v(rep, value_type, &value); break; case cm_tdbush_property_number: value_type = cm_tdbusm_dict_n; cm_tdbusm_set_v(rep, value_type, &value); break; } if (rep != NULL) { dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); } talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } /* org.freedesktop.DBus.Properties.Set */ static DBusHandlerResult cm_tdbush_property_set(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { const char *path; char *interface, *property; void *parent; static struct cm_tdbush_interface_map *map; struct cm_tdbush_interface *iface; struct cm_tdbush_interface_item *item; struct cm_tdbush_property *prop; enum cm_tdbush_object_type type; unsigned int i; struct cm_store_entry *entry = NULL; struct cm_store_ca *ca = NULL; char *record, *wp, **wpp, ***wppp; time_t *tp; long long *llp; mode_t *mp; DBusMessage *rep; const char *properties[2]; enum cm_tdbusm_dict_value_type value_type; union cm_tdbusm_variant v; path = dbus_message_get_path(msg); type = cm_tdbush_classify_path(ctx, path); /* Get a pointer to the record. */ record = NULL; switch (type) { case cm_tdbush_object_type_none: case cm_tdbush_object_type_parent_of_base: case cm_tdbush_object_type_parent_of_requests: case cm_tdbush_object_type_parent_of_cas: case cm_tdbush_object_type_group_of_requests: case cm_tdbush_object_type_group_of_cas: cm_log(1, "No properties on (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; break; case cm_tdbush_object_type_base: /* no object */ record = NULL; break; case cm_tdbush_object_type_ca: ca = get_ca_for_path(ctx, path); if (ca == NULL) { cm_log(1, "No such CA (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record = (char *) ca; break; case cm_tdbush_object_type_request: entry = get_entry_for_path(ctx, path); if (entry == NULL) { cm_log(1, "No such request (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record = (char *) entry; break; } if ((record == NULL) && (type != cm_tdbush_object_type_base)) { cm_log(1, "No properties on (%s).\n", path); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } parent = talloc_new(NULL); if (cm_tdbusm_get_ssv(msg, parent, &interface, &property, &value_type, &v) != 0) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Locate the property. */ item = NULL; for (i = 0; (map = cm_tdbush_object_type_map_get_n(i)) != NULL; i++) { if (map->cm_type != type) { continue; } iface = (*(map->cm_interface))(); if ((interface != NULL) && (strlen(interface) > 0) && (cm_name_cmp(interface, iface->cm_name) != 0)) { continue; } for (item = iface->cm_items; item != NULL; item = item->cm_next) { if (item->cm_member_type != cm_tdbush_interface_property) { continue; } prop = item->cm_property; if ((property != NULL) && (cm_name_cmp(property, prop->cm_name) != 0)) { continue; } switch (prop->cm_access) { case cm_tdbush_property_read: /* not allowed! should we return an error? */ continue; break; case cm_tdbush_property_readwrite: case cm_tdbush_property_write: break; } break; } if (item != NULL) { break; } } if (item == NULL) { talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } prop = item->cm_property; rep = dbus_message_new_method_return(msg); if (rep == NULL) { talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Set the property. */ switch (prop->cm_local_type) { case cm_tdbush_property_char_p: if (value_type == cm_tdbusm_dict_invalid) { v.s = NULL; } else if ((value_type != cm_tdbusm_dict_s) && (value_type != cm_tdbusm_dict_p)) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record += prop->cm_offset; wpp = (char **) record; *wpp = maybe_strdup(record - prop->cm_offset, v.s); break; case cm_tdbush_property_char_pp: if (value_type == cm_tdbusm_dict_invalid) { wpp = NULL; } else if (value_type == cm_tdbusm_dict_as) { wpp = v.as; } else if (value_type == cm_tdbusm_dict_ass) { wpp = v.ass; } else { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record += prop->cm_offset; wppp = (char ***) record; *wppp = maybe_strdupv(record - prop->cm_offset, wpp); break; case cm_tdbush_property_time_t: if (value_type == cm_tdbusm_dict_invalid) { v.n = 0; } else if (value_type != cm_tdbusm_dict_n) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record += prop->cm_offset; tp = (time_t *) record; *tp = v.n; break; case cm_tdbush_property_long_long: if (value_type == cm_tdbusm_dict_invalid) { v.n = 0; } else if (value_type != cm_tdbusm_dict_n) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record += prop->cm_offset; llp = (long long *) record; *llp = v.n; break; case cm_tdbush_property_comma_list: if (value_type == cm_tdbusm_dict_invalid) { v.as = NULL; } else if (value_type != cm_tdbusm_dict_as) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } wp = cm_submit_maybe_joinv(record, ",", v.as); record += prop->cm_offset; wpp = (char **) record; *wpp = maybe_strdup(record - prop->cm_offset, wp); break; case cm_tdbush_property_mode_t: if (value_type == cm_tdbusm_dict_invalid) { v.n = 0; } else if (value_type != cm_tdbusm_dict_n) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record += prop->cm_offset; mp = (mode_t *) record; *mp = v.n; break; case cm_tdbush_property_special: switch (prop->cm_bus_type) { case cm_tdbush_property_path: case cm_tdbush_property_string: if (value_type == cm_tdbusm_dict_invalid) { v.s = NULL; } else if ((value_type != cm_tdbusm_dict_s) && (value_type != cm_tdbusm_dict_p)) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } (*(prop->cm_write_string))(ctx, parent, record, property, v.s); break; case cm_tdbush_property_strings: if (value_type == cm_tdbusm_dict_invalid) { v.as = NULL; } else if (value_type != cm_tdbusm_dict_as) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } (*(prop->cm_write_strings))(ctx, parent, record, property, (const char **) v.as); break; case cm_tdbush_property_string_pairs: if (value_type == cm_tdbusm_dict_invalid) { v.ass = NULL; } else if (value_type != cm_tdbusm_dict_ass) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } (*(prop->cm_write_string_pairs))(ctx, parent, record, property, (const char **) v.ass); break; case cm_tdbush_property_boolean: if (value_type == cm_tdbusm_dict_invalid) { v.b = FALSE; } else if (value_type != cm_tdbusm_dict_b) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } (*(prop->cm_write_boolean))(ctx, parent, record, property, v.b); break; case cm_tdbush_property_number: if (value_type == cm_tdbusm_dict_invalid) { v.n = 0; } else if (value_type != cm_tdbusm_dict_n) { cm_log(1, "Error: arguments type mismatch.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } (*(prop->cm_write_number))(ctx, parent, record, property, v.n); break; } break; } if (rep != NULL) { dbus_connection_send(conn, rep, NULL); dbus_message_unref(rep); } switch (type) { case cm_tdbush_object_type_none: case cm_tdbush_object_type_parent_of_base: case cm_tdbush_object_type_parent_of_requests: case cm_tdbush_object_type_parent_of_cas: case cm_tdbush_object_type_group_of_requests: case cm_tdbush_object_type_group_of_cas: /* Not reached, since we returned on these earlier. */ break; case cm_tdbush_object_type_base: break; case cm_tdbush_object_type_ca: cm_store_ca_save(ca); break; case cm_tdbush_object_type_request: cm_store_entry_save(entry); break; } properties[0] = prop->cm_name; properties[1] = NULL; cm_tdbush_property_emit_changed(ctx, path, interface, properties); talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } /* compare arrays of strings for having the same set of unique members */ static int compare_strv(const char **a, const char **b) { int m, n, i, j; if ((a == NULL) && (b == NULL)) { return 0; } for (m = 0; (a != NULL) && (a[m] != NULL); m++) { continue; } for (n = 0; (b != NULL) && (b[n] != NULL); n++) { continue; } if (m != n) { return -1; } for (i = 0; i < m; i++) { for (j = 0; j < n; j++) { if (strcmp(a[i], b[j]) == 0) { break; } } if (b[j] == NULL) { return -1; } } return 0; } /* do the heavy lifting for two cases: * org.freedesktop.DBus.Properties.GetAll method (old_record is NULL) * org.freedesktop.DBus.Properties.PropertiesChanged signal (old_record is not NULL) */ static DBusHandlerResult cm_tdbush_property_get_all_or_changed(struct cm_context *ctx, DBusConnection *conn, DBusMessage *req, const char *path, const char *interface, char *old_record, const char **properties) { void *parent; static struct cm_tdbush_interface_map *map; struct cm_tdbush_interface *iface; struct cm_tdbush_interface_item *item; struct cm_tdbush_property *prop; enum cm_tdbush_object_type type; unsigned int i, j; struct cm_store_entry *entry; struct cm_store_ca *ca; char *record, *rec, *old_rec, **wpp, *ifacetmp; const char *p, **pp, ***ppp, **old_pp, *old_p, ***old_ppp; time_t *tp, *old_tp; dbus_bool_t b, old_b; long l, old_l; long long *llp, *old_llp; mode_t *mp, *old_mp; DBusMessage *rep; const struct cm_tdbusm_dict **d; struct cm_tdbusm_dict *dict, **dtmp; int n, m, n_dictvals = 0; /* If this is the method call, pull the path and interface from it. * Either way, we need to be sure we have them. */ parent = talloc_new(NULL); if (req != NULL) { path = dbus_message_get_path(req); if (cm_tdbusm_get_s(req, parent, &ifacetmp) != 0) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } interface = ifacetmp; } if (path == NULL) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } if (interface == NULL) { cm_log(1, "Error parsing arguments.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } type = cm_tdbush_classify_path(ctx, path); /* Get a pointer to the record. */ record = NULL; switch (type) { case cm_tdbush_object_type_none: case cm_tdbush_object_type_parent_of_base: case cm_tdbush_object_type_parent_of_requests: case cm_tdbush_object_type_parent_of_cas: case cm_tdbush_object_type_group_of_requests: case cm_tdbush_object_type_group_of_cas: cm_log(1, "No properties on (%s).\n", path); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; break; case cm_tdbush_object_type_base: /* no object */ record = NULL; break; case cm_tdbush_object_type_ca: ca = get_ca_for_path(ctx, path); if (ca == NULL) { cm_log(1, "No such CA (%s).\n", path); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record = (char *) ca; break; case cm_tdbush_object_type_request: entry = get_entry_for_path(ctx, path); if (entry == NULL) { cm_log(1, "No such request (%s).\n", path); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } record = (char *) entry; break; } if ((record == NULL) && (type != cm_tdbush_object_type_base)) { cm_log(1, "No properties on (%s).\n", path); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* Create the message we're sending. */ if (req != NULL) { /* GetAll method reply. */ rep = dbus_message_new_method_return(req); if (rep == NULL) { talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } } else { /* PropertiesChanged signal. */ rep = dbus_message_new_signal(path, DBUS_INTERFACE_PROPERTIES, "PropertiesChanged"); if (rep == NULL) { talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } } /* Examine all properties. */ item = NULL; n_dictvals = 0; dict = NULL; d = NULL; for (i = 0, n = 0; (map = cm_tdbush_object_type_map_get_n(i)) != NULL; i++) { if (map->cm_type != type) { continue; } iface = (*(map->cm_interface))(); if ((interface != NULL) && (strlen(interface) > 0) && (cm_name_cmp(interface, iface->cm_name) != 0)) { continue; } for (item = iface->cm_items; item != NULL; item = item->cm_next) { if (item->cm_member_type != cm_tdbush_interface_property) { continue; } prop = item->cm_property; switch (prop->cm_access) { case cm_tdbush_property_read: case cm_tdbush_property_readwrite: break; case cm_tdbush_property_write: /* nope! */ continue; break; } if (properties != NULL) { /* skip this property if we have a list of * properties to list and this one's not * included */ for (j = 0; properties[j] != NULL; j++) { if (cm_name_cmp(properties[j], prop->cm_name) == 0) { break; } } if (properties[j] == NULL) { continue; } } /* Resize the result dictionary if we need to. */ if (n + 1 >= n_dictvals) { dict = talloc_realloc(parent, dict, struct cm_tdbusm_dict, n_dictvals + 32); if (dict == NULL) { cm_log(1, "Out of memory.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } dtmp = talloc_realloc(parent, d, struct cm_tdbusm_dict *, n_dictvals + 33); d = (const struct cm_tdbusm_dict **) dtmp; if (d == NULL) { cm_log(1, "Out of memory.\n"); talloc_free(parent); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } for (m = 0; m < n; m++) { d[m] = &dict[m]; } d[n] = NULL; n_dictvals += 32; } /* Read the property data and add it to the dict. */ dict[n].key = talloc_strdup(parent, prop->cm_name); switch (prop->cm_bus_type) { case cm_tdbush_property_path: dict[n].value_type = cm_tdbusm_dict_p; break; case cm_tdbush_property_string: dict[n].value_type = cm_tdbusm_dict_s; break; case cm_tdbush_property_strings: dict[n].value_type = cm_tdbusm_dict_as; break; case cm_tdbush_property_string_pairs: dict[n].value_type = cm_tdbusm_dict_ass; break; case cm_tdbush_property_boolean: dict[n].value_type = cm_tdbusm_dict_b; break; case cm_tdbush_property_number: dict[n].value_type = cm_tdbusm_dict_n; break; } switch (prop->cm_local_type) { case cm_tdbush_property_char_p: rec = record + prop->cm_offset; pp = (const char **) rec; if (old_record != NULL) { /* if we have an old record, compare * its value to the current one, and * skip this if they're "the same" */ old_rec = old_record + prop->cm_offset; old_pp = (const char **) old_rec; if ((*pp == NULL) && (*old_pp == NULL)) { continue; } if ((*pp != NULL) && (*old_pp != NULL) && (strcmp(*pp, *old_pp) == 0)) { continue; } } if ((pp != NULL) && (*pp != NULL)) { dict[n].value.s = (char *) *pp; if ((dict[n].value.s == NULL) || (strlen(dict[n].value.s) == 0)) { if (prop->cm_bus_type == cm_tdbush_property_path) { continue; } if (prop->cm_bus_type == cm_tdbush_property_string) { dict[n].value.s = ""; } } d[n] = &dict[n]; n++; } break; case cm_tdbush_property_char_pp: rec = record + prop->cm_offset; ppp = (const char ***) rec; if (old_record != NULL) { /* if we have an old record, compare * its value to the current one, and * skip this if they're "the same" */ old_rec = old_record + prop->cm_offset; old_ppp = (const char ***) old_rec; if (compare_strv(*old_ppp, *ppp) == 0) { continue; } } if ((ppp != NULL) && (*ppp != NULL)) { dict[n].value.as = (char **) *ppp; dict[n].value.ass = (char **) *ppp; d[n] = &dict[n]; n++; } break; case cm_tdbush_property_comma_list: rec = record + prop->cm_offset; wpp = (char **) rec; if (old_record != NULL) { /* if we have an old record, compare * its value to the current one, and * skip this if they're "the same" */ old_rec = old_record + prop->cm_offset; old_pp = (const char **) old_rec; if ((*wpp == NULL) && (*old_pp == NULL)) { continue; } if ((*wpp != NULL) && (*old_pp != NULL) && (strcmp(*wpp, *old_pp) == 0)) { continue; } } wpp = eku_splitv(record, *wpp); if (wpp != NULL) { dict[n].value.as = wpp; d[n] = &dict[n]; n++; } break; case cm_tdbush_property_time_t: rec = record + prop->cm_offset; tp = (time_t *) rec; dict[n].value.n = *tp; if (old_record != NULL) { /* if we have an old record, compare * its value to the current one, and * skip this if they're "the same" */ old_rec = old_record + prop->cm_offset; old_tp = (time_t *) old_rec; if (*tp == *old_tp) { continue; } } d[n] = &dict[n]; n++; break; case cm_tdbush_property_long_long: rec = record + prop->cm_offset; llp = (long long *) rec; dict[n].value.n = *llp; if (old_record != NULL) { /* if we have an old record, compare * its value to the current one, and * skip this if they're "the same" */ old_rec = old_record + prop->cm_offset; old_llp = (long long *) old_rec; if (*llp == *old_llp) { continue; } } d[n] = &dict[n]; n++; break; case cm_tdbush_property_mode_t: rec = record + prop->cm_offset; mp = (mode_t *) rec; dict[n].value.n = *mp; if (old_record != NULL) { /* if we have an old record, compare * its value to the current one, and * skip this if they're "the same" */ old_rec = old_record + prop->cm_offset; old_mp = (mode_t *) old_rec; if (*mp == *old_mp) { continue; } } d[n] = &dict[n]; n++; break; case cm_tdbush_property_special: switch (prop->cm_bus_type) { case cm_tdbush_property_path: case cm_tdbush_property_string: p = (*(prop->cm_read_string))(ctx, parent, record, prop->cm_name); if (old_record != NULL) { /* if we have an old record, * compare its value to the * current one, and skip this * if they're "the same" */ old_p = (*(prop->cm_read_string))(ctx, parent, old_record, prop->cm_name); if ((p == NULL) && (old_p == NULL)) { continue; } if ((p != NULL) && (old_p != NULL) && (strcmp(p, old_p) == 0)) { continue; } } if ((p == NULL) || (strlen(p) == 0)) { if (prop->cm_bus_type == cm_tdbush_property_path) { continue; } if (prop->cm_bus_type == cm_tdbush_property_string) { p = ""; } } dict[n].value.s = (char *) p; d[n] = &dict[n]; n++; break; case cm_tdbush_property_strings: pp = (*(prop->cm_read_strings))(ctx, parent, record, prop->cm_name); if (old_record != NULL) { /* if we have an old record, * compare its value to the * current one, and skip this * if they're "the same" */ old_pp = (*(prop->cm_read_strings))(ctx, parent, old_record, prop->cm_name); if (compare_strv(old_pp, pp) == 0) { continue; } } if ((pp != NULL) && (*pp != NULL)) { dict[n].value.as = (char **) pp; d[n] = &dict[n]; n++; } break; case cm_tdbush_property_string_pairs: pp = (*(prop->cm_read_string_pairs))(ctx, parent, record, prop->cm_name); if (old_record != NULL) { /* if we have an old record, * compare its value to the * current one, and skip this * if they're "the same" */ old_pp = (*(prop->cm_read_string_pairs))(ctx, parent, old_record, prop->cm_name); if (compare_strv(old_pp, pp) == 0) { continue; } } if ((pp != NULL) && (*pp != NULL)) { dict[n].value.ass = (char **) pp; d[n] = &dict[n]; n++; } break; case cm_tdbush_property_boolean: b = (*(prop->cm_read_boolean))(ctx, parent, record, prop->cm_name); if (old_record != NULL) { /* if we have an old record, * compare its value to the * current one, and skip this * if they're "the same" */ old_b = (*(prop->cm_read_boolean))(ctx, parent, old_record, prop->cm_name); if (b == old_b) { continue; } } dict[n].value.b = b; d[n] = &dict[n]; n++; break; case cm_tdbush_property_number: l = (*(prop->cm_read_number))(ctx, parent, record, prop->cm_name); if (old_record != NULL) { /* if we have an old record, * compare its value to the * current one, and skip this * if they're "the same" */ old_l = (*(prop->cm_read_number))(ctx, parent, old_record, prop->cm_name); if (l == old_l) { continue; } } dict[n].value.n = l; d[n] = &dict[n]; n++; break; } break; } } } if (d != NULL) { d[n] = NULL; } if (req != NULL) { cm_tdbusm_set_d(rep, d); } else { cm_tdbusm_set_sd(rep, interface, d); } if (rep != NULL) { if ((old_record == NULL) || ((d != NULL) && (d[0] != NULL))) { dbus_connection_send(conn, rep, NULL); } dbus_message_unref(rep); } talloc_free(parent); return DBUS_HANDLER_RESULT_HANDLED; } /* org.freedesktop.DBus.Properties.GetAll */ static DBusHandlerResult cm_tdbush_property_get_all(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx) { return cm_tdbush_property_get_all_or_changed(ctx, conn, msg, NULL, NULL, NULL, NULL); } /* emit org.freedesktop.DBus.Properties.PropertiesChanged for a specific set of * properties */ DBusHandlerResult cm_tdbush_property_emit_changed(struct cm_context *ctx, const char *path, const char *interface, const char **properties) { if (cm_get_conn_ptr(ctx) == NULL) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } else { return cm_tdbush_property_get_all_or_changed(ctx, cm_get_conn_ptr(ctx), NULL, path, interface, NULL, properties); } } /* emit org.freedesktop.DBus.Properties.PropertiesChanged for the properties * which differ between the old and new entries */ void cm_tdbush_property_emit_entry_changes(struct cm_context *ctx, struct cm_store_entry *old_entry, struct cm_store_entry *new_entry) { char *path; if (cm_get_conn_ptr(ctx) != NULL) { path = talloc_asprintf(old_entry, "%s/%s", CM_DBUS_REQUEST_PATH, old_entry->cm_busname); if (path != NULL) { cm_tdbush_property_get_all_or_changed(ctx, cm_get_conn_ptr(ctx), NULL, path, CM_DBUS_REQUEST_INTERFACE, (char *) old_entry, NULL); talloc_free(path); } } } /* emit org.fedorahosted.certmonger.request.SavedCertificate, for clients whom * filtering on PropertiesChanged isn't enough */ void cm_tdbush_property_emit_entry_saved_cert(struct cm_context *ctx, struct cm_store_entry *entry) { DBusMessage *msg; char *path; if (cm_get_conn_ptr(ctx) != NULL) { path = talloc_asprintf(entry, "%s/%s", CM_DBUS_REQUEST_PATH, entry->cm_busname); if (path != NULL) { msg = dbus_message_new_signal(path, CM_DBUS_REQUEST_INTERFACE, CM_DBUS_SIGNAL_REQUEST_CERT_SAVED); if (msg != NULL) { dbus_connection_send(cm_get_conn_ptr(ctx), msg, NULL); dbus_message_unref(msg); } talloc_free(path); } } } /* emit org.freedesktop.DBus.Properties.PropertiesChanged for the properties * which differ between the old and new CAs */ void cm_tdbush_property_emit_ca_changes(struct cm_context *ctx, struct cm_store_ca *old_ca, struct cm_store_ca *new_ca) { char *path; if (cm_get_conn_ptr(ctx) != NULL) { path = talloc_asprintf(old_ca, "%s/%s", CM_DBUS_CA_PATH, old_ca->cm_busname); if (path != NULL) { cm_tdbush_property_get_all_or_changed(ctx, cm_get_conn_ptr(ctx), NULL, path, CM_DBUS_CA_INTERFACE, (char *) old_ca, NULL); talloc_free(path); } } } /* interface for org.freedesktop.DBus.Introspectable */ static struct cm_tdbush_interface * cm_tdbush_iface_introspection(void) { static struct cm_tdbush_interface *ret; if (ret == NULL) { ret = make_interface(DBUS_INTERFACE_INTROSPECTABLE, make_interface_item(cm_tdbush_interface_method, make_method("Introspect", cm_tdbush_introspect, make_method_arg("xml_data", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), NULL)); } return ret; } /* interface for org.freedesktop.DBus.Properties */ static struct cm_tdbush_interface * cm_tdbush_iface_properties(void) { static struct cm_tdbush_interface *ret; if (ret == NULL) { ret = make_interface(DBUS_INTERFACE_PROPERTIES, make_interface_item(cm_tdbush_interface_method, make_method("Get", cm_tdbush_property_get, make_method_arg("interface_name", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("property_name", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("value", DBUS_TYPE_VARIANT_AS_STRING, cm_tdbush_method_arg_out, NULL))), NULL), make_interface_item(cm_tdbush_interface_method, make_method("Set", cm_tdbush_property_set, make_method_arg("interface_name", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("property_name", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("value", DBUS_TYPE_VARIANT_AS_STRING, cm_tdbush_method_arg_in, NULL))), NULL), make_interface_item(cm_tdbush_interface_method, make_method("GetAll", cm_tdbush_property_get_all, make_method_arg("interface_name", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("props", DBUS_TYPE_ARRAY_AS_STRING DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_VARIANT_AS_STRING DBUS_DICT_ENTRY_END_CHAR_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), make_interface_item(cm_tdbush_interface_signal, make_signal("PropertiesChanged", make_signal_arg("interface_name", DBUS_TYPE_STRING_AS_STRING, make_signal_arg("changed_properties", DBUS_TYPE_ARRAY_AS_STRING DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_VARIANT_AS_STRING DBUS_DICT_ENTRY_END_CHAR_AS_STRING, make_signal_arg("invalidated_properties", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, NULL)))), NULL))))); } return ret; } /* interface for org.freedesktop.certmonger.request */ static struct cm_tdbush_interface * cm_tdbush_iface_request(void) { static struct cm_tdbush_interface *ret; if (ret == NULL) { ret = make_interface(CM_DBUS_REQUEST_INTERFACE, make_interface_item(cm_tdbush_interface_method, make_method("get_nickname", request_get_nickname, make_method_arg("nickname", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_NICKNAME, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_nickname), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_autorenew", request_get_autorenew, make_method_arg("enabled", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_AUTORENEW, cm_tdbush_property_boolean, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, NULL, request_prop_get_autorenew, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_cert_data", request_get_cert_data, make_method_arg("pem", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_cert), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, make_member_annotation("org.freedesktop.DBus.Property.EmitsChangedSignal", "true", NULL)), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_CHAIN, cm_tdbush_property_string_pairs, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, ca_prop_get_nickcerts, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_ROOTS, cm_tdbush_property_string_pairs, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, ca_prop_get_nickcerts, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_cert_info", request_get_cert_info, make_method_arg("issuer", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("serial_hex", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("subject", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("not_after", DBUS_TYPE_INT64_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("email", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("dns", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("principal_names", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("key_usage", DBUS_TYPE_INT64_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("extended_key_usage", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL))))))))), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_ISSUER, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_cert_issuer), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_SERIAL, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_cert_serial), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_SUBJECT, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_cert_subject), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_NOT_VALID_BEFORE, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_time_t, offsetof(struct cm_store_entry, cm_cert_not_before), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_NOT_VALID_AFTER, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_time_t, offsetof(struct cm_store_entry, cm_cert_not_after), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_EMAIL, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_cert_email), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_KU, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_cert_ku), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_EKU, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_comma_list, offsetof(struct cm_store_entry, cm_cert_eku), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_HOSTNAME, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_cert_hostname), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_PRINCIPAL, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_cert_principal), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_cert_last_checked", request_get_cert_last_checked, make_method_arg("date", DBUS_TYPE_INT64_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_LAST_CHECKED, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_time_t, offsetof(struct cm_store_entry, cm_last_need_notify_check), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_cert_storage_info", request_get_cert_storage_info, make_method_arg("type", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("location_or_nickname", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("nss_token", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL))), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_LOCATION_TYPE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_cert_location_type, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_LOCATION_FILE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_cert_location_file, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_LOCATION_DATABASE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_cert_location_database, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_LOCATION_NICKNAME, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_cert_location_nickname, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_LOCATION_TOKEN, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_cert_location_token, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_OWNER, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_cert_owner), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_PERMS, cm_tdbush_property_number, cm_tdbush_property_readwrite, cm_tdbush_property_mode_t, offsetof(struct cm_store_entry, cm_cert_perms), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_csr_data", request_get_csr_data, make_method_arg("pem", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CSR, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_csr), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_csr_info", request_get_csr_info, make_method_arg("subject", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("email", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("dns", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("principal_names", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("key_usage", DBUS_TYPE_INT64_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("extended_key_usage", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL)))))), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_PIN, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_special, 0, request_prop_get_key_pin, NULL, NULL, NULL, NULL, request_prop_set_key_pin, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_PIN_FILE, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_special, 0, request_prop_get_key_pin_file, NULL, NULL, NULL, NULL, request_prop_set_key_pin_file, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_GEN_DATE, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_time_t, offsetof(struct cm_store_entry, cm_key_generated_date), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_ISSUED_COUNT, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, NULL, NULL, request_prop_get_key_issued_count, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_SUBJECT, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_template_subject), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_EMAIL, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_template_email), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_KU, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_template_ku), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_EKU, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_comma_list, offsetof(struct cm_store_entry, cm_template_eku), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_HOSTNAME, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_template_hostname), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_PRINCIPAL, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_template_principal), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_IP_ADDRESS, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_template_ipaddress), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_IS_CA, cm_tdbush_property_boolean, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, NULL, request_prop_get_template_is_ca, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_CA_PATH_LENGTH, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, NULL, NULL, request_prop_get_template_ca_path_length, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_OCSP, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_template_ocsp_location), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_CRL_DP, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_template_crl_distribution_point), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_FRESHEST_CRL, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_template_freshest_crl), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_NS_COMMENT, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_template_ns_comment), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_PROFILE, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_template_profile), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_NS_CERTTYPE, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_template_ns_certtype), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_special, 0, request_prop_get_challenge_password, NULL, NULL, NULL, NULL, request_prop_set_challenge_password, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_special, 0, request_prop_get_challenge_password_file, NULL, NULL, NULL, NULL, request_prop_set_challenge_password_file, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_key_pin", request_get_key_pin, make_method_arg("pin", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_key_pin_file", request_get_key_pin_file, make_method_arg("pin_file", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_key_storage_info", request_get_key_storage_info, make_method_arg("type", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("location_or_nickname", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("nss_token", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL))), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_LOCATION_TYPE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_key_location_type, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_LOCATION_FILE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_key_location_file, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_LOCATION_DATABASE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_key_location_database, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_LOCATION_NICKNAME, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_key_location_nickname, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_LOCATION_TOKEN, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_key_location_token, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_OWNER, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_key_owner), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_PERMS, cm_tdbush_property_number, cm_tdbush_property_readwrite, cm_tdbush_property_mode_t, offsetof(struct cm_store_entry, cm_key_perms), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_key_type_and_size", request_get_key_type_and_size, make_method_arg("type", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("size", DBUS_TYPE_INT64_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_TYPE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_key_type, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_KEY_SIZE, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, NULL, NULL, request_prop_get_key_size, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_monitoring", request_get_monitoring, make_method_arg("enabled", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_MONITORING, cm_tdbush_property_boolean, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, NULL, request_prop_get_monitoring, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_notification_info", request_get_notification_info, make_method_arg("method", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("destination", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_NOTIFICATION_TYPE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_notification_type, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_NOTIFICATION_SYSLOG_PRIORITY, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_notification_syslog, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_NOTIFICATION_EMAIL, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_notification_email, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_NOTIFICATION_COMMAND, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_notification_command, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_status", request_get_status, make_method_arg("state", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("blocked", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_STATUS, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_status, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_STUCK, cm_tdbush_property_boolean, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, NULL, request_prop_get_stuck, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_ca", request_get_ca, make_method_arg("name", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA, cm_tdbush_property_path, cm_tdbush_property_read, cm_tdbush_property_special, 0, request_prop_get_ca, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_PROFILE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_cert_profile), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_ROOT_CERT_FILES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_root_cert_store_files), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_ROOT_CERT_FILES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_other_root_cert_store_files), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_CERT_FILES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_other_cert_store_files), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_ROOT_CERT_NSSDBS, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_root_cert_store_nssdbs), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_other_root_cert_store_nssdbs), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_CERT_NSSDBS, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_entry, cm_other_cert_store_nssdbs), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_submitted_cookie", request_get_submitted_cookie, make_method_arg("cookie", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_COOKIE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_ca_cookie), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_ca_error", request_get_ca_error, make_method_arg("text", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_ERROR, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_ca_error), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_submitted_date", request_get_submitted_date, make_method_arg("date", DBUS_TYPE_INT64_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_SUBMITTED_DATE, cm_tdbush_property_number, cm_tdbush_property_read, cm_tdbush_property_time_t, offsetof(struct cm_store_entry, cm_submitted), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("modify", request_modify, make_method_arg("updates", DBUS_TYPE_ARRAY_AS_STRING DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_VARIANT_AS_STRING DBUS_DICT_ENTRY_END_CHAR_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("status", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("path", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL))), NULL), make_interface_item(cm_tdbush_interface_method, make_method("rekey", request_rekey, make_method_arg("working", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("resubmit", request_resubmit, make_method_arg("working", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("refresh", request_refresh, make_method_arg("working", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_PRESAVE_COMMAND, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_pre_certsave_command), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_PRESAVE_UID, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_pre_certsave_uid), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_POSTSAVE_COMMAND, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_post_certsave_command), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CERT_POSTSAVE_UID, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_entry, cm_post_certsave_uid), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_signal, make_signal(CM_DBUS_SIGNAL_REQUEST_CERT_SAVED, NULL), NULL))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))); } return ret; } /* interface for org.freedesktop.certmonger.ca */ static struct cm_tdbush_interface * cm_tdbush_iface_ca(void) { static struct cm_tdbush_interface *ret; if (ret == NULL) { ret = make_interface(CM_DBUS_CA_INTERFACE, make_interface_item(cm_tdbush_interface_method, make_method("get_nickname", ca_get_nickname, make_method_arg("nickname", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_NICKNAME, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_nickname), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_AKA, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_aka), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_is_default", ca_get_is_default, make_method_arg("default", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_IS_DEFAULT, cm_tdbush_property_boolean, cm_tdbush_property_readwrite, cm_tdbush_property_special, 0, NULL, NULL, NULL, ca_prop_get_is_default, NULL, NULL, NULL, NULL, ca_prop_set_is_default, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_type", ca_get_type, make_method_arg("type", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_serial", ca_get_serial, make_method_arg("serial_hex", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_location", ca_get_location, make_method_arg("path", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_EXTERNAL_HELPER, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_special, 0, ca_prop_get_external_helper, NULL, NULL, NULL, NULL, ca_prop_set_external_helper, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_issuer_names", ca_get_issuer_names, make_method_arg("names", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("refresh", ca_refresh, make_method_arg("working", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_ERROR, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_error), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_ISSUER_NAMES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_known_issuer_names), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_ROOT_CERTS, cm_tdbush_property_string_pairs, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, ca_prop_get_nickcerts, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_ROOT_CERTS, cm_tdbush_property_string_pairs, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, ca_prop_get_nickcerts, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_CERTS, cm_tdbush_property_string_pairs, cm_tdbush_property_read, cm_tdbush_property_special, 0, NULL, NULL, ca_prop_get_nickcerts, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_REQUIRED_ENROLL_ATTRIBUTES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_required_enroll_attributes), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_REQUIRED_RENEW_ATTRIBUTES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_required_renewal_attributes), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_SUPPORTED_PROFILES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_profiles), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_DEFAULT_PROFILE, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_default_profile), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_ROOT_CERT_FILES, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_root_cert_store_files), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_ROOT_CERT_FILES, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_other_root_cert_store_files), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_CERT_FILES, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_other_cert_store_files), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_ROOT_CERT_NSSDBS, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_root_cert_store_nssdbs), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_other_root_cert_store_nssdbs), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_OTHER_CERT_NSSDBS, cm_tdbush_property_strings, cm_tdbush_property_readwrite, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_other_cert_store_nssdbs), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_PRESAVE_COMMAND, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_pre_save_command), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_PRESAVE_UID, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_pre_save_uid), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_POSTSAVE_COMMAND, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_post_save_command), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_CA_POSTSAVE_UID, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_post_save_uid), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_SCEP_CA_IDENTIFIER, cm_tdbush_property_string, cm_tdbush_property_readwrite, cm_tdbush_property_special, 0, ca_prop_get_scep_ca_identifier, NULL, NULL, NULL, NULL, ca_prop_set_scep_ca_identifier, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_SCEP_CA_CAPABILITIES, cm_tdbush_property_strings, cm_tdbush_property_read, cm_tdbush_property_char_pp, offsetof(struct cm_store_ca, cm_ca_capabilities), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_SCEP_RA_CERT, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_encryption_cert), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_SCEP_CA_CERT, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_encryption_issuer_cert), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), make_interface_item(cm_tdbush_interface_property, make_property(CM_DBUS_PROP_SCEP_OTHER_CERTS, cm_tdbush_property_string, cm_tdbush_property_read, cm_tdbush_property_char_p, offsetof(struct cm_store_ca, cm_ca_encryption_cert_pool), NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL), NULL)))))))))))))))))))))))))))))))))))); } return ret; } /* interface for org.freedesktop.certmonger */ static struct cm_tdbush_interface * cm_tdbush_iface_base(void) { static struct cm_tdbush_interface *ret; if (ret == NULL) { ret = make_interface(CM_DBUS_BASE_INTERFACE, make_interface_item(cm_tdbush_interface_method, make_method("add_known_ca", base_add_known_ca, make_method_arg("nickname", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("command", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("known_names", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("status", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("name", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL))))), NULL), make_interface_item(cm_tdbush_interface_method, make_method("add_request", base_add_request, make_method_arg("template", DBUS_TYPE_ARRAY_AS_STRING DBUS_DICT_ENTRY_BEGIN_CHAR_AS_STRING DBUS_TYPE_STRING_AS_STRING DBUS_TYPE_VARIANT_AS_STRING DBUS_DICT_ENTRY_END_CHAR_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("status", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, make_method_arg("name", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL))), NULL), make_interface_item(cm_tdbush_interface_method, make_method("find_ca_by_nickname", base_find_ca_by_nickname, make_method_arg("nickname", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("ca", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), make_interface_item(cm_tdbush_interface_method, make_method("find_request_by_nickname", base_find_request_by_nickname, make_method_arg("nickname", DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("request", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_known_cas", base_get_known_cas, make_method_arg("ca_list", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_requests", base_get_requests, make_method_arg("requests", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_supported_key_types", base_get_supported_key_types, make_method_arg("key_type_list", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_supported_key_storage", base_get_supported_key_storage, make_method_arg("key_storage_type_list", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("get_supported_cert_storage", base_get_supported_cert_storage, make_method_arg("cert_storage_type_list", DBUS_TYPE_ARRAY_AS_STRING DBUS_TYPE_STRING_AS_STRING, cm_tdbush_method_arg_out, NULL), NULL), make_interface_item(cm_tdbush_interface_method, make_method("remove_known_ca", base_remove_known_ca, make_method_arg("ca", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("status", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), make_interface_item(cm_tdbush_interface_method, make_method("remove_request", base_remove_request, make_method_arg("request", DBUS_TYPE_OBJECT_PATH_AS_STRING, cm_tdbush_method_arg_in, make_method_arg("status", DBUS_TYPE_BOOLEAN_AS_STRING, cm_tdbush_method_arg_out, NULL)), NULL), NULL)))))))))))); } return ret; } /* map object types to an get-interface functions */ struct cm_tdbush_interface_map cm_tdbush_object_type_map[] = { {cm_tdbush_object_type_parent_of_base, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_base, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_base, &cm_tdbush_iface_properties}, {cm_tdbush_object_type_base, &cm_tdbush_iface_base}, {cm_tdbush_object_type_parent_of_cas, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_group_of_cas, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_ca, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_ca, &cm_tdbush_iface_properties}, {cm_tdbush_object_type_ca, &cm_tdbush_iface_ca}, {cm_tdbush_object_type_parent_of_requests, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_group_of_requests, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_request, &cm_tdbush_iface_introspection}, {cm_tdbush_object_type_request, &cm_tdbush_iface_properties}, {cm_tdbush_object_type_request, &cm_tdbush_iface_request}, }; static struct cm_tdbush_interface_map * cm_tdbush_object_type_map_get_n(unsigned int i) { if (i < (sizeof(cm_tdbush_object_type_map) / sizeof(cm_tdbush_object_type_map[0]))) { return cm_tdbush_object_type_map + i; } else { return NULL; } } static enum cm_tdbush_object_type cm_tdbush_classify_path(struct cm_context *ctx, const char *path) { int basepathlen = strlen(CM_DBUS_BASE_PATH); int capathlen = strlen(CM_DBUS_CA_PATH); int reqpathlen = strlen(CM_DBUS_REQUEST_PATH); int pathlen = strlen(path); /* Base is just a name, so check for it first. */ if (strcmp(path, CM_DBUS_BASE_PATH) == 0) { return cm_tdbush_object_type_base; } /* The group of requests is just a name, so check for it. */ if (strcmp(path, CM_DBUS_REQUEST_PATH) == 0) { return cm_tdbush_object_type_group_of_requests; } /* The group of CAs is just a name, so check for it. */ if (strcmp(path, CM_DBUS_CA_PATH) == 0) { return cm_tdbush_object_type_group_of_cas; } /* Check for things above the base node. */ if ((strcmp(path, "/") == 0) || ((pathlen < basepathlen) && (strncmp(path, CM_DBUS_BASE_PATH, pathlen) == 0) && (CM_DBUS_BASE_PATH[pathlen] == '/'))) { return cm_tdbush_object_type_parent_of_base; } /* Check for things above the request group node. */ if (((pathlen < reqpathlen) && (strncmp(path, CM_DBUS_REQUEST_PATH, pathlen) == 0) && (CM_DBUS_REQUEST_PATH[pathlen] == '/'))) { return cm_tdbush_object_type_parent_of_requests; } /* Check for things above the CA group node. */ if (((pathlen < capathlen) && (strncmp(path, CM_DBUS_CA_PATH, pathlen) == 0) && (CM_DBUS_CA_PATH[pathlen] == '/'))) { return cm_tdbush_object_type_parent_of_cas; } /* Check if it names a request. */ if ((pathlen > reqpathlen) && (strncmp(path, CM_DBUS_REQUEST_PATH, reqpathlen) == 0) && (path[reqpathlen] == '/') && (cm_get_entry_by_busname(ctx, path + reqpathlen + 1) != NULL)) { return cm_tdbush_object_type_request; } /* Check if it names a CA. */ if ((pathlen > capathlen) && (strncmp(path, CM_DBUS_CA_PATH, capathlen) == 0) && (path[capathlen] == '/') && (cm_get_ca_by_busname(ctx, path + capathlen + 1) != NULL)) { return cm_tdbush_object_type_ca; } /* It's not classifiable. */ return cm_tdbush_object_type_none; } /* the list of method calls that we've made that we haven't yet received * responses for, and the methods to invoke once we've gotten responses for our * outstanding requests */ struct cm_tdbush_pending_call { DBusMessage *cm_msg; const char *cm_path, *cm_interface, *cm_method; enum cm_tdbush_object_type cm_type; DBusHandlerResult (*cm_fn)(DBusConnection *conn, DBusMessage *msg, struct cm_client_info *ci, struct cm_context *ctx); dbus_bool_t cm_know_uid; /* GetConnectionUnixUser replied? */ dbus_uint32_t cm_pending_uid; /* pending GetConnectionUnixUser call */ dbus_bool_t cm_know_pid; /* GetConnectionUnixProcessID replied? */ dbus_uint32_t cm_pending_pid; /* pending GetConnectionUnixProcessID call */ uid_t cm_uid; pid_t cm_pid; struct cm_tdbush_pending_call *cm_next; } *cm_pending_calls; /* read the UID and PID of a directly-connected client */ static int cm_tdbush_read_conn_id(DBusConnection *conn, uid_t *uid, pid_t *pid) { unsigned long utmp, ptmp; if (!dbus_connection_get_unix_user(conn, &utmp) || !dbus_connection_get_unix_process_id(conn, &ptmp)) { return -1; } *uid = utmp; *pid = ptmp; return 0; } /* handle a method call by either asserting that we don't support a method, or * by asking for information about the caller */ DBusHandlerResult cm_tdbush_handle_method_call(DBusConnection *conn, DBusMessage *msg, enum cm_tdbus_type bus, struct cm_context *ctx) { struct cm_tdbush_pending_call pending, *tmp; struct cm_tdbush_interface *iface; struct cm_tdbush_interface_item *item; struct cm_tdbush_method *meth; struct cm_client_info self; unsigned int i; memset(&pending, 0, sizeof(pending)); pending.cm_msg = dbus_message_ref(msg); pending.cm_path = dbus_message_get_path(pending.cm_msg); pending.cm_interface = dbus_message_get_interface(pending.cm_msg); pending.cm_method = dbus_message_get_member(pending.cm_msg); pending.cm_type = cm_tdbush_classify_path(ctx, pending.cm_path); pending.cm_know_uid = FALSE; pending.cm_uid = (uid_t) -1; pending.cm_know_pid = FALSE; pending.cm_pid = (pid_t) -1; for (i = 0; i < sizeof(cm_tdbush_object_type_map) / sizeof(cm_tdbush_object_type_map[i]); i++) { if (cm_tdbush_object_type_map[i].cm_type != pending.cm_type) { continue; } iface = (*((cm_tdbush_object_type_map[i]).cm_interface))(); if ((pending.cm_interface != NULL) && (cm_name_cmp(iface->cm_name, pending.cm_interface) != 0)) { continue; } for (item = iface->cm_items; item != NULL; item = item->cm_next) { if (item->cm_member_type != cm_tdbush_interface_method) { continue; } meth = item->cm_method; if (cm_name_cmp(meth->cm_name, pending.cm_method) != 0) { continue; } /* found it */ pending.cm_fn = meth->cm_fn; /* "private": no bus daemon, so identify the client */ if (bus == cm_tdbus_private) { /* just run the method */ if (cm_tdbush_read_conn_id(conn, &pending.cm_uid, &pending.cm_pid) != 0) { cm_log(4, "Error reading client ID, " "ignoring.\n"); } else { pending.cm_know_uid = TRUE; pending.cm_know_pid = TRUE; if (pending.cm_uid != getuid()) { cm_log(4, "Client's UID is " "not the same as ours, " "ignoring.\n"); } else { cm_log(4, "User ID %lu PID %lu " "called %s:%s.%s.\n", (unsigned long) pending.cm_uid, (unsigned long) pending.cm_pid, pending.cm_path, pending.cm_interface, pending.cm_method); (*meth->cm_fn)(conn, pending.cm_msg, &self, ctx); } } dbus_message_unref(pending.cm_msg); cm_reset_timeout(ctx); return DBUS_HANDLER_RESULT_HANDLED; } /* "public": go ask the daemon who the client is */ tmp = talloc_ptrtype(NULL, tmp); if (tmp != NULL) { memset(tmp, 0, sizeof(*tmp)); /* we need to know who this is */ msg = dbus_message_new_method_call(DBUS_SERVICE_DBUS, DBUS_PATH_DBUS, DBUS_INTERFACE_DBUS, "GetConnectionUnixUser"); if (msg != NULL) { cm_tdbusm_set_s(msg, dbus_message_get_sender(pending.cm_msg)); if (!dbus_connection_send(conn, msg, &pending.cm_pending_uid)) { cm_log(4, "Error calling GetConnectionUnixUser\n"); talloc_free(tmp); tmp = NULL; } dbus_message_unref(msg); } msg = dbus_message_new_method_call(DBUS_SERVICE_DBUS, DBUS_PATH_DBUS, DBUS_INTERFACE_DBUS, "GetConnectionUnixProcessID"); if (msg != NULL) { cm_tdbusm_set_s(msg, dbus_message_get_sender(pending.cm_msg)); if (!dbus_connection_send(conn, msg, &pending.cm_pending_pid)) { cm_log(4, "Error calling GetConnectionUnixProcessID\n"); talloc_free(tmp); tmp = NULL; } dbus_message_unref(msg); } if (tmp != NULL) { *tmp = pending; tmp->cm_next = cm_pending_calls; cm_pending_calls = tmp; cm_log(4, "Pending GetConnectionUnixUser serial %lu\n", (unsigned long) pending.cm_pending_uid); cm_log(4, "Pending GetConnectionUnixProcessID serial %lu\n", (unsigned long) pending.cm_pending_pid); cm_reset_timeout(ctx); return DBUS_HANDLER_RESULT_HANDLED; } } dbus_message_unref(pending.cm_msg); cm_reset_timeout(ctx); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } if (item == NULL) { continue; } } dbus_message_unref(pending.cm_msg); cm_reset_timeout(ctx); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } DBusHandlerResult cm_tdbush_handle_method_return(DBusConnection *conn, DBusMessage *msg, enum cm_tdbus_type bus, struct cm_context *ctx) { struct cm_tdbush_pending_call **p, *call = NULL, *next = NULL; dbus_uint32_t serial; struct cm_client_info client_info; long uid, pid; serial = dbus_message_get_reply_serial(msg); /* figure out which of our pending calls this goes with */ for (p = &cm_pending_calls; (p != NULL) && (*p != NULL); p = &((*p)->cm_next)) { call = *p; next = call->cm_next; if (call->cm_pending_uid == serial) { if (cm_tdbusm_get_n(msg, call, &uid) != 0) { cm_log(1, "Result error from GetConnectionUnixUser().\n"); dbus_message_unref(call->cm_msg); talloc_free(call); *p = next; return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } call->cm_uid = uid; call->cm_know_uid = TRUE; break; } if (call->cm_pending_pid == serial) { if (cm_tdbusm_get_n(msg, call, &pid) != 0) { cm_log(1, "Result error from GetConnectionUnixProcessID().\n"); dbus_message_unref(call->cm_msg); talloc_free(call); *p = next; return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } call->cm_pid = pid; call->cm_know_pid = TRUE; break; } } if ((p == NULL) || (*p == NULL)) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } /* do we know enough now? if not, we're done here */ if (!call->cm_know_uid || !call->cm_know_pid) { return DBUS_HANDLER_RESULT_HANDLED; } /* actually run the method */ cm_log(4, "User ID %lu PID %lu called %s:%s.%s.\n", (unsigned long) call->cm_uid, (unsigned long) call->cm_pid, call->cm_path, call->cm_interface, call->cm_method); client_info.uid = call->cm_uid; client_info.pid = call->cm_pid; (*call->cm_fn)(conn, call->cm_msg, &client_info, ctx); /* remove the pending call record */ dbus_message_unref(call->cm_msg); talloc_free(call); *p = next; cm_reset_timeout(ctx); return DBUS_HANDLER_RESULT_HANDLED; } certmonger-0.78.6/src/tdbus.h0000664000175000017500000001621512645513264013002 00000000000000/* * Copyright (C) 2009,2011,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmtdbus_h #define cmtdbus_h #define CM_DBUS_BASE_INTERFACE CM_DBUS_NAME #define CM_DBUS_DEFAULT_BUS cm_tdbus_system #define CM_DBUS_CA_PATH CM_DBUS_BASE_PATH "/cas" #define CM_DBUS_CA_INTERFACE CM_DBUS_BASE_INTERFACE ".ca" #define CM_DBUS_REQUEST_PATH CM_DBUS_BASE_PATH "/requests" #define CM_DBUS_REQUEST_INTERFACE CM_DBUS_BASE_INTERFACE ".request" #define CM_DBUS_ERROR_BASE CM_DBUS_BASE_INTERFACE #define CM_DBUS_ERROR_CA CM_DBUS_ERROR_BASE ".ca" #define CM_DBUS_ERROR_REQUEST CM_DBUS_ERROR_BASE ".request" #define CM_DBUS_ERROR_BASE_INTERNAL CM_DBUS_ERROR_BASE ".internal" #define CM_DBUS_ERROR_BASE_MISSING_ARG CM_DBUS_ERROR_BASE ".missing_arg" #define CM_DBUS_ERROR_BASE_BAD_ARG CM_DBUS_ERROR_BASE ".bad_arg" #define CM_DBUS_ERROR_BASE_DUPLICATE CM_DBUS_ERROR_BASE ".duplicate" #define CM_DBUS_ERROR_BASE_NO_SUCH_ENTRY CM_DBUS_ERROR_BASE ".no_such_entry" #define CM_DBUS_ERROR_CA_INTERNAL CM_DBUS_ERROR_CA ".internal" #define CM_DBUS_ERROR_REQUEST_INTERNAL CM_DBUS_ERROR_REQUEST ".internal" #define CM_DBUS_ERROR_REQUEST_BAD_ARG CM_DBUS_ERROR_REQUEST ".bad_arg" #define CM_DBUS_PROP_NICKNAME "nickname" #define CM_DBUS_PROP_AUTORENEW "autorenew" #define CM_DBUS_PROP_CERT "cert" #define CM_DBUS_PROP_CERT_CHAIN "cert-chain" #define CM_DBUS_PROP_CERT_ROOTS "cert-roots" #define CM_DBUS_PROP_CERT_PRESAVE_COMMAND "cert-presave-command" #define CM_DBUS_PROP_CERT_PRESAVE_UID "cert-presave-uid" #define CM_DBUS_PROP_CERT_POSTSAVE_COMMAND "cert-postsave-command" #define CM_DBUS_PROP_CERT_POSTSAVE_UID "cert-postsave-uid" #define CM_DBUS_PROP_CERT_ISSUER "issuer" #define CM_DBUS_PROP_CERT_SERIAL "serial" #define CM_DBUS_PROP_CERT_SUBJECT "subject" #define CM_DBUS_PROP_CERT_NOT_VALID_BEFORE "not-valid-before" #define CM_DBUS_PROP_CERT_NOT_VALID_AFTER "not-valid-after" #define CM_DBUS_PROP_CERT_EMAIL "email" #define CM_DBUS_PROP_CERT_KU "ku" #define CM_DBUS_PROP_CERT_EKU "eku" #define CM_DBUS_PROP_CERT_HOSTNAME "hostname" #define CM_DBUS_PROP_CERT_PRINCIPAL "principal" #define CM_DBUS_PROP_CERT_LAST_CHECKED "last-checked" #define CM_DBUS_PROP_CERT_LOCATION_TYPE "cert-storage" #define CM_DBUS_PROP_CERT_LOCATION_FILE "cert-file" #define CM_DBUS_PROP_CERT_LOCATION_DATABASE "cert-database" #define CM_DBUS_PROP_CERT_LOCATION_NICKNAME "cert-nickname" #define CM_DBUS_PROP_CERT_LOCATION_TOKEN "cert-token" #define CM_DBUS_PROP_CERT_OWNER "cert-owner" #define CM_DBUS_PROP_CERT_PERMS "cert-perms" #define CM_DBUS_PROP_CSR "csr" #define CM_DBUS_PROP_TEMPLATE_SUBJECT "template-subject" #define CM_DBUS_PROP_TEMPLATE_EMAIL "template-email" #define CM_DBUS_PROP_TEMPLATE_KU "template-ku" #define CM_DBUS_PROP_TEMPLATE_EKU "template-eku" #define CM_DBUS_PROP_TEMPLATE_HOSTNAME "template-hostname" #define CM_DBUS_PROP_TEMPLATE_PRINCIPAL "template-principal" #define CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD "template-challenge-password" #define CM_DBUS_PROP_TEMPLATE_CHALLENGE_PASSWORD_FILE "template-challenge-password-file" #define CM_DBUS_PROP_KEY_LOCATION_TYPE "key-storage" #define CM_DBUS_PROP_KEY_LOCATION_FILE "key-file" #define CM_DBUS_PROP_KEY_LOCATION_DATABASE "key-database" #define CM_DBUS_PROP_KEY_LOCATION_NICKNAME "key-nickname" #define CM_DBUS_PROP_KEY_LOCATION_TOKEN "key-token" #define CM_DBUS_PROP_KEY_OWNER "key-owner" #define CM_DBUS_PROP_KEY_PERMS "key-perms" #define CM_DBUS_PROP_KEY_TYPE "key-type" #define CM_DBUS_PROP_KEY_SIZE "key-size" #define CM_DBUS_PROP_MONITORING "monitoring" #define CM_DBUS_PROP_NOTIFICATION_TYPE "notification-type" #define CM_DBUS_PROP_NOTIFICATION_SYSLOG_PRIORITY "notification-syslog-priority" #define CM_DBUS_PROP_NOTIFICATION_EMAIL "notification-email" #define CM_DBUS_PROP_NOTIFICATION_COMMAND "notification-command" #define CM_DBUS_PROP_KEY_PIN_FILE "key-pin-file" #define CM_DBUS_PROP_KEY_PIN "key-pin" #define CM_DBUS_PROP_KEY_GEN_DATE "key-generated-date" #define CM_DBUS_PROP_KEY_ISSUED_COUNT "key-issued-count" #define CM_DBUS_PROP_STATUS "status" #define CM_DBUS_PROP_STUCK "stuck" #define CM_DBUS_PROP_CA "ca" #define CM_DBUS_PROP_CA_PROFILE "ca-profile" #define CM_DBUS_PROP_CA_COOKIE "ca-cookie" #define CM_DBUS_PROP_CA_ERROR "ca-error" #define CM_DBUS_PROP_SUBMITTED_DATE "submitted-date" #define CM_DBUS_PROP_IS_DEFAULT "is-default" #define CM_DBUS_PROP_EXTERNAL_HELPER "external-helper" #define CM_DBUS_PROP_ISSUER_NAMES "issuer-names" #define CM_DBUS_PROP_TEMPLATE_IP_ADDRESS "template-ip-address" #define CM_DBUS_PROP_TEMPLATE_IS_CA "template-is-ca" #define CM_DBUS_PROP_TEMPLATE_CA_PATH_LENGTH "template-ca-path-length" #define CM_DBUS_PROP_TEMPLATE_OCSP "template-ocsp" #define CM_DBUS_PROP_TEMPLATE_CRL_DP "template-crldp" #define CM_DBUS_PROP_TEMPLATE_FRESHEST_CRL "template-freshest-crl" #define CM_DBUS_PROP_TEMPLATE_NS_COMMENT "template-ns-comment" #define CM_DBUS_PROP_TEMPLATE_PROFILE "template-profile" #define CM_DBUS_PROP_TEMPLATE_NS_CERTTYPE "template-ns-certtype" #define CM_DBUS_SIGNAL_REQUEST_CERT_SAVED "SavedCertificate" #define CM_DBUS_PROP_CA_PRESAVE_COMMAND "ca-presave-command" #define CM_DBUS_PROP_CA_PRESAVE_UID "ca-presave-uid" #define CM_DBUS_PROP_CA_POSTSAVE_COMMAND "ca-postsave-command" #define CM_DBUS_PROP_CA_POSTSAVE_UID "ca-postsave-uid" #define CM_DBUS_PROP_ROOT_CERTS "root-certs" #define CM_DBUS_PROP_OTHER_ROOT_CERTS "root-other-certs" #define CM_DBUS_PROP_OTHER_CERTS "other-certs" #define CM_DBUS_PROP_SCEP_CA_IDENTIFIER "scep-ca-identifier" #define CM_DBUS_PROP_SCEP_CA_CAPABILITIES "scep-ca-capabilities" #define CM_DBUS_PROP_SCEP_RA_CERT "scep-ra-cert" #define CM_DBUS_PROP_SCEP_CA_CERT "scep-ca-cert" #define CM_DBUS_PROP_SCEP_OTHER_CERTS "scep-other-certs" #define CM_DBUS_PROP_ROOT_CERT_FILES "root-cert-files" #define CM_DBUS_PROP_OTHER_ROOT_CERT_FILES "root-other-cert-files" #define CM_DBUS_PROP_OTHER_CERT_FILES "other-cert-files" #define CM_DBUS_PROP_ROOT_CERT_NSSDBS "root-cert-nssdbs" #define CM_DBUS_PROP_OTHER_ROOT_CERT_NSSDBS "root-other-cert-nssdbs" #define CM_DBUS_PROP_OTHER_CERT_NSSDBS "other-cert-nssdbs" #define CM_DBUS_PROP_SUPPORTED_PROFILES "supported-profiles" #define CM_DBUS_PROP_DEFAULT_PROFILE "default-profile" #define CM_DBUS_PROP_REQUIRED_ENROLL_ATTRIBUTES "required-enroll-attributes" #define CM_DBUS_PROP_REQUIRED_RENEW_ATTRIBUTES "required-renew-attributes" #define CM_DBUS_PROP_AKA "aka" enum cm_tdbus_type { cm_tdbus_system, cm_tdbus_session, cm_tdbus_private }; int cm_tdbus_setup_public(struct tevent_context *ec, enum cm_tdbus_type bus_type, void *data, DBusError *error); int cm_tdbus_setup_private(struct tevent_context *ec, void *data, const char *socket_path, char **address, DBusError *error); #endif certmonger-0.78.6/src/tdbus.c0000664000175000017500000006053312645513264012777 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #ifdef HAVE_OPENSSL #include #endif #ifdef HAVE_GMP #include #endif #include "cm.h" #include "log.h" #include "submit-u.h" #include "tdbus.h" #include "tdbush.h" #include "tdbusm.h" struct tdbus_connection { DBusServer *server; DBusConnection *conn; enum cm_tdbus_type conn_type; struct tdbus_watch { struct tdbus_watch *next; struct tdbus_connection *conn; int fd; struct tevent_fd *tfd; struct tdbus_dwatch { struct tdbus_dwatch *next; DBusWatch *watch; int dflags; dbus_bool_t active; } *dwatches; } *watches; struct tdbus_timer { struct tdbus_connection *conn; struct tdbus_timer *next; DBusTimeout *timeout; struct tevent_timer *tt; int d_interval; dbus_bool_t active; } *timers; void *data; }; static int cm_tdbus_setup_public_connection(struct tdbus_connection *tdb, DBusConnection *conn, const char *bus_desc, DBusError *error); static void cm_tdbus_dispatch_status(DBusConnection *conn, DBusDispatchStatus new_status, void *data) { while (new_status == DBUS_DISPATCH_DATA_REMAINS) { new_status = dbus_connection_dispatch(conn); } } static int cm_tdbus_watch_get_fd(DBusWatch *watch) { #if defined(HAVE_DBUS_WATCH_GET_UNIX_FD) return dbus_watch_get_unix_fd(watch); #elif defined(HAVE_DBUS_WATCH_GET_FD) return dbus_watch_get_fd(watch); #else #error "Don't know how to retrieve a watchable descriptor from a DBus watch!" return -1; #endif } static int cm_tdbus_tfd_flags_for_watch_flags(unsigned int watch_flags) { int tfd_flags; tfd_flags = 0; if (watch_flags & DBUS_WATCH_READABLE) { tfd_flags |= TEVENT_FD_READ; } if (watch_flags & DBUS_WATCH_WRITABLE) { tfd_flags |= TEVENT_FD_WRITE; } if (watch_flags & DBUS_WATCH_ERROR) { tfd_flags |= TEVENT_FD_READ; tfd_flags |= TEVENT_FD_WRITE; } if (watch_flags & DBUS_WATCH_HANGUP) { tfd_flags |= TEVENT_FD_READ; } return tfd_flags; } static int cm_tdbus_watch_flags_for_tfd_flags(unsigned int tfd_flags) { int watch_flags; watch_flags = 0; if (tfd_flags & TEVENT_FD_READ) { watch_flags |= DBUS_WATCH_READABLE; watch_flags |= DBUS_WATCH_HANGUP; } if (tfd_flags & TEVENT_FD_WRITE) { watch_flags |= DBUS_WATCH_WRITABLE; } return watch_flags; } static void cm_tdbus_queue_fd(struct tevent_context *ec, struct tdbus_watch *watch, tevent_fd_handler_t handler) { struct tdbus_dwatch *dwatch; int newtflags, dflags; char flags[20] = ""; newtflags = 0; dwatch = watch->dwatches; while (dwatch != NULL) { if (dwatch->active) { dwatch->dflags = dbus_watch_get_flags(dwatch->watch); dflags = dwatch->dflags; newtflags |= cm_tdbus_tfd_flags_for_watch_flags(dflags); } dwatch = dwatch->next; } if (newtflags != 0) { if (newtflags & TEVENT_FD_READ) { strcpy(flags, "Read"); } if (newtflags & TEVENT_FD_WRITE) { if (strlen(flags) > 0) { strcat(flags, "-"); } strcat(flags, "Write"); } watch->tfd = tevent_add_fd(ec, watch, watch->fd, newtflags, handler, watch); cm_log(5, "Queuing FD %d for %s for %p:%p.\n", watch->fd, flags, watch->conn, watch->tfd); } else { watch->tfd = NULL; cm_log(5, "Not queuing FD %d for %p.\n", watch->fd, watch->conn); } } static void cm_tdbus_handle_fd(struct tevent_context *ec, struct tevent_fd *tfd, uint16_t tflags, void *pvt) { struct tdbus_watch *watch; struct tdbus_dwatch *dwatch; int dflags; char flags[20] = ""; watch = pvt; dflags = cm_tdbus_watch_flags_for_tfd_flags(tflags); if (tflags & TEVENT_FD_READ) { strcpy(flags, "Read"); } if (tflags & TEVENT_FD_WRITE) { if (strlen(flags) > 0) { strcat(flags, "-"); } strcat(flags, "Write"); } cm_log(5, "Dequeuing FD %d for %s for %p:%p.\n", watch->fd, flags, watch->conn, watch->tfd); talloc_free(watch->tfd); watch->tfd = NULL; dwatch = watch->dwatches; while (dwatch != NULL) { if (dwatch->active) { cm_log(5, "Handling D-Bus traffic (%s) on FD %d for " "%p.\n", flags, watch->fd, watch->conn); if ((dflags & dwatch->dflags) != 0) { dbus_watch_handle(dwatch->watch, dflags & dwatch->dflags); break; } } else { cm_log(5, "Skipping disabled %d handler on FD %d for " "%p.\n", dwatch->dflags, watch->fd, watch->conn); } dwatch = dwatch->next; } if (dwatch == NULL) { cm_log(5, "Unexpected D-Bus traffic (%s) on FD %d for %p:%p.\n", flags, watch->fd, watch->conn, tfd); } if (watch->tfd != NULL) { cm_log(5, "Dequeuing FD %d for %s for %p:%p.\n", watch->fd, flags, watch->conn, watch->tfd); talloc_free(watch->tfd); watch->tfd = NULL; } cm_tdbus_queue_fd(ec, watch, cm_tdbus_handle_fd); } static void cm_tdbus_handle_timer(struct tevent_context *ec, struct tevent_timer *timer, struct timeval current_time, void *pvt) { struct tdbus_timer *tdb_timer; struct timeval next_time; tdb_timer = pvt; talloc_free(tdb_timer->tt); tdb_timer->tt = NULL; if (tdb_timer->active) { cm_log(5, "Handling D-Bus timeout.\n"); if (dbus_timeout_handle(tdb_timer->timeout)) { next_time = tevent_timeval_current_ofs(tdb_timer->d_interval, 0); tdb_timer->tt = tevent_add_timer(ec, tdb_timer, next_time, cm_tdbus_handle_timer, tdb_timer); } } } static dbus_bool_t cm_tdbus_watch_add(DBusWatch *watch, void *data) { struct tdbus_connection *conn; struct tdbus_watch *tdb_watch; struct tdbus_dwatch *tdb_dwatch; int fd; char flags[20] = ""; conn = data; fd = cm_tdbus_watch_get_fd(watch); if (dbus_watch_get_flags(watch) & DBUS_WATCH_READABLE) { strcpy(flags, "Read"); } if (dbus_watch_get_flags(watch) & DBUS_WATCH_WRITABLE) { if (strlen(flags) > 0) { strcat(flags, "-"); } strcat(flags, "Write"); } cm_log(5, "Adding %sabled DBus watch on FD %d (for %s) for %p.\n", dbus_watch_get_enabled(watch) ? "en" : "dis", fd, flags, data); /* Find the tevent watch for this fd. */ tdb_watch = conn->watches; while (tdb_watch != NULL) { if (tdb_watch->fd == fd) { break; } tdb_watch = tdb_watch->next; } /* If we couldn't find one, add it. */ if (tdb_watch == NULL) { cm_log(5, "Adding a watch group for FD %d for %p.\n", fd, data); tdb_watch = talloc_ptrtype(conn, tdb_watch); if (tdb_watch == NULL) { return FALSE; } memset(tdb_watch, 0, sizeof(*tdb_watch)); tdb_watch->conn = conn; tdb_watch->fd = fd; tdb_watch->tfd = NULL; tdb_watch->dwatches = NULL; tdb_watch->next = conn->watches; conn->watches = tdb_watch; } /* Add a new dwatch to the watch. */ tdb_dwatch = talloc_ptrtype(tdb_watch, tdb_dwatch); if (tdb_dwatch == NULL) { return FALSE; } memset(tdb_dwatch, 0, sizeof(*tdb_dwatch)); tdb_dwatch->watch = watch; tdb_dwatch->dflags = dbus_watch_get_flags(watch); tdb_dwatch->active = dbus_watch_get_enabled(watch); tdb_dwatch->next = tdb_watch->dwatches; tdb_watch->dwatches = tdb_dwatch; /* (Re-)queue the tfd. */ cm_log(5, "Dequeuing FD %d for %p:%p.\n", tdb_watch->fd, tdb_watch->conn, tdb_watch->tfd); talloc_free(tdb_watch->tfd); tdb_watch->tfd = NULL; cm_tdbus_queue_fd(talloc_parent(conn), tdb_watch, cm_tdbus_handle_fd); return TRUE; } static void cm_tdbus_watch_remove(DBusWatch *watch, void *data) { struct tdbus_connection *conn; struct tdbus_watch *tdb_watch; struct tdbus_dwatch *tdb_dwatch, *prev; int fd; conn = data; fd = cm_tdbus_watch_get_fd(watch); cm_log(5, "Removing a DBus watch for FD %d (for %u) for %p.\n", fd, dbus_watch_get_flags(watch), data); /* Find the tevent watch for this fd. */ tdb_watch = conn->watches; while (tdb_watch != NULL) { if (tdb_watch->fd == fd) { break; } tdb_watch = tdb_watch->next; } if (tdb_watch == NULL) { cm_log(5, "No matching watch found.\n"); return; } /* Find the watch in the list of dwatches. */ for (prev = NULL, tdb_dwatch = tdb_watch->dwatches; tdb_dwatch != NULL; tdb_dwatch = tdb_dwatch->next) { if (tdb_dwatch->watch == watch) { if (prev != NULL) { prev->next = tdb_dwatch->next; tdb_dwatch->next = NULL; talloc_free(tdb_dwatch); } else { tdb_watch->dwatches = tdb_dwatch->next; tdb_dwatch->next = NULL; talloc_free(tdb_dwatch); } break; } prev = tdb_dwatch; } /* (Re-)queue the tfd. */ cm_log(5, "Dequeuing FD %d for %p:%p.\n", tdb_watch->fd, tdb_watch->conn, tdb_watch->tfd); talloc_free(tdb_watch->tfd); tdb_watch->tfd = NULL; cm_tdbus_queue_fd(talloc_parent(conn), tdb_watch, cm_tdbus_handle_fd); } static void cm_tdbus_watch_toggle(DBusWatch *watch, void *data) { struct tdbus_connection *conn; struct tdbus_watch *tdb_watch; struct tdbus_dwatch *tdb_dwatch; int fd; conn = data; fd = cm_tdbus_watch_get_fd(watch); cm_log(5, "Toggling a DBus watch for FD %d (for %u) for " "%p.\n", fd, dbus_watch_get_flags(watch), conn); /* Find the tevent watch for this fd. */ tdb_watch = conn->watches; while (tdb_watch != NULL) { if (tdb_watch->fd == fd) { break; } tdb_watch = tdb_watch->next; } if (tdb_watch == NULL) { cm_log(5, "No matching watch found.\n"); return; } /* Find the watch in the list of dwatches. */ tdb_dwatch = tdb_watch->dwatches; while (tdb_dwatch != NULL) { if (tdb_dwatch->watch == watch) { tdb_dwatch->active = dbus_watch_get_enabled(watch); cm_log(5, "Watch %sabled.\n", tdb_dwatch->active ? "en" : "dis"); break; } tdb_dwatch = tdb_dwatch->next; } /* (Re-)queue the tfd. */ cm_log(5, "Dequeuing FD %d for %p:%p.\n", tdb_watch->fd, tdb_watch->conn, tdb_watch->tfd); talloc_free(tdb_watch->tfd); tdb_watch->tfd = NULL; cm_tdbus_queue_fd(talloc_parent(conn), tdb_watch, cm_tdbus_handle_fd); } static void cm_tdbus_watch_cleanup(void *data) { struct tdbus_connection *conn; struct tdbus_watch *watch; conn = data; watch = conn->watches; while (watch != NULL) { while (watch->dwatches != NULL) { cm_tdbus_watch_remove(watch->dwatches->watch, data); } watch = watch->next; } } static dbus_bool_t cm_tdbus_timeout_add(DBusTimeout *timeout, void *data) { struct tdbus_connection *conn; struct tdbus_timer *tdb_timer; struct timeval next_time; conn = data; tdb_timer = talloc_ptrtype(conn, tdb_timer); if (tdb_timer != NULL) { memset(tdb_timer, 0, sizeof(*tdb_timer)); tdb_timer->conn = conn; tdb_timer->timeout = timeout; tdb_timer->d_interval = dbus_timeout_get_interval(timeout); tdb_timer->active = dbus_timeout_get_enabled(timeout); if (tdb_timer->active) { next_time = tevent_timeval_current_ofs(tdb_timer->d_interval, 0); tdb_timer->tt = tevent_add_timer(talloc_parent(conn), tdb_timer, next_time, cm_tdbus_handle_timer, tdb_timer); if (tdb_timer->tt != NULL) { tdb_timer->next = conn->timers; conn->timers = tdb_timer; return TRUE; } } else { tdb_timer->next = conn->timers; conn->timers = tdb_timer; return TRUE; } } return FALSE; } static void cm_tdbus_timeout_remove(DBusTimeout *timeout, void *data) { struct tdbus_connection *conn; struct tdbus_timer *tdb_timer, *prev; conn = data; for (prev = NULL, tdb_timer = conn->timers; tdb_timer != NULL; tdb_timer = tdb_timer->next) { if (tdb_timer->timeout == timeout) { if (prev != NULL) { prev->next = tdb_timer->next; tdb_timer->next = NULL; talloc_free(tdb_timer); } else { conn->timers = tdb_timer->next; tdb_timer->next = NULL; talloc_free(tdb_timer); } break; } prev = tdb_timer; } } static void cm_tdbus_timeout_toggle(DBusTimeout *timeout, void *data) { struct tdbus_connection *conn; struct tdbus_timer *tdb_timer; struct timeval next_time; void *parent; conn = data; for (tdb_timer = conn->timers; tdb_timer != NULL; tdb_timer = tdb_timer->next) { if (tdb_timer->timeout == timeout) { tdb_timer->d_interval = dbus_timeout_get_interval(timeout); tdb_timer->active = dbus_timeout_get_enabled(timeout); talloc_free(tdb_timer->tt); if (tdb_timer->active) { next_time = tevent_timeval_current_ofs(tdb_timer->d_interval, 0); parent = talloc_parent(conn); tdb_timer->tt = tevent_add_timer(parent, tdb_timer, next_time, cm_tdbus_handle_timer, tdb_timer); } else { tdb_timer->tt = NULL; } break; } } } static void cm_tdbus_timeout_cleanup(void *data) { struct tdbus_connection *conn; conn = data; while (conn->timers != NULL) { cm_tdbus_timeout_remove(conn->timers->timeout, data); } } static void cm_tdbus_reconnect(struct tevent_context *ec, struct tevent_timer *timer, struct timeval current_time, void *pvt) { const char *bus_desc; struct tdbus_connection *tdb; struct timeval later; dbus_bool_t exit_on_disconnect = TRUE; tdb = pvt; talloc_free(timer); if ((tdb->conn == NULL) || !dbus_connection_get_is_connected(tdb->conn)) { /* Close the current connection and open a new one. */ if (tdb->conn != NULL) { dbus_connection_unref(tdb->conn); tdb->conn = NULL; } bus_desc = NULL; switch (tdb->conn_type) { case cm_tdbus_system: cm_log(1, "Attempting to reconnect to system bus.\n"); tdb->conn = dbus_bus_get(DBUS_BUS_SYSTEM, NULL); cm_set_conn_ptr(tdb->data, tdb->conn); /* Don't exit if we get disconnected. */ exit_on_disconnect = FALSE; bus_desc = "system"; break; case cm_tdbus_session: cm_log(1, "Attempting to reconnect to session bus.\n"); tdb->conn = dbus_bus_get(DBUS_BUS_SESSION, NULL); cm_set_conn_ptr(tdb->data, tdb->conn); /* Exit if we get disconnected. */ exit_on_disconnect = TRUE; bus_desc = "session"; break; case cm_tdbus_private: abort(); break; } if ((tdb->conn != NULL) && dbus_connection_get_is_connected(tdb->conn)) { /* We're reconnected; reset our handlers. */ cm_log(1, "Reconnected to %s bus.\n", bus_desc); dbus_connection_set_exit_on_disconnect(tdb->conn, exit_on_disconnect); cm_tdbus_setup_public_connection(tdb, tdb->conn, bus_desc, NULL); } else { /* Try reconnecting again later. */ later = tevent_timeval_current_ofs(CM_DBUS_RECONNECT_TIMEOUT, 0), tevent_add_timer(ec, tdb, later, cm_tdbus_reconnect, tdb); } } } static DBusHandlerResult cm_tdbus_filter(DBusConnection *conn, DBusMessage *dmessage, void *data) { struct tdbus_connection *tdb = data; const char *destination, *unique_name, *path, *interface, *member; /* If we're disconnected, queue a reconnect. */ if ((tdb->conn_type != cm_tdbus_private) && !dbus_connection_get_is_connected(conn)) { tevent_add_timer(talloc_parent(tdb), tdb, tevent_timeval_current(), cm_tdbus_reconnect, tdb); return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } switch (dbus_message_get_type(dmessage)) { case DBUS_MESSAGE_TYPE_METHOD_CALL: /* Make sure it's a message we care about. */ destination = dbus_message_get_destination(dmessage); path = dbus_message_get_path(dmessage); interface = dbus_message_get_interface(dmessage); member = dbus_message_get_member(dmessage); /* Catch weird-looking messages. */ if ((destination == NULL) || (path == NULL) || (member == NULL)) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } cm_log(4, "message %p(%s)->%s:%s:%s.%s\n", tdb, dbus_message_type_to_string(dbus_message_get_type(dmessage)), destination, path, interface ? interface : "", member); return cm_tdbush_handle_method_call(conn, dmessage, tdb->conn_type, tdb->data); break; case DBUS_MESSAGE_TYPE_METHOD_RETURN: /* Check that the call or return is directed to us. */ destination = dbus_message_get_destination(dmessage); if ((strcmp(destination, CM_DBUS_NAME) != 0) && (((unique_name = dbus_bus_get_unique_name(conn)) == NULL) || (strcmp(destination, unique_name) != 0))) { return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } cm_log(4, "message %p(%s)->%lu->%lu\n", tdb, dbus_message_type_to_string(dbus_message_get_type(dmessage)), (unsigned long) dbus_message_get_reply_serial(dmessage), (unsigned long) dbus_message_get_serial(dmessage)); return cm_tdbush_handle_method_return(conn, dmessage, tdb->conn_type, tdb->data); break; default: break; } return DBUS_HANDLER_RESULT_NOT_YET_HANDLED; } static int cm_tdbus_setup_conn_loop(struct tdbus_connection *tdb, DBusConnection *conn) { /* Set the callback to be called when I/O processing has yielded a * request that we need to act on. */ dbus_connection_set_dispatch_status_function(conn, cm_tdbus_dispatch_status, tdb, NULL); /* Hook up the I/O callbacks so that D-Bus can actually do its thing. */ if (!dbus_connection_set_watch_functions(conn, &cm_tdbus_watch_add, &cm_tdbus_watch_remove, &cm_tdbus_watch_toggle, tdb, &cm_tdbus_watch_cleanup)) { cm_log(1, "Unable to add timer callbacks.\n"); return -1; } /* Hook up the (unused?) timer callbacks to be polite. */ if (!dbus_connection_set_timeout_functions(conn, cm_tdbus_timeout_add, cm_tdbus_timeout_remove, cm_tdbus_timeout_toggle, tdb, cm_tdbus_timeout_cleanup)) { cm_log(1, "Unable to add timer callbacks.\n"); return -1; } /* Handle any messages that are already pending. */ cm_tdbus_dispatch_status(conn, dbus_connection_get_dispatch_status(conn), tdb); return 0; } static int cm_tdbus_setup_server_loop(struct tdbus_connection *tdb, DBusServer *server) { /* Hook up the I/O callbacks so that D-Bus can actually do its thing. */ if (!dbus_server_set_watch_functions(server, &cm_tdbus_watch_add, &cm_tdbus_watch_remove, &cm_tdbus_watch_toggle, tdb, &cm_tdbus_watch_cleanup)) { cm_log(1, "Unable to add timer callbacks.\n"); return -1; } /* Hook up the (unused?) timer callbacks to be polite. */ if (!dbus_server_set_timeout_functions(server, cm_tdbus_timeout_add, cm_tdbus_timeout_remove, cm_tdbus_timeout_toggle, tdb, cm_tdbus_timeout_cleanup)) { cm_log(1, "Unable to add timer callbacks.\n"); return -1; } return 0; } static int cm_tdbus_setup_public_connection(struct tdbus_connection *tdb, DBusConnection *conn, const char *bus_desc, DBusError *error) { DBusError err; int ret; /* Add the event loop glue. */ if (cm_tdbus_setup_conn_loop(tdb, conn) != 0) { cm_log(0, "Error setting up connection to %s bus.\n", bus_desc); return -1; } /* Watch for method calls on this connection. */ if (!dbus_connection_add_filter(conn, cm_tdbus_filter, tdb, NULL)) { cm_log(1, "Unable to add filter.\n"); return -1; } /* Request our service name. */ memset(&err, 0, sizeof(err)); ret = dbus_bus_request_name(conn, CM_DBUS_NAME, 0, &err); if ((ret == 0) || ((ret != DBUS_REQUEST_NAME_REPLY_PRIMARY_OWNER) && (ret != DBUS_REQUEST_NAME_REPLY_ALREADY_OWNER)) || dbus_error_is_set(&err)) { cm_log(0, "Unable to set well-known bus name \"%s\": %s(%d).\n", CM_DBUS_NAME, err.message ? err.message : (err.name ? err.name : ""), ret); if (error != NULL) { dbus_move_error(&err, error); } return -1; } cm_log(3, "Connected to %s message bus with name " "\"%s\", unique name \"%s\".\n", bus_desc, dbus_bus_get_unique_name(conn) ?: "(unknown)", CM_DBUS_NAME); return 0; } int cm_tdbus_setup_public(struct tevent_context *ec, enum cm_tdbus_type bus_type, void *data, DBusError *error) { DBusConnection *conn; DBusError err; const char *bus_desc; struct tdbus_connection *tdb; dbus_bool_t exit_on_disconnect; /* Build our own context. */ tdb = talloc_ptrtype(ec, tdb); if (tdb == NULL) { return ENOMEM; } memset(tdb, 0, sizeof(*tdb)); /* Connect to the right bus. */ bus_desc = NULL; conn = NULL; exit_on_disconnect = TRUE; if (error != NULL) { dbus_error_init(error); } switch (bus_type) { case cm_tdbus_system: conn = dbus_bus_get(DBUS_BUS_SYSTEM, error); cm_set_conn_ptr(data, conn); /* Don't exit if we get disconnected. */ exit_on_disconnect = FALSE; bus_desc = "system"; break; case cm_tdbus_session: conn = dbus_bus_get(DBUS_BUS_SESSION, error); cm_set_conn_ptr(data, conn); /* Exit if we get disconnected. */ exit_on_disconnect = TRUE; bus_desc = "session"; break; case cm_tdbus_private: abort(); break; } if (conn == NULL) { cm_log(0, "Error connecting to %s bus.\n", bus_desc); talloc_free(tdb); return -1; } dbus_connection_set_exit_on_disconnect(conn, exit_on_disconnect); tdb->conn = conn; tdb->conn_type = bus_type; tdb->data = data; /* Hook up the event loop, register our name, and set up the filter. */ memset(&err, 0, sizeof(err)); if (cm_tdbus_setup_public_connection(tdb, conn, bus_desc, &err) != 0) { talloc_free(tdb); return -1; } return 0; } static void cm_tdbus_new_private_client(DBusServer *server, DBusConnection *new_conn, void *data) { struct tdbus_connection *tdb = data; int sd; if (dbus_connection_get_socket(new_conn, &sd)) { cm_log(4, "New client on FD %d.\n", sd); } else { cm_log(4, "New client on unknown socket.\n"); } if (cm_tdbus_setup_conn_loop(tdb, new_conn) == 0) { /* Watch for method calls on this connection. */ if (!dbus_connection_add_filter(new_conn, cm_tdbus_filter, tdb, NULL)) { cm_log(1, "Unable to add filter, dropping.\n"); return; } dbus_connection_ref(new_conn); cm_log(3, "Accepted private connection.\n"); } else { cm_log(0, "Error setting up for client, dropping.\n"); } } static void cm_tdbus_lost_private_client(void *data) { cm_log(3, "Lost private connection.\n"); } #ifndef HAVE_OPENSSL #ifdef HAVE_GMP static void fill_uuid(unsigned char *uuid, size_t length) { gmp_randstate_t state; unsigned int i; gmp_randinit_default(state); for (i = 0; i < length; i++) { uuid[i] = gmp_urandomb_ui(state, 8); } } #endif #endif int cm_tdbus_setup_private(struct tevent_context *ec, void *data, const char *path, char **address, DBusError *error) { struct tdbus_connection *tdb; unsigned char uuid[16]; char *addr; *address = NULL; /* Build our own context. */ tdb = talloc_ptrtype(ec, tdb); if (tdb == NULL) { return ENOMEM; } memset(tdb, 0, sizeof(*tdb)); /* Start up the listener. */ if (error != NULL) { dbus_error_init(error); } if (path != NULL) { if (path[0] == '/') { addr = talloc_asprintf(ec, "unix:path=%s", path); } else { addr = talloc_asprintf(ec, "unix:%s", path); } } else { #ifdef HAVE_UUID if (cm_submit_uuid_new(uuid) == 0) { /* we're good */ } else #endif #ifdef HAVE_OPENSSL if (!RAND_pseudo_bytes(uuid, sizeof(uuid))) { /* Try again sometime later. */ cm_log(1, "Error generating UUID.\n"); talloc_free(tdb); return -1; } #else #ifdef HAVE_GMP fill_uuid(uuid, sizeof(uuid)); #endif #endif addr = talloc_asprintf(ec, "unix:abstract=%s/listen-" "%02x%02x%02x%02x%02x%02x%02x%02x" "%02x%02x%02x%02x%02x%02x%02x%02x", CM_TMPDIR, uuid[0], uuid[1], uuid[2], uuid[3], uuid[4], uuid[5], uuid[6], uuid[7], uuid[8], uuid[9], uuid[10], uuid[11], uuid[12], uuid[13], uuid[14], uuid[15]); } tdb->server = dbus_server_listen(addr, error); if (dbus_error_is_set(error)) { cm_log(0, "Error setting up D-Bus server.\n"); talloc_free(tdb); return -1; } tdb->conn_type = cm_tdbus_private; tdb->data = data; /* Add the event loop glue. */ if (cm_tdbus_setup_server_loop(tdb, tdb->server) != 0) { cm_log(0, "Error setting up private listener.\n"); talloc_free(tdb); return -1; } /* Provide the callback to use when we get a new client connection. */ dbus_server_set_new_connection_function(tdb->server, cm_tdbus_new_private_client, tdb, cm_tdbus_lost_private_client); *address = dbus_server_get_address(tdb->server); return 0; } certmonger-0.78.6/src/subproc.h0000664000175000017500000000367512645513264013344 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubproc_h #define cmsubproc_h struct cm_store_ca; struct cm_store_entry; struct cm_subproc_state; /* Start calling the callback in a subprocess. */ struct cm_subproc_state *cm_subproc_start(int (*cb)(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data), void *parent, struct cm_store_ca *ca, struct cm_store_entry *entry, void *data); /* Get a selectable-for-read descriptor we can wait on for status changes. If * we return -1, the caller must poll. */ int cm_subproc_get_fd(struct cm_subproc_state *state); /* Return 0 if the process has finished its run. */ int cm_subproc_ready(struct cm_subproc_state *state); /* Return the subprocess's output. */ const char *cm_subproc_get_msg(struct cm_subproc_state *state, int *length); /* Return the subprocess's exit status. */ int cm_subproc_get_exitstatus(struct cm_subproc_state *state); /* Clean up. */ void cm_subproc_done(struct cm_subproc_state *state); /* Parse args. */ char **cm_subproc_parse_args(void *parent, const char *cmdline, const char **error); /* Reset stdio to /dev/null and mark all but the passed-in descriptor as * close-on-exec. */ void cm_subproc_mark_most_cloexec(int fd, int fd2, int fd3); #endif certmonger-0.78.6/src/subproc.c0000664000175000017500000002227512645513264013334 00000000000000/* * Copyright (C) 2009,2011,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "env.h" #include "log.h" #include "subproc.h" #ifndef HAVE_CLEARENV extern char **environ; static void clear_environment(void) { environ = NULL; } #else static void clear_environment(void) { clearenv(); } #endif #define GROW_SIZE 0x2000 struct cm_subproc_state { pid_t pid; char *msg; int fd, count, bufsize, status; }; /* Start the passed callback in a subprocess, with a pipe that it can use to * send data back to us. If the callback exits, it must do so by calling * _exit() or exec(), to avoid calling exit handlers registered by libraries * that we use, which will screw us up. Pretty much every bit of work that we * can't do quickly is done this way. */ struct cm_subproc_state * cm_subproc_start(int (*cb)(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *data), void *parent, struct cm_store_ca *ca, struct cm_store_entry *entry, void *data) { struct cm_subproc_state *state; int fds[2]; long flags; char *configdir, *tmpdir, *tmp, *homedir, *bus, *local, *pvt; state = talloc_ptrtype(parent, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->fd = -1; state->msg = NULL; state->status = -1; if (pipe(fds) != -1) { fflush(NULL); state->pid = fork(); switch (state->pid) { case -1: syslog(LOG_DEBUG, "fork() error: %s", strerror(errno)); close(fds[0]); close(fds[1]); talloc_free(state); state = NULL; break; case 0: state->fd = fds[1]; close(fds[0]); tmp = getenv(CM_STORE_CONFIG_DIRECTORY_ENV); configdir = (tmp != NULL) ? strdup(tmp) : NULL; tmp = getenv("TMPDIR"); tmpdir = (tmp != NULL) ? strdup(tmp) : NULL; homedir = cm_env_home_dir(); bus = getenv("DBUS_SESSION_BUS_ADDRESS"); bus = bus ? strdup(bus) : NULL; local = cm_env_local_ca_dir(); local = local ? strdup(local) : NULL; pvt = getenv(CERTMONGER_PVT_ADDRESS_ENV); pvt = pvt ? strdup(pvt) : NULL; clear_environment(); setenv("HOME", homedir, 1); setenv("PATH", _PATH_STDPATH, 1); setenv("SHELL", _PATH_BSHELL, 1); setenv("TERM", "dumb", 1); if (configdir != NULL) { setenv(CM_STORE_CONFIG_DIRECTORY_ENV, configdir, 1); } if (tmpdir != NULL) { setenv("TMPDIR", tmpdir, 1); } if (bus != NULL) { setenv("DBUS_SESSION_BUS_ADDRESS", bus, 1); } if (pvt != NULL) { setenv(CERTMONGER_PVT_ADDRESS_ENV, pvt, 1); } if (local != NULL) { setenv(CM_STORE_LOCAL_CA_DIRECTORY_ENV, local, 1); } _exit((*cb)(fds[1], ca, entry, data)); break; default: state->fd = fds[0]; flags = fcntl(state->fd, F_GETFL); if (fcntl(state->fd, F_SETFL, flags | O_NONBLOCK) != 0) { syslog(LOG_DEBUG, "error marking output for " "subprocess non-blocking: %s", strerror(errno)); } close(fds[1]); fds[1] = -1; break; } } } return state; } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_subproc_get_fd(struct cm_subproc_state *state) { return state->fd; } /* Get the output to-date. */ const char * cm_subproc_get_msg(struct cm_subproc_state *state, int *length) { if (length != NULL) { *length = state->count; } return state->msg ? state->msg : ""; } /* Get the exit status. */ int cm_subproc_get_exitstatus(struct cm_subproc_state *state) { return state->status; } /* Clean up when we're done. */ void cm_subproc_done(struct cm_subproc_state *state) { pid_t pid; if (state != NULL) { if (state->pid != -1) { kill(state->pid, SIGKILL); do { pid = waitpid(state->pid, &state->status, 0); cm_log(4, "Waited for %ld, got %ld.\n", (long) state->pid, (long) pid); } while ((pid == -1) && (errno == EINTR)); } if (state->fd != -1) { close(state->fd); } talloc_free(state); } } /* Check if we're done (return 0), or need to be called again (-1). */ int cm_subproc_ready(struct cm_subproc_state *state) { ssize_t i, remainder; char *tmp; int status; if (state->pid == -1) { return state->status; } do { remainder = state->bufsize - state->count; if (remainder <= 0) { tmp = talloc_realloc_size(state, state->msg, state->bufsize + GROW_SIZE + 1); if (tmp != NULL) { state->msg = tmp; state->bufsize += GROW_SIZE; state->msg[state->bufsize] = '\0'; remainder = state->bufsize - state->count; } else { errno = EINTR; i = -1; break; } } i = read(state->fd, state->msg + state->count, remainder); switch (i) { case -1: case 0: break; default: state->count += i; break; } } while (i > 0); if ((i == -1) && ((errno == EAGAIN) || (errno == EINTR))) { status = -1; } else { state->msg[state->count] = '\0'; close(state->fd); state->fd = -1; waitpid(state->pid, &state->status, 0); state->pid = -1; status = 0; } return status; } /* Adapted from oddjob's parse_args(). */ char ** cm_subproc_parse_args(void *parent, const char *cmdline, const char **error) { const char *p; char *q, *bigbuf; char **argv; int sqlevel, dqlevel, escape; size_t buffersize, words; buffersize = strlen(cmdline) * 3; bigbuf = talloc_zero_size(parent, buffersize); sqlevel = dqlevel = escape = 0; p = cmdline; q = bigbuf; while (*p != '\0') { switch (*p) { case '\\': if ((dqlevel != 0) || (sqlevel != 0) || escape) { *q++ = *p++; escape = 0; } else { escape = 1; p++; } break; case '\'': switch (sqlevel) { case 0: if (escape || (dqlevel > 0)) { *q++ = *p++; escape = 0; } else { sqlevel = 1; p++; } break; case 1: sqlevel = 0; p++; break; } break; case '"': switch (dqlevel) { case 0: if (escape || (sqlevel > 0)) { *q++ = *p++; escape = 0; } else { dqlevel = 1; p++; } break; case 1: dqlevel = 0; p++; break; } break; case '\r': case '\n': case '\t': case ' ': if (escape || (dqlevel > 0) || (sqlevel > 0)) { *q++ = *p; } else { *q++ = '\0'; } p++; break; default: *q++ = *p++; break; } } if (error) { *error = NULL; } if (dqlevel > 0) { if (error) { *error = "Unmatched \""; } talloc_free(bigbuf); return NULL; } if (sqlevel > 0) { if (error) { *error = "Unmatched '"; } talloc_free(bigbuf); return NULL; } if (escape) { if (error) { *error = "Attempt to escape end-of-command"; } talloc_free(bigbuf); return NULL; } p = NULL; words = 0; for (q = bigbuf; q < bigbuf + buffersize; q++) { if (*q != '\0') { if (p == NULL) { p = q; } } else { if (p != NULL) { words++; p = NULL; } } } argv = talloc_zero_size(parent, sizeof(char*) * (words + 1)); p = NULL; words = 0; for (q = bigbuf; q < bigbuf + buffersize; q++) { if (*q != '\0') { if (p == NULL) { p = q; } } else { if (p != NULL) { argv[words++] = talloc_strdup(argv, p); p = NULL; } } } talloc_free(bigbuf); return argv; } /* Redirect stdio to /dev/null, and mark everything else as close-on-exec, * except for perhaps one to three of them that are passed in by number. */ void cm_subproc_mark_most_cloexec(int fd, int fd2, int fd3) { int i; long l; if ((fd != STDIN_FILENO) && (fd2 != STDIN_FILENO) && (fd3 != STDIN_FILENO)) { i = open("/dev/null", O_RDONLY); if (i != -1) { if (i != STDIN_FILENO) { dup2(i, STDIN_FILENO); close(i); } } else { close(STDIN_FILENO); } } if ((fd != STDOUT_FILENO) && (fd2 != STDOUT_FILENO) && (fd3 != STDOUT_FILENO)) { i = open("/dev/null", O_WRONLY); if (i != -1) { if (i != STDOUT_FILENO) { dup2(i, STDOUT_FILENO); close(i); } } else { close(STDOUT_FILENO); } } if ((fd != STDERR_FILENO) && (fd2 != STDERR_FILENO) && (fd3 != STDERR_FILENO)) { i = open("/dev/null", O_WRONLY); if (i != -1) { if (i != STDERR_FILENO) { dup2(i, STDERR_FILENO); close(i); } } else { close(STDERR_FILENO); } } for (i = getdtablesize() - 1; i >= 3; i--) { if ((i == fd) || (i == fd2) || (i == fd3)) { continue; } l = fcntl(i, F_GETFD); if (l != -1) { if (fcntl(i, F_SETFD, l | FD_CLOEXEC) != 0) { cm_log(0, "Potentially leaking FD %d.\n", i); } } } } certmonger-0.78.6/src/submit-x.h0000664000175000017500000000511412645513264013425 00000000000000/* * Copyright (C) 2009,2011,2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmitx_h #define cmsubmitx_h krb5_error_code cm_submit_x_make_ccache(const char *ktname, const char *principal, char **error_msg); char *cm_submit_x_ccache_realm(char **error_msg); struct cm_submit_x_context; enum cm_submit_x_opt_negotiate { cm_submit_x_negotiate_off, cm_submit_x_negotiate_on }; enum cm_submit_x_opt_delegate { cm_submit_x_delegate_off, cm_submit_x_delegate_on }; struct cm_submit_x_context *cm_submit_x_init(void *parent, const char *uri, const char *method, const char *cainfo, const char *capath, enum cm_submit_x_opt_negotiate neg, enum cm_submit_x_opt_delegate del); void cm_submit_x_run(struct cm_submit_x_context *ctx); int cm_submit_x_has_results(struct cm_submit_x_context *ctx); int cm_submit_x_faulted(struct cm_submit_x_context *ctx); int cm_submit_x_fault_code(struct cm_submit_x_context *ctx); const char *cm_submit_x_fault_text(struct cm_submit_x_context *ctx); void cm_submit_x_add_arg_s(struct cm_submit_x_context *ctx, const char *s); void cm_submit_x_add_arg_as(struct cm_submit_x_context *ctx, const char **s); void cm_submit_x_add_arg_b(struct cm_submit_x_context *ctx, int b); void cm_submit_x_add_named_arg_s(struct cm_submit_x_context *ctx, const char *name, const char *s); void cm_submit_x_add_named_arg_b(struct cm_submit_x_context *ctx, const char *name, int b); int cm_submit_x_get_bss(struct cm_submit_x_context *ctx, int *b, char **s1, char **s2); int cm_submit_x_get_b(struct cm_submit_x_context *ctx, int idx, int *b); int cm_submit_x_get_s(struct cm_submit_x_context *ctx, int idx, char **s); int cm_submit_x_get_named_n(struct cm_submit_x_context *ctx, const char *name, int *n); int cm_submit_x_get_named_b(struct cm_submit_x_context *ctx, const char *name, int *b); int cm_submit_x_get_named_s(struct cm_submit_x_context *ctx, const char *name, char **s); #endif certmonger-0.78.6/src/submit-x.c0000664000175000017500000006172112645513264013426 00000000000000/* * Copyright (C) 2009,2010,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "certext.h" #include "log.h" #include "submit-e.h" #include "submit-u.h" #include "submit-x.h" static char * get_error_message(krb5_context ctx, krb5_error_code kcode) { const char *ret; #ifdef HAVE_KRB5_GET_ERROR_MESSAGE ret = ctx ? krb5_get_error_message(ctx, kcode) : NULL; if (ret == NULL) { ret = error_message(kcode); } #else ret = error_message(kcode); #endif return strdup(ret); } char * cm_submit_x_ccache_realm(char **msg) { krb5_context ctx; krb5_ccache ccache; krb5_principal princ; krb5_error_code kret; krb5_data *data; char *ret; if (msg != NULL) { *msg = NULL; } kret = krb5_init_context(&ctx); if (kret != 0) { fprintf(stderr, "Error initializing Kerberos: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return NULL; } kret = krb5_cc_default(ctx, &ccache); if (kret != 0) { fprintf(stderr, "Error resolving default ccache: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return NULL; } kret = krb5_cc_get_principal(ctx, ccache, &princ); if (kret != 0) { fprintf(stderr, "Error reading default principal: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return NULL; } data = krb5_princ_realm(ctx, princ); if (data == NULL) { fprintf(stderr, "Error retrieving principal realm.\n"); if (msg != NULL) { *msg = "Error retrieving principal realm.\n"; } return NULL; } ret = malloc(data->length + 1); if (ret == NULL) { fprintf(stderr, "Out of memory for principal realm.\n"); if (msg != NULL) { *msg = "Out of memory for principal realm.\n"; } return NULL; } memcpy(ret, data->data, data->length); ret[data->length] = '\0'; return ret; } krb5_error_code cm_submit_x_make_ccache(const char *ktname, const char *principal, char **msg) { krb5_context ctx; krb5_keytab keytab; krb5_ccache ccache; krb5_creds creds; krb5_principal princ; krb5_error_code kret; krb5_get_init_creds_opt gicopts, *gicoptsp; char tgs[LINE_MAX], *ret; if (msg != NULL) { *msg = NULL; } kret = krb5_init_context(&ctx); if (kret != 0) { ret = get_error_message(ctx, kret); fprintf(stderr, "Error initializing Kerberos: %s.\n", ret); if (msg != NULL) { *msg = ret; } return kret; } if (ktname != NULL) { kret = krb5_kt_resolve(ctx, ktname, &keytab); } else { kret = krb5_kt_default(ctx, &keytab); } if (kret != 0) { fprintf(stderr, "Error resolving keytab: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return kret; } princ = NULL; if (principal != NULL) { kret = krb5_parse_name(ctx, principal, &princ); if (kret != 0) { fprintf(stderr, "Error parsing \"%s\": %s.\n", principal, ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return kret; } } else { kret = krb5_sname_to_principal(ctx, NULL, NULL, KRB5_NT_SRV_HST, &princ); if (kret != 0) { fprintf(stderr, "Error building client name: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return kret; } } strcpy(tgs, KRB5_TGS_NAME); snprintf(tgs + strlen(tgs), sizeof(tgs) - strlen(tgs), "/%.*s", cm_submit_princ_realm_len(ctx, princ), cm_submit_princ_realm_data(ctx, princ)); snprintf(tgs + strlen(tgs), sizeof(tgs) - strlen(tgs), "@%.*s", cm_submit_princ_realm_len(ctx, princ), cm_submit_princ_realm_data(ctx, princ)); memset(&creds, 0, sizeof(creds)); #ifdef HAVE_KRB5_GET_INIT_CREDS_OPT_ALLOC memset(&gicopts, 0, sizeof(gicopts)); gicoptsp = NULL; kret = krb5_get_init_creds_opt_alloc(ctx, &gicoptsp); if (kret != 0) { fprintf(stderr, "Internal error: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return kret; } #else krb5_get_init_creds_opt_init(&gicopts); gicoptsp = &gicopts; #endif krb5_get_init_creds_opt_set_forwardable(gicoptsp, 1); kret = krb5_get_init_creds_keytab(ctx, &creds, princ, keytab, 0, tgs, gicoptsp); #ifdef HAVE_KRB5_GET_INIT_CREDS_OPT_ALLOC krb5_get_init_creds_opt_free(ctx, gicoptsp); #endif if (kret != 0) { fprintf(stderr, "Error obtaining initial credentials: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return kret; } ccache = NULL; kret = krb5_cc_resolve(ctx, "MEMORY:" PACKAGE_NAME "_submit", &ccache); if (kret == 0) { kret = krb5_cc_initialize(ctx, ccache, creds.client); } if (kret != 0) { fprintf(stderr, "Error initializing credential cache: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return kret; } kret = krb5_cc_store_cred(ctx, ccache, &creds); if (kret != 0) { fprintf(stderr, "Error storing creds in credential cache: %s.\n", ret = get_error_message(ctx, kret)); if (msg != NULL) { *msg = ret; } return kret; } krb5_cc_close(ctx, ccache); krb5_kt_close(ctx, keytab); krb5_free_principal(ctx, princ); krb5_free_context(ctx); putenv("KRB5CCNAME=MEMORY:" PACKAGE_NAME "_submit"); return 0; } struct cm_submit_x_context { xmlrpc_env xenv; xmlrpc_server_info *server; struct xmlrpc_clientparms cparams; struct xmlrpc_curl_xportparms xparams; xmlrpc_client_transport *xtransport; xmlrpc_client *client; const char *method; xmlrpc_value *params, *namedarg, *results; unsigned int fault_occurred:1; int fault_code; const char *fault_text; }; struct cm_submit_x_context * cm_submit_x_init(void *parent, const char *uri, const char *method, const char *cainfo, const char *capath, enum cm_submit_x_opt_negotiate negotiate, enum cm_submit_x_opt_delegate delegate) { struct cm_submit_x_context *ctx; ctx = talloc_ptrtype(parent, ctx); if (ctx == NULL) { return NULL; } memset(ctx, 0, sizeof(*ctx)); xmlrpc_env_init(&ctx->xenv); xmlrpc_client_setup_global_const(&ctx->xenv); ctx->server = xmlrpc_server_info_new(&ctx->xenv, uri); if (ctx->server == NULL) { talloc_free(ctx); return NULL; } xmlrpc_server_info_set_user(&ctx->xenv, ctx->server, "", ""); if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d faking up basic auth: (%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } if (negotiate == cm_submit_x_negotiate_on) { xmlrpc_server_info_allow_auth_negotiate(&ctx->xenv, ctx->server); if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d turning on negotiate auth: " "(%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } } else { xmlrpc_server_info_disallow_auth_negotiate(&ctx->xenv, ctx->server); if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d turning off negotiate auth: " "(%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } } memset(&ctx->xparams, 0, sizeof(ctx->xparams)); ctx->xparams.cainfo = talloc_strdup(ctx, cainfo); ctx->xparams.capath = talloc_strdup(ctx, capath); /* Use a specially-crafted User-Agent value to pass along a * Referer header so the request won't be rejected by the remote * IPA server. */ ctx->xparams.user_agent = talloc_asprintf(ctx, "%s/%s\r\nReferer: %s\r\nX-Original-User-Agent:", PACKAGE_NAME, PACKAGE_VERSION, uri); #ifdef HAVE_STRUCT_XMLRPC_CURL_XPORTPARMS_GSSAPI_DELEGATION if ((negotiate == cm_submit_x_negotiate_on) && (delegate == cm_submit_x_delegate_on)) { ctx->xparams.gssapi_delegation = TRUE; } #endif (*xmlrpc_curl_transport_ops.create)(&ctx->xenv, 0, PACKAGE_NAME, PACKAGE_VERSION, &ctx->xparams, sizeof(ctx->xparams), &ctx->xtransport); if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d: (%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } if (ctx->xtransport != NULL) { memset(&ctx->cparams, 0, sizeof(ctx->cparams)); ctx->cparams.transportOpsP = &xmlrpc_curl_transport_ops; ctx->cparams.transportP = ctx->xtransport; xmlrpc_client_create(&ctx->xenv, XMLRPC_CLIENT_NO_FLAGS, PACKAGE_NAME, PACKAGE_VERSION, &ctx->cparams, sizeof(ctx->cparams), &ctx->client); if (ctx->client == NULL) { talloc_free(ctx); } } ctx->params = xmlrpc_array_new(&ctx->xenv); ctx->namedarg = xmlrpc_struct_new(&ctx->xenv); ctx->results = NULL; ctx->method = talloc_strdup(ctx, method); return ctx; } void cm_submit_x_add_arg_s(struct cm_submit_x_context *ctx, const char *s) { xmlrpc_value *arg; arg = xmlrpc_string_new(&ctx->xenv, s); if (arg != NULL) { xmlrpc_array_append_item(&ctx->xenv, ctx->params, arg); } } void cm_submit_x_add_arg_as(struct cm_submit_x_context *ctx, const char **s) { xmlrpc_value *arg, *str; int i; arg = xmlrpc_array_new(&ctx->xenv); if (arg != NULL) { for (i = 0; (s != NULL) && (s[i] != NULL); i++) { str = xmlrpc_string_new(&ctx->xenv, s[i]); if (str != NULL) { xmlrpc_array_append_item(&ctx->xenv, arg, str); } } xmlrpc_array_append_item(&ctx->xenv, ctx->params, arg); } } void cm_submit_x_add_arg_b(struct cm_submit_x_context *ctx, int b) { xmlrpc_value *arg; arg = xmlrpc_bool_new(&ctx->xenv, b != 0); if (arg != NULL) { xmlrpc_array_append_item(&ctx->xenv, ctx->params, arg); } } void cm_submit_x_add_named_arg_s(struct cm_submit_x_context *ctx, const char *name, const char *s) { xmlrpc_value *arg; arg = xmlrpc_string_new(&ctx->xenv, s); if (arg != NULL) { xmlrpc_struct_set_value(&ctx->xenv, ctx->namedarg, name, arg); } } void cm_submit_x_add_named_arg_b(struct cm_submit_x_context *ctx, const char *name, int b) { xmlrpc_value *arg; arg = xmlrpc_bool_new(&ctx->xenv, b != 0); if (arg != NULL) { xmlrpc_struct_set_value(&ctx->xenv, ctx->namedarg, name, arg); } } void cm_submit_x_run(struct cm_submit_x_context *ctx) { if (xmlrpc_struct_size(&ctx->xenv, ctx->namedarg) > 0) { xmlrpc_array_append_item(&ctx->xenv, ctx->params, ctx->namedarg); } ctx->results = NULL; xmlrpc_client_call2(&ctx->xenv, ctx->client, ctx->server, ctx->method, ctx->params, &ctx->results); if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d: (%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); ctx->fault_occurred = TRUE; ctx->fault_code = ctx->xenv.fault_code; ctx->fault_text = talloc_strdup(ctx, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } else { ctx->fault_occurred = FALSE; ctx->fault_code = 0; ctx->fault_text = NULL; } } int cm_submit_x_has_results(struct cm_submit_x_context *ctx) { return (ctx->results != NULL) ? 0 : -1; } int cm_submit_x_faulted(struct cm_submit_x_context *ctx) { return ctx->fault_occurred ? 0 : -1; } int cm_submit_x_fault_code(struct cm_submit_x_context *ctx) { return ctx->fault_occurred ? ctx->fault_code : -1; } const char * cm_submit_x_fault_text(struct cm_submit_x_context *ctx) { return ctx->fault_occurred ? ctx->fault_text : NULL; } int cm_submit_x_get_bss(struct cm_submit_x_context *ctx, int *b, char **s1, char **s2) { const char *p; xmlrpc_bool boo; xmlrpc_value *arg; *b = 0; *s1 = NULL; *s2 = NULL; if (xmlrpc_value_type(ctx->results) != XMLRPC_TYPE_ARRAY) { return -1; } xmlrpc_array_read_item(&ctx->xenv, ctx->results, 0, &arg); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } else { xmlrpc_read_bool(&ctx->xenv, arg, &boo); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *b = boo; } xmlrpc_array_read_item(&ctx->xenv, ctx->results, 1, &arg); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } else { xmlrpc_read_string(&ctx->xenv, arg, &p); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *s1 = talloc_strdup(ctx, p); } xmlrpc_array_read_item(&ctx->xenv, ctx->results, 2, &arg); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } else { xmlrpc_read_string(&ctx->xenv, arg, &p); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *s2 = talloc_strdup(ctx, p); } return 0; } int cm_submit_x_get_b(struct cm_submit_x_context *ctx, int idx, int *b) { xmlrpc_bool boo; xmlrpc_value *arg; *b = 0; if (xmlrpc_value_type(ctx->results) != XMLRPC_TYPE_ARRAY) { return -1; } xmlrpc_array_read_item(&ctx->xenv, ctx->results, idx, &arg); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } else { xmlrpc_read_bool(&ctx->xenv, arg, &boo); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *b = boo; } return 0; } int cm_submit_x_get_s(struct cm_submit_x_context *ctx, int idx, char **s) { const char *p; xmlrpc_value *arg; *s = NULL; if (xmlrpc_value_type(ctx->results) != XMLRPC_TYPE_ARRAY) { return -1; } xmlrpc_array_read_item(&ctx->xenv, ctx->results, idx, &arg); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } else { xmlrpc_read_string(&ctx->xenv, arg, &p); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *s = talloc_strdup(ctx, p); } return 0; } static xmlrpc_value * cm_submit_x_get_struct(struct cm_submit_x_context *ctx) { int i; xmlrpc_value *arg; if (xmlrpc_value_type(ctx->results) == XMLRPC_TYPE_STRUCT) { return ctx->results; } if (xmlrpc_value_type(ctx->results) != XMLRPC_TYPE_ARRAY) { return NULL; } for (i = 0;; i++) { xmlrpc_array_read_item(&ctx->xenv, ctx->results, i, &arg); if (arg == NULL) { break; } if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return NULL; } if (xmlrpc_value_type(arg) == XMLRPC_TYPE_STRUCT) { return arg; } } if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return NULL; } return NULL; } int cm_submit_x_get_named_n(struct cm_submit_x_context *ctx, const char *name, int *n) { int i; xmlrpc_value *arg, *val, *result; *n = 0; arg = cm_submit_x_get_struct(ctx); if (arg == NULL) { return -1; } xmlrpc_struct_find_value(&ctx->xenv, arg, name, &val); if (val == NULL) { xmlrpc_struct_find_value(&ctx->xenv, arg, "result", &result); if (result == NULL) { return -1; } if (xmlrpc_value_type(result) != XMLRPC_TYPE_STRUCT) { return -1; } xmlrpc_struct_find_value(&ctx->xenv, result, name, &val); if (val == NULL) { return -1; } } if (xmlrpc_value_type(val) != XMLRPC_TYPE_INT) { fprintf(stderr, "Expected value \"%s\" is not an integer.\n", name); return -1; } xmlrpc_read_int(&ctx->xenv, val, &i); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *n = i; return 0; } int cm_submit_x_get_named_b(struct cm_submit_x_context *ctx, const char *name, int *b) { xmlrpc_bool boo; xmlrpc_value *arg, *val, *result; *b = 0; arg = cm_submit_x_get_struct(ctx); if (arg == NULL) { return -1; } xmlrpc_struct_find_value(&ctx->xenv, arg, name, &val); if (val == NULL) { xmlrpc_struct_find_value(&ctx->xenv, arg, "result", &result); if (result == NULL) { return -1; } if (xmlrpc_value_type(result) != XMLRPC_TYPE_STRUCT) { return -1; } xmlrpc_struct_find_value(&ctx->xenv, result, name, &val); if (val == NULL) { return -1; } } if (xmlrpc_value_type(val) != XMLRPC_TYPE_BOOL) { fprintf(stderr, "Expected value \"%s\" is not a boolean.\n", name); return -1; } xmlrpc_read_bool(&ctx->xenv, val, &boo); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *b = boo; return 0; } int cm_submit_x_get_named_s(struct cm_submit_x_context *ctx, const char *name, char **s) { const char *p; char *tmp; const unsigned char *binary; size_t length; xmlrpc_value *arg, *val, *result; *s = NULL; arg = cm_submit_x_get_struct(ctx); if (arg == NULL) { return -1; } xmlrpc_struct_find_value(&ctx->xenv, arg, name, &val); if (val == NULL) { xmlrpc_struct_find_value(&ctx->xenv, arg, "result", &result); if (result == NULL) { return -1; } if (xmlrpc_value_type(result) != XMLRPC_TYPE_STRUCT) { return -1; } xmlrpc_struct_find_value(&ctx->xenv, result, name, &val); if (val == NULL) { return -1; } } if (xmlrpc_value_type(val) != XMLRPC_TYPE_STRING) { if (xmlrpc_value_type(val) == XMLRPC_TYPE_BASE64) { xmlrpc_read_base64(&ctx->xenv, val, &length, &binary); tmp = talloc_strndup(ctx, (const char *) binary, length); if (strlen(tmp) == length) { *s = tmp; return 0; } else { fprintf(stderr, "Expected value \"%s\" is " "not a string.\n", name); return -1; } } else { fprintf(stderr, "Expected value \"%s\" is not a string.\n", name); return -1; } } xmlrpc_read_string(&ctx->xenv, val, &p); if (ctx->xenv.fault_occurred) { xmlrpc_env_clean(&ctx->xenv); return -1; } *s = talloc_strdup(ctx, p); return 0; } #ifdef CM_SUBMIT_X_MAIN int main(int argc, const char **argv) { int i, j, c, ret, k5 = FALSE, make_ccache = TRUE, verbose = 0; int64_t i8; int32_t i32; const char *uri = NULL, *method = NULL, *ktname = NULL, *kpname = NULL; const char *s, *cainfo = NULL, *capath = NULL, *csrfile, *dictval; char *csr, *p, *skey, *sval, *s1, *s2; struct cm_submit_x_context *ctx; xmlrpc_value *arg, *key, *val; xmlrpc_bool boo; poptContext pctx; struct poptOption popts[] = { {"uri", 's', POPT_ARG_STRING, &uri, 0, "server location", "URI"}, {"method", 'm', POPT_ARG_STRING, &method, 0, "RPC to call", "METHOD"}, {"kerberos", 'k', POPT_ARG_NONE, NULL, 'k', "use Negotiate authentication", NULL}, {"no-make-ccache", 'K', POPT_ARG_NONE, NULL, 'K', "use creds from default ccache instead of using the keytab", NULL}, {"keytab", 't', POPT_ARG_STRING, &ktname, 0, "keytab to use to obtain creds", "KEYTAB"}, {"principal", 'p', POPT_ARG_STRING, &kpname, 0, "client for whom creds will be obtained", "PRINCIPAL"}, {"capath", 'C', POPT_ARG_STRING, &capath, 0, NULL, NULL}, {"cafile", 'c', POPT_ARG_STRING, &cainfo, 0, NULL, NULL}, {"verbose", 'v', POPT_ARG_NONE, NULL, 'v', NULL, NULL}, POPT_AUTOHELP POPT_TABLEEND }; pctx = poptGetContext("submit-x", argc, argv, popts, 0); if (pctx == NULL) { return CM_SUBMIT_STATUS_UNCONFIGURED; } poptSetOtherOptionHelp(pctx, "[options...] [values...]"); while ((c = poptGetNextOpt(pctx)) > 0) { switch (c) { case 'k': k5 = TRUE; break; case 'K': make_ccache = FALSE; break; case 'v': verbose++; break; } } if (c != -1) { poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } cm_log_set_method(cm_log_stderr); cm_log_set_level(verbose); if (uri == NULL) { printf("No URI (-s) set.\n"); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } if (method == NULL) { printf("No method (-m) set.\n"); poptPrintUsage(pctx, stdout, 0); return CM_SUBMIT_STATUS_UNCONFIGURED; } ret = CM_SUBMIT_STATUS_UNREACHABLE; /* Read the CSR from the environment, or from the command-line. */ csr = getenv(CM_SUBMIT_CSR_ENV); csrfile = poptGetArg(pctx); if (csrfile != NULL) { csr = cm_submit_u_from_file(csrfile); } if (csr == NULL) { fprintf(stderr, "Error reading certificate signing request.\n"); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Clean up the CSR. */ if (strcmp(method, "wait_for_cert") == 0) { /* certmaster rewrites the incoming request to its cache * previously-received requests, and in doing so uses a * different PEM header than the one we default to using. So * turn any "NEW CERTIFICATE REQUEST" notes into "CERTIFICATE * REQUEST" before sending them. */ while ((p = strstr(csr, "NEW CERTIFICATE REQUEST")) != NULL) { memmove(p, p + 4, strlen(p + 4) + 1); } } if (strcmp(method, "cert_request") == 0) { /* IPA just wants base64-encoded binary data, no whitepace */ p = strstr(csr, "-----BEGIN"); if (p != NULL) { p += strcspn(p, "\n"); if (*p == '\n') { p++; } memmove(csr, p, strlen(p) + 1); } p = strstr(csr, "\n-----END"); if (p != NULL) { *p = '\0'; } while ((p = strchr(csr, '\r')) != NULL) { memmove(p, p + 1, strlen(p)); } while ((p = strchr(csr, '\n')) != NULL) { memmove(p, p + 1, strlen(p)); } } /* Initialize for XML-RPC. */ ctx = cm_submit_x_init(NULL, uri, method, cainfo, capath, k5 || (kpname != NULL) || (ktname != NULL) ? cm_submit_x_negotiate_on : cm_submit_x_negotiate_off, k5 || (kpname != NULL) || (ktname != NULL) ? cm_submit_x_delegate_on : cm_submit_x_delegate_off); if (ctx == NULL) { fprintf(stderr, "Error setting up for XMLRPC.\n"); return CM_SUBMIT_STATUS_UNCONFIGURED; } /* Both servers take the CSR, in their preferred format, first. */ cm_submit_x_add_arg_s(ctx, csr); /* Maybe we need a ccache. */ if (k5 || (kpname != NULL) || (ktname != NULL)) { if (!make_ccache || (cm_submit_x_make_ccache(ktname, kpname, NULL) == 0)) { k5 = TRUE; } } /* Add additional arguments as dict values. */ while ((dictval = poptGetArg(pctx)) != NULL) { skey = strdup(dictval); sval = skey + strcspn(skey, "="); if (*sval != '\0') { *sval++ = '\0'; } if (strcasecmp(sval, "true") == 0) { cm_submit_x_add_named_arg_b(ctx, skey, 1); } else if (strcasecmp(sval, "false") == 0) { cm_submit_x_add_named_arg_b(ctx, skey, 0); } else { cm_submit_x_add_named_arg_s(ctx, skey, sval); } } /* Submit the request. */ cm_submit_x_run(ctx); /* Check the results. */ if (cm_submit_x_has_results(ctx) == 0) { for (i = 0; (xmlrpc_value_type(ctx->results) == XMLRPC_TYPE_ARRAY) && (i < xmlrpc_array_size(&ctx->xenv, ctx->results)); i++) { xmlrpc_array_read_item(&ctx->xenv, ctx->results, i, &arg); if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d: (%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } else { switch (xmlrpc_value_type(arg)) { case XMLRPC_TYPE_BOOL: xmlrpc_read_bool(&ctx->xenv, arg, &boo); printf("b: %s\n", boo ? "true" : "false"); break; case XMLRPC_TYPE_STRING: xmlrpc_read_string(&ctx->xenv, arg, &s); printf("s: %s\n", s); break; case XMLRPC_TYPE_I8: xmlrpc_read_i8(&ctx->xenv, arg, &i8); printf("n: %lld\n", (long long) i8); break; case XMLRPC_TYPE_INT: xmlrpc_read_int(&ctx->xenv, arg, &i32); printf("n: %ld\n", (long) i32); break; case XMLRPC_TYPE_STRUCT: for (j = 0; j < xmlrpc_struct_size(&ctx->xenv, arg); j++) { xmlrpc_struct_read_member(&ctx->xenv, arg, j, &key, &val); xmlrpc_read_string(&ctx->xenv, key, &s); if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d: (%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } else { skey = (char *) s; switch (xmlrpc_value_type(val)) { case XMLRPC_TYPE_BOOL: xmlrpc_read_bool(&ctx->xenv, val, &boo); printf("%s: b: %s\n", skey, boo ? "true" : "false"); break; case XMLRPC_TYPE_STRING: xmlrpc_read_string(&ctx->xenv, arg, &s); printf("%s: s: %s\n", skey, s); break; case XMLRPC_TYPE_I8: xmlrpc_read_i8(&ctx->xenv, val, &i8); printf("%s: n: %lld\n", skey, (long long) i8); break; case XMLRPC_TYPE_INT: xmlrpc_read_int(&ctx->xenv, val, &i32); printf("%s: n: %ld\n", skey, (long) i32); break; default: break; } } } break; default: break; } if (ctx->xenv.fault_occurred) { fprintf(stderr, "Fault %d: (%s).\n", ctx->xenv.fault_code, ctx->xenv.fault_string); xmlrpc_env_clean(&ctx->xenv); } } } } /* Try formatted output, specific. */ if ((cm_submit_x_has_results(ctx) == 0) && (strcmp(method, "wait_for_cert") == 0)) { if (cm_submit_x_get_bss(ctx, &i, &s1, &s2) == 0) { printf("BSS: OK\nb: %s\ns1 = \"%s\"\ns2 = \"%s\"\n", i ? "true" : "false", s1, s2); } } if ((cm_submit_x_has_results(ctx) == 0) && (strcmp(method, "cert_request") == 0)) { if (cm_submit_x_get_named_n(ctx, "status", &i) == 0) { printf("Status: %d\n", i); } if (cm_submit_x_get_named_s(ctx, "certificate", &s1) == 0) { printf("Certificate: \"%s\"\n", s1); } } return ret; } #endif certmonger-0.78.6/src/submit-u.h0000664000175000017500000000271612645513264013427 00000000000000/* * Copyright (C) 2009,2010,2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmitu_h #define cmsubmitu_h char *cm_submit_u_from_file(const char *filename); char *cm_submit_u_from_file_single(const char *filename); char *cm_submit_princ_realm_data(krb5_context ctx, krb5_principal princ); int cm_submit_princ_realm_len(krb5_context ctx, krb5_principal princ); char *cm_submit_u_base64_from_text(const char *base64_or_pem); char *cm_submit_u_pem_from_base64(const char *what, int dos, const char *base64); char *cm_submit_u_url_encode(const char *plain); #ifdef HAVE_UUID /* Generate UUIDs. */ int cm_submit_uuid_new(unsigned char uuid[16]); extern int cm_submit_uuid_fixed_for_testing; #endif /* Convert a delta in string form to a time_t. */ int cm_submit_u_delta_from_string(const char *deltas, time_t now, time_t *delta); #endif certmonger-0.78.6/src/submit-u.c0000664000175000017500000002042212645513264013414 00000000000000/* * Copyright (C) 2009,2010,2011,2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_UUID #if defined(HAVE_UUID_H) #include #elif defined(HAVE_UUID_UUID_H) #include #endif #endif #include "log.h" #include "submit-u.h" #define BASE64_ALPHABET "ABCDEFGHIJKLMNOPQRSTUVWXYZ" \ "abcdefghijklmnopqrstuvwxyz" \ "0123456789" \ "+/=" static char * my_stpcpy(char *dest, const char *src) { size_t len; len = strlen(src); memcpy(dest, src, len); dest[len] = '\0'; return dest + len; } /* Read a CSR from a file. */ char * cm_submit_u_from_file(const char *filename) { FILE *fp; char *csr, *p, buf[BUFSIZ]; if ((filename == NULL) || (strcmp(filename, "-") == 0)) { fp = stdin; } else { fp = fopen(filename, "r"); if (fp == NULL) { fprintf(stderr, "Error opening \"%s\": %s.\n", filename, strerror(errno)); return NULL; } } csr = NULL; while (fgets(buf, sizeof(buf), fp) != NULL) { if (csr == NULL) { csr = strdup(buf); if (csr == NULL) { if (fp != stdin) { fclose(fp); } return NULL; } } else { p = malloc(strlen(csr) + sizeof(buf)); if (p == NULL) { if (fp != stdin) { fclose(fp); } free(csr); return NULL; } memcpy(my_stpcpy(p, csr), buf, sizeof(buf)); free(csr); csr = p; } } if (fp != stdin) { fclose(fp); } if (csr == NULL) { csr = strdup(""); } return csr; } /* Read a CSR from a file and return it as a single base64 blob. */ char * cm_submit_u_from_file_single(const char *filename) { char *csr, *p, *q; unsigned int i; const char *strip[] = { "-----BEGIN CERTIFICATE REQUEST-----", "-----END CERTIFICATE REQUEST-----", "-----BEGIN NEW CERTIFICATE REQUEST-----", "-----END NEW CERTIFICATE REQUEST-----", }; csr = cm_submit_u_from_file(filename); if (csr == NULL) { return NULL; } p = csr; for (i = 0; i < sizeof(strip) / sizeof(strip[0]); i++) { while ((p = strstr(csr, strip[i])) != NULL) { q = p + strcspn(p, "\r\n"); memmove(p, q, strlen(q) + 1); } } p = csr; q = strdup(csr); for (p = csr, i = 0; *p != '\0'; p++) { if (strchr("\r\n\t ", *p) == NULL) { q[i++] = *p; } } q[i] = '\0'; free(csr); return q; } /* Return a simple base64 string from a data item in PEM format or already in * simple base64 format. */ char * cm_submit_u_base64_from_text(const char *base64_or_pem) { const char *p, *q; char *ret, *s; int i; p = strstr(base64_or_pem, "-----BEGIN"); if (p != NULL) { q = p + 10; q += strcspn(q, "-"); p = q + strcspn(q, "\r\n"); q = strstr(p, "-----END"); if (q != NULL) { ret = malloc(q - p + 1); if (ret != NULL) { s = ret; for (i = 0; i < (q - p); i++) { if (strchr(BASE64_ALPHABET, p[i])) { *s++ = p[i]; } } *s++ = '\0'; } } else { ret = NULL; } return ret; } else { p = base64_or_pem; ret = malloc(strlen(p) + 1); if (ret != NULL) { s = ret; for (i = 0; p[i] != '\0'; i++) { if (strchr(BASE64_ALPHABET, p[i])) { *s++ = p[i]; } } *s++ = '\0'; } return ret; } } char * cm_submit_u_pem_from_base64(const char *what, int dos, const char *base64) { char *ret, *tmp, *p; const char *q; int i; const unsigned int width = 64; tmp = strdup(base64); if (tmp == NULL) { return NULL; } for (p = tmp, q = base64; *q != '\0'; q++) { if (strchr(BASE64_ALPHABET, *q)) { *p++ = *q; } } *p = '\0'; i = strlen("-----BEGIN -----\r\n" "-----END -----\r\n") + strlen(what) * 2 + strlen(tmp) + howmany(strlen(tmp), width) * 2; ret = malloc(i + 1); if (ret != NULL) { p = my_stpcpy(ret, "-----BEGIN "); p = my_stpcpy(p, what); p = my_stpcpy(p, dos ? "-----\r\n" : "-----\n"); q = tmp; while (strlen(q) > width) { memcpy(p, q, width); p += width; q += width; p = my_stpcpy(p, dos ? "\r\n" : "\n"); } if (strlen(q) > 0) { p = my_stpcpy(p, q); p = my_stpcpy(p, dos ? "\r\n" : "\n"); } p = my_stpcpy(p, "-----END "); p = my_stpcpy(p, what); strcpy(p, dos ? "-----\r\n" : "-----\n"); } free(tmp); return ret; } char * cm_submit_princ_realm_data(krb5_context ctx, krb5_principal princ) { #if HAVE_DECL_KRB5_PRINC_COMPONENT return (krb5_princ_realm(ctx, princ))->data; #else return princ->realm; #endif } int cm_submit_princ_realm_len(krb5_context ctx, krb5_principal princ) { #if HAVE_DECL_KRB5_PRINC_COMPONENT return (krb5_princ_realm(ctx, princ))->length; #else return strlen(princ->realm); #endif } char * cm_submit_u_url_encode(const char *plain) { const char *hexchars = "0123456789ABCDEF"; const char *unreserved = "ABCDEFGHIJKLMNOPQRSTUVWXYZ" "abcdefghijklmnopqrstuvwxyz" "0123456789-_.~"; char *ret = malloc(strlen(plain) * 3 + 1); int i, j; unsigned int c; if (ret != NULL) { for (i = 0, j = 0; plain[i] != '\0'; i++) { c = ((unsigned char) plain[i]) & 0xff; if (strchr(unreserved, c) != NULL) { ret[j++] = plain[i]; } else { if (c == 32) { ret[j++] = '+'; } else { ret[j++] = '%'; ret[j++] = hexchars[(c & 0xf0) >> 4]; ret[j++] = hexchars[(c & 0x0f)]; } } } ret[j] = '\0'; } return ret; } #ifdef HAVE_UUID int cm_submit_uuid_fixed_for_testing = 0; int cm_submit_uuid_new(unsigned char uuid[16]) { uuid_t res; uuid_clear(res); if (cm_submit_uuid_fixed_for_testing) { int i; for (i = 0; i < 16; i++) { res[i] = i + 1; } } else { uuid_generate(res); } if (uuid_is_null(res)) { return -1; } /* For whatever reason, NSS assumes that any of the final bits which * are clear are unused rather than simply set to zero, so we force the * least significant bit to 1 to preserve the entire (hopefully still * unique) UUID. */ res[15] |= 1; memcpy(uuid, res, 16); return 0; } #endif /* Convert a delta string to a time_t. */ int cm_submit_u_delta_from_string(const char *deltas, time_t now, time_t *delta) { struct tm now_tm, *pnow; time_t start; int multiple, i, val, done, digits; unsigned char c; val = 0; digits = 0; done = 0; if (strlen(deltas) == 0) { return -1; } start = now; for (i = 0; !done; i++) { c = (unsigned char) deltas[i]; switch (c) { case '\0': done++; /* fall through */ case 's': multiple = 1; now += val * multiple; val = 0; break; case 'm': multiple = 60; now += val * multiple; val = 0; break; case 'h': multiple = 60 * 60; now += val * multiple; val = 0; break; case 'd': multiple = 60 * 60 * 24; now += val * multiple; val = 0; break; case 'w': multiple = 60 * 60 * 24 * 7; now += val * multiple; val = 0; break; case 'M': pnow = localtime_r(&now, &now_tm); if (pnow == NULL) { multiple = 60 * 60 * 24 * 30; now += val * multiple; } else { now_tm.tm_mon += val; now_tm.tm_year += (now_tm.tm_mon / 12); now_tm.tm_mon %= 12; now_tm.tm_isdst = -1; /* don't tell libc that * we "know" what's up * with DST for the time * in this structure */ now = mktime(&now_tm); } val = 0; break; case 'y': pnow = localtime_r(&now, &now_tm); if (pnow == NULL) { multiple = 60 * 60 * 24 * 365; now += val * multiple; } else { now_tm.tm_year += val; now = mktime(&now_tm); } val = 0; break; case '0': case '1': case '2': case '3': case '4': case '5': case '6': case '7': case '8': case '9': val = (val * 10) + (c - '0'); digits++; break; default: /* just skip this character */ break; } } if (digits == 0) { return -1; } *delta = now + val - start; return 0; } certmonger-0.78.6/src/submit-sn.c0000664000175000017500000003332712645513264013600 00000000000000/* * Copyright (C) 2009,2010,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certext-n.h" #include "keyiread-n.h" #include "log.h" #include "prefs.h" #include "prefs-n.h" #include "store.h" #include "store-int.h" #include "submit.h" #include "submit-int.h" #include "submit-u.h" #include "subproc.h" static int cm_submit_sn_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { FILE *status; char *b64, *serial; const char *p, *q; SECStatus error; SECItem *esdata = NULL, *ecert = NULL; struct cm_keyiread_n_ctx_and_keys *keys; SECKEYPrivateKey *privkey; CERTCertificate *ucert = NULL; CERTCertExtension **extensions; CERTCertificateRequest *req = NULL, sreq; CERTSignedData *data = NULL, sdata, scert; CERTValidity *validity; PRTime now, life; time_t lifedelta; PLArenaPool *arena = NULL; SECOidData *sigoid, *extoid, *basicoid; int i, serial_length, basic_length; unsigned char btrue = 0xff; PRBool found_basic; /* Start up NSS and open the database. */ keys = cm_keyiread_n_get_keys(entry, 0); if (keys == NULL) { cm_log(1, "Unable to locate private key for self-signing.\n"); _exit(2); } /* Select the right key pair. */ if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { privkey = keys->privkey_next; } else { privkey = keys->privkey; } /* Allocate a memory pool. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(1, "Error opening database '%s'.\n", entry->cm_key_storage_location); NSS_Shutdown(); _exit(ENOMEM); } /* Decode the CSR into a signeddata structure. */ p = entry->cm_csr; q = NULL; if (p != NULL) { while (strncmp(p, "-----BEGIN ", 11) == 0) { p += strcspn(p, "\r\n"); p += strspn(p, "\r\n"); } q = strstr(p, "-----END"); } if ((q == NULL) || (*p == '\0')) { cm_log(1, "Unable to parse CSR.\n"); _exit(1); } esdata = NSSBase64_DecodeBuffer(arena, NULL, p, q - p); if (esdata == NULL) { cm_log(1, "Unable to decode CSR into buffer.\n"); _exit(1); } memset(&sdata, 0, sizeof(sdata)); if (SEC_ASN1DecodeItem(arena, &sdata, CERT_SignedDataTemplate, esdata) != SECSuccess) { cm_log(1, "Unable to decode signed signing request.\n"); _exit(1); } else { data = &sdata; } sigoid = SECOID_FindOIDByTag(cm_prefs_nss_sig_alg(privkey)); if (sigoid == NULL) { cm_log(1, "Internal error resolving signature OID.\n"); _exit(1); } extoid = SECOID_FindOIDByTag(SEC_OID_PKCS9_EXTENSION_REQUEST); if (extoid == NULL) { cm_log(1, "Internal error resolving extension OID.\n"); _exit(1); } /* Decode the CSR from the signeddata structure into a usable request. */ memset(&sreq, 0, sizeof(sreq)); sreq.arena = arena; if (SEC_ASN1DecodeItem(arena, &sreq, CERT_CertificateRequestTemplate, &data->data) != SECSuccess) { cm_log(1, "Unable to decode signing request.\n"); _exit(1); } else { req = &sreq; } /* Build a certificate using the contents of the signing request. */ if (ca->cm_ca_internal_force_issue_time) { now = ca->cm_ca_internal_issue_time; now *= 1000000; } else { now = PR_Now(); } if (cm_submit_u_delta_from_string(cm_prefs_selfsign_validity_period(), now / 1000000, &lifedelta) == 0) { life = lifedelta; } else { if (cm_submit_u_delta_from_string(CM_DEFAULT_CERT_LIFETIME, now / 1000000, &lifedelta) == 0) { life = lifedelta; } else { life = 365 * 24 * 60 * 60; } } life *= 1000000L; validity = CERT_CreateValidity(now, now + life); if (validity == NULL) { cm_log(1, "Unable to create validity structure.\n"); _exit(1); } else { ucert = CERT_CreateCertificate(0, &req->subject, validity, req); CERT_DestroyValidity(validity); if (ucert == NULL) { cm_log(1, "Unable to create certificate structure.\n"); _exit(1); } } /* Populate the certificate's fields. */ SEC_ASN1EncodeInteger(arena, &ucert->version, 2); serial = ca->cm_ca_internal_serial; if (serial != NULL) { cm_log(3, "Setting certificate serial number \"%s\".\n", serial); serial_length = strlen(serial) / 2; ucert->serialNumber.data = PORT_ArenaZAlloc(arena, serial_length); serial_length = cm_store_hex_to_bin(serial, ucert->serialNumber.data, serial_length); ucert->serialNumber.len = serial_length; } else { cm_log(1, "Unable to set certificate serial number.\n"); _exit(1); } if (SECOID_SetAlgorithmID(arena, &ucert->signature, sigoid->offset, NULL) != SECSuccess) { cm_log(1, "Unable to set signature algorithm ID.\n"); _exit(1); } ucert->issuer = req->subject; ucert->subject = req->subject; ucert->subjectPublicKeyInfo = req->subjectPublicKeyInfo; #ifdef HAVE_UUID if (cm_prefs_populate_unique_id()) { ucert->subjectID.data = PORT_ArenaZAlloc(arena, 16); if (ucert->subjectID.data != NULL) { if (cm_submit_uuid_new(ucert->subjectID.data) == 0) { ucert->subjectID.len = 16 * 8; } else { ucert->subjectID.data = NULL; } } else { ucert->subjectID.len = 0; } ucert->issuerID = ucert->subjectID; } #endif /* Try to copy the extensions from the request into the certificate. */ for (i = 0; (req->attributes != NULL) && (req->attributes[i] != NULL); i++) { if (SECITEM_ItemsAreEqual(&req->attributes[i]->attrType, &extoid->oid)) { /* Found the requested-extensions attribute. */ break; } } /* Add the requested extensions. */ if ((req->attributes != NULL) && (req->attributes[i] != NULL)) { if (SEC_ASN1DecodeItem(arena, &ucert->extensions, CERT_SequenceOfCertExtensionTemplate, req->attributes[i]->attrValue[0]) != SECSuccess) { cm_log(1, "Error decoding requested extensions.\n"); } } /* Figure out the OID for basicConstraints. */ basicoid = SECOID_FindOIDByTag(SEC_OID_X509_BASIC_CONSTRAINTS); if (basicoid == NULL) { cm_log(1, "Unable to get basic constraints OID.\n"); _exit(1); } /* Count the number of extensions and whether or not we requested a * basicConstraints extension. */ found_basic = PR_FALSE; if (ucert->extensions == NULL) { i = 0; } else { for (i = 0; ucert->extensions[i] != NULL; i++) { if (SECITEM_ItemsAreEqual(&ucert->extensions[i]->id, &basicoid->oid)) { found_basic = PR_TRUE; } } } /* Allocate space for one more extension. */ extensions = PORT_ArenaZAlloc(arena, (i + 2) * sizeof(extensions[0])); if (extensions != NULL) { memcpy(extensions, ucert->extensions, i * sizeof(extensions[0])); if (found_basic) { extensions[i] = NULL; } else { extensions[i] = PORT_ArenaZAlloc(arena, sizeof(*(extensions[i]))); } extensions[i + 1] = NULL; ucert->extensions = extensions; } /* Add basic constraints. */ if ((extensions != NULL) && (extensions[i] != NULL) && !found_basic) { extensions[i]->id = basicoid->oid; extensions[i]->critical.data = &btrue; extensions[i]->critical.len = 1; basic_length = strlen(CM_BASIC_CONSTRAINT_NOT_CA) / 2; extensions[i]->value.data = PORT_ArenaZAlloc(arena, basic_length); extensions[i]->value.len = basic_length; basic_length = cm_store_hex_to_bin(CM_BASIC_CONSTRAINT_NOT_CA, extensions[i]->value.data, extensions[i]->value.len); extensions[i]->value.len = basic_length; } /* Encode the certificate into a tbsCertificate. */ ecert = SEC_ASN1EncodeItem(arena, NULL, ucert, CERT_CertificateTemplate); if (ecert == NULL) { cm_log(1, "Error encoding certificate structure.\n"); _exit(1); } /* Create a signature. */ memset(&scert, 0, sizeof(scert)); scert.data = *ecert; if (SECOID_SetAlgorithmID(arena, &scert.signatureAlgorithm, sigoid->offset, NULL) != SECSuccess) { cm_log(1, "Unable to set signature algorithm ID.\n"); _exit(1); } if (SEC_SignData(&scert.signature, ecert->data, ecert->len, privkey, sigoid->offset) != SECSuccess) { cm_log(1, "Unable to generate signature.\n"); _exit(1); } /* Of course, the signature is a bitstring, so its length is specified * in bits, but the item that stores it starts with the item length in * bytes. */ scert.signature.len *= 8; /* Encode the signed certificate. */ ecert = SEC_ASN1EncodeItem(arena, NULL, &scert, CERT_SignedDataTemplate); if (ecert == NULL) { cm_log(1, "Unable to encode signed certificate.\n"); _exit(1); } /* Encode the certificate as base64. */ b64 = NSSBase64_EncodeItem(arena, NULL, -1, ecert); if (b64 == NULL) { cm_log(1, "Unable to b64-encode certificate.\n"); _exit(1); } /* Send the certificate to our parent. */ status = fdopen(fd, "w"); if (status == NULL) { cm_log(1, "Internal error.\n"); _exit(errno); } fprintf(status, "-----BEGIN CERTIFICATE-----\n"); p = b64; while (*p != '\0') { q = p + strcspn(p, "\r\n"); fprintf(status, "%.*s\n", (int) (q - p), p); p = q + strspn(q, "\r\n"); } fprintf(status, "-----END CERTIFICATE-----\n"); fclose(status); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } return 0; } /* Save CA-specific identifier for our submitted request. */ static int cm_submit_sn_save_ca_cookie(struct cm_submit_state *state) { talloc_free(state->entry->cm_ca_cookie); state->entry->cm_ca_cookie = talloc_strdup(state->entry, state->entry->cm_key_storage_location); if (state->entry->cm_ca_cookie == NULL) { cm_log(1, "Out of memory.\n"); return ENOMEM; } return 0; } /* Check if an attempt to submit has completed. */ static int cm_submit_sn_ready(struct cm_submit_state *state) { return cm_subproc_ready(state->subproc); } /* Check if the certificate was issued. */ static int cm_submit_sn_issued(struct cm_submit_state *state) { const char *msg; int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != 0)) { return -1; } msg = cm_subproc_get_msg(state->subproc, NULL); if ((strstr(msg, "-----BEGIN CERTIFICATE-----") != NULL) && (strstr(msg, "-----END CERTIFICATE-----") != NULL)) { talloc_free(state->entry->cm_cert); state->entry->cm_cert = talloc_strdup(state->entry, msg); return 0; } return -1; } /* Check if the signing request was rejected. */ static int cm_submit_sn_rejected(struct cm_submit_state *state) { return -1; /* it never gets rejected */ } /* Check if we need SCEP messages. */ static int cm_submit_sn_need_scep_messages(struct cm_submit_state *state) { return -1; /* nope */ } /* Check if we need to use a different key. */ static int cm_submit_sn_need_rekey(struct cm_submit_state *state) { return -1; /* nope */ } /* Check if the CA was unreachable. */ static int cm_submit_sn_unreachable(struct cm_submit_state *state) { return -1; /* uh, we're the CA */ } /* Check if the CA was unconfigured. */ static int cm_submit_sn_unconfigured(struct cm_submit_state *state) { return -1; /* uh, we're the CA */ } /* Check if the CA is something we can ask for certificates. */ static int cm_submit_sn_unsupported(struct cm_submit_state *state) { return -1; /* uh, we're the CA */ } /* Done talking to the CA. */ static void cm_submit_sn_done(struct cm_submit_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start CSR submission using parameters stored in the entry. */ struct cm_submit_state * cm_submit_sn_start(struct cm_store_ca *ca, struct cm_store_entry *entry) { struct cm_submit_state *state; if (entry->cm_key_storage_type != cm_key_storage_nssdb) { cm_log(1, "Wrong submission method: only keys stored " "in an NSS database can be used.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->save_ca_cookie = cm_submit_sn_save_ca_cookie; state->ready = cm_submit_sn_ready; state->issued = cm_submit_sn_issued; state->rejected = cm_submit_sn_rejected; state->need_scep_messages = cm_submit_sn_need_scep_messages; state->need_rekey = cm_submit_sn_need_rekey; state->unreachable = cm_submit_sn_unreachable; state->unconfigured = cm_submit_sn_unconfigured; state->unsupported = cm_submit_sn_unsupported; state->done = cm_submit_sn_done; state->delay = -1; state->entry = entry; state->subproc = cm_subproc_start(cm_submit_sn_main, state, ca, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { entry->cm_key_next_requested_count++; } else { entry->cm_key_requested_count++; } } return state; } certmonger-0.78.6/src/submit-n.c0000664000175000017500000003057112645513264013413 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "store-int.h" #include "keyiread-n.h" #include "log.h" #include "pin.h" #include "prefs-n.h" #include "store.h" #include "submit.h" #include "submit-e.h" #include "submit-int.h" #include "submit-u.h" #include "subproc.h" #include "util-n.h" #include "util-o.h" #define PRIVKEY_LIST_EMPTY(l) PRIVKEY_LIST_END(PRIVKEY_LIST_HEAD(l), l) #define WINDOW (24 * 60 * 60 * PR_USEC_PER_SEC) SECOidTag cm_submit_n_tag_from_nid(int nid) { ASN1_OBJECT *obj; SECItem oid; obj = OBJ_nid2obj(nid); if (obj != NULL) { memset(&oid, 0, sizeof(oid)); oid.data = (unsigned char *) obj->data; oid.len = obj->length; return SECOID_FindOIDTag(&oid); } else { return SEC_OID_UNKNOWN; } } int cm_submit_n_nid_from_tag(SECOidTag tag) { SECOidData *oid = SECOID_FindOIDByTag(tag); ASN1_OBJECT obj; memset(&obj, 0, sizeof(obj)); obj.data = oid->oid.data; obj.length = oid->oid.len; return OBJ_obj2nid(&obj); } static SECItem * try_to_decode(void *parent, PLArenaPool *arena, SECItem *item, SECKEYPrivateKey *privkey) { SECOidTag tag; SECItem *ret = NULL, param, *parameters; ASN1_OBJECT *algorithm; int nid, padding; CK_MECHANISM_TYPE mech; ASN1_STRING *params = NULL; PKCS7 *p7 = NULL; PKCS7_RECIP_INFO *p7i = NULL; BIGNUM *exponent = NULL; EVP_PKEY *pkey = NULL; BIO *out; RSA *rsa = NULL; char buf[BUFSIZ]; const unsigned char *u; unsigned char *enc_key, *dec, *reenc; unsigned int enc_key_len, dec_len; ssize_t reenc_len; long error, l; /* Do the standard parse and sanity checking. */ u = item->data; p7 = d2i_PKCS7(NULL, &u, item->len); if (p7 == NULL) { cm_log(1, "Error decoding PKCS#7 enveloped data: %s\n", cm_store_base64_from_bin(NULL, item->data, item->len)); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } goto done; } if (!PKCS7_type_is_enveloped(p7)) { cm_log(1, "PKCS#7 data is not enveloped data.\n"); goto done; } if (sk_PKCS7_RECIP_INFO_num(p7->d.enveloped->recipientinfo) != 1) { cm_log(1, "PKCS#7 enveloped data is for %d recipients.\n", sk_PKCS7_RECIP_INFO_num(p7->d.enveloped->recipientinfo)); goto done; } p7i = sk_PKCS7_RECIP_INFO_value(p7->d.enveloped->recipientinfo, 0); if ((p7i->key_enc_algor == NULL) || (p7i->key_enc_algor->parameter == NULL)) { cm_log(1, "PKCS#7 recipient info is missing parameters.\n"); goto done; } /* Try to decrypt the bulk key using the private key. */ algorithm = p7i->key_enc_algor->algorithm; nid = OBJ_obj2nid(algorithm); tag = cm_submit_n_tag_from_nid(nid); mech = PK11_AlgtagToMechanism(tag); if (p7i->key_enc_algor->parameter->type == V_ASN1_OCTET_STRING) { params = p7i->key_enc_algor->parameter->value.octet_string; memset(¶m, 0, sizeof(param)); param.data = M_ASN1_STRING_data(params); param.len = M_ASN1_STRING_length(params); parameters = ¶m; } else { parameters = NULL; } enc_key = M_ASN1_STRING_data(p7i->enc_key); enc_key_len = M_ASN1_STRING_length(p7i->enc_key); dec_len = enc_key_len + BUFSIZ; dec = talloc_size(parent, dec_len); if (parameters == NULL) { if (PK11_PrivDecryptPKCS1(privkey, dec, &dec_len, dec_len, enc_key, enc_key_len) != SECSuccess) { cm_log(1, "Error decrypting bulk key: %s.\n", PR_ErrorToName(PORT_GetError())); goto done; } } else { #ifdef HAVE_PK11_PRIVDECRYPT if (PK11_PrivDecrypt(privkey, mech, parameters, dec, &dec_len, dec_len, enc_key, enc_key_len) != SECSuccess) { cm_log(1, "Error decrypting bulk key: %s.\n", PR_ErrorToName(PORT_GetError())); goto done; } #else cm_log(1, "Error decrypting bulk key: " "the version of NSS we were built with does not " "support decryption with specified parameters\n"); goto done; #endif } /* Generate a dummy key to use when re-encrypting the bulk key using * OpenSSL so that we can decrypt it again, and with it the payload. */ pkey = EVP_PKEY_new(); if (pkey == NULL) { cm_log(1, "Error allocating new key.\n"); goto done; } exponent = BN_new(); if (exponent == NULL) { cm_log(1, "Error setting up exponent.\n"); goto done; } BN_set_word(exponent, CM_DEFAULT_RSA_EXPONENT); rsa = RSA_new(); if (rsa == NULL) { cm_log(1, "Error allocating new RSA key.\n"); goto done; } retry_gen: if (RSA_generate_key_ex(rsa, CM_DEFAULT_PUBKEY_SIZE, exponent, NULL) != 1) { cm_log(1, "Error generating key.\n"); goto done; } if (RSA_check_key(rsa) != 1) { /* should be unnecessary */ cm_log(1, "Key fails checks. Retrying.\n"); goto retry_gen; } EVP_PKEY_set1_RSA(pkey, rsa); /* Encrypt the bulk key. We're about to decrypt it again, so do it the * simplest way that we can. */ reenc_len = dec_len + RSA_size(rsa); reenc = talloc_size(parent, reenc_len); padding = RSA_PKCS1_PADDING; reenc_len = RSA_public_encrypt(dec_len, dec, reenc, rsa, padding); if (reenc_len < 0) { cm_log(1, "Error reencrypting.\n"); goto retry_gen; } /* Set the new encrypted bulk key. */ p7i->key_enc_algor->algorithm = OBJ_dup(OBJ_nid2obj(NID_rsaEncryption)); ASN1_TYPE_set(p7i->key_enc_algor->parameter, V_ASN1_NULL, NULL); M_ASN1_OCTET_STRING_set(p7i->enc_key, reenc, reenc_len); /* And now, finally, decrypt the payload. */ out = BIO_new(BIO_s_mem()); if (out == NULL) { cm_log(1, "Out of memory.\n"); goto done; } if (PKCS7_decrypt(p7, pkey, NULL, out, 0) == 1) { u = NULL; l = BIO_get_mem_data(out, &u); cm_log(1, "Succeeded in decrypting enveloped data.\n"); if (u != NULL) { ret = SECITEM_AllocItem(arena, NULL, l + 1); if (ret != NULL) { memcpy(ret->data, u, l + 1); ret->data[l] = '\0'; ret->len = l; } } } done: if (ret == NULL) { while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } } if (pkey != NULL) { EVP_PKEY_free(pkey); } if (exponent != NULL) { BN_free(exponent); } if (p7 != NULL) { PKCS7_free(p7); } return ret; } void cm_submit_n_decrypt_envelope(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length) { const char *token, *reason, *es; char *pin; PLArenaPool *arena = NULL; SECStatus error; NSSInitContext *ctx = NULL; PK11SlotInfo *slot; PK11SlotList *slotlist = NULL; PK11SlotListElement *sle; SECKEYPrivateKeyList *keylist = NULL; SECKEYPrivateKeyListNode *kle = NULL; CK_MECHANISM_TYPE mech; SECItem item, *plain; struct cm_pin_cb_data cb_data; int n_tokens, ec; struct cm_submit_decrypt_envelope_args *args = decrypt_userdata; util_o_init(); ERR_load_crypto_strings(); /* Open the database. */ ctx = NSS_InitContext(args->entry->cm_key_storage_location, NULL, NULL, NULL, NULL, NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (ctx == NULL) { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Unable to open NSS database '%s': %s.\n", args->entry->cm_key_storage_location, es); } else { cm_log(1, "Unable to open NSS database '%s'.\n", args->entry->cm_key_storage_location); } goto done; } reason = util_n_fips_hook(); if (reason != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", reason); goto done; } /* Allocate a memory pool. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(1, "Out of memory opening database '%s'.\n", args->entry->cm_key_storage_location); goto done; } /* Find the tokens that we might use for key storage. */ mech = 0; slotlist = PK11_GetAllTokens(mech, PR_FALSE, PR_FALSE, NULL); if (slotlist == NULL) { cm_log(1, "Error locating token to be used for key storage.\n"); goto done; } /* Walk the list looking for the requested token, or look at all of * them if none specifically was requested. */ pin = NULL; if (cm_pin_read_for_key(args->entry, &pin) != 0) { cm_log(1, "Error reading PIN for key storage.\n"); goto done; } PK11_SetPasswordFunc(&cm_pin_read_for_cert_nss_cb); n_tokens = 0; /* In practice, the internal slot is either a non-storage slot (in * non-FIPS mode) or the database slot (in FIPS mode), and we only want * to skip over the one that can't be used to store things. */ for (sle = slotlist->head; (sle != NULL) && (sle->slot != NULL); sle = sle->next) { slot = sle->slot; if (PK11_IsInternal(slot) && !PK11_IsInternalKeySlot(slot)) { cm_log(3, "Skipping NSS internal slot (%s).\n", PK11_GetTokenName(slot)); goto next_slot; } /* Read the token's name. */ token = PK11_GetTokenName(slot); if (token != NULL) { cm_log(3, "Found token '%s'.\n", token); } else { cm_log(3, "Found unnamed token.\n"); } /* If this is the wrong token, move on. */ if ((args->entry->cm_key_token != NULL) && (strlen(args->entry->cm_key_token) > 0) && ((token == NULL) || (strcmp(args->entry->cm_key_token, token) != 0))) { if (token != NULL) { cm_log(1, "Token is named \"%s\", not \"%s\", " "skipping.\n", token, args->entry->cm_key_token); } else { cm_log(1, "Token is unnamed, not \"%s\", " "skipping.\n", args->entry->cm_key_token); } goto next_slot; } n_tokens++; /* Set up args for the PIN callback. */ memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = args->entry; cb_data.n_attempts = 0; /* Now log in, if we have to. */ if (cm_pin_read_for_key(args->entry, &pin) != 0) { cm_log(1, "Error reading PIN for key storage " "token \"%s\", skipping.\n", token); goto done; } error = PK11_Authenticate(slot, PR_TRUE, &cb_data); if (error != SECSuccess) { cm_log(1, "Error authenticating to token " "\"%s\".\n", token); goto done; } break; next_slot: /* If this was the last token, stop walking. */ slot = NULL; if (sle == slotlist->tail) { break; } } /* Now that we're logged in, try to decrypt the enveloped data. */ plain = NULL; if (slot != NULL) { keylist = PK11_ListPrivKeysInSlot(slot, NULL, NULL); if (keylist != NULL) { memset(&item, 0, sizeof(item)); item.data = talloc_memdup(args->entry, envelope, length); item.len = length; for (kle = PRIVKEY_LIST_HEAD(keylist); !PRIVKEY_LIST_EMPTY(keylist) && !PRIVKEY_LIST_END(kle, keylist); kle = PRIVKEY_LIST_NEXT(kle)) { plain = try_to_decode(args->entry, arena, &item, kle->key); if (plain != NULL) { break; } } } } if (plain == NULL) { cm_log(1, "Error decrypting enveloped data: %s.\n", PR_ErrorToName(PORT_GetError()) ?: "(unknown error)"); goto done; } cm_log(1, "Succeeded in decrypting enveloped data.\n"); *payload = talloc_size(args->entry, plain->len + 1); if (*payload != NULL) { memcpy(*payload, plain->data, plain->len); (*payload)[plain->len] = '\0'; *payload_length = plain->len; } done: if (keylist != NULL) { SECKEY_DestroyPrivateKeyList(keylist); } if (slotlist != NULL) { PK11_FreeSlotList(slotlist); } if (arena != NULL) { PORT_FreeArena(arena, PR_TRUE); } if (ctx != NULL) { error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } } } certmonger-0.78.6/src/submit-int.h0000664000175000017500000000621712645513264013755 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmitint_h #define cmsubmitint_h struct cm_store_entry; struct cm_submit_state { /* The parent usually needs a pointer to the entry for updating. */ struct cm_store_entry *entry; /* The parent uses this to manage the subprocess that's doing the heavy * lifting. */ struct cm_subproc_state *subproc; /* Check if the CSR was submitted to the CA yet, or we determined that * doing so was not possible at this time. */ int (*ready)(struct cm_submit_state *state); /* Save CA-specific identifier for our submitted request. */ int (*save_ca_cookie)(struct cm_submit_state *state); /* Check if the certificate was issued. */ int (*issued)(struct cm_submit_state *state); /* Check if the certificate request was rejected. */ int (*rejected)(struct cm_submit_state *state); /* Check if we need SCEP-specific data to be provided. */ int (*need_scep_messages)(struct cm_submit_state *state); /* Check if we need to try again with different keys. */ int (*need_rekey)(struct cm_submit_state *state); /* Check if the CA was unreachable for some reason. */ int (*unreachable)(struct cm_submit_state *state); /* Check if the CA was unconfigured in some way. */ int (*unconfigured)(struct cm_submit_state *state); /* Check if we can't submit requests to the CA. */ int (*unsupported)(struct cm_submit_state *state); /* Done talking to the CA. */ void (*done)(struct cm_submit_state *state); /* Recommended delay before the next connection to the CA. */ int delay; /* Reserved for implementation use. Currently only used by the * "external" submission implementations. */ void *reserved; }; struct cm_submit_state *cm_submit_e_start(struct cm_store_ca *ca, struct cm_store_entry *entry); struct cm_submit_state *cm_submit_sn_start(struct cm_store_ca *ca, struct cm_store_entry *entry); struct cm_submit_state *cm_submit_so_start(struct cm_store_ca *ca, struct cm_store_entry *entry); #define CM_BASIC_CONSTRAINT_NOT_CA "3000" char *cm_submit_maybe_joinv(void *parent, const char *sep, char **s); struct cm_submit_decrypt_envelope_args { struct cm_store_ca *ca; struct cm_store_entry *entry; }; void cm_submit_o_decrypt_envelope(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length); void cm_submit_n_decrypt_envelope(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length); #endif certmonger-0.78.6/src/submit.h0000664000175000017500000000463512645513264013167 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmit_h #define cmsubmit_h struct cm_submit_state; struct cm_store_entry; struct cm_store_ca; /* Start CSR submission using parameters stored in the entry. If we have a * cookie in the entry, poll for its status. */ struct cm_submit_state *cm_submit_start(struct cm_store_ca *ca, struct cm_store_entry *entry); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_submit_get_fd(struct cm_submit_state *state); /* Check if either the CSR was submitted to the CA yet, or we figured out that * we weren't going to be able to send it. */ int cm_submit_ready(struct cm_submit_state *state); /* Save CA-specific identifier for our submitted request. */ int cm_submit_save_ca_cookie(struct cm_submit_state *state); /* Clear CA-specific identifier for our submitted request. */ int cm_submit_clear_ca_cookie(struct cm_submit_state *state); /* If we need to poll again, any non-negative value is the polling interval. */ int cm_submit_specified_delay(struct cm_submit_state *state); /* Check if the certificate was issued. */ int cm_submit_issued(struct cm_submit_state *state); /* Check if the certificate request was rejected. */ int cm_submit_rejected(struct cm_submit_state *state); /* Check if the CA was unreachable. */ int cm_submit_unreachable(struct cm_submit_state *state); /* Check if we're missing some configuration. */ int cm_submit_unconfigured(struct cm_submit_state *state); /* Check if we need SCEP-specific data to be generated. */ int cm_submit_need_scep_messages(struct cm_submit_state *state); /* Check if the CA says we need a new key. */ int cm_submit_need_rekey(struct cm_submit_state *state); /* Done talking to the CA. */ void cm_submit_done(struct cm_submit_state *state); #endif certmonger-0.78.6/src/submit-e.h0000664000175000017500000000616112645513264013405 00000000000000/* * Copyright (C) 2009,2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmite_h #define cmsubmite_h #define CM_DOGTAG_IPA_RENEW_AGENT_CA_NAME "dogtag-ipa-renew-agent" #define CM_DOGTAG_IPA_RENEW_AGENT_HELPER_PATH \ CM_DEFAULT_HELPER_PATH "/dogtag-ipa-renew-agent-submit" enum cm_external_status { CM_SUBMIT_STATUS_ISSUED = 0, CM_SUBMIT_STATUS_WAIT = 1, CM_SUBMIT_STATUS_REJECTED = 2, CM_SUBMIT_STATUS_UNREACHABLE = 3, CM_SUBMIT_STATUS_UNCONFIGURED = 4, CM_SUBMIT_STATUS_WAIT_WITH_DELAY = 5, CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED = 6, CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES = 16, CM_SUBMIT_STATUS_NEED_REKEY = 17, }; const char *cm_submit_e_status_text(enum cm_external_status status); #define CM_SUBMIT_REQ_SUBJECT_ENV "CERTMONGER_REQ_SUBJECT" #define CM_SUBMIT_REQ_HOSTNAME_ENV "CERTMONGER_REQ_HOSTNAME" #define CM_SUBMIT_REQ_PRINCIPAL_ENV "CERTMONGER_REQ_PRINCIPAL" #define CM_SUBMIT_REQ_EMAIL_ENV "CERTMONGER_REQ_EMAIL" #define CM_SUBMIT_REQ_IP_ADDRESS_ENV "CERTMONGER_REQ_IP_ADDRESS" #define CM_SUBMIT_OPERATION_ENV "CERTMONGER_OPERATION" #define CM_SUBMIT_CSR_ENV "CERTMONGER_CSR" #define CM_SUBMIT_SPKAC_ENV "CERTMONGER_SPKAC" #define CM_SUBMIT_SPKI_ENV "CERTMONGER_SPKI" #define CM_SUBMIT_KEY_TYPE_ENV "CERTMONGER_KEY_TYPE" #define CM_SUBMIT_COOKIE_ENV "CERTMONGER_CA_COOKIE" #define CM_SUBMIT_CA_NICKNAME_ENV "CERTMONGER_CA_NICKNAME" #define CM_SUBMIT_PROFILE_ENV "CERTMONGER_CA_PROFILE" #define CM_SUBMIT_CERTIFICATE_ENV "CERTMONGER_CERTIFICATE" #define CM_SUBMIT_SCEP_CA_IDENTIFIER_ENV "CERTMONGER_SCEP_CA_IDENTIFIER" #define CM_SUBMIT_SCEP_RA_CERTIFICATE_ENV "CERTMONGER_SCEP_RA_CERTIFICATE" #define CM_SUBMIT_SCEP_CA_CERTIFICATE_ENV "CERTMONGER_SCEP_CA_CERTIFICATE" #define CM_SUBMIT_SCEP_CERTIFICATES_ENV "CERTMONGER_SCEP_CERTIFICATES" #define CM_SUBMIT_SCEP_PKCSREQ_ENV "CERTMONGER_PKCSREQ" #define CM_SUBMIT_SCEP_PKCSREQ_REKEY_ENV "CERTMONGER_PKCSREQ_REKEY" #define CM_SUBMIT_SCEP_GETCERTINITIAL_ENV "CERTMONGER_GETCERTINITIAL" #define CM_SUBMIT_SCEP_GETCERTINITIAL_REKEY_ENV "CERTMONGER_GETCERTINITIAL_REKEY" #define CM_OP_SUBMIT "SUBMIT" #define CM_OP_POLL "POLL" #define CM_OP_IDENTIFY "IDENTIFY" #define CM_OP_FETCH_ROOTS "FETCH-ROOTS" #define CM_OP_FETCH_PROFILES "GET-SUPPORTED-TEMPLATES" #define CM_OP_FETCH_DEFAULT_PROFILE "GET-DEFAULT-TEMPLATE" #define CM_OP_FETCH_ENROLL_REQUIREMENTS "GET-NEW-REQUEST-REQUIREMENTS" #define CM_OP_FETCH_RENEWAL_REQUIREMENTS "GET-RENEW-REQUEST-REQUIREMENTS" #define CM_OP_FETCH_SCEP_CA_CERTS "FETCH-SCEP-CA-CERTS" #define CM_OP_FETCH_SCEP_CA_CAPS "FETCH-SCEP-CA-CAPS" #endif certmonger-0.78.6/src/submit-e.c0000664000175000017500000007776612645513264013423 00000000000000/* * Copyright (C) 2009,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "env.h" #include "json.h" #include "log.h" #include "pkcs7.h" #include "store.h" #include "store-int.h" #include "submit.h" #include "submit-e.h" #include "submit-int.h" #include "submit-u.h" #include "subproc.h" #define CM_SUBMIT_E_CERTIFICATE "certificate" #define CM_SUBMIT_E_NICKNAME "nickname" #define CM_SUBMIT_E_ROOTS "roots" #define CM_SUBMIT_E_CHAIN "chain" struct cm_submit_external_state { enum cm_submit_external_phase { running_helper, postprocessing, } phase; struct cm_store_ca *ca; struct cm_store_entry *entry; const char *msg; int msg_length; }; static int cm_submit_e_postprocess_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata); /* Clean up a cookie value in a way that's compatible with what happens when we * save and then reload an entry: if the value fits on a single line (whether * or not it ends with a newline), we strip the newline off of the end. * Otherwise we strip out blank lines and make sure they end with a single * character. */ static char * sanitize_cookie(void *parent, const char *value) { const char *p, *q; char *ret; p = value + strcspn(value, "\r\n"); ret = talloc_strndup(parent, value, p - value); if (ret != NULL) { if (*p == '\r') { p++; } if (*p == '\n') { p++; } if (*p != '\0') { ret = talloc_strdup_append(ret, "\n"); } while (*p != '\0') { q = p + strcspn(p, "\r\n"); ret = talloc_asprintf_append(ret, "%.*s\n", (int) (q - p), p); if (*q == '\r') { q++; } if (*q == '\n') { q++; } if (p == q) { break; } p = q; } } return ret; } /* Try to save a CA-specific identifier for our submitted request. That is, if * it even gave us one. */ static int cm_submit_e_save_ca_cookie(struct cm_submit_state *state) { int status; long delay; const char *msg; char *p; talloc_free(state->entry->cm_ca_cookie); state->entry->cm_ca_cookie = NULL; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && ((WEXITSTATUS(status) == CM_SUBMIT_STATUS_WAIT) || (WEXITSTATUS(status) == CM_SUBMIT_STATUS_WAIT_WITH_DELAY))) { msg = cm_subproc_get_msg(state->subproc, NULL); if ((msg != NULL) && (strlen(msg) > 0)) { if (WEXITSTATUS(status) == CM_SUBMIT_STATUS_WAIT_WITH_DELAY) { /* Pull off the first line. */ delay = strtol(msg, &p, 10); if ((p == NULL) || (strchr("\r\n", *p) == NULL)) { cm_log(1, "Error parsing result: %s.\n", msg); return -1; } state->delay = delay; msg = p + strspn(p, "\r\n"); } state->entry->cm_ca_cookie = sanitize_cookie(state->entry, msg); if (state->entry->cm_ca_cookie == NULL) { cm_log(1, "Out of memory.\n"); return -ENOMEM; } cm_log(1, "Saved cookie \"%s\".\n", state->entry->cm_ca_cookie); return 0; } else { cm_log(1, "No cookie.\n"); return -1; } } return -1; } /* Check if an attempt to submit the CSR has completed. */ static int cm_submit_e_ready(struct cm_submit_state *state) { int status, ready, length; const char *msg; char *tmp; struct cm_submit_external_state *estate; struct cm_subproc_state *subproc; estate = state->reserved; ready = cm_subproc_ready(state->subproc); switch (ready) { case 0: status = cm_subproc_get_exitstatus(state->subproc); switch (estate->phase) { case running_helper: cm_log(1, "Certificate submission attempt complete.\n"); if (WIFEXITED(status)) { cm_log(1, "Child status = %d.\n", WEXITSTATUS(status)); msg = cm_subproc_get_msg(state->subproc, &length); if ((msg != NULL) && (length > 0)) { cm_log(1, "Child output:\n\"%.*s\"\n", length, msg); /* If it's a single line, assume it's * log-worthy. */ if (strcspn(msg, "\n") >= (strlen(msg) - 2)) { cm_log(0, "%s", msg); } /* If it was an error, save it. */ if ((WEXITSTATUS(status) == CM_SUBMIT_STATUS_ISSUED) || (WEXITSTATUS(status) == CM_SUBMIT_STATUS_WAIT) || (WEXITSTATUS(status) == CM_SUBMIT_STATUS_WAIT_WITH_DELAY)) { /* Clear any old error messages. */ talloc_free(state->entry->cm_ca_error); state->entry->cm_ca_error = NULL; } else { /* Save the new error message. */ talloc_free(state->entry->cm_ca_error); state->entry->cm_ca_error = talloc_strndup(state->entry, msg, strcspn(msg, "\r\n")); } /* Save the output for processing later. */ tmp = talloc_size(estate, length + 1); if (tmp != NULL) { memcpy(tmp, msg, length); tmp[length] = '\0'; estate->msg_length = length; } estate->msg = tmp; /* Now launch the postprocessing step, * if we've got data to process. */ if (WEXITSTATUS(status) == CM_SUBMIT_STATUS_ISSUED) { subproc = cm_subproc_start(cm_submit_e_postprocess_main, state, estate->ca, estate->entry, estate); if (subproc != NULL) { cm_subproc_done(state->subproc); state->subproc = subproc; estate->phase = postprocessing; return -1; } } } return 0; } else { cm_log(1, "Child exited unexpectedly.\n"); return 0; } break; case postprocessing: cm_log(1, "Certificate submission postprocessing complete.\n"); if (WIFEXITED(status)) { cm_log(1, "Child status = %d.\n", WEXITSTATUS(status)); msg = cm_subproc_get_msg(state->subproc, &length); /* Clear intermediate output. */ estate->msg = NULL; estate->msg_length = 0; /* If we got output from the child, save it. */ if ((msg != NULL) && (length > 0)) { /* If it was an error, save it. */ if (WEXITSTATUS(status) == 0) { /* Save the output for processing later. */ cm_log(1, "Child output:\n\"%.*s\"\n", length, msg); tmp = talloc_size(estate, length + 1); if (tmp != NULL) { memcpy(tmp, msg, length); tmp[length] = '\0'; estate->msg_length = length; } estate->msg = tmp; } else{ cm_log(1, "Exit status was %d.\n", WEXITSTATUS(status)); } } return 0; } else { cm_log(1, "Child exited unexpectedly.\n"); return 0; } break; } /* Shouldn't ever get here. */ abort(); return 0; break; default: cm_log(1, "Certificate submission still ongoing.\n"); return -1; break; } } /* Check if the certificate was issued. If the exit status was 0, it was * issued. */ static int cm_submit_e_issued(struct cm_submit_state *state) { struct cm_json *json, *cert, *chain, *roots, *val, *nick; const char *msg, *k, *eom = NULL; struct cm_submit_external_state *estate; struct cm_nickcert **nickcerts, *nickcert; ssize_t i, j; int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_SUBMIT_STATUS_ISSUED)) { cm_log(1, "Certificate not (yet?) issued.\n"); return -1; } estate = state->reserved; msg = estate->msg; if (msg != NULL) { if ((cm_json_decode(state, msg, -1, &json, &eom) != 0) || (*eom != '\0')) { cm_log(1, "Error parsing child output as JSON.\n"); return -1; } } else { json = NULL; } if ((json == NULL) || (cm_json_get(json, CM_SUBMIT_E_CERTIFICATE) == NULL)) { cm_log(1, "No issued certificate read.\n"); return -1; } talloc_free(state->entry->cm_cert); state->entry->cm_cert = NULL; cert = cm_json_get(json, CM_SUBMIT_E_CERTIFICATE); if (cm_json_type(cert) != cm_json_type_string) { cm_log(1, "Error parsing child output as JSON.\n"); return -1; } state->entry->cm_cert = talloc_strdup(state->entry, cm_json_string(cert, NULL)); cm_log(1, "Issued certificate is \"%s\".\n", state->entry->cm_cert); talloc_free(state->entry->cm_cert_chain); state->entry->cm_cert_chain = NULL; chain = cm_json_get(json, CM_SUBMIT_E_CHAIN); if (cm_json_type(chain) == cm_json_type_array) { nickcerts = talloc_array_ptrtype(state->entry, nickcerts, cm_json_array_size(chain) + 1); for (i = 0, j = 0; i < cm_json_array_size(chain); i++) { cert = cm_json_n(chain, i); if (cm_json_type(cert) != cm_json_type_object) { continue; } val = cm_json_get(cert, CM_SUBMIT_E_CERTIFICATE); if ((val == NULL) || (cm_json_type(val) != cm_json_type_string)) { continue; } nick = cm_json_get(cert, CM_SUBMIT_E_NICKNAME); if ((nick == NULL) || (cm_json_type(nick) != cm_json_type_string)) { continue; } nickcert = talloc_zero(nickcerts, struct cm_nickcert); k = cm_json_string(nick, NULL); nickcert->cm_nickname = talloc_strdup(nickcert, k); k = cm_json_string(val, NULL); nickcert->cm_cert = talloc_strdup(nickcert, k); nickcerts[j++] = nickcert; } nickcerts[j] = NULL; state->entry->cm_cert_chain = nickcerts; } talloc_free(state->entry->cm_cert_roots); state->entry->cm_cert_roots = NULL; roots = cm_json_get(json, CM_SUBMIT_E_ROOTS); if (cm_json_type(roots) == cm_json_type_array) { nickcerts = talloc_array_ptrtype(state->entry, nickcerts, cm_json_array_size(roots) + 1); for (i = 0, j = 0; i < cm_json_array_size(roots); i++) { cert = cm_json_n(roots, i); if (cm_json_type(cert) != cm_json_type_object) { continue; } val = cm_json_get(cert, CM_SUBMIT_E_CERTIFICATE); if ((val == NULL) || (cm_json_type(val) != cm_json_type_string)) { continue; } nick = cm_json_get(cert, CM_SUBMIT_E_NICKNAME); if ((nick == NULL) || (cm_json_type(nick) != cm_json_type_string)) { continue; } nickcert = talloc_zero(nickcerts, struct cm_nickcert); k = cm_json_string(nick, NULL); nickcert->cm_nickname = talloc_strdup(nickcert, k); k = cm_json_string(val, NULL); nickcert->cm_cert = talloc_strdup(nickcert, k); nickcerts[j++] = nickcert; } nickcerts[j] = NULL; state->entry->cm_cert_roots = nickcerts; } cm_log(1, "Certificate issued (%ld chain certificates, %ld roots).\n", cm_json_array_size(chain) > 0 ? (long) cm_json_array_size(chain) : 0, cm_json_array_size(roots) > 0 ? (long) cm_json_array_size(roots) : 0); return 0; } /* Check if the submission helper can't request certificates. */ static int cm_submit_e_unsupported(struct cm_submit_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED)) { return 0; } return -1; } /* Check if the submission helper is just unconfigured. */ static int cm_submit_e_unconfigured(struct cm_submit_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_UNCONFIGURED)) { return 0; } return -1; } /* Check if the certificate request was rejected. */ static int cm_submit_e_rejected(struct cm_submit_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_REJECTED)) { return 0; } return -1; } /* Check if we need SCEP data for this helper. */ static int cm_submit_e_need_scep_messages(struct cm_submit_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES)) { return 0; } return -1; } /* Check if the CA says we need to use a new public key. */ static int cm_submit_e_need_rekey(struct cm_submit_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_NEED_REKEY)) { return 0; } return -1; } /* Check if the CA was unreachable. If the exit status was right, then we * never actually talked to the CA. */ static int cm_submit_e_unreachable(struct cm_submit_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_UNREACHABLE)) { return 0; } return -1; } /* Done talking to the CA; clean up. */ static void cm_submit_e_done(struct cm_submit_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Dig the SubjectPublicKeyInfo out of the certificate, and return it * hex-encoded, as we do when we're reading key information, so that we can * easily compare it to values obtained from there. */ static char * cm_submit_e_get_spki(void *parent, const char *pem) { X509 *x = NULL; BIO *in; unsigned char *pubkey, *p; char *wpem, *ret = NULL; int pubkey_len; wpem = talloc_strdup(parent, pem); if (wpem != NULL) { in = BIO_new_mem_buf(wpem, -1); if (in != NULL) { x = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); } } if (x != NULL) { pubkey_len = i2d_X509_PUBKEY(X509_get_X509_PUBKEY(x), NULL); if (pubkey_len > 0) { pubkey = talloc_size(wpem, pubkey_len); if (pubkey != NULL) { p = pubkey; i2d_X509_PUBKEY(X509_get_X509_PUBKEY(x), &p); ret = cm_store_hex_from_bin(parent, pubkey, pubkey_len); } } X509_free(x); } talloc_free(wpem); return ret; } /* Attempt to postprocess the helper output, breaking up PKCS#7 signed data * blobs into certificates, decrypting PKCS#7 enveloped data, and making a few * sanity checks. */ static int cm_submit_e_postprocess_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { struct cm_submit_external_state *estate = userdata; struct cm_json *msg, *json, *chain, *roots, *tmp, *cert, *val, *nick; char *leaf = NULL, *top = NULL, **others = NULL, *encoded, *spki; const char *eom = NULL, *nickname, *p; const unsigned char *u; char *toproot = NULL, *leafroot = NULL, **otherroots = NULL; char *nthnick; ssize_t length; int i, j; FILE *status; void (*decrypt)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length) = NULL; struct cm_submit_decrypt_envelope_args decrypt_args; status = fdopen(fd, "w"); if (status == NULL) { cm_log(1, "Internal error.\n"); _exit(errno); } cm_log(1, "Postprocessing output \"%.*s\".\n", estate->msg_length, estate->msg); switch (entry->cm_key_storage_type) { case cm_key_storage_none: decrypt = NULL; break; case cm_key_storage_file: decrypt = &cm_submit_o_decrypt_envelope; break; case cm_key_storage_nssdb: decrypt = &cm_submit_n_decrypt_envelope; break; } memset(&decrypt_args, 0, sizeof(decrypt_args)); decrypt_args.ca = ca; decrypt_args.entry = entry; /* If we can't decode it as JSON, decode it as basic data. */ if ((cm_json_decode(estate, estate->msg, estate->msg_length, &msg, &eom) != 0) || (eom != estate->msg + estate->msg_length)) { /* Data is one or more certificates and PKCS#7 bundles, * probably in PEM format, or if there's only one, possibly in * DER format. Take it apart and build a JSON structure out of * it to mimic an incoming message. */ i = cm_pkcs7_parse(0, estate, &leaf, &top, &others, decrypt, &decrypt_args, (const unsigned char *) estate->msg, estate->msg_length, NULL); msg = cm_json_new_object(estate); chain = cm_json_new_array(msg); if (leaf != NULL) { cert = cm_json_new_string(msg, leaf, -1); cm_json_set(msg, CM_SUBMIT_E_CERTIFICATE, cert); } for (i = 0; (others != NULL) && (others[i] != NULL); i++) { cert = cm_json_new_object(chain); val = cm_json_new_string(cert, others[i], -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "chain #%d", i + 1); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(chain, cert); } if (top!= NULL) { cert = cm_json_new_object(chain); val = cm_json_new_string(cert, top, -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "chain #%d", i + 1); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(chain, cert); } if (cm_json_array_size(chain) > 0) { cm_json_set(msg, CM_SUBMIT_E_CHAIN, chain); } } /* Get ready to build an output message. */ json = cm_json_new_object(entry); roots = cm_json_new_array(json); chain = cm_json_new_array(json); /* Data is a JSON object, with a "certificate" PEM string, and possibly * "chain" and "roots" arrays containing objects which are * nickname/string sets. Parse out the certificate, keeping the leaf * node as the certificate, relegating the rest to the chain list. */ cert = cm_json_get(msg, CM_SUBMIT_E_CERTIFICATE); u = (const unsigned char *) cm_json_string(cert, &length); i = cm_pkcs7_parse(0, estate, &leaf, &top, &others, NULL, NULL, u, length, NULL); if (i == 0) { if (leaf != NULL) { cert = cm_json_new_string(json, leaf, -1); cm_json_set(json, CM_SUBMIT_E_CERTIFICATE, cert); } for (i = 0; (others != NULL) && (others[i] != NULL); i++) { cert = cm_json_new_object(chain); val = cm_json_new_string(cert, others[i], -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "chain #0.%d", i + 1); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(chain, cert); } if (top!= NULL) { cert = cm_json_new_object(chain); val = cm_json_new_string(cert, top, -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "chain #0.%d", i + 1); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(chain, cert); } } /* Now look at each item in the roots list. */ tmp = cm_json_get(msg, CM_SUBMIT_E_ROOTS); for (i = 0; i < cm_json_array_size(tmp); i++) { cert = cm_json_n(tmp, i); if (cm_json_type(cert) != cm_json_type_object) { continue; } /* Pull the root certificate, or whatever it is. */ val = cm_json_get(cert, CM_SUBMIT_E_CERTIFICATE); if ((val == NULL) || (cm_json_type(val) != cm_json_type_string)) { continue; } /* Read the nickname, or provide a default. */ nick = cm_json_get(cert, CM_SUBMIT_E_NICKNAME); if ((nick == NULL) || (cm_json_type(nick) != cm_json_type_string)) { p = talloc_asprintf(cert, "root #%d", i + 1); nick = cm_json_new_string(roots, p, -1); } nickname = cm_json_string(nick, NULL); /* Let the parser at it. */ u = (const unsigned char *) cm_json_string(val, &length); j = cm_pkcs7_parse(0, estate, &leafroot, &toproot, &otherroots, NULL, NULL, u, length, NULL); if (j == 0) { if (leafroot != NULL) { cert = cm_json_new_object(roots); val = cm_json_new_string(cert, leafroot, -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nick = cm_json_new_string(cert, nickname, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(roots, cert); } for (j = 0; (otherroots != NULL) && (otherroots[j] != NULL); j++) { cert = cm_json_new_object(roots); val = cm_json_new_string(cert, otherroots[i], -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "%s #%d", nickname, j + 2); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(roots, cert); } if (toproot != NULL) { cert = cm_json_new_object(roots); val = cm_json_new_string(cert, toproot, -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "%s #%d", nickname, j + 2); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(roots, cert); } } } /* Now do the same for any chain certificates. */ tmp = cm_json_get(msg, CM_SUBMIT_E_CHAIN); for (i = 0; i < cm_json_array_size(tmp); i++) { cert = cm_json_n(tmp, i); if (cm_json_type(cert) != cm_json_type_object) { continue; } /* Pull the chain certificate, or whatever it is. */ val = cm_json_get(cert, CM_SUBMIT_E_CERTIFICATE); if ((val == NULL) || (cm_json_type(val) != cm_json_type_string)) { continue; } /* Read the nickname, or provide a default. */ nick = cm_json_get(cert, CM_SUBMIT_E_NICKNAME); if ((nick == NULL) || (cm_json_type(nick) != cm_json_type_string)) { p = talloc_asprintf(cert, "chain #%d", i + 1); nick = cm_json_new_string(chain, p, -1); } nickname = cm_json_string(nick, NULL); /* Let the parser at it. */ u = (const unsigned char *) cm_json_string(val, &length); j = cm_pkcs7_parse(0, estate, &leafroot, &toproot, &otherroots, NULL, NULL, u, length, NULL); if (j == 0) { if (leafroot != NULL) { cert = cm_json_new_object(chain); val = cm_json_new_string(cert, leafroot, -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nick = cm_json_new_string(cert, nickname, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(chain, cert); } for (j = 0; (otherroots != NULL) && (otherroots[j] != NULL); j++) { cert = cm_json_new_object(chain); val = cm_json_new_string(cert, otherroots[i], -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "%s #%d", nickname, j + 2); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(chain, cert); } if (toproot != NULL) { cert = cm_json_new_object(chain); val = cm_json_new_string(cert, toproot, -1); cm_json_set(cert, CM_SUBMIT_E_CERTIFICATE, val); nthnick = talloc_asprintf(cert, "%s #%d", nickname, j + 2); nick = cm_json_new_string(cert, nthnick, -1); cm_json_set(cert, CM_SUBMIT_E_NICKNAME, nick); cm_json_append(chain, cert); } } } /* and put the lists into the final document. */ if (cm_json_array_size(chain) > 0) { cm_json_set(json, CM_SUBMIT_E_CHAIN, chain); } if (cm_json_array_size(roots) > 0) { cm_json_set(json, CM_SUBMIT_E_ROOTS, roots); } /* Provide some indications about the key. */ spki = cm_submit_e_get_spki(json, leaf); if (spki != NULL) { if ((entry->cm_key_next_pubkey_info != NULL) && (strlen(entry->cm_key_next_pubkey_info) > 0)) { if (strcmp(spki, entry->cm_key_pubkey_info) == 0) { /* We were issued a certificate * containing a the OLD pubkey. */ cm_json_set(json, "key_reused", cm_json_new_boolean(json, 1)); } else if ((strcmp(spki, entry->cm_key_next_pubkey_info) != 0)) { /* We were issued a certificate * containing a pubkey different from * one we asked to be signed. */ cm_json_set(json, "key_mismatch", cm_json_new_boolean(json, 1)); } else { cm_json_set(json, "key_checked", cm_json_new_boolean(json, 1)); } } else { if ((strcmp(spki, entry->cm_key_pubkey_info) != 0)) { /* We were issued a certificate * containing a pubkey different from * one we asked to be signed. */ cm_json_set(json, "key_mismatch", cm_json_new_boolean(json, 1)); } else { cm_json_set(json, "key_checked", cm_json_new_boolean(json, 1)); } } } else { cm_log(3, "Error retrieving SPKI from certificate.\n"); } encoded = cm_json_encode(entry, json); fprintf(status, "%s\n", encoded); fflush(status); _exit(0); } /* Attempt to exec the helper. */ struct cm_submit_e_helper_args { int error_fd; const char *spki, *operation; }; static int maybe_setenv(const char *var, const char *val) { if ((var == NULL) || (val == NULL) || (strlen(val) == 0)) { return -1; } return setenv(var, val, 1); } static int cm_submit_e_helper_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { struct cm_submit_e_helper_args *args = userdata; char **argv; const char *error, *key_type; unsigned char u; maybe_setenv(CM_SUBMIT_REQ_SUBJECT_ENV, entry->cm_template_subject); maybe_setenv(CM_SUBMIT_REQ_EMAIL_ENV, cm_submit_maybe_joinv(NULL, "\n", entry->cm_template_email)); maybe_setenv(CM_SUBMIT_REQ_HOSTNAME_ENV, cm_submit_maybe_joinv(NULL, "\n", entry->cm_template_hostname)); maybe_setenv(CM_SUBMIT_REQ_PRINCIPAL_ENV, cm_submit_maybe_joinv(NULL, "\n", entry->cm_template_principal)); maybe_setenv(CM_SUBMIT_OPERATION_ENV, args->operation); maybe_setenv(CM_SUBMIT_CSR_ENV, entry->cm_csr); maybe_setenv(CM_SUBMIT_SPKAC_ENV, entry->cm_spkac); maybe_setenv(CM_SUBMIT_SPKI_ENV, args->spki); maybe_setenv(CM_STORE_LOCAL_CA_DIRECTORY_ENV, cm_env_local_ca_dir()); key_type = NULL; switch (entry->cm_key_type.cm_key_algorithm) { case cm_key_rsa: key_type = "RSA"; break; #ifdef CM_ENABLE_DSA case cm_key_dsa: key_type = "DSA"; break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: key_type = "EC"; break; #endif case cm_key_unspecified: key_type = NULL; break; } maybe_setenv(CM_SUBMIT_KEY_TYPE_ENV, key_type); maybe_setenv(CM_SUBMIT_COOKIE_ENV, entry->cm_ca_cookie); maybe_setenv(CM_SUBMIT_CA_NICKNAME_ENV, entry->cm_ca_nickname); maybe_setenv(CM_SUBMIT_PROFILE_ENV, entry->cm_template_profile); maybe_setenv(CM_SUBMIT_CERTIFICATE_ENV, entry->cm_cert); /* Only pass SCEP data to the helper if we haven't used this set of * nonced data before. It'll ask for fresh data if it needs it. */ maybe_setenv(CM_SUBMIT_SCEP_CA_IDENTIFIER_ENV, ca->cm_ca_scep_ca_identifier); maybe_setenv(CM_SUBMIT_SCEP_RA_CERTIFICATE_ENV, ca->cm_ca_encryption_cert); maybe_setenv(CM_SUBMIT_SCEP_CA_CERTIFICATE_ENV, ca->cm_ca_encryption_issuer_cert); maybe_setenv(CM_SUBMIT_SCEP_CERTIFICATES_ENV, ca->cm_ca_encryption_cert_pool); if ((entry->cm_scep_last_nonce == NULL) || (entry->cm_scep_nonce == NULL) || (strcmp(entry->cm_scep_last_nonce, entry->cm_scep_nonce) != 0)) { maybe_setenv(CM_SUBMIT_SCEP_PKCSREQ_ENV, entry->cm_scep_req); maybe_setenv(CM_SUBMIT_SCEP_GETCERTINITIAL_ENV, entry->cm_scep_gic); maybe_setenv(CM_SUBMIT_SCEP_PKCSREQ_REKEY_ENV, entry->cm_scep_req_next); maybe_setenv(CM_SUBMIT_SCEP_GETCERTINITIAL_REKEY_ENV, entry->cm_scep_gic_next); } maybe_setenv(CM_SUBMIT_REQ_IP_ADDRESS_ENV, cm_submit_maybe_joinv(NULL, "\n", entry->cm_template_ipaddress)); if (dup2(fd, STDOUT_FILENO) == -1) { u = errno; cm_log(1, "Error redirecting standard out for " "enrollment helper: %s.\n", strerror(errno)); if (write(args->error_fd, &u, 1) != 1) { cm_log(1, "Error sending error result to parent.\n"); } return u; } error = NULL; argv = cm_subproc_parse_args(ca, ca->cm_ca_external_helper, &error); if (argv == NULL) { if (error != NULL) { cm_log(0, "Error parsing \"%s\": %s.\n", ca->cm_ca_external_helper, error); } else { cm_log(0, "Error parsing \"%s\".\n", ca->cm_ca_external_helper); } return -1; } cm_subproc_mark_most_cloexec(STDOUT_FILENO, -1, -1); cm_log(1, "Running enrollment helper \"%s\".\n", argv[0]); execvp(argv[0], argv); u = errno; if (write(args->error_fd, &u, 1) != 1) { cm_log(1, "Error sending error result to parent.\n"); } return u; } /* Start CSR submission using parameters stored in the entry. */ static struct cm_submit_state * cm_submit_e_start_or_resume(struct cm_store_ca *ca, struct cm_store_entry *entry, const char *spki, const char *operation) { int errorfds[2], nread; unsigned char u; struct cm_submit_state *state; struct cm_submit_external_state *estate; struct cm_submit_e_helper_args args; state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->entry = entry; state->save_ca_cookie = cm_submit_e_save_ca_cookie; state->ready = cm_submit_e_ready; state->issued = cm_submit_e_issued; state->rejected = cm_submit_e_rejected; state->need_scep_messages = cm_submit_e_need_scep_messages; state->need_rekey = cm_submit_e_need_rekey; state->unreachable = cm_submit_e_unreachable; state->unconfigured = cm_submit_e_unconfigured; state->unsupported = cm_submit_e_unsupported; state->done = cm_submit_e_done; state->delay = -1; estate = talloc_ptrtype(state, estate); if (estate == NULL) { talloc_free(state); return NULL; } memset(estate, 0, sizeof(*estate)); estate->phase = running_helper; estate->ca = ca; estate->entry = entry; state->reserved = estate; if (pipe(errorfds) != -1) { if (fcntl(errorfds[1], F_SETFD, 1L) == -1) { close(errorfds[0]); close(errorfds[1]); cm_log(-1, "Unexpected error while " "starting helper \"%s\".", ca->cm_ca_external_helper); cm_subproc_done(state->subproc); talloc_free(state); state = NULL; } else { args.error_fd = errorfds[1]; args.spki = spki; args.operation = operation; state->subproc = cm_subproc_start(cm_submit_e_helper_main, state, ca, entry, &args); close(errorfds[1]); if (state->subproc == NULL) { talloc_free(state); state = NULL; } else { nread = read(errorfds[0], &u, 1); switch (nread) { case 0: /* no data = kernel * closed-on-exec, so the * helper started */ break; case -1: /* huh? */ cm_log(-1, "Unexpected error " "while starting helper " "\"%s\".\n", ca->cm_ca_external_helper); cm_subproc_done(state->subproc); talloc_free(state); state = NULL; break; case 1: default: cm_log(-1, "Error while starting " "helper \"%s\": %s.\n", ca->cm_ca_external_helper, strerror(u)); cm_subproc_done(state->subproc); talloc_free(state); state = NULL; break; } } close(errorfds[0]); } } } return state; } /* Start CSR submission using parameters stored in the entry. */ struct cm_submit_state * cm_submit_e_start(struct cm_store_ca *ca, struct cm_store_entry *entry) { struct cm_submit_state *ret; char *spki = NULL; if (entry->cm_key_pubkey_info != NULL) { spki = cm_store_base64_from_hex(entry, entry->cm_key_pubkey_info); } if ((entry->cm_ca_cookie != NULL) && (strlen(entry->cm_ca_cookie) > 0)) { ret = cm_submit_e_start_or_resume(ca, entry, spki, "POLL"); } else { ret = cm_submit_e_start_or_resume(ca, entry, spki, "SUBMIT"); if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { entry->cm_key_next_requested_count++; } else { entry->cm_key_requested_count++; } } if (spki != NULL) { talloc_free(spki); } return ret; } const char * cm_submit_e_status_text(enum cm_external_status status) { switch (status) { case CM_SUBMIT_STATUS_ISSUED: return "ISSUED"; case CM_SUBMIT_STATUS_WAIT: return "WAIT"; case CM_SUBMIT_STATUS_REJECTED: return "REJECTED"; case CM_SUBMIT_STATUS_UNREACHABLE: return "UNREACHABLE"; case CM_SUBMIT_STATUS_UNCONFIGURED: return "UNCONFIGURED"; case CM_SUBMIT_STATUS_WAIT_WITH_DELAY: return "WAIT_WITH_DELAY"; case CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED: return "OPERATION_NOT_SUPPORTED_BY_HELPER"; case CM_SUBMIT_STATUS_NEED_SCEP_MESSAGES: return "NEED_SCEP_MESSAGES"; case CM_SUBMIT_STATUS_NEED_REKEY: return "NEED_REKEY"; } return "(unknown)"; } certmonger-0.78.6/src/submit.c0000664000175000017500000001133612645513264013156 00000000000000/* * Copyright (C) 2009,2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include "log.h" #include "submit.h" #include "submit-int.h" #include "store-int.h" #include "subproc.h" /* Start CSR submission using parameters stored in the entry. */ struct cm_submit_state * cm_submit_start(struct cm_store_ca *ca, struct cm_store_entry *entry) { if (ca == NULL) { if (entry != NULL) { if (entry->cm_ca_nickname != NULL) { cm_log(1, "No matching CA \"%s\" for " "%s('%s').\n", entry->cm_ca_nickname, entry->cm_busname, entry->cm_nickname); } else { cm_log(1, "No matching CA for %s('%s').\n", entry->cm_busname, entry->cm_nickname); } } else { cm_log(1, "No matching CA.\n"); } return NULL; } talloc_free(entry->cm_ca_error); entry->cm_ca_error = NULL; switch (ca->cm_ca_type) { case cm_ca_internal_self: switch (entry->cm_key_storage_type) { case cm_key_storage_none: cm_log(1, "Can't self-sign %s('%s') without access to " "the private key.\n", entry->cm_busname, entry->cm_nickname); break; #ifdef HAVE_OPENSSL case cm_key_storage_file: return cm_submit_so_start(ca, entry); break; #endif #ifdef HAVE_NSS case cm_key_storage_nssdb: return cm_submit_sn_start(ca, entry); break; #endif } break; case cm_ca_external: if (ca->cm_ca_external_helper == NULL) { cm_log(1, "No helper defined for CA %s('%s').\n", entry->cm_busname, entry->cm_nickname); return NULL; } return cm_submit_e_start(ca, entry); } return NULL; } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_submit_get_fd(struct cm_submit_state *state) { return cm_subproc_get_fd(state->subproc); } /* Check if the CSR was submitted to the CA yet, or we figured out that it * wasn't possible to accomplish it. */ int cm_submit_ready(struct cm_submit_state *state) { return (*state->ready)(state); } /* Save CA-specific identifier for our submitted request. */ int cm_submit_save_ca_cookie(struct cm_submit_state *state) { return (*state->save_ca_cookie)(state); } /* Clear CA-specific identifier for our submitted request. */ int cm_submit_clear_ca_cookie(struct cm_submit_state *state) { talloc_free(state->entry->cm_ca_cookie); state->entry->cm_ca_cookie = NULL; return 0; } /* Check if the certificate was issued. */ int cm_submit_issued(struct cm_submit_state *state) { return (*state->issued)(state); } /* Check if the certificate was rejected. */ int cm_submit_rejected(struct cm_submit_state *state) { return (*state->rejected)(state); } /* Check if we need SCEP-specific data to be generated. */ int cm_submit_need_scep_messages(struct cm_submit_state *state) { return (*state->need_scep_messages)(state); } /* Check if we need to generate a new key and try again. */ int cm_submit_need_rekey(struct cm_submit_state *state) { return (*state->need_rekey)(state); } /* Check if we're unconfigured or underconfigured. */ int cm_submit_unconfigured(struct cm_submit_state *state) { return (*state->unconfigured)(state); } /* Check if we don't support requesting certificates. */ int cm_submit_unsupported(struct cm_submit_state *state) { return (*state->unsupported)(state); } /* Check if the CA was unreachable. */ int cm_submit_unreachable(struct cm_submit_state *state) { return (*state->unreachable)(state); } /* Done talking to the CA. */ void cm_submit_done(struct cm_submit_state *state) { (*state->done)(state); } /* How long should we wait before talking to the CA again? */ int cm_submit_specified_delay(struct cm_submit_state *state) { return state->delay; } /* Concatenate some strings. */ char * cm_submit_maybe_joinv(void *parent, const char *sep, char **s) { int i, l; char *ret = NULL; for (i = 0, l = 0; (s != NULL) && (s[i] != NULL); i++) { l += i ? strlen(sep) + strlen(s[i]) : strlen(s[i]); } if (l > 0) { ret = talloc_zero_size(parent, l + 1); if (ret != NULL) { for (i = 0; s[i] != NULL; i++) { if (i > 0) { strcat(ret, sep); } strcat(ret, s[i]); } } } return ret; } certmonger-0.78.6/src/store-int.h0000664000175000017500000003274412645513264013612 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmstore_int_h #define cmstore_int_h #include #include struct cm_store_entry { /* Per-instance unique identifier. */ char *cm_busname; /* Store-private data - usually an identifier for the nonvolatile * saved copy, might be other stuff. */ void *cm_store_private; /* A persistent unique identifier or nickname. */ char *cm_nickname; /* Type of key pair to generate [or use default settings] RSA,2048 */ struct cm_key_type { enum cm_key_algorithm { cm_key_unspecified = 0, cm_key_rsa = 1, #ifdef CM_ENABLE_DSA cm_key_dsa, #endif #ifdef CM_ENABLE_EC cm_key_ecdsa, #endif } cm_key_algorithm, cm_key_gen_algorithm; int cm_key_size, cm_key_gen_size; } cm_key_type, cm_key_next_type; char *cm_key_next_marker; unsigned int cm_key_preserve: 1; time_t cm_key_generated_date, cm_key_next_generated_date; unsigned int cm_key_issued_count; unsigned int cm_key_requested_count, cm_key_next_requested_count; /* Location of key pair [use-once default] NSS,/etc/pki/nssdb */ enum cm_key_storage_type { cm_key_storage_none = 0, cm_key_storage_file, cm_key_storage_nssdb, } cm_key_storage_type; char *cm_key_storage_location; char *cm_key_token; char *cm_key_nickname; char *cm_key_pin; char *cm_key_pin_file; char *cm_key_owner; mode_t cm_key_perms; /* Cached plain public key (used for computing subject and authority key IDs) */ char *cm_key_pubkey, *cm_key_next_pubkey; /* Cached public key info (used in signing requests when using NSS) */ char *cm_key_pubkey_info, *cm_key_next_pubkey_info; /* Location of certificate [use-once default] * NSS,/etc/pki/nssdb,Server-Cert-default */ enum cm_cert_storage_type { cm_cert_storage_file = 0, cm_cert_storage_nssdb, } cm_cert_storage_type; char *cm_cert_storage_location; char *cm_cert_token; char *cm_cert_nickname; char *cm_cert_owner; mode_t cm_cert_perms; /* Cached certificate issuer/serial/subject/spki/expiration */ char *cm_cert_issuer_der; char *cm_cert_issuer; char *cm_cert_serial; char *cm_cert_subject_der; char *cm_cert_subject; char *cm_cert_spki; time_t cm_cert_not_before; time_t cm_cert_not_after; char **cm_cert_hostname; char **cm_cert_email; char **cm_cert_principal; char **cm_cert_ipaddress; char *cm_cert_ku; char *cm_cert_eku; unsigned int cm_cert_is_ca: 1; int cm_cert_ca_path_length; char **cm_cert_crl_distribution_point; char **cm_cert_freshest_crl; char **cm_cert_ocsp_location; char *cm_cert_ns_comment; char *cm_cert_profile; char *cm_cert_ns_certtype; unsigned int cm_cert_no_ocsp_check: 1; time_t cm_last_need_notify_check; time_t cm_last_need_enroll_check; /* How to notify administrator: syslog(LOG_AUTHPRIV?), mail to root@? */ enum cm_notification_method { cm_notification_unspecified, cm_notification_none, cm_notification_syslog, cm_notification_email, cm_notification_command, cm_notification_stdout, /* for testing _ONLY_ */ } cm_notification_method; char *cm_notification_destination; /* CSR template information [or imported from existing certificate] * subject (cn=host name) * subjectaltname * hostname * email * principal name * IP address * ku, eku * is_ca, ca_path_length * crl_distribution_points * freshest_crl * aia_ocsp_locations * nscomment * template */ char *cm_template_subject_der; char *cm_template_subject; char **cm_template_hostname; char **cm_template_email; char **cm_template_principal; char **cm_template_ipaddress; char *cm_template_ku; char *cm_template_eku; unsigned int cm_template_is_ca: 1; int cm_template_ca_path_length; char **cm_template_crl_distribution_point; char **cm_template_freshest_crl; char **cm_template_ocsp_location; char *cm_template_ns_comment; char *cm_template_profile; char *cm_template_ns_certtype; unsigned int cm_template_no_ocsp_check: 1; /* A challenge password, which may be included (in cleartext form!) in * a CSR. */ char *cm_template_challenge_password; char *cm_template_challenge_password_file; /* The CSR, base64-encoded. */ char *cm_csr; /* The SPKAC, base64-encoded. */ char *cm_spkac; /* An SCEP transaction number corresponding to this CSR and signing request. */ char *cm_scep_tx; /* An SCEP nonce. */ char *cm_scep_nonce, *cm_scep_last_nonce; /* An SCEP PKCSReq message, signed with our current key, and possibly * the next key. */ char *cm_scep_req, *cm_scep_req_next; /* An SCEP GetInitialCert message, signed with our current key, and * possibly the next key. */ char *cm_scep_gic, *cm_scep_gic_next; /* A minimal self-signed certificate. */ char *cm_minicert; /* Our idea of the state of the cert. */ enum cm_state { CM_NEED_KEY_PAIR, CM_GENERATING_KEY_PAIR, CM_NEED_KEY_GEN_PERMS, CM_NEED_KEY_GEN_PIN, CM_NEED_KEY_GEN_TOKEN, CM_HAVE_KEY_PAIR, CM_NEED_KEYINFO, CM_READING_KEYINFO, CM_NEED_KEYINFO_READ_PIN, CM_NEED_KEYINFO_READ_TOKEN, CM_HAVE_KEYINFO, CM_NEED_CSR, CM_GENERATING_CSR, CM_NEED_CSR_GEN_PIN, CM_NEED_CSR_GEN_TOKEN, CM_HAVE_CSR, CM_NEED_SCEP_DATA, CM_GENERATING_SCEP_DATA, CM_NEED_SCEP_GEN_PIN, CM_NEED_SCEP_GEN_TOKEN, CM_NEED_SCEP_ENCRYPTION_CERT, CM_NEED_SCEP_RSA_CLIENT_KEY, CM_HAVE_SCEP_DATA, CM_NEED_TO_SUBMIT, CM_SUBMITTING, CM_NEED_CA, CM_CA_UNREACHABLE, CM_CA_UNCONFIGURED, CM_CA_REJECTED, CM_CA_WORKING, CM_NEED_TO_SAVE_CERT, CM_PRE_SAVE_CERT, CM_START_SAVING_CERT, CM_SAVING_CERT, CM_NEED_CERTSAVE_PERMS, CM_NEED_CERTSAVE_TOKEN, CM_NEED_CERTSAVE_PIN, CM_NEED_TO_SAVE_CA_CERTS, CM_START_SAVING_CA_CERTS, CM_SAVING_CA_CERTS, CM_NEED_CA_CERT_SAVE_PERMS, CM_NEED_TO_SAVE_ONLY_CA_CERTS, CM_START_SAVING_ONLY_CA_CERTS, CM_SAVING_ONLY_CA_CERTS, CM_NEED_ONLY_CA_CERT_SAVE_PERMS, CM_NEED_TO_READ_CERT, CM_READING_CERT, CM_SAVED_CERT, CM_POST_SAVED_CERT, CM_MONITORING, CM_NEED_TO_NOTIFY_VALIDITY, CM_NOTIFYING_VALIDITY, CM_NEED_TO_NOTIFY_REJECTION, CM_NOTIFYING_REJECTION, CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED, CM_NOTIFYING_ISSUED_SAVE_FAILED, CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED, CM_NOTIFYING_ISSUED_CA_SAVE_FAILED, CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED, CM_NOTIFYING_ONLY_CA_SAVE_FAILED, CM_NEED_TO_NOTIFY_ISSUED_SAVED, CM_NOTIFYING_ISSUED_SAVED, CM_NEED_GUIDANCE, CM_NEWLY_ADDED, CM_NEWLY_ADDED_START_READING_KEYINFO, CM_NEWLY_ADDED_READING_KEYINFO, CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN, CM_NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN, CM_NEWLY_ADDED_START_READING_CERT, CM_NEWLY_ADDED_READING_CERT, CM_NEWLY_ADDED_DECIDING, CM_INVALID, } cm_state; /* Whether to autorenew-at-expiration */ unsigned int cm_autorenew:1; /* Whether to start monitoring at issue */ unsigned int cm_monitor:1; /* Type and location of CA [or use default if NULL] */ char *cm_ca_nickname; /* Date of submission for in-progress submissions. */ time_t cm_submitted; /* Value of CA cookie for in-progress submissions. */ char *cm_ca_cookie; /* An error message from the CA, hopefully a useful one. */ char *cm_ca_error; /* The certificate, if we have one. */ char *cm_cert; /* Certificates between ours and the CA's root, if there are any. */ struct cm_nickcert { char *cm_nickname; /* Suggested nickname. */ char *cm_cert; /* PEM-format certificate. */ } **cm_cert_chain; /* Per-certificate CA certificate list, if for some reason we're * tracking CA certificates for just this certificate instead of as * part of the metadata we keep about the CA. */ struct cm_nickcert **cm_cert_roots; /* A command to run before we save the certificate. */ char *cm_pre_certsave_command; /* The UID of the user as whom we run the above command. */ char *cm_pre_certsave_uid; /* A command to run after we save the certificate. */ char *cm_post_certsave_command; /* The UID of the user as whom we run the above command. */ char *cm_post_certsave_uid; /* Initially-empty lists of places where we the CA's roots, the CA's * other roots, and the CA's other certs and our chain. */ char **cm_root_cert_store_files; char **cm_other_root_cert_store_files; char **cm_other_cert_store_files; char **cm_root_cert_store_nssdbs; char **cm_other_root_cert_store_nssdbs; char **cm_other_cert_store_nssdbs; }; struct cm_store_ca { /* Per-instance unique identifier. */ char *cm_busname; /* Store-private data - usually an identifier for the nonvolatile * saved copy, might be other stuff. */ void *cm_store_private; /* A persistent unique identifier or nickname. */ char *cm_nickname; /* What the helper suggests it be called. */ char *cm_ca_aka; /* We have multiple state machines. */ enum cm_ca_phase { cm_ca_phase_identify = 0, cm_ca_phase_certs, cm_ca_phase_profiles, cm_ca_phase_default_profile, cm_ca_phase_enroll_reqs, cm_ca_phase_renew_reqs, cm_ca_phase_capabilities, cm_ca_phase_encryption_certs, cm_ca_phase_invalid, } cm_ca_phase; /* Data refresh state. */ enum cm_ca_phase_state { CM_CA_IDLE = 0, CM_CA_NEED_TO_REFRESH, CM_CA_REFRESHING, CM_CA_DATA_UNREACHABLE, CM_CA_NEED_TO_SAVE_DATA, CM_CA_PRE_SAVE_DATA, CM_CA_START_SAVING_DATA, CM_CA_SAVING_DATA, CM_CA_NEED_POST_SAVE_DATA, CM_CA_POST_SAVE_DATA, CM_CA_SAVED_DATA, CM_CA_NEED_TO_ANALYZE, CM_CA_ANALYZING, CM_CA_DISABLED, } cm_ca_state[cm_ca_phase_invalid]; /* A list of issuer names. If no CA is specified when we create a new * request, and the certificate already exists and was issued by one of * these names, we'll use this CA. */ char **cm_ca_known_issuer_names; /* Whether or not this is the default, absent any matches with issuer * names of other CAs. */ int cm_ca_is_default:1; /* Type of CA. Internal helpers can't be deleted and are handled by * internal logic. External helpers can be deleted, and call out to a * helper to do the actual submission. */ enum cm_ca_type { cm_ca_internal_self, cm_ca_external, } cm_ca_type; char *cm_ca_internal_serial; int cm_ca_internal_force_issue_time:1; time_t cm_ca_internal_issue_time; char *cm_ca_external_helper; /* An error message from the CA, hopefully a useful one. */ char *cm_ca_error; /* "The" root, at the top of the chain of trust. */ struct cm_nickcert **cm_ca_root_certs; /* A possibly-empty list of other trusted roots, for whatever reason. */ struct cm_nickcert **cm_ca_other_root_certs; /* A possibly-empty list of other certificates which we might need when * constructing chains. If our issuer isn't self-signed, then it * should show up in this list. */ struct cm_nickcert **cm_ca_other_certs; /* A list of attributes which the CA requires us to supply with * requests for new certificates, which we should in turn require of * our clients. */ char **cm_ca_required_enroll_attributes; char **cm_ca_required_renewal_attributes; /* A list of enrollment profiles which are supported, and a default. */ char **cm_ca_profiles; char *cm_ca_default_profile; /* A command to run before we save data to wherever it goes. */ char *cm_ca_pre_save_command; /* The UID of the user as whom we run the above command. */ char *cm_ca_pre_save_uid; /* A command to run after we save data to wherever it goes. */ char *cm_ca_post_save_command; /* The UID of the user as whom we run the above command. */ char *cm_ca_post_save_uid; /* Initially-empty lists of places where we store our roots, other * roots, and other certs. */ char **cm_ca_root_cert_store_files; char **cm_ca_other_root_cert_store_files; char **cm_ca_other_cert_store_files; char **cm_ca_root_cert_store_nssdbs; char **cm_ca_other_root_cert_store_nssdbs; char **cm_ca_other_cert_store_nssdbs; /* CA capabilities. Currently only ever SCEP capabilities. */ char **cm_ca_capabilities; /* An SCEP CA identifier, for use in gathering an RA (and possibly a * CA) certificate. */ char *cm_ca_scep_ca_identifier; /* The CA's SCEP RA certificate, used for encrypting requests to it. * Currently only used for SCEP. */ char *cm_ca_encryption_cert; /* The CA's SCEP CA certificate, if it's different from the RA's * certificate. Currently only used for SCEP. */ char *cm_ca_encryption_issuer_cert; /* The CA's SCEP certificate pool, used for other SCEP-related * certificates. A concatenated list of PEM-format certificates, since * we don't need anything more complicated than that in order to verify * the chain on signed data coming from the RA. */ char *cm_ca_encryption_cert_pool; }; const char *cm_store_state_as_string(enum cm_state state); enum cm_state cm_store_state_from_string(const char *name); const char *cm_store_ca_state_as_string(enum cm_ca_phase_state state); enum cm_ca_phase_state cm_store_ca_state_from_string(const char *name); const char *cm_store_ca_phase_as_string(enum cm_ca_phase phase); enum cm_ca_phase cm_store_ca_phase_from_string(const char *name); char *cm_store_entry_next_busname(void *parent); struct cm_store_entry *cm_store_files_entry_read(void *parent, const char *filename); char *cm_store_ca_next_busname(void *parent); struct cm_store_ca *cm_store_files_ca_read(void *parent, const char *filename); #endif certmonger-0.78.6/src/store.h0000664000175000017500000000563312645513264013017 00000000000000/* * Copyright (C) 2009,2011,2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmstore_h #define cmstore_h struct cm_store_entry; struct cm_store_ca; /* Generic routines. */ struct cm_store_entry *cm_store_entry_new(void *parent); struct cm_store_ca *cm_store_ca_new(void *parent); struct cm_store_entry *cm_store_entry_dup(void *parent, struct cm_store_entry *entry); struct cm_store_ca *cm_store_ca_dup(void *parent, struct cm_store_ca *ca); /* Store-specific entry storage. */ int cm_store_entry_save(struct cm_store_entry *entry); int cm_store_entry_delete(struct cm_store_entry *entry); struct cm_store_entry **cm_store_get_all_entries(void *parent); /* Store-specific CA storage. */ int cm_store_ca_save(struct cm_store_ca *ca); int cm_store_ca_delete(struct cm_store_ca *ca); struct cm_store_ca **cm_store_get_all_cas(void *parent); /* Utility functions. */ time_t cm_store_time_from_timestamp(const char *timestamp); char *cm_store_timestamp_from_time(time_t when, char timestamp[15]); char *cm_store_timestamp_from_time_for_display(time_t when, char timestamp[24]); char *cm_store_increment_serial(void *parent, const char *old_serial); char *cm_store_serial_to_binary(void *parent, const unsigned char *serial, int length); char *cm_store_serial_to_der(void *parent, const char *serial); char *cm_store_hex_from_bin(void *parent, const unsigned char *serial, int length); int cm_store_hex_to_bin(const char *serial, unsigned char *buf, int length); char *cm_store_base64_from_bin(void *parent, const unsigned char *buf, int length); int cm_store_base64_to_bin(const char *serial, int insize, unsigned char *buf, int maxlength); char *cm_store_base64_as_bin(void *parent, const char *serial, int insize, int *length); char *cm_store_base64_from_hex(void *parent, const char *hex); char *cm_store_canonicalize_path(void *parent, const char *path); char *cm_store_maybe_strdup(void *parent, const char *s); char **cm_store_maybe_strdupv(void *parent, char **s); void cm_store_set_if_not_set_s(void *parent, char **dest, char *src); void cm_store_set_if_not_set_as(void *parent, char ***dest, char **src); int cm_store_utf8_to_bmp_string(char *s, unsigned char **bmp, unsigned int *len); char *cm_store_utf8_from_bmp_string(unsigned char *bmp, unsigned int len); #endif certmonger-0.78.6/src/store-gen.c0000664000175000017500000005126112645513264013557 00000000000000/* * Copyright (C) 2009,2011,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include "store.h" #include "store-int.h" #define BASE64_ALPHABET "ABCDEFGHIJKLMNOPQRSTUVWXYZ" \ "abcdefghijklmnopqrstuvwxyz" \ "0123456789" \ "+/=" static const struct { const char *name; enum cm_state state; } cm_state_names[] = { {"NEED_KEY_PAIR", CM_NEED_KEY_PAIR}, {"GENERATING_KEY_PAIR", CM_GENERATING_KEY_PAIR}, {"NEED_KEY_GEN_PERMS", CM_NEED_KEY_GEN_PERMS}, {"NEED_KEY_GEN_PIN", CM_NEED_KEY_GEN_PIN}, {"NEED_KEY_GEN_TOKEN", CM_NEED_KEY_GEN_TOKEN}, {"HAVE_KEY_PAIR", CM_HAVE_KEY_PAIR}, {"NEED_KEYINFO", CM_NEED_KEYINFO}, {"READING_KEYINFO", CM_READING_KEYINFO}, {"NEED_KEYINFO_READ_PIN", CM_NEED_KEYINFO_READ_PIN}, {"NEED_KEYINFO_READ_TOKEN", CM_NEED_KEYINFO_READ_TOKEN}, {"HAVE_KEYINFO", CM_HAVE_KEYINFO}, {"NEED_CSR", CM_NEED_CSR}, {"GENERATING_CSR", CM_GENERATING_CSR}, {"NEED_CSR_GEN_PIN", CM_NEED_CSR_GEN_PIN}, {"NEED_CSR_GEN_TOKEN", CM_NEED_CSR_GEN_TOKEN}, {"HAVE_CSR", CM_HAVE_CSR}, {"NEED_SCEP_DATA", CM_NEED_SCEP_DATA}, {"GENERATING_SCEP_DATA", CM_GENERATING_SCEP_DATA}, {"NEED_SCEP_GEN_PIN", CM_NEED_SCEP_GEN_PIN}, {"NEED_SCEP_GEN_TOKEN", CM_NEED_SCEP_GEN_TOKEN}, {"NEED_SCEP_ENCRYPTION_CERT", CM_NEED_SCEP_ENCRYPTION_CERT}, {"NEED_SCEP_RSA_CLIENT_KEY", CM_NEED_SCEP_RSA_CLIENT_KEY}, {"HAVE_SCEP_DATA", CM_HAVE_SCEP_DATA}, {"NEED_TO_SUBMIT", CM_NEED_TO_SUBMIT}, {"SUBMITTING", CM_SUBMITTING}, {"NEED_CA", CM_NEED_CA}, {"CA_UNREACHABLE", CM_CA_UNREACHABLE}, {"CA_UNCONFIGURED", CM_CA_UNCONFIGURED}, {"CA_REJECTED", CM_CA_REJECTED}, {"CA_WORKING", CM_CA_WORKING}, {"NEED_TO_SAVE_CERT", CM_NEED_TO_SAVE_CERT}, {"PRE_SAVE_CERT", CM_PRE_SAVE_CERT}, {"START_SAVING_CERT", CM_START_SAVING_CERT}, {"SAVING_CERT", CM_SAVING_CERT}, {"NEED_CERTSAVE_PERMS", CM_NEED_CERTSAVE_PERMS}, {"NEED_CERTSAVE_TOKEN", CM_NEED_CERTSAVE_TOKEN}, {"NEED_CERTSAVE_PIN", CM_NEED_CERTSAVE_PIN}, {"NEED_TO_READ_CERT", CM_NEED_TO_READ_CERT}, {"READING_CERT", CM_READING_CERT}, {"SAVED_CERT", CM_SAVED_CERT}, {"POST_SAVED_CERT", CM_POST_SAVED_CERT}, {"MONITORING", CM_MONITORING}, {"NEED_TO_NOTIFY_VALIDITY", CM_NEED_TO_NOTIFY_VALIDITY}, {"NOTIFYING_VALIDITY", CM_NOTIFYING_VALIDITY}, {"NEED_TO_NOTIFY_REJECTION", CM_NEED_TO_NOTIFY_REJECTION}, {"NOTIFYING_REJECTION", CM_NOTIFYING_REJECTION}, {"NEED_TO_NOTIFY_ISSUED_SAVE_FAILED", CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED}, {"NOTIFYING_ISSUED_SAVE_FAILED", CM_NOTIFYING_ISSUED_SAVE_FAILED}, {"NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED", CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED}, {"NOTIFYING_ISSUED_CA_SAVE_FAILED", CM_NOTIFYING_ISSUED_CA_SAVE_FAILED}, {"NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED", CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED}, {"NOTIFYING_ONLY_CA_SAVE_FAILED", CM_NOTIFYING_ONLY_CA_SAVE_FAILED}, {"NEED_TO_SAVE_CA_CERTS", CM_NEED_TO_SAVE_CA_CERTS}, {"NEED_TO_SAVE_ONLY_CA_CERTS", CM_NEED_TO_SAVE_ONLY_CA_CERTS}, {"NEED_TO_NOTIFY_ISSUED_SAVED", CM_NEED_TO_NOTIFY_ISSUED_SAVED}, {"NOTIFYING_ISSUED_SAVED", CM_NOTIFYING_ISSUED_SAVED}, {"NEED_GUIDANCE", CM_NEED_GUIDANCE}, {"NEWLY_ADDED", CM_NEWLY_ADDED}, {"NEWLY_ADDED_START_READING_KEYINFO", CM_NEWLY_ADDED_START_READING_KEYINFO}, {"NEWLY_ADDED_READING_KEYINFO", CM_NEWLY_ADDED_READING_KEYINFO}, {"NEWLY_ADDED_NEED_KEYINFO_READ_PIN", CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN}, {"NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN", CM_NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN}, {"NEWLY_ADDED_START_READING_CERT", CM_NEWLY_ADDED_START_READING_CERT}, {"NEWLY_ADDED_READING_CERT", CM_NEWLY_ADDED_READING_CERT}, {"NEWLY_ADDED_DECIDING", CM_NEWLY_ADDED_DECIDING}, {"START_SAVING_CA_CERTS", CM_START_SAVING_CA_CERTS}, {"SAVING_CA_CERTS", CM_SAVING_CA_CERTS}, {"START_SAVING_ONLY_CA_CERTS", CM_START_SAVING_ONLY_CA_CERTS}, {"SAVING_ONLY_CA_CERTS", CM_SAVING_ONLY_CA_CERTS}, {"NEED_CA_CERT_SAVE_PERMS", CM_NEED_CA_CERT_SAVE_PERMS}, {"NEED_ONLY_CA_CERT_SAVE_PERMS", CM_NEED_ONLY_CA_CERT_SAVE_PERMS}, {"INVALID", CM_INVALID}, /* old names for since-renamed states */ {"NEED_TO_NOTIFY", CM_NEED_TO_NOTIFY_VALIDITY}, {"NOTIFYING", CM_NOTIFYING_VALIDITY}, {"NEWLY_ADDED_START_READING_KEYI", CM_NEWLY_ADDED_START_READING_KEYINFO}, {"NEWLY_ADDED_READING_KEYI", CM_NEWLY_ADDED_READING_KEYINFO}, {"NEWLY_ADDED_NEED_KEYI_READ_PIN", CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN}, {"NEED_TO_NOTIFY_ISSUED_FAILED", CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED}, {"NOTIFYING_ISSUED_FAILED", CM_NOTIFYING_ISSUED_SAVE_FAILED}, }; static const struct { const char *name; enum cm_ca_phase_state state; } cm_ca_state_names[] = { {"IDLE", CM_CA_IDLE}, {"NEED_TO_REFRESH", CM_CA_NEED_TO_REFRESH}, {"REFRESHING", CM_CA_REFRESHING}, {"UNREACHABLE", CM_CA_DATA_UNREACHABLE}, {"NEED_TO_SAVE_DATA", CM_CA_NEED_TO_SAVE_DATA}, {"PRE_SAVE_DATA", CM_CA_PRE_SAVE_DATA}, {"START_SAVING_DATA", CM_CA_START_SAVING_DATA}, {"SAVING_DATA", CM_CA_SAVING_DATA,}, {"NEED_POST_SAVE_DATA", CM_CA_NEED_POST_SAVE_DATA}, {"POST_SAVE_DATA", CM_CA_POST_SAVE_DATA}, {"SAVED_DATA", CM_CA_SAVED_DATA}, {"NEED_TO_ANALYZE", CM_CA_NEED_TO_ANALYZE}, {"ANALYZING", CM_CA_ANALYZING}, {"DISABLED", CM_CA_DISABLED}, }; static const struct { const char *name; enum cm_ca_phase phase; } cm_ca_phase_names[] = { {"identify", cm_ca_phase_identify}, {"certs", cm_ca_phase_certs}, {"profiles", cm_ca_phase_profiles}, {"default_profile", cm_ca_phase_default_profile}, {"enrollment_reqs", cm_ca_phase_enroll_reqs}, {"renewal_reqs", cm_ca_phase_renew_reqs}, {"capabilities", cm_ca_phase_capabilities}, {"encryption_certs", cm_ca_phase_encryption_certs}, {"invalid", cm_ca_phase_invalid}, }; const char * cm_store_ca_state_as_string(enum cm_ca_phase_state state) { unsigned int i; for (i = 0; i < sizeof(cm_ca_state_names) / sizeof(cm_ca_state_names[0]); i++) { if (cm_ca_state_names[i].state == state) { return cm_ca_state_names[i].name; } } return "UNKNOWN"; } const char * cm_store_ca_phase_as_string(enum cm_ca_phase phase) { unsigned int i; for (i = 0; i < sizeof(cm_ca_phase_names) / sizeof(cm_ca_phase_names[0]); i++) { if (cm_ca_phase_names[i].phase == phase) { return cm_ca_phase_names[i].name; } } return "invalid"; } const char * cm_store_state_as_string(enum cm_state state) { unsigned int i; for (i = 0; i < sizeof(cm_state_names) / sizeof(cm_state_names[0]); i++) { if (cm_state_names[i].state == state) { return cm_state_names[i].name; } } return "UNKNOWN"; } enum cm_ca_phase_state cm_store_ca_state_from_string(const char *name) { unsigned long l; unsigned i; char *p; for (i = 0; i < sizeof(cm_ca_state_names) / sizeof(cm_ca_state_names[0]); i++) { if (strcasecmp(cm_ca_state_names[i].name, name) == 0) { return cm_ca_state_names[i].state; } } l = strtoul(name, &p, 10); if ((*name != '\0') && (p != NULL) && (*p == '\0')) { return l; } return CM_CA_DISABLED; } enum cm_ca_phase cm_store_ca_phase_from_string(const char *name) { unsigned long l; unsigned int i; char *p; for (i = 0; i < sizeof(cm_ca_phase_names) / sizeof(cm_ca_phase_names[0]); i++) { if (strcasecmp(cm_ca_phase_names[i].name, name) == 0) { return cm_ca_phase_names[i].phase; } } l = strtoul(name, &p, 10); if ((*name != '\0') && (p != NULL) && (*p == '\0')) { return l; } return cm_ca_phase_invalid; } enum cm_state cm_store_state_from_string(const char *name) { unsigned long l; unsigned int i; char *p; for (i = 0; i < sizeof(cm_state_names) / sizeof(cm_state_names[0]); i++) { if (strcasecmp(cm_state_names[i].name, name) == 0) { return cm_state_names[i].state; } } l = strtoul(name, &p, 10); if ((*name != '\0') && (p != NULL) && (*p == '\0')) { return l; } return CM_INVALID; } char * cm_store_maybe_strdup(void *parent, const char *s) { if ((s != NULL) && (strlen(s) > 0)) { return talloc_strdup(parent, s); } return NULL; } char ** cm_store_maybe_strdupv(void *parent, char **s) { int i; char **ret = NULL; for (i = 0; (s != NULL) && (s[i] != NULL); i++) { continue; } if (i > 0) { ret = talloc_array_ptrtype(parent, ret, i + 1); if (ret != NULL) { for (i = 0; (s != NULL) && (s[i] != NULL); i++) { ret[i] = talloc_strdup(ret, s[i]); } ret[i] = NULL; } } return ret; } /* Generic routines. */ struct cm_store_entry * cm_store_entry_new(void *parent) { struct cm_store_entry *entry; entry = talloc_ptrtype(parent, entry); if (entry != NULL) { memset(entry, 0, sizeof(*entry)); } return entry; } struct cm_store_ca * cm_store_ca_new(void *parent) { struct cm_store_ca *ca; ca = talloc_ptrtype(parent, ca); if (ca != NULL) { memset(ca, 0, sizeof(*ca)); } return ca; } time_t cm_store_time_from_timestamp(const char *timestamp) { struct tm stamp; char buf[5]; time_t t; int i; if (strlen(timestamp) < 12) { return 0; } memset(&stamp, 0, sizeof(stamp)); if ((strlen(timestamp) == 14) || (strlen(timestamp) == 15)){ memcpy(buf, timestamp, 4); i = 4; buf[i] = '\0'; stamp.tm_year = atoi(buf) - 1900; } else { if ((strlen(timestamp) == 12) || (strlen(timestamp) == 13)) { memcpy(buf, timestamp, 2); i = 2; buf[i] = '\0'; stamp.tm_year = atoi(buf); if (stamp.tm_year < 50) { stamp.tm_year += 100; } } else { return 0; } } memcpy(buf, timestamp + i, 2); i += 2; buf[2] = '\0'; stamp.tm_mon = atoi(buf) - 1; memcpy(buf, timestamp + i, 2); i += 2; buf[2] = '\0'; stamp.tm_mday = atoi(buf); memcpy(buf, timestamp + i, 2); i += 2; buf[2] = '\0'; stamp.tm_hour = atoi(buf); memcpy(buf, timestamp + i, 2); i += 2; buf[2] = '\0'; stamp.tm_min = atoi(buf); memcpy(buf, timestamp + i, 2); i += 2; buf[2] = '\0'; stamp.tm_sec = atoi(buf); t = timegm(&stamp); return t; } char * cm_store_timestamp_from_time(time_t when, char timestamp[15]) { struct tm tm; if ((when != 0) && (gmtime_r(&when, &tm) == &tm)) { sprintf(timestamp, "%04d%02d%02d%02d%02d%02d", tm.tm_year + 1900, tm.tm_mon + 1, tm.tm_mday, tm.tm_hour, tm.tm_min, tm.tm_sec); } else { strcpy(timestamp, "19700101000000"); } return timestamp; } char * cm_store_timestamp_from_time_for_display(time_t when, char timestamp[25]) { struct tm tm; if ((when != 0) && (gmtime_r(&when, &tm) == &tm)) { sprintf(timestamp, "%04d-%02d-%02d %02d:%02d:%02d UTC", tm.tm_year + 1900, tm.tm_mon + 1, tm.tm_mday, tm.tm_hour, tm.tm_min, tm.tm_sec); } else { strcpy(timestamp, "1970-01-01 00:00:00 UTC"); } return timestamp; } char * cm_store_increment_serial(void *parent, const char *old_serial) { char *tmp, *serial; int len, i; if ((old_serial == NULL) || (strlen(old_serial) < 2)) { return talloc_strdup(parent, "01"); } tmp = talloc_strdup(parent, old_serial); len = strlen(tmp); for (i = len - 1; i >= 0; i--) { switch (tmp[i]) { case '0': case '1': case '2': case '3': case '4': case '5': case '6': case '7': case '8': case 'A': case 'B': case 'C': case 'D': case 'E': case 'a': case 'b': case 'c': case 'd': case 'e': tmp[i]++; break; case '9': tmp[i] = 'A'; break; case 'F': case 'f': tmp[i] = '0'; /* carry */ continue; break; } /* stop */ break; } if (i < 0) { /* ran out of digits, need to prepend another byte */ serial = talloc_asprintf(parent, "01%s", tmp); talloc_free(tmp); } else { if (strchr("89abcdefABCDEF", tmp[0]) != NULL) { /* prepend a zero byte to keep it unsigned */ serial = talloc_asprintf(parent, "00%s", tmp); talloc_free(tmp); } else { /* ok as is */ serial = tmp; } } return serial; } /* Produce a hex representation of the binary data. */ char * cm_store_hex_from_bin(void *parent, const unsigned char *serial, int length) { const char *hexchars = "0123456789ABCDEF"; char *ret; int i; if (length < 0) { length = strlen((const char *) serial); } ret = talloc_zero_size(parent, length * 2 + 1); for (i = 0; i < length; i++) { ret[i * 2] = hexchars[(serial[i] >> 4) & 0x0f]; ret[i * 2 + 1] = hexchars[(serial[i]) & 0x0f]; } ret[i * 2] = '\0'; return ret; } /* Produce a hex representation of the hex serial number encoded as a DER * integer. XXX has an upper limit on the length. */ char * cm_store_serial_to_der(void *parent, const char *serial) { const char *hexchars = "0123456789ABCDEF"; char *ret; int length; length = strlen(serial); ret = talloc_zero_size(parent, length + 5); ret[0] = '0'; ret[1] = '2'; ret[2] = hexchars[((length / 2) >> 4) & 0x0f]; ret[3] = hexchars[(length / 2) & 0x0f]; strcpy(ret + 4, serial); return ret; } /* Convert hex chars to fill a buffer. Input characters which don't belong are * treated as zeros. We stop when we run out of input characters or run out of * space in the output buffer. */ int cm_store_hex_to_bin(const char *serial, unsigned char *buf, int length) { const char *p, *q, *chars = "0123456789abcdef"; unsigned char *b, u; p = serial; b = buf; u = 0; for (p = serial, b = buf; ((*p != '\0') && ((b - buf) < length)); p++) { switch ((p - serial) % 2) { case 0: q = strchr(chars, tolower(*p)); if (q == NULL) { q = strchr(chars, toupper(*p)); } u = q ? q - chars : 0; break; case 1: q = strchr(chars, tolower(*p)); if (q == NULL) { q = strchr(chars, toupper(*p)); } u = (u << 4) | (q ? q - chars : 0); *b++ = u; break; } } return b - buf; } char * cm_store_canonicalize_path(void *parent, const char *path) { char *tmp = NULL, *p, *q, buf[PATH_MAX], *prefix; int i; if (strncmp(path, "dbm:", 4) == 0) { prefix = "dbm"; path += 4; } else if (strncmp(path, "sql:", 4) == 0) { prefix = "sql"; path += 4; } else if (strncmp(path, "rdb:", 4) == 0) { prefix = "rdb"; path += 4; } else if (strncmp(path, "extern:", 4) == 0) { prefix = "extern"; path += 7; } else { prefix = NULL; } i = strlen(path); if (i > 1) { while ((i > 1) && (path[i - 1] == '/')) { i--; } tmp = talloc_strndup(parent, path, i); } else { tmp = talloc_strdup(parent, path); } if ((tmp != NULL) && (tmp[0] != '/')) { memset(buf, '\0', sizeof(buf)); if (getcwd(buf, sizeof(buf) - 1) != NULL) { tmp = talloc_asprintf(parent, "%s//%s", buf, tmp); } } if (tmp != NULL) { for (p = tmp; *p != '\0'; p++) { if ((strncmp(p, "/", 1) == 0) && ((p[1] == '/') || (p[1] == '\0'))) { memmove(p, p + 1, strlen(p + 1) + 1); } } for (p = tmp; *p != '\0'; p++) { if ((strncmp(p, "/.", 2) == 0) && ((p[2] == '/') || (p[2] == '\0'))) { q = p - 1; memmove(p, p + 2, strlen(p + 2) + 1); } } for (p = tmp; *p != '\0'; p++) { if ((strncmp(p, "/..", 3) == 0) && ((p[3] == '/') || (p[3] == '\0'))) { q = p - 1; while ((q >= tmp) && (*q != '/')) { q--; } if (*q == '/') { memmove(q, p + 3, strlen(p + 3) + 1); } else { break; } } } if (prefix != NULL) { tmp = talloc_asprintf(parent, "%s:%s", prefix, tmp); } } return tmp; } void cm_store_set_if_not_set_s(void *parent, char **dest, char *src) { if ((*dest == NULL) && (src != NULL) && (strlen(src) > 0)) { *dest = talloc_strdup(parent, src); } } void cm_store_set_if_not_set_as(void *parent, char ***dest, char **src) { int i, j; char **ret; if (*dest == NULL) { for (i = 0; (src != NULL) && (src[i] != NULL); i++) { continue; } if (i > 0) { ret = talloc_zero_size(parent, sizeof(char *) * (i + 1)); if (ret != NULL) { for (j = 0; j < i; j++) { ret[j] = talloc_strdup(ret, src[j]); if (ret[j] == NULL) { /* Out of space? */ break; } } ret[j] = NULL; if (i != j) { /* Out of space? */ ret = NULL; } } *dest = ret; } } } int cm_store_utf8_to_bmp_string(char *s, unsigned char **bmp, unsigned int *len) { iconv_t conv; unsigned int i; const unsigned char *u; uint16_t *u16; char *inbuf, *outbuf; size_t inleft, outleft, res, space; *bmp = NULL; conv = iconv_open("UTF16BE", "UTF8"); if (conv != NULL) { inbuf = s; space = strlen(s) * 4; *bmp = malloc(space); outbuf = (char *) *bmp; if (outbuf == NULL) { iconv_close(conv); return -1; } memset(*bmp, 0, space); inleft = strlen(s); outleft = space; res = iconv(conv, &inbuf, &inleft, &outbuf, &outleft); iconv_close(conv); switch (res) { case (size_t) -1: return -1; break; default: *len = space - outleft; return 0; break; } } else { /* Impressively wrong. */ u16 = malloc((strlen(s) + 1) * 2); if (u16 == NULL) { return -1; } u = (const unsigned char *) s; for (i = 0; u[i] != '\0'; i++) { u16[i] = htons(u[i]); } *bmp = (unsigned char *) u16; *len = i * 2; } return 0; } char * cm_store_utf8_from_bmp_string(unsigned char *bmp, unsigned int len) { iconv_t conv; char *inbuf, *outbuf, *s; size_t inleft, outleft, res, space; conv = iconv_open("UTF8", "UTF16BE"); if (conv != NULL) { inbuf = (char *) bmp; space = len * 3; s = malloc(space); outbuf = s; if (outbuf == NULL) { iconv_close(conv); return NULL; } memset(s, '\0', space); inleft = len; outleft = space; res = iconv(conv, &inbuf, &inleft, &outbuf, &outleft); iconv_close(conv); switch (res) { case (size_t) -1: free(s); return NULL; break; default: return s; break; } } return NULL; } char * cm_store_base64_from_bin(void *parent, const unsigned char *buf, int length) { char *p, *ret; int max, i, j; uint32_t acc; if (length < 0) { length = strlen((const char *) buf); } max = 4 * howmany(length, 3) + 1; p = malloc(max); if (p == NULL) { return NULL; } for (i = 0, j = 0, acc = 0; i < length; i++) { acc = (acc << 8) | buf[i]; if ((i % 3) == 2) { p[j++] = BASE64_ALPHABET[(acc >> 18) & 0x3f]; p[j++] = BASE64_ALPHABET[(acc >> 12) & 0x3f]; p[j++] = BASE64_ALPHABET[(acc >> 6) & 0x3f]; p[j++] = BASE64_ALPHABET[(acc >> 0) & 0x3f]; acc = 0; } } switch (i % 3) { case 0: break; case 1: acc = (acc << 8) | 0; acc = (acc << 8) | 0; p[j++] = BASE64_ALPHABET[(acc >> 18) & 0x3f]; p[j++] = BASE64_ALPHABET[(acc >> 12) & 0x3f]; p[j++] = '='; p[j++] = '='; break; case 2: acc = (acc << 8) | 0; p[j++] = BASE64_ALPHABET[(acc >> 18) & 0x3f]; p[j++] = BASE64_ALPHABET[(acc >> 12) & 0x3f]; p[j++] = BASE64_ALPHABET[(acc >> 6) & 0x3f]; p[j++] = '='; break; } p[j++] = '\0'; ret = talloc_strdup(parent, p); free(p); return ret; } int cm_store_base64_to_bin(const char *serial, int insize, unsigned char *buf, int length) { const char *p, *q, *chars = BASE64_ALPHABET; unsigned char *b; uint32_t u, count; u = 0; count = 0; if (insize < 0) { insize = strlen(serial); } for (p = serial, b = buf; (((p - serial) < insize) && (*p != '\0') && (*p != '=') && ((b - buf) < length)); p++) { q = strchr(chars, *p); if (q != NULL) { switch (count % 4) { case 0: u = q - chars; break; case 1: u = (u << 6) | (q - chars); break; case 2: u = (u << 6) | (q - chars); break; case 3: u = (u << 6) | (q - chars); *b++ = (u >> 16) & 0xff; if (b - buf >= length) { break; } *b++ = (u >> 8) & 0xff; if (b - buf >= length) { break; } *b++ = (u >> 0) & 0xff; u = 0; break; } count++; } } switch (count % 4) { case 0: case 1: break; case 2: u = (u << 12); *b++ = (u >> 16) & 0xff; break; case 3: u = (u << 6); *b++ = (u >> 16) & 0xff; if (b - buf >= length) { break; } *b++ = (u >> 8) & 0xff; break; } return b - buf; } char * cm_store_base64_as_bin(void *parent, const char *serial, int size, int *length) { unsigned char *buf; ssize_t l; if (size < 0) { size = strlen(serial); } l = howmany(size, 4) * 3 + 1; buf = talloc_size(parent, l); if (buf != NULL) { l = cm_store_base64_to_bin(serial, size, buf, l - 1); buf[l] = '\0'; if (length != NULL) { *length = l; } } return (char *) buf; } char * cm_store_base64_from_hex(void *parent, const char *s) { unsigned char *buf; char *ret; unsigned int length; length = strlen(s) / 2; buf = malloc(length); if (buf == NULL) { return NULL; } length = cm_store_hex_to_bin(s, buf, length); ret = cm_store_base64_from_bin(parent, buf, length); free(buf); return ret; } certmonger-0.78.6/src/store-files.c0000664000175000017500000026421012645513264014110 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "env.h" #include "store.h" #include "store-int.h" #include "submit-e.h" #include "log.h" #include "tm.h" static unsigned long long cm_entry_name_last, cm_ca_name_last; enum cm_store_file_field { cm_store_file_field_invalid = 0, cm_store_file_field_id, cm_store_entry_field_key_type, cm_store_entry_field_key_gen_type, cm_store_entry_field_key_size, cm_store_entry_field_key_gen_size, cm_store_entry_field_key_next_type, cm_store_entry_field_key_next_gen_type, cm_store_entry_field_key_next_size, cm_store_entry_field_key_next_gen_size, cm_store_entry_field_key_preserve, cm_store_entry_field_key_next_marker, cm_store_entry_field_key_storage_type, cm_store_entry_field_key_storage_location, cm_store_entry_field_key_token, cm_store_entry_field_key_nickname, cm_store_entry_field_key_pin, cm_store_entry_field_key_pin_file, cm_store_entry_field_key_owner, cm_store_entry_field_key_perms, cm_store_entry_field_key_pubkey, cm_store_entry_field_key_pubkey_info, cm_store_entry_field_key_next_pubkey, cm_store_entry_field_key_next_pubkey_info, cm_store_entry_field_key_generated_date, cm_store_entry_field_key_next_generated_date, cm_store_entry_field_key_requested_count, cm_store_entry_field_key_next_requested_count, cm_store_entry_field_key_issued_count, cm_store_entry_field_cert_storage_type, cm_store_entry_field_cert_storage_location, cm_store_entry_field_cert_token, cm_store_entry_field_cert_nickname, cm_store_entry_field_cert_owner, cm_store_entry_field_cert_perms, cm_store_entry_field_cert_issuer_der, cm_store_entry_field_cert_issuer, cm_store_entry_field_cert_serial, cm_store_entry_field_cert_subject_der, cm_store_entry_field_cert_subject, cm_store_entry_field_cert_spki, cm_store_entry_field_cert_not_before, cm_store_entry_field_cert_not_after, cm_store_entry_field_cert_hostname, cm_store_entry_field_cert_email, cm_store_entry_field_cert_principal, cm_store_entry_field_cert_ipaddress, cm_store_entry_field_cert_ku, cm_store_entry_field_cert_eku, cm_store_entry_field_cert_is_ca, cm_store_entry_field_cert_ca_path_length, cm_store_entry_field_cert_crl_distribution_point, cm_store_entry_field_cert_freshest_crl, cm_store_entry_field_cert_ocsp_location, cm_store_entry_field_cert_ns_comment, cm_store_entry_field_cert_profile, cm_store_entry_field_cert_no_ocsp_check, cm_store_entry_field_cert_ns_certtype, cm_store_entry_field_last_expiration_check, cm_store_entry_field_last_need_notify_check, cm_store_entry_field_last_need_enroll_check, cm_store_entry_field_template_subject_der, cm_store_entry_field_template_subject, cm_store_entry_field_template_hostname, cm_store_entry_field_template_email, cm_store_entry_field_template_principal, cm_store_entry_field_template_ipaddress, cm_store_entry_field_template_ku, cm_store_entry_field_template_eku, cm_store_entry_field_template_is_ca, cm_store_entry_field_template_ca_path_length, cm_store_entry_field_template_crl_distribution_point, cm_store_entry_field_template_freshest_crl, cm_store_entry_field_template_ocsp_location, cm_store_entry_field_template_ns_comment, cm_store_entry_field_template_profile, cm_store_entry_field_template_no_ocsp_check, cm_store_entry_field_template_ns_certtype, cm_store_entry_field_challenge_password, cm_store_entry_field_challenge_password_file, cm_store_entry_field_csr, cm_store_entry_field_spkac, cm_store_entry_field_scep_tx, cm_store_entry_field_scep_nonce, cm_store_entry_field_scep_last_nonce, cm_store_entry_field_scep_gic, cm_store_entry_field_scep_gic_next, cm_store_entry_field_scep_req, cm_store_entry_field_scep_req_next, cm_store_entry_field_minicert, cm_store_entry_field_state, cm_store_entry_field_autorenew, cm_store_entry_field_monitor, cm_store_entry_field_ca_nickname, cm_store_entry_field_submitted, cm_store_entry_field_ca_cookie, cm_store_entry_field_ca_error, cm_store_entry_field_cert, cm_store_entry_field_cert_chain, cm_store_entry_field_cert_roots, cm_store_entry_field_pre_certsave_command, cm_store_entry_field_pre_certsave_uid, cm_store_entry_field_post_certsave_command, cm_store_entry_field_post_certsave_uid, cm_store_entry_field_root_cert_files, cm_store_entry_field_other_root_cert_files, cm_store_entry_field_other_cert_files, cm_store_entry_field_root_cert_nssdbs, cm_store_entry_field_other_root_cert_nssdbs, cm_store_entry_field_other_cert_nssdbs, cm_store_ca_field_aka, cm_store_ca_field_known_issuer_names, cm_store_ca_field_is_default, cm_store_ca_field_type, cm_store_ca_field_internal_serial, cm_store_ca_field_internal_issue_time, cm_store_ca_field_external_helper, cm_store_ca_field_root_certs, cm_store_ca_field_other_root_certs, cm_store_ca_field_other_certs, cm_store_ca_field_required_enroll_attributes, cm_store_ca_field_required_renewal_attributes, cm_store_ca_field_profiles, cm_store_ca_field_default_profile, cm_store_ca_field_pre_save_command, cm_store_ca_field_pre_save_uid, cm_store_ca_field_post_save_command, cm_store_ca_field_post_save_uid, cm_store_ca_field_root_cert_files, cm_store_ca_field_other_root_cert_files, cm_store_ca_field_other_cert_files, cm_store_ca_field_root_cert_nssdbs, cm_store_ca_field_other_root_cert_nssdbs, cm_store_ca_field_other_cert_nssdbs, cm_store_ca_field_capabilities, cm_store_ca_field_scep_ca_identifier, cm_store_ca_field_encryption_cert, cm_store_ca_field_encryption_issuer_cert, cm_store_ca_field_encryption_cert_pool, cm_store_file_field_invalid_high, }; static struct cm_store_file_field_list { enum cm_store_file_field field; const char *name; } cm_store_file_field_list[] = { {cm_store_file_field_id, "id"}, /* ipa-client-install assumes that we'll * never rename this, so now we can't */ {cm_store_entry_field_key_type, "key_type"}, {cm_store_entry_field_key_gen_type, "key_gen_type"}, {cm_store_entry_field_key_size, "key_size"}, {cm_store_entry_field_key_gen_size, "key_gen_size"}, {cm_store_entry_field_key_next_type, "key_next_type"}, {cm_store_entry_field_key_next_gen_type, "key_next_gen_type"}, {cm_store_entry_field_key_next_size, "key_next_size"}, {cm_store_entry_field_key_next_gen_size, "key_next_gen_size"}, {cm_store_entry_field_key_preserve, "key_preserve"}, {cm_store_entry_field_key_next_marker, "key_next_marker"}, {cm_store_entry_field_key_generated_date, "key_generated_date"}, {cm_store_entry_field_key_next_generated_date, "key_next_generated_date"}, {cm_store_entry_field_key_requested_count, "key_requested_count"}, {cm_store_entry_field_key_next_requested_count, "key_next_requested_count"}, {cm_store_entry_field_key_issued_count, "key_issued_count"}, {cm_store_entry_field_key_storage_type, "key_storage_type"}, {cm_store_entry_field_key_storage_location, "key_storage_location"}, {cm_store_entry_field_key_token, "key_token"}, {cm_store_entry_field_key_nickname, "key_nickname"}, {cm_store_entry_field_key_pin, "key_pin"}, {cm_store_entry_field_key_pin_file, "key_pin_file"}, {cm_store_entry_field_key_owner, "key_owner"}, {cm_store_entry_field_key_perms, "key_perms"}, {cm_store_entry_field_key_pubkey, "key_pubkey"}, {cm_store_entry_field_key_pubkey_info, "key_pubkey_info"}, {cm_store_entry_field_key_next_pubkey, "key_next_pubkey"}, {cm_store_entry_field_key_next_pubkey_info, "key_next_pubkey_info"}, {cm_store_entry_field_cert_storage_type, "cert_storage_type"}, {cm_store_entry_field_cert_storage_location, "cert_storage_location"}, {cm_store_entry_field_cert_token, "cert_token"}, {cm_store_entry_field_cert_nickname, "cert_nickname"}, {cm_store_entry_field_cert_owner, "cert_owner"}, {cm_store_entry_field_cert_perms, "cert_perms"}, {cm_store_entry_field_cert_issuer_der, "cert_issuer_der"}, {cm_store_entry_field_cert_issuer, "cert_issuer"}, {cm_store_entry_field_cert_serial, "cert_serial"}, {cm_store_entry_field_cert_subject_der, "cert_subject_der"}, {cm_store_entry_field_cert_subject, "cert_subject"}, {cm_store_entry_field_cert_spki, "cert_spki"}, {cm_store_entry_field_cert_not_before, "cert_not_before"}, /* right */ {cm_store_entry_field_cert_not_before, "cert_issued"}, /* so wrong */ {cm_store_entry_field_cert_not_after, "cert_not_after"}, /* right */ {cm_store_entry_field_cert_not_after, "cert_expiration"}, /* wrong */ {cm_store_entry_field_cert_hostname, "cert_hostname"}, {cm_store_entry_field_cert_email, "cert_email"}, {cm_store_entry_field_cert_principal, "cert_principal"}, {cm_store_entry_field_cert_ipaddress, "cert_ipaddress"}, {cm_store_entry_field_cert_ku, "cert_ku"}, {cm_store_entry_field_cert_eku, "cert_eku"}, {cm_store_entry_field_cert_is_ca, "cert_is_ca"}, {cm_store_entry_field_cert_ca_path_length, "cert_ca_path_length"}, {cm_store_entry_field_cert_crl_distribution_point, "cert_crldp"}, {cm_store_entry_field_cert_freshest_crl, "cert_freshest_crl"}, {cm_store_entry_field_cert_ocsp_location, "cert_ocsp"}, {cm_store_entry_field_cert_ns_comment, "cert_ns_comment"}, {cm_store_entry_field_cert_profile, "cert_profile"}, {cm_store_entry_field_cert_no_ocsp_check, "cert_no_ocsp_check"}, {cm_store_entry_field_cert_ns_certtype, "cert_ns_certtype"}, {cm_store_entry_field_last_expiration_check, "last_expiration_check"}, {cm_store_entry_field_last_need_notify_check, "last_need_notify_check"}, {cm_store_entry_field_last_need_enroll_check, "last_need_enroll_check"}, {cm_store_entry_field_template_subject_der, "template_subject_der"}, {cm_store_entry_field_template_subject, "template_subject"}, {cm_store_entry_field_template_hostname, "template_hostname"}, {cm_store_entry_field_template_email, "template_email"}, {cm_store_entry_field_template_principal, "template_principal"}, {cm_store_entry_field_template_ipaddress, "template_ipaddress"}, {cm_store_entry_field_template_ku, "template_ku"}, {cm_store_entry_field_template_eku, "template_eku"}, {cm_store_entry_field_template_is_ca, "template_is_ca"}, {cm_store_entry_field_template_ca_path_length, "template_ca_path_length"}, {cm_store_entry_field_template_crl_distribution_point, "template_crldp"}, {cm_store_entry_field_template_freshest_crl, "template_freshest_crl"}, {cm_store_entry_field_template_ocsp_location, "template_ocsp"}, {cm_store_entry_field_template_ns_comment, "template_ns_comment"}, {cm_store_entry_field_template_profile, "template_profile"}, /* right */ {cm_store_entry_field_template_profile, "ca_profile"}, /* wrong */ {cm_store_entry_field_template_no_ocsp_check, "template_no_ocsp_check"}, {cm_store_entry_field_template_ns_certtype, "template_ns_certtype"}, {cm_store_entry_field_challenge_password, "template_challenge_password"}, /* right */ {cm_store_entry_field_challenge_password, "challenge_password"}, /* wrong */ {cm_store_entry_field_challenge_password_file, "template_challenge_password_file"}, {cm_store_entry_field_csr, "csr"}, {cm_store_entry_field_spkac, "spkac"}, {cm_store_entry_field_scep_tx, "scep_tx"}, {cm_store_entry_field_scep_nonce, "scep_nonce"}, {cm_store_entry_field_scep_last_nonce, "scep_last_nonce"}, {cm_store_entry_field_scep_gic, "scep_gic"}, {cm_store_entry_field_scep_gic_next, "scep_gic_next"}, {cm_store_entry_field_scep_req, "scep_req"}, {cm_store_entry_field_scep_req_next, "scep_req_next"}, {cm_store_entry_field_minicert, "minicert"}, {cm_store_entry_field_state, "state"}, {cm_store_entry_field_autorenew, "autorenew"}, {cm_store_entry_field_monitor, "monitor"}, {cm_store_entry_field_ca_nickname, "ca_name"}, {cm_store_entry_field_submitted, "submitted"}, {cm_store_entry_field_ca_cookie, "ca_cookie"}, {cm_store_entry_field_ca_error, "ca_error"}, {cm_store_entry_field_cert, "cert"}, {cm_store_entry_field_cert_chain, "cert_chain"}, {cm_store_entry_field_cert_roots, "cert_roots"}, {cm_store_entry_field_pre_certsave_command, "pre_certsave_command"}, {cm_store_entry_field_pre_certsave_uid, "pre_certsave_uid"}, {cm_store_entry_field_post_certsave_command, "post_certsave_command"}, {cm_store_entry_field_post_certsave_uid, "post_certsave_uid"}, {cm_store_entry_field_root_cert_files, "root_cert_files"}, {cm_store_entry_field_other_root_cert_files, "other_root_cert_files"}, {cm_store_entry_field_other_cert_files, "other_cert_files"}, {cm_store_entry_field_root_cert_nssdbs, "root_cert_dbs"}, {cm_store_entry_field_other_root_cert_nssdbs, "other_root_cert_dbs"}, {cm_store_entry_field_other_cert_nssdbs, "other_cert_dbs"}, {cm_store_ca_field_aka, "ca_aka"}, {cm_store_ca_field_known_issuer_names, "ca_issuer_names"}, {cm_store_ca_field_is_default, "ca_is_default"}, {cm_store_ca_field_type, "ca_type"}, {cm_store_ca_field_internal_serial, "ca_internal_serial"}, {cm_store_ca_field_internal_issue_time, "ca_internal_issue_time"}, {cm_store_ca_field_external_helper, "ca_external_helper"}, {cm_store_ca_field_root_certs, "ca_root_certs"}, {cm_store_ca_field_other_root_certs, "ca_other_root_certs"}, {cm_store_ca_field_other_certs, "ca_other_certs"}, {cm_store_ca_field_required_enroll_attributes, "ca_required_enroll_attributes"}, {cm_store_ca_field_required_renewal_attributes, "ca_required_renewal_attributes"}, {cm_store_ca_field_profiles, "ca_profiles"}, {cm_store_ca_field_default_profile, "ca_default_profile"}, {cm_store_ca_field_pre_save_command, "ca_pre_save_command"}, {cm_store_ca_field_pre_save_uid, "ca_pre_save_uid"}, {cm_store_ca_field_post_save_command, "ca_post_save_command"}, {cm_store_ca_field_post_save_uid, "ca_post_save_uid"}, {cm_store_ca_field_root_cert_files, "ca_root_cert_files"}, {cm_store_ca_field_other_root_cert_files, "ca_other_root_cert_files"}, {cm_store_ca_field_other_cert_files, "ca_other_cert_files"}, {cm_store_ca_field_root_cert_nssdbs, "ca_root_cert_dbs"}, {cm_store_ca_field_other_root_cert_nssdbs, "ca_other_root_cert_dbs"}, {cm_store_ca_field_other_cert_nssdbs, "ca_other_cert_dbs"}, {cm_store_ca_field_capabilities, "ca_capabilities"}, {cm_store_ca_field_scep_ca_identifier, "scep_ca_identifier"}, {cm_store_ca_field_encryption_cert, "ca_encryption_cert"}, {cm_store_ca_field_encryption_issuer_cert, "ca_encryption_issuer_cert"}, {cm_store_ca_field_encryption_cert_pool, "ca_encryption_cert_pool"}, }; static enum cm_store_file_field cm_store_file_field_of_line(char *p) { unsigned int i, len; struct cm_store_file_field_list *entry; for (i = 0; i < sizeof(cm_store_file_field_list) / sizeof(cm_store_file_field_list[0]); i++) { entry = &cm_store_file_field_list[i]; len = strlen(entry->name); if (strcspn(p, "\r\n") < len) { continue; } if ((strncasecmp(p, entry->name, len) == 0) && (p[len] == '=')) { memmove(p, p + len + 1, strlen(p + len)); return entry->field; } } return cm_store_file_field_invalid_high; } static const char * cm_store_file_line_of_field(enum cm_store_file_field field) { unsigned int i; struct cm_store_file_field_list *entry; for (i = 0; i < sizeof(cm_store_file_field_list) / sizeof(cm_store_file_field_list[0]); i++) { entry = &cm_store_file_field_list[i]; if (entry->field == field) { return entry->name; } } return NULL; } static dbus_bool_t cm_store_should_ignore_file(const char *filename) { const char *ignore[] = {".tmp", ".rpmsave", ".rpmorig", ".rpmnew", "~", "#"}; unsigned int i, len, ilen; len = strlen(filename); for (i = 0; i < sizeof(ignore) / sizeof(ignore[0]); i++) { ilen = strlen(ignore[i]); if ((len > ilen) && (strcmp(filename + len - ilen, ignore[i]) == 0)) { return TRUE; } } return FALSE; } static ssize_t my_getline(char **buf, size_t *n, FILE *stream) { size_t used = 0, max = 128; char *ret, *tmp; *buf = NULL; *n = 0; ret = malloc(max); if (ret == NULL) { return -1; } while (fgets(ret + used, max - used, stream) != NULL) { used += strlen(ret + used); if ((used > 0) && (ret[used - 1] == '\n')) { break; } if (used >= max - 1) { max *= 2; if (max > 1024 * 1024) { free(ret); return -1; } tmp = realloc(ret, max); if (tmp == NULL) { free(ret); return -1; } ret = tmp; } } *buf = ret; *n = used; return used; } static char ** cm_store_file_read_lines(void *parent, FILE *fp) { char *buf, *s, *t, **lines, **tlines; int n_lines, trim, offset; size_t buflen; s = NULL; lines = NULL; n_lines = 0; trim = 1; buf = NULL; buflen = 0; while (my_getline(&buf, &buflen, fp) > 0) { offset = 0; switch (buf[0]) { case '=': offset = 1; /* fall through */ default: /* If we've already been reading a line, append it to * the list. */ if (s != NULL) { tlines = talloc_realloc(parent, lines, char *, n_lines + 2); if (tlines != NULL) { if (trim) { s[strcspn(s, "\r\n")] = '\0'; } talloc_steal(tlines, s); tlines[n_lines++] = s; tlines[n_lines] = NULL; lines = tlines; } } /* Store this line's data, and default to trimming off * end-of-line markers. */ trim = 1; s = talloc_strdup(parent, buf + offset); break; case ' ': /* Since this is a multi-line item, refrain from * trimming off any end-of-line characters, and just * append it to the list of things we've read. */ trim = 0; t = talloc_strdup_append(s, buf + 1); if (t != NULL) { s = t; } break; case '#': case ';': break; } } free(buf); /* If we were reading a line, append it to the list. */ if (s != NULL) { tlines = talloc_realloc(parent, lines, char *, n_lines + 2); if (tlines != NULL) { if (trim) { s[strcspn(s, "\r\n")] = '\0'; } talloc_steal(tlines, s); tlines[n_lines++] = s; tlines[n_lines] = NULL; lines = tlines; } } return lines; } static char * free_if_empty(char *s) { if ((s != NULL) && (strlen(s) == 0)) { talloc_free(s); s = NULL; } return s; } static char ** free_if_empty_multi(void *parent, char *p) { char **s; int i, j, k; if ((p == NULL) || (strlen(p) == 0)) { if (p != NULL) { talloc_free(p); } return NULL; } s = talloc_zero_array(parent, char *, strlen(p) + 2); i = 0; while (*p != '\0') { s[i] = talloc_strdup(parent, p); j = 0; k = 0; while ((p[j] != ',') && (p[j] != '\0')) { switch (p[j]) { case '\\': j++; memmove(s[i] + k, p + j, strlen(p + j)); break; default: break; } j++; k++; } s[i][k] = '\0'; if (k > 0) { i++; } else { talloc_free(s[i]); s[i] = NULL; } if (p[j] == '\0') { break; } else { p += (j + 1); } } s[i] = NULL; if (i > 0) { return s; } else { talloc_free(s); return NULL; } } static struct cm_nickcert ** parse_nickcert_list(void *parent, const char *s) { struct cm_nickcert **ret = NULL, **tmp, *nc; const char *p, *q; int i = 0, j; p = s; while (*p != '\0') { nc = talloc_ptrtype(parent, nc); if (nc == NULL) { return NULL; } memset(nc, 0, sizeof(*nc)); q = p + strcspn(p, "\r\n"); nc->cm_nickname = talloc_strndup(nc, p, q - p); if (nc->cm_nickname == NULL) { talloc_free(ret); return NULL; } for (j = 0; nc->cm_nickname[j] != '\0'; j++) { if (nc->cm_nickname[j] == '\\') { memmove(nc->cm_nickname + j, nc->cm_nickname + j + 1, strlen(nc->cm_nickname + j)); } } p = q + strspn(q, "\r\n"); q = strstr(p, "-----END"); if (q == NULL) { talloc_free(ret); return NULL; } q += strcspn(q, "\r\n"); q += strspn(q, "\r\n"); nc->cm_cert = talloc_strndup(nc, p, q - p); if (nc->cm_cert == NULL) { talloc_free(ret); return NULL; } tmp = talloc_realloc(parent, ret, struct cm_nickcert *, i + 2); if (tmp == NULL) { talloc_free(ret); return NULL; } ret = tmp; talloc_steal(ret, nc); ret[i++] = nc; ret[i] = NULL; p = q; } return ret; } char * cm_store_entry_next_busname(void *parent) { return talloc_asprintf(parent, "Request%llu", ++cm_entry_name_last); } static struct cm_store_entry * cm_store_entry_read(void *parent, const char *filename, FILE *fp) { struct cm_store_entry *ret; char **s, *p, *end; int i; enum cm_store_file_field field; ret = cm_store_entry_new(parent); if (ret != NULL) { s = cm_store_file_read_lines(ret, fp); ret->cm_busname = cm_store_entry_next_busname(ret); ret->cm_store_private = talloc_strdup(ret, filename); ret->cm_template_ca_path_length = -1; for (i = 0; (s != NULL) && (s[i] != NULL); i++) { p = s[i]; field = cm_store_file_field_of_line(p); switch (field) { case cm_store_file_field_invalid: case cm_store_file_field_invalid_high: break; case cm_store_ca_field_aka: case cm_store_ca_field_known_issuer_names: case cm_store_ca_field_is_default: case cm_store_ca_field_type: case cm_store_ca_field_internal_serial: case cm_store_ca_field_internal_issue_time: case cm_store_ca_field_external_helper: case cm_store_ca_field_root_certs: case cm_store_ca_field_other_root_certs: case cm_store_ca_field_other_certs: case cm_store_ca_field_required_enroll_attributes: case cm_store_ca_field_required_renewal_attributes: case cm_store_ca_field_profiles: case cm_store_ca_field_default_profile: case cm_store_ca_field_pre_save_command: case cm_store_ca_field_pre_save_uid: case cm_store_ca_field_post_save_command: case cm_store_ca_field_post_save_uid: case cm_store_ca_field_root_cert_files: case cm_store_ca_field_other_root_cert_files: case cm_store_ca_field_other_cert_files: case cm_store_ca_field_root_cert_nssdbs: case cm_store_ca_field_other_root_cert_nssdbs: case cm_store_ca_field_other_cert_nssdbs: case cm_store_ca_field_capabilities: case cm_store_ca_field_scep_ca_identifier: case cm_store_ca_field_encryption_cert: case cm_store_ca_field_encryption_issuer_cert: case cm_store_ca_field_encryption_cert_pool: break; case cm_store_file_field_id: ret->cm_nickname = free_if_empty(p); break; case cm_store_entry_field_key_type: if (strcasecmp(s[i], "RSA") == 0) { ret->cm_key_type.cm_key_algorithm = cm_key_rsa; #ifdef CM_ENABLE_DSA } else if (strcasecmp(s[i], "DSA") == 0) { ret->cm_key_type.cm_key_algorithm = cm_key_dsa; #endif #ifdef CM_ENABLE_EC } else if ((strcasecmp(s[i], "ECDSA") == 0) || (strcasecmp(s[i], "EC") == 0)) { ret->cm_key_type.cm_key_algorithm = cm_key_ecdsa; #endif } else { ret->cm_key_type.cm_key_algorithm = cm_key_unspecified; } talloc_free(p); break; case cm_store_entry_field_key_gen_type: if (strcasecmp(s[i], "RSA") == 0) { ret->cm_key_type.cm_key_gen_algorithm = cm_key_rsa; #ifdef CM_ENABLE_DSA } else if (strcasecmp(s[i], "DSA") == 0) { ret->cm_key_type.cm_key_gen_algorithm = cm_key_dsa; #endif #ifdef CM_ENABLE_EC } else if ((strcasecmp(s[i], "ECDSA") == 0) || (strcasecmp(s[i], "EC") == 0)) { ret->cm_key_type.cm_key_gen_algorithm = cm_key_ecdsa; #endif } else { ret->cm_key_type.cm_key_gen_algorithm = cm_key_unspecified; } talloc_free(p); break; case cm_store_entry_field_key_size: ret->cm_key_type.cm_key_size = atoi(p); talloc_free(p); break; case cm_store_entry_field_key_gen_size: ret->cm_key_type.cm_key_gen_size = atoi(p); talloc_free(p); break; case cm_store_entry_field_key_next_type: if (strcasecmp(s[i], "RSA") == 0) { ret->cm_key_next_type.cm_key_algorithm = cm_key_rsa; #ifdef CM_ENABLE_DSA } else if (strcasecmp(s[i], "DSA") == 0) { ret->cm_key_next_type.cm_key_algorithm = cm_key_dsa; #endif #ifdef CM_ENABLE_EC } else if ((strcasecmp(s[i], "ECDSA") == 0) || (strcasecmp(s[i], "EC") == 0)) { ret->cm_key_next_type.cm_key_algorithm = cm_key_ecdsa; #endif } else { ret->cm_key_next_type.cm_key_algorithm = cm_key_unspecified; } talloc_free(p); break; case cm_store_entry_field_key_next_gen_type: if (strcasecmp(s[i], "RSA") == 0) { ret->cm_key_next_type.cm_key_gen_algorithm = cm_key_rsa; #ifdef CM_ENABLE_DSA } else if (strcasecmp(s[i], "DSA") == 0) { ret->cm_key_next_type.cm_key_gen_algorithm = cm_key_dsa; #endif #ifdef CM_ENABLE_EC } else if ((strcasecmp(s[i], "ECDSA") == 0) || (strcasecmp(s[i], "EC") == 0)) { ret->cm_key_next_type.cm_key_gen_algorithm = cm_key_ecdsa; #endif } else { ret->cm_key_next_type.cm_key_gen_algorithm = cm_key_unspecified; } talloc_free(p); break; case cm_store_entry_field_key_next_size: ret->cm_key_next_type.cm_key_size = atoi(p); talloc_free(p); break; case cm_store_entry_field_key_next_gen_size: ret->cm_key_next_type.cm_key_gen_size = atoi(p); talloc_free(p); break; case cm_store_entry_field_key_preserve: ret->cm_key_preserve = atoi(p) != 0; break; case cm_store_entry_field_key_next_marker: ret->cm_key_next_marker = free_if_empty(p); break; case cm_store_entry_field_key_storage_type: ret->cm_key_storage_type = cm_key_storage_none; if (strcasecmp(p, "FILE") == 0) { ret->cm_key_storage_type = cm_key_storage_file; } else if (strcasecmp(p, "NSSDB") == 0) { ret->cm_key_storage_type = cm_key_storage_nssdb; } else if (strcasecmp(p, "NONE") == 0) { ret->cm_key_storage_type = cm_key_storage_none; } talloc_free(p); break; case cm_store_entry_field_key_storage_location: ret->cm_key_storage_location = free_if_empty(p); if (ret->cm_key_storage_location != NULL) { p = cm_store_canonicalize_path(ret, ret->cm_key_storage_location); talloc_free(ret->cm_key_storage_location); ret->cm_key_storage_location = p; } break; case cm_store_entry_field_key_token: ret->cm_key_token = free_if_empty(p); break; case cm_store_entry_field_key_nickname: ret->cm_key_nickname = free_if_empty(p); break; case cm_store_entry_field_key_pin: ret->cm_key_pin = free_if_empty(p); if (ret->cm_key_pin_file != NULL) { ret->cm_key_pin = NULL; } break; case cm_store_entry_field_key_pin_file: ret->cm_key_pin_file = free_if_empty(p); if (ret->cm_key_pin_file != NULL) { ret->cm_key_pin = NULL; } break; case cm_store_entry_field_key_owner: ret->cm_key_owner = free_if_empty(p); break; case cm_store_entry_field_key_perms: if (strlen(p) > 0) { ret->cm_key_perms = strtoul(p, &end, 8); if ((end == NULL) || (*end != '\0')) { ret->cm_key_perms = 0; } } break; case cm_store_entry_field_key_pubkey: ret->cm_key_pubkey = free_if_empty(p); break; case cm_store_entry_field_key_pubkey_info: ret->cm_key_pubkey_info = free_if_empty(p); break; case cm_store_entry_field_key_next_pubkey: ret->cm_key_next_pubkey = free_if_empty(p); break; case cm_store_entry_field_key_next_pubkey_info: ret->cm_key_next_pubkey_info = free_if_empty(p); break; case cm_store_entry_field_key_generated_date: ret->cm_key_generated_date = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_key_next_generated_date: ret->cm_key_next_generated_date = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_key_requested_count: ret->cm_key_requested_count = atoi(p); talloc_free(p); break; case cm_store_entry_field_key_next_requested_count: ret->cm_key_next_requested_count = atoi(p); talloc_free(p); break; case cm_store_entry_field_key_issued_count: ret->cm_key_issued_count = atoi(p); talloc_free(p); break; case cm_store_entry_field_cert_storage_type: if (strcasecmp(p, "FILE") == 0) { ret->cm_cert_storage_type = cm_cert_storage_file; } else if (strcasecmp(p, "NSSDB") == 0) { ret->cm_cert_storage_type = cm_cert_storage_nssdb; } else { ret->cm_cert_storage_type = cm_cert_storage_file; } talloc_free(p); break; case cm_store_entry_field_cert_storage_location: ret->cm_cert_storage_location = free_if_empty(p); if (ret->cm_cert_storage_location != NULL) { p = cm_store_canonicalize_path(ret, ret->cm_cert_storage_location); talloc_free(ret->cm_cert_storage_location); ret->cm_cert_storage_location = p; } break; case cm_store_entry_field_cert_token: ret->cm_cert_token = free_if_empty(p); break; case cm_store_entry_field_cert_nickname: ret->cm_cert_nickname = free_if_empty(p); break; case cm_store_entry_field_cert_owner: ret->cm_cert_owner = free_if_empty(p); break; case cm_store_entry_field_cert_perms: if (strlen(p) > 0) { ret->cm_cert_perms = strtoul(p, &end, 8); if ((end == NULL) || (*end != '\0')) { ret->cm_cert_perms = 0; } } break; case cm_store_entry_field_cert_issuer_der: ret->cm_cert_issuer_der = free_if_empty(p); break; case cm_store_entry_field_cert_issuer: ret->cm_cert_issuer = free_if_empty(p); break; case cm_store_entry_field_cert_serial: ret->cm_cert_serial = free_if_empty(p); break; case cm_store_entry_field_cert_subject_der: ret->cm_cert_subject_der = free_if_empty(p); break; case cm_store_entry_field_cert_subject: ret->cm_cert_subject = free_if_empty(p); break; case cm_store_entry_field_cert_spki: ret->cm_cert_spki = free_if_empty(p); break; case cm_store_entry_field_cert_not_before: ret->cm_cert_not_before = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_cert_not_after: ret->cm_cert_not_after = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_cert_hostname: ret->cm_cert_hostname = free_if_empty_multi(ret, p); break; case cm_store_entry_field_cert_email: ret->cm_cert_email = free_if_empty_multi(ret, p); break; case cm_store_entry_field_cert_principal: ret->cm_cert_principal = free_if_empty_multi(ret, p); break; case cm_store_entry_field_cert_ipaddress: ret->cm_cert_ipaddress = free_if_empty_multi(ret, p); break; case cm_store_entry_field_cert_ku: ret->cm_cert_ku = free_if_empty(p); break; case cm_store_entry_field_cert_eku: ret->cm_cert_eku = free_if_empty(p); break; case cm_store_entry_field_cert_is_ca: ret->cm_cert_is_ca = atoi(p) != 0; talloc_free(p); break; case cm_store_entry_field_cert_ca_path_length: ret->cm_cert_ca_path_length = atoi(p); talloc_free(p); break; case cm_store_entry_field_cert_crl_distribution_point: ret->cm_cert_crl_distribution_point = free_if_empty_multi(ret, p); break; case cm_store_entry_field_cert_freshest_crl: ret->cm_cert_freshest_crl = free_if_empty_multi(ret, p); break; case cm_store_entry_field_cert_ocsp_location: ret->cm_cert_ocsp_location = free_if_empty_multi(ret, p); break; case cm_store_entry_field_cert_ns_comment: ret->cm_cert_ns_comment = free_if_empty(p); break; case cm_store_entry_field_cert_profile: ret->cm_cert_profile = free_if_empty(p); break; case cm_store_entry_field_cert_no_ocsp_check: ret->cm_cert_no_ocsp_check = atoi(p) != 0; talloc_free(p); break; case cm_store_entry_field_cert_ns_certtype: ret->cm_cert_ns_certtype = free_if_empty(p); break; case cm_store_entry_field_last_expiration_check: /* backward compatibility before we split them * into two settings */ ret->cm_last_need_notify_check = cm_store_time_from_timestamp(p); ret->cm_last_need_enroll_check = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_last_need_notify_check: ret->cm_last_need_notify_check = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_last_need_enroll_check: ret->cm_last_need_enroll_check = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_template_subject_der: ret->cm_template_subject_der = free_if_empty(p); break; case cm_store_entry_field_template_subject: ret->cm_template_subject = free_if_empty(p); break; case cm_store_entry_field_template_hostname: ret->cm_template_hostname = free_if_empty_multi(ret, p); break; case cm_store_entry_field_template_email: ret->cm_template_email = free_if_empty_multi(ret, p); break; case cm_store_entry_field_template_principal: ret->cm_template_principal = free_if_empty_multi(ret, p); break; case cm_store_entry_field_template_ipaddress: ret->cm_template_ipaddress = free_if_empty_multi(ret, p); break; case cm_store_entry_field_template_ku: ret->cm_template_ku = free_if_empty(p); break; case cm_store_entry_field_template_eku: ret->cm_template_eku = free_if_empty(p); break; case cm_store_entry_field_template_is_ca: ret->cm_template_is_ca = atoi(p) != 0; talloc_free(p); break; case cm_store_entry_field_template_ca_path_length: ret->cm_template_ca_path_length = atoi(p); talloc_free(p); break; case cm_store_entry_field_template_crl_distribution_point: ret->cm_template_crl_distribution_point = free_if_empty_multi(ret, p); break; case cm_store_entry_field_template_freshest_crl: ret->cm_template_freshest_crl = free_if_empty_multi(ret, p); break; case cm_store_entry_field_template_ocsp_location: ret->cm_template_ocsp_location = free_if_empty_multi(ret, p); break; case cm_store_entry_field_template_ns_comment: ret->cm_template_ns_comment = free_if_empty(p); break; case cm_store_entry_field_template_profile: ret->cm_template_profile = free_if_empty(p); break; case cm_store_entry_field_template_no_ocsp_check: ret->cm_template_no_ocsp_check = atoi(p) != 0; talloc_free(p); break; case cm_store_entry_field_template_ns_certtype: ret->cm_template_ns_certtype = free_if_empty(p); break; case cm_store_entry_field_challenge_password: ret->cm_template_challenge_password = free_if_empty(p); break; case cm_store_entry_field_challenge_password_file: ret->cm_template_challenge_password_file = free_if_empty(p); break; case cm_store_entry_field_csr: ret->cm_csr = free_if_empty(p); break; case cm_store_entry_field_spkac: ret->cm_spkac = free_if_empty(p); break; case cm_store_entry_field_scep_tx: ret->cm_scep_tx = free_if_empty(p); break; case cm_store_entry_field_scep_nonce: ret->cm_scep_nonce = free_if_empty(p); break; case cm_store_entry_field_scep_last_nonce: ret->cm_scep_last_nonce = free_if_empty(p); break; case cm_store_entry_field_scep_gic: ret->cm_scep_gic = free_if_empty(p); break; case cm_store_entry_field_scep_gic_next: ret->cm_scep_gic_next = free_if_empty(p); break; case cm_store_entry_field_scep_req: ret->cm_scep_req = free_if_empty(p); break; case cm_store_entry_field_scep_req_next: ret->cm_scep_req_next = free_if_empty(p); break; case cm_store_entry_field_minicert: ret->cm_minicert = free_if_empty(p); break; case cm_store_entry_field_state: ret->cm_state = cm_store_state_from_string(p); talloc_free(p); break; case cm_store_entry_field_autorenew: ret->cm_autorenew = atoi(p); talloc_free(p); break; case cm_store_entry_field_monitor: ret->cm_monitor = atoi(p); talloc_free(p); break; case cm_store_entry_field_ca_nickname: ret->cm_ca_nickname = free_if_empty(p); break; case cm_store_entry_field_submitted: ret->cm_submitted = cm_store_time_from_timestamp(p); talloc_free(p); break; case cm_store_entry_field_ca_cookie: ret->cm_ca_cookie = free_if_empty(p); break; case cm_store_entry_field_ca_error: ret->cm_ca_error = free_if_empty(p); break; case cm_store_entry_field_cert: ret->cm_cert = free_if_empty(p); break; case cm_store_entry_field_cert_chain: ret->cm_cert_chain = parse_nickcert_list(ret, p); talloc_free(p); break; case cm_store_entry_field_cert_roots: ret->cm_cert_roots = parse_nickcert_list(ret, p); talloc_free(p); break; case cm_store_entry_field_pre_certsave_command: ret->cm_pre_certsave_command = free_if_empty(p); break; case cm_store_entry_field_pre_certsave_uid: ret->cm_pre_certsave_uid = free_if_empty(p); break; case cm_store_entry_field_post_certsave_command: ret->cm_post_certsave_command = free_if_empty(p); break; case cm_store_entry_field_post_certsave_uid: ret->cm_post_certsave_uid = free_if_empty(p); break; case cm_store_entry_field_root_cert_files: ret->cm_root_cert_store_files = free_if_empty_multi(ret, p); break; case cm_store_entry_field_other_root_cert_files: ret->cm_other_root_cert_store_files = free_if_empty_multi(ret, p); break; case cm_store_entry_field_other_cert_files: ret->cm_other_cert_store_files = free_if_empty_multi(ret, p); break; case cm_store_entry_field_root_cert_nssdbs: ret->cm_root_cert_store_nssdbs = free_if_empty_multi(ret, p); break; case cm_store_entry_field_other_root_cert_nssdbs: ret->cm_other_root_cert_store_nssdbs = free_if_empty_multi(ret, p); break; case cm_store_entry_field_other_cert_nssdbs: ret->cm_other_cert_store_nssdbs = free_if_empty_multi(ret, p); break; } } } return ret; } struct cm_store_entry * cm_store_files_entry_read(void *parent, const char *filename) { FILE *fp; struct cm_store_entry *ret; if (filename != NULL) { fp = fopen(filename, "r"); if (fp != NULL) { ret = cm_store_entry_read(parent, filename, fp); fclose(fp); } else { ret = NULL; } } else { ret = NULL; } return ret; } char * cm_store_ca_next_busname(void *parent) { return talloc_asprintf(parent, "CA%llu", ++cm_ca_name_last); } static struct cm_store_ca * cm_store_ca_read(void *parent, const char *filename, FILE *fp) { struct cm_store_ca *ret; char **s, *p; int i; enum cm_store_file_field field; ret = cm_store_ca_new(parent); if (ret != NULL) { s = cm_store_file_read_lines(ret, fp); ret->cm_busname = cm_store_ca_next_busname(ret); ret->cm_store_private = talloc_strdup(ret, filename); for (i = 0; (s != NULL) && (s[i] != NULL); i++) { p = s[i]; field = cm_store_file_field_of_line(p); switch (field) { case cm_store_file_field_invalid: case cm_store_file_field_invalid_high: break; case cm_store_entry_field_key_type: case cm_store_entry_field_key_gen_type: case cm_store_entry_field_key_size: case cm_store_entry_field_key_gen_size: case cm_store_entry_field_key_next_type: case cm_store_entry_field_key_next_gen_type: case cm_store_entry_field_key_next_size: case cm_store_entry_field_key_next_gen_size: case cm_store_entry_field_key_preserve: case cm_store_entry_field_key_next_marker: case cm_store_entry_field_key_storage_type: case cm_store_entry_field_key_storage_location: case cm_store_entry_field_key_token: case cm_store_entry_field_key_nickname: case cm_store_entry_field_key_pin: case cm_store_entry_field_key_pin_file: case cm_store_entry_field_key_owner: case cm_store_entry_field_key_perms: case cm_store_entry_field_key_pubkey: case cm_store_entry_field_key_pubkey_info: case cm_store_entry_field_key_next_pubkey: case cm_store_entry_field_key_next_pubkey_info: case cm_store_entry_field_key_generated_date: case cm_store_entry_field_key_next_generated_date: case cm_store_entry_field_key_requested_count: case cm_store_entry_field_key_next_requested_count: case cm_store_entry_field_key_issued_count: case cm_store_entry_field_cert_storage_type: case cm_store_entry_field_cert_storage_location: case cm_store_entry_field_cert_token: case cm_store_entry_field_cert_nickname: case cm_store_entry_field_cert_owner: case cm_store_entry_field_cert_perms: case cm_store_entry_field_cert_issuer_der: case cm_store_entry_field_cert_issuer: case cm_store_entry_field_cert_serial: case cm_store_entry_field_cert_subject_der: case cm_store_entry_field_cert_subject: case cm_store_entry_field_cert_spki: case cm_store_entry_field_cert_not_before: case cm_store_entry_field_cert_not_after: case cm_store_entry_field_cert_hostname: case cm_store_entry_field_cert_email: case cm_store_entry_field_cert_principal: case cm_store_entry_field_cert_ipaddress: case cm_store_entry_field_cert_ku: case cm_store_entry_field_cert_eku: case cm_store_entry_field_cert_is_ca: case cm_store_entry_field_cert_ca_path_length: case cm_store_entry_field_cert_crl_distribution_point: case cm_store_entry_field_cert_freshest_crl: case cm_store_entry_field_cert_ocsp_location: case cm_store_entry_field_cert_ns_comment: case cm_store_entry_field_cert_profile: case cm_store_entry_field_cert_no_ocsp_check: case cm_store_entry_field_cert_ns_certtype: case cm_store_entry_field_last_expiration_check: case cm_store_entry_field_last_need_notify_check: case cm_store_entry_field_last_need_enroll_check: case cm_store_entry_field_template_subject_der: case cm_store_entry_field_template_subject: case cm_store_entry_field_template_hostname: case cm_store_entry_field_template_email: case cm_store_entry_field_template_principal: case cm_store_entry_field_template_ipaddress: case cm_store_entry_field_template_ku: case cm_store_entry_field_template_eku: case cm_store_entry_field_template_is_ca: case cm_store_entry_field_template_ca_path_length: case cm_store_entry_field_template_crl_distribution_point: case cm_store_entry_field_template_freshest_crl: case cm_store_entry_field_template_ocsp_location: case cm_store_entry_field_template_ns_comment: case cm_store_entry_field_template_profile: case cm_store_entry_field_template_no_ocsp_check: case cm_store_entry_field_template_ns_certtype: case cm_store_entry_field_challenge_password: case cm_store_entry_field_challenge_password_file: case cm_store_entry_field_csr: case cm_store_entry_field_spkac: case cm_store_entry_field_scep_tx: case cm_store_entry_field_scep_nonce: case cm_store_entry_field_scep_last_nonce: case cm_store_entry_field_scep_gic: case cm_store_entry_field_scep_gic_next: case cm_store_entry_field_scep_req: case cm_store_entry_field_scep_req_next: case cm_store_entry_field_minicert: case cm_store_entry_field_state: case cm_store_entry_field_autorenew: case cm_store_entry_field_monitor: case cm_store_entry_field_ca_nickname: case cm_store_entry_field_submitted: case cm_store_entry_field_ca_cookie: case cm_store_entry_field_ca_error: case cm_store_entry_field_cert: case cm_store_entry_field_cert_chain: case cm_store_entry_field_cert_roots: case cm_store_entry_field_pre_certsave_command: case cm_store_entry_field_pre_certsave_uid: case cm_store_entry_field_post_certsave_command: case cm_store_entry_field_post_certsave_uid: case cm_store_entry_field_root_cert_files: case cm_store_entry_field_other_root_cert_files: case cm_store_entry_field_other_cert_files: case cm_store_entry_field_root_cert_nssdbs: case cm_store_entry_field_other_root_cert_nssdbs: case cm_store_entry_field_other_cert_nssdbs: break; case cm_store_file_field_id: ret->cm_nickname = free_if_empty(p); break; case cm_store_ca_field_aka: ret->cm_ca_aka = free_if_empty(p); break; case cm_store_ca_field_known_issuer_names: ret->cm_ca_known_issuer_names = free_if_empty_multi(ret, p); break; case cm_store_ca_field_is_default: ret->cm_ca_is_default = atoi(p); talloc_free(p); break; case cm_store_ca_field_type: if (strcasecmp(p, "EXTERNAL") == 0) { ret->cm_ca_type = cm_ca_external; } else if (strcasecmp(p, "INTERNAL:SELF") == 0) { ret->cm_ca_type = cm_ca_internal_self; } else { ret->cm_ca_type = cm_ca_external; } talloc_free(p); break; case cm_store_ca_field_internal_serial: ret->cm_ca_internal_serial = free_if_empty(p); break; case cm_store_ca_field_internal_issue_time: ret->cm_ca_internal_force_issue_time = 1; ret->cm_ca_internal_issue_time = atol(p); talloc_free(p); break; case cm_store_ca_field_external_helper: ret->cm_ca_external_helper = free_if_empty(p); break; case cm_store_ca_field_root_certs: ret->cm_ca_root_certs = parse_nickcert_list(ret, p); talloc_free(p); break; case cm_store_ca_field_other_root_certs: ret->cm_ca_other_root_certs = parse_nickcert_list(ret, p); talloc_free(p); break; case cm_store_ca_field_other_certs: ret->cm_ca_other_certs = parse_nickcert_list(ret, p); talloc_free(p); break; case cm_store_ca_field_required_enroll_attributes: ret->cm_ca_required_enroll_attributes = free_if_empty_multi(ret, p); break; case cm_store_ca_field_required_renewal_attributes: ret->cm_ca_required_renewal_attributes = free_if_empty_multi(ret, p); break; case cm_store_ca_field_profiles: ret->cm_ca_profiles = free_if_empty_multi(ret, p); break; case cm_store_ca_field_default_profile: ret->cm_ca_default_profile = free_if_empty(p); break; case cm_store_ca_field_pre_save_command: ret->cm_ca_pre_save_command = free_if_empty(p); break; case cm_store_ca_field_pre_save_uid: ret->cm_ca_pre_save_uid = free_if_empty(p); break; case cm_store_ca_field_post_save_command: ret->cm_ca_post_save_command = free_if_empty(p); break; case cm_store_ca_field_post_save_uid: ret->cm_ca_post_save_uid = free_if_empty(p); break; case cm_store_ca_field_root_cert_files: ret->cm_ca_root_cert_store_files = free_if_empty_multi(ret, p); break; case cm_store_ca_field_other_root_cert_files: ret->cm_ca_other_root_cert_store_files = free_if_empty_multi(ret, p); break; case cm_store_ca_field_other_cert_files: ret->cm_ca_other_cert_store_files = free_if_empty_multi(ret, p); break; case cm_store_ca_field_root_cert_nssdbs: ret->cm_ca_root_cert_store_nssdbs = free_if_empty_multi(ret, p); break; case cm_store_ca_field_other_root_cert_nssdbs: ret->cm_ca_other_root_cert_store_nssdbs = free_if_empty_multi(ret, p); break; case cm_store_ca_field_other_cert_nssdbs: ret->cm_ca_other_cert_store_nssdbs = free_if_empty_multi(ret, p); break; case cm_store_ca_field_capabilities: ret->cm_ca_capabilities = free_if_empty_multi(ret, p); break; case cm_store_ca_field_scep_ca_identifier: ret->cm_ca_scep_ca_identifier = free_if_empty(p); break; case cm_store_ca_field_encryption_cert: ret->cm_ca_encryption_cert = free_if_empty(p); break; case cm_store_ca_field_encryption_issuer_cert: ret->cm_ca_encryption_issuer_cert = free_if_empty(p); break; case cm_store_ca_field_encryption_cert_pool: ret->cm_ca_encryption_cert_pool = free_if_empty(p); break; } } if (ret->cm_ca_internal_serial == NULL) { ret->cm_ca_internal_serial = talloc_strdup(ret, CM_DEFAULT_CERT_SERIAL); } } return ret; } struct cm_store_ca * cm_store_files_ca_read(void *parent, const char *filename) { FILE *fp; struct cm_store_ca *ret; if (filename != NULL) { fp = fopen(filename, "r"); if (fp != NULL) { ret = cm_store_ca_read(parent, filename, fp); fclose(fp); } else { ret = NULL; } } else { ret = NULL; } return ret; } static int cm_store_file_write_octal(FILE *fp, enum cm_store_file_field field, unsigned long value) { fprintf(fp, "%s=%lo\n", cm_store_file_line_of_field(field), value); if (ferror(fp)) { return -1; } return 0; } static int cm_store_file_write_int(FILE *fp, enum cm_store_file_field field, long value) { fprintf(fp, "%s=%ld\n", cm_store_file_line_of_field(field), value); if (ferror(fp)) { return -1; } return 0; } static int cm_store_file_write_str(FILE *fp, enum cm_store_file_field field, const char *s) { const char *p, *q; if ((s == NULL) || (s[0] == '\0')) { return 0; } p = s; q = p + strcspn(p, "\r\n"); fprintf(fp, "%s=%.*s\n", cm_store_file_line_of_field(field), (int) (q - p), p); p = q + strspn(q, "\r\n"); while (*p != '\0') { q = p + strcspn(p, "\r\n"); fprintf(fp, " %.*s\n", (int) (q - p), p); if (*q == '\r') { q++; } if (*q == '\n') { q++; } if (p == q) { break; } p = q; } if (ferror(fp)) { return -1; } return 0; } static int cm_store_file_write_strs(FILE *fp, enum cm_store_file_field field, char **s) { int i, j; if ((s == NULL) || (s[0] == NULL)) { return 0; } fprintf(fp, "%s=", cm_store_file_line_of_field(field)); for (i = 0; (s != NULL) && (s[i] != NULL); i++) { if (i > 0) { fputc(',', fp); } for (j = 0; s[i][j] != '\0'; j++) { switch (s[i][j]) { case '\\': case ',': fputc('\\', fp); /* fall through */ default: fputc(s[i][j], fp); break; } } if (ferror(fp)) { return -1; } } fprintf(fp, "\n"); return 0; } static int cm_store_file_write_nickcert_list(FILE *fp, enum cm_store_file_field field, struct cm_nickcert **nc) { const char *p, *q; int i, j; if ((nc == NULL) || (nc[0] == NULL)) { return 0; } fprintf(fp, "%s=", cm_store_file_line_of_field(field)); for (i = 0; nc[i] != NULL; i++) { if (i > 0) { fputc(' ', fp); } for (j = 0; nc[i]->cm_nickname[j] != '\0'; j++) { switch (nc[i]->cm_nickname[j]) { case '\\': case ',': fputc('\\', fp); /* fall through */ default: fputc(nc[i]->cm_nickname[j], fp); break; } } if (ferror(fp)) { return -1; } fprintf(fp, "\n"); p = nc[i]->cm_cert; while (*p != '\0') { q = p + strcspn(p, "\r\n"); fprintf(fp, " %.*s\n", (int) (q - p), p); p = q + strspn(q, "\r\n"); } if (ferror(fp)) { return -1; } } return 0; } static int cm_store_entry_write(FILE *fp, struct cm_store_entry *entry) { char timestamp[15]; const char *p; if (entry->cm_nickname == NULL) { p = cm_store_timestamp_from_time(cm_time(NULL), timestamp); } else { p = entry->cm_nickname; } cm_store_file_write_str(fp, cm_store_file_field_id, p); switch (entry->cm_key_type.cm_key_algorithm) { case cm_key_unspecified: cm_store_file_write_str(fp, cm_store_entry_field_key_type, "UNSPECIFIED"); break; case cm_key_rsa: cm_store_file_write_str(fp, cm_store_entry_field_key_type, "RSA"); break; #ifdef CM_ENABLE_DSA case cm_key_dsa: cm_store_file_write_str(fp, cm_store_entry_field_key_type, "DSA"); break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: cm_store_file_write_str(fp, cm_store_entry_field_key_type, "EC"); break; #endif } switch (entry->cm_key_type.cm_key_gen_algorithm) { case cm_key_unspecified: cm_store_file_write_str(fp, cm_store_entry_field_key_gen_type, "UNSPECIFIED"); break; case cm_key_rsa: cm_store_file_write_str(fp, cm_store_entry_field_key_gen_type, "RSA"); break; #ifdef CM_ENABLE_DSA case cm_key_dsa: cm_store_file_write_str(fp, cm_store_entry_field_key_gen_type, "DSA"); break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: cm_store_file_write_str(fp, cm_store_entry_field_key_gen_type, "EC"); break; #endif } cm_store_file_write_int(fp, cm_store_entry_field_key_size, entry->cm_key_type.cm_key_size); cm_store_file_write_int(fp, cm_store_entry_field_key_gen_size, entry->cm_key_type.cm_key_gen_size); switch (entry->cm_key_next_type.cm_key_algorithm) { case cm_key_unspecified: cm_store_file_write_str(fp, cm_store_entry_field_key_next_type, "UNSPECIFIED"); break; case cm_key_rsa: cm_store_file_write_str(fp, cm_store_entry_field_key_next_type, "RSA"); break; #ifdef CM_ENABLE_DSA case cm_key_dsa: cm_store_file_write_str(fp, cm_store_entry_field_key_next_type, "DSA"); break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: cm_store_file_write_str(fp, cm_store_entry_field_key_next_type, "EC"); break; #endif } switch (entry->cm_key_next_type.cm_key_gen_algorithm) { case cm_key_unspecified: cm_store_file_write_str(fp, cm_store_entry_field_key_next_gen_type, "UNSPECIFIED"); break; case cm_key_rsa: cm_store_file_write_str(fp, cm_store_entry_field_key_next_gen_type, "RSA"); break; #ifdef CM_ENABLE_DSA case cm_key_dsa: cm_store_file_write_str(fp, cm_store_entry_field_key_next_gen_type, "DSA"); break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: cm_store_file_write_str(fp, cm_store_entry_field_key_next_gen_type, "EC"); break; #endif } cm_store_file_write_int(fp, cm_store_entry_field_key_next_size, entry->cm_key_next_type.cm_key_size); cm_store_file_write_int(fp, cm_store_entry_field_key_next_gen_size, entry->cm_key_next_type.cm_key_gen_size); cm_store_file_write_str(fp, cm_store_entry_field_key_next_marker, entry->cm_key_next_marker); cm_store_file_write_int(fp, cm_store_entry_field_key_preserve, entry->cm_key_preserve); switch (entry->cm_key_storage_type) { case cm_key_storage_file: cm_store_file_write_str(fp, cm_store_entry_field_key_storage_type, "FILE"); break; case cm_key_storage_nssdb: cm_store_file_write_str(fp, cm_store_entry_field_key_storage_type, "NSSDB"); break; case cm_key_storage_none: cm_store_file_write_str(fp, cm_store_entry_field_key_storage_type, "NONE"); break; } cm_store_file_write_str(fp, cm_store_entry_field_key_storage_location, entry->cm_key_storage_location); cm_store_file_write_str(fp, cm_store_entry_field_key_token, entry->cm_key_token); cm_store_file_write_str(fp, cm_store_entry_field_key_nickname, entry->cm_key_nickname); if (entry->cm_key_pin_file == NULL) { cm_store_file_write_str(fp, cm_store_entry_field_key_pin, entry->cm_key_pin); } cm_store_file_write_str(fp, cm_store_entry_field_key_pin_file, entry->cm_key_pin_file); cm_store_file_write_str(fp, cm_store_entry_field_key_owner, entry->cm_key_owner); cm_store_file_write_octal(fp, cm_store_entry_field_key_perms, entry->cm_key_perms); cm_store_file_write_str(fp, cm_store_entry_field_key_pubkey, entry->cm_key_pubkey); cm_store_file_write_str(fp, cm_store_entry_field_key_pubkey_info, entry->cm_key_pubkey_info); cm_store_file_write_str(fp, cm_store_entry_field_key_next_pubkey, entry->cm_key_next_pubkey); cm_store_file_write_str(fp, cm_store_entry_field_key_next_pubkey_info, entry->cm_key_next_pubkey_info); if (entry->cm_key_generated_date != 0) { cm_store_file_write_str(fp, cm_store_entry_field_key_generated_date, cm_store_timestamp_from_time(entry->cm_key_generated_date, timestamp)); } if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { cm_store_file_write_str(fp, cm_store_entry_field_key_next_generated_date, cm_store_timestamp_from_time(entry->cm_key_next_generated_date, timestamp)); } cm_store_file_write_int(fp, cm_store_entry_field_key_requested_count, entry->cm_key_requested_count); if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { cm_store_file_write_int(fp, cm_store_entry_field_key_next_requested_count, entry->cm_key_next_requested_count); } cm_store_file_write_int(fp, cm_store_entry_field_key_issued_count, entry->cm_key_issued_count); switch (entry->cm_cert_storage_type) { case cm_cert_storage_file: cm_store_file_write_str(fp, cm_store_entry_field_cert_storage_type, "FILE"); break; case cm_cert_storage_nssdb: cm_store_file_write_str(fp, cm_store_entry_field_cert_storage_type, "NSSDB"); break; } cm_store_file_write_str(fp, cm_store_entry_field_cert_storage_location, entry->cm_cert_storage_location); cm_store_file_write_str(fp, cm_store_entry_field_cert_token, entry->cm_cert_token); cm_store_file_write_str(fp, cm_store_entry_field_cert_nickname, entry->cm_cert_nickname); cm_store_file_write_str(fp, cm_store_entry_field_cert_owner, entry->cm_cert_owner); cm_store_file_write_octal(fp, cm_store_entry_field_cert_perms, entry->cm_cert_perms); cm_store_file_write_str(fp, cm_store_entry_field_cert_issuer_der, entry->cm_cert_issuer_der); cm_store_file_write_str(fp, cm_store_entry_field_cert_issuer, entry->cm_cert_issuer); cm_store_file_write_str(fp, cm_store_entry_field_cert_serial, entry->cm_cert_serial); cm_store_file_write_str(fp, cm_store_entry_field_cert_subject_der, entry->cm_cert_subject_der); cm_store_file_write_str(fp, cm_store_entry_field_cert_subject, entry->cm_cert_subject); cm_store_file_write_str(fp, cm_store_entry_field_cert_spki, entry->cm_cert_spki); if (entry->cm_cert_not_before != 0) { cm_store_file_write_str(fp, cm_store_entry_field_cert_not_before, cm_store_timestamp_from_time(entry->cm_cert_not_before, timestamp)); } if (entry->cm_cert_not_after != 0) { cm_store_file_write_str(fp, cm_store_entry_field_cert_not_after, cm_store_timestamp_from_time(entry->cm_cert_not_after, timestamp)); } cm_store_file_write_strs(fp, cm_store_entry_field_cert_hostname, entry->cm_cert_hostname); cm_store_file_write_strs(fp, cm_store_entry_field_cert_email, entry->cm_cert_email); cm_store_file_write_strs(fp, cm_store_entry_field_cert_principal, entry->cm_cert_principal); cm_store_file_write_strs(fp, cm_store_entry_field_cert_ipaddress, entry->cm_cert_ipaddress); cm_store_file_write_str(fp, cm_store_entry_field_cert_ku, entry->cm_cert_ku); cm_store_file_write_str(fp, cm_store_entry_field_cert_eku, entry->cm_cert_eku); cm_store_file_write_int(fp, cm_store_entry_field_cert_is_ca, entry->cm_cert_is_ca ? 1 : 0); cm_store_file_write_int(fp, cm_store_entry_field_cert_ca_path_length, entry->cm_cert_ca_path_length); cm_store_file_write_strs(fp, cm_store_entry_field_cert_crl_distribution_point, entry->cm_cert_crl_distribution_point); cm_store_file_write_strs(fp, cm_store_entry_field_cert_freshest_crl, entry->cm_cert_freshest_crl); cm_store_file_write_strs(fp, cm_store_entry_field_cert_ocsp_location, entry->cm_cert_ocsp_location); cm_store_file_write_str(fp, cm_store_entry_field_cert_ns_comment, entry->cm_cert_ns_comment); cm_store_file_write_str(fp, cm_store_entry_field_cert_profile, entry->cm_cert_profile); cm_store_file_write_str(fp, cm_store_entry_field_cert_ns_certtype, entry->cm_cert_ns_certtype); cm_store_file_write_int(fp, cm_store_entry_field_cert_no_ocsp_check, entry->cm_cert_no_ocsp_check ? 1 : 0); cm_store_file_write_str(fp, cm_store_entry_field_last_need_notify_check, cm_store_timestamp_from_time(entry->cm_last_need_notify_check, timestamp)); cm_store_file_write_str(fp, cm_store_entry_field_last_need_enroll_check, cm_store_timestamp_from_time(entry->cm_last_need_enroll_check, timestamp)); cm_store_file_write_str(fp, cm_store_entry_field_template_subject_der, entry->cm_template_subject_der); cm_store_file_write_str(fp, cm_store_entry_field_template_subject, entry->cm_template_subject); cm_store_file_write_strs(fp, cm_store_entry_field_template_hostname, entry->cm_template_hostname); cm_store_file_write_strs(fp, cm_store_entry_field_template_email, entry->cm_template_email); cm_store_file_write_strs(fp, cm_store_entry_field_template_principal, entry->cm_template_principal); cm_store_file_write_strs(fp, cm_store_entry_field_template_ipaddress, entry->cm_template_ipaddress); cm_store_file_write_str(fp, cm_store_entry_field_template_ku, entry->cm_template_ku); cm_store_file_write_str(fp, cm_store_entry_field_template_eku, entry->cm_template_eku); cm_store_file_write_int(fp, cm_store_entry_field_template_is_ca, entry->cm_template_is_ca ? 1 : 0); cm_store_file_write_int(fp, cm_store_entry_field_template_ca_path_length, entry->cm_template_ca_path_length); cm_store_file_write_strs(fp, cm_store_entry_field_template_crl_distribution_point, entry->cm_template_crl_distribution_point); cm_store_file_write_strs(fp, cm_store_entry_field_template_freshest_crl, entry->cm_template_freshest_crl); cm_store_file_write_strs(fp, cm_store_entry_field_template_ocsp_location, entry->cm_template_ocsp_location); cm_store_file_write_str(fp, cm_store_entry_field_template_ns_comment, entry->cm_template_ns_comment); cm_store_file_write_str(fp, cm_store_entry_field_template_profile, entry->cm_template_profile); cm_store_file_write_int(fp, cm_store_entry_field_template_no_ocsp_check, entry->cm_template_no_ocsp_check ? 1 : 0); cm_store_file_write_str(fp, cm_store_entry_field_template_ns_certtype, entry->cm_template_ns_certtype); cm_store_file_write_str(fp, cm_store_entry_field_challenge_password, entry->cm_template_challenge_password); cm_store_file_write_str(fp, cm_store_entry_field_challenge_password_file, entry->cm_template_challenge_password_file); cm_store_file_write_str(fp, cm_store_entry_field_csr, entry->cm_csr); cm_store_file_write_str(fp, cm_store_entry_field_spkac, entry->cm_spkac); cm_store_file_write_str(fp, cm_store_entry_field_scep_tx, entry->cm_scep_tx); cm_store_file_write_str(fp, cm_store_entry_field_scep_nonce, entry->cm_scep_nonce); cm_store_file_write_str(fp, cm_store_entry_field_scep_last_nonce, entry->cm_scep_last_nonce); cm_store_file_write_str(fp, cm_store_entry_field_scep_gic, entry->cm_scep_gic); cm_store_file_write_str(fp, cm_store_entry_field_scep_gic_next, entry->cm_scep_gic_next); cm_store_file_write_str(fp, cm_store_entry_field_scep_req, entry->cm_scep_req); cm_store_file_write_str(fp, cm_store_entry_field_scep_req_next, entry->cm_scep_req_next); cm_store_file_write_str(fp, cm_store_entry_field_minicert, entry->cm_minicert); cm_store_file_write_str(fp, cm_store_entry_field_state, cm_store_state_as_string(entry->cm_state)); cm_store_file_write_int(fp, cm_store_entry_field_autorenew, entry->cm_autorenew); cm_store_file_write_int(fp, cm_store_entry_field_monitor, entry->cm_monitor); cm_store_file_write_str(fp, cm_store_entry_field_ca_nickname, entry->cm_ca_nickname); cm_store_file_write_str(fp, cm_store_entry_field_submitted, cm_store_timestamp_from_time(entry->cm_submitted, timestamp)); cm_store_file_write_str(fp, cm_store_entry_field_ca_cookie, entry->cm_ca_cookie); cm_store_file_write_str(fp, cm_store_entry_field_ca_error, entry->cm_ca_error); cm_store_file_write_str(fp, cm_store_entry_field_cert, entry->cm_cert); cm_store_file_write_nickcert_list(fp, cm_store_entry_field_cert_chain, entry->cm_cert_chain); cm_store_file_write_nickcert_list(fp, cm_store_entry_field_cert_roots, entry->cm_cert_roots); cm_store_file_write_str(fp, cm_store_entry_field_pre_certsave_command, entry->cm_pre_certsave_command); cm_store_file_write_str(fp, cm_store_entry_field_pre_certsave_uid, entry->cm_pre_certsave_uid); cm_store_file_write_str(fp, cm_store_entry_field_post_certsave_command, entry->cm_post_certsave_command); cm_store_file_write_str(fp, cm_store_entry_field_post_certsave_uid, entry->cm_post_certsave_uid); cm_store_file_write_strs(fp, cm_store_entry_field_root_cert_files, entry->cm_root_cert_store_files); cm_store_file_write_strs(fp, cm_store_entry_field_other_root_cert_files, entry->cm_other_root_cert_store_files); cm_store_file_write_strs(fp, cm_store_entry_field_other_cert_files, entry->cm_other_cert_store_files); cm_store_file_write_strs(fp, cm_store_entry_field_root_cert_nssdbs, entry->cm_root_cert_store_nssdbs); cm_store_file_write_strs(fp, cm_store_entry_field_other_root_cert_nssdbs, entry->cm_other_root_cert_store_nssdbs); cm_store_file_write_strs(fp, cm_store_entry_field_other_cert_nssdbs, entry->cm_other_cert_store_nssdbs); if (ferror(fp)) { return -1; } return 0; } int cm_store_entry_delete(struct cm_store_entry *entry) { int ret; const char *filename; if (entry->cm_store_private != NULL) { filename = (const char *) entry->cm_store_private; ret = remove(filename); if (ret == 0) { cm_log(3, "Removed file \"%s\".\n", filename); talloc_free(entry->cm_store_private); entry->cm_store_private = NULL; } else { cm_log(0, "Failed to remove file \"%s\": %s.\n", filename, strerror(errno)); } } else { cm_log(3, "No file to remove for \"%s\".\n", entry->cm_nickname); ret = 0; } return 0; } static void cm_store_create_containing_dir(const char *path, int mode) { char dir[PATH_MAX]; int i; if (strlen(path) >= sizeof(dir)) { return; } for (i = 0, dir[0] = '\0'; path[i] != '\0'; i++) { if ((i > 0) && (path[i] == '/')) { if (mkdir(dir, mode) == -1) { if (errno != EEXIST) { cm_log(1, "Failed to create \"%s\": " "%s.\n", dir, strerror(errno)); break; } } else { cm_log(2, "Created \"%s\".\n", dir); } } dir[i] = path[i]; dir[i + 1] = '\0'; } } int cm_store_entry_save(struct cm_store_entry *entry) { FILE *fp; char timestamp[15], path[PATH_MAX]; int i, fd = -1, give_up; const char *directory, *dest; if (entry->cm_store_private == NULL) { cm_store_timestamp_from_time(cm_time(NULL), timestamp); directory = cm_env_request_dir(); if (directory != NULL) { snprintf(path, sizeof(path), "%s/%s", directory, timestamp); fd = open(path, O_WRONLY | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); if ((fd == -1) && (errno == ENOENT)) { cm_store_create_containing_dir(path, S_IRWXU); fd = open(path, O_WRONLY | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); } } if (fd == -1) { switch (errno) { case ENOENT: case EPERM: case EACCES: break; default: for (give_up = 0, i = 1; !give_up && (i < 1024); i++) { snprintf(path, sizeof(path), "%s/%s-%d", directory, timestamp, i); fd = open(path, O_WRONLY | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); if (fd != -1) { break; } switch (errno) { case ENOENT: case EPERM: case EACCES: give_up++; break; } } break; } } if (fd == -1) { return -1; } close(fd); entry->cm_store_private = talloc_strdup(entry, path); } snprintf(path, sizeof(path), "%s.tmp", (const char *) entry->cm_store_private); fp = fopen(path, "w"); if (fp != NULL) { if (cm_store_entry_write(fp, entry) == 0) { fclose(fp); dest = (const char *) entry->cm_store_private; if (rename(path, dest) != 0) { cm_log(0, "Error renaming \"%s\" to \"%s\": " "%s.\n", path, dest, strerror(errno)); return -1; } return 0; } else { fclose(fp); if (remove(path) != 0) { cm_log(0, "Error removing \"%s\": %s.\n", path, strerror(errno)); } return -1; } } else { cm_log(1, "Error opening \"%s\" for writing: %s.\n", path, strerror(errno)); return -1; } } struct cm_store_entry ** cm_store_get_all_entries(void *parent) { struct cm_store_entry **ret; unsigned int i; int j, k; const char *directory; char path[PATH_MAX + 1], *p; FILE *fp; glob_t globs; directory = cm_env_request_dir(); snprintf(path, sizeof(path), "%s/*", directory); memset(&globs, 0, sizeof(globs)); ret = NULL; if (glob(path, 0, NULL, &globs) == 0) { ret = talloc_array_ptrtype(parent, ret, globs.gl_pathc + 1); if (ret != NULL) { for (i = 0, j = 0; i < globs.gl_pathc; i++) { p = globs.gl_pathv[i]; if (cm_store_should_ignore_file(p)) { continue; } fp = fopen(globs.gl_pathv[i], "r"); if (fp != NULL) { ret[j] = cm_store_entry_read(ret, globs.gl_pathv[i], fp); if ((ret[j] != NULL) && (ret[j]->cm_nickname == NULL)) { talloc_free(ret[j]); ret[j] = NULL; } if (ret[j] != NULL) { /* Check for duplicate names. */ for (k = 0; k < j; k++) { if (strcmp(ret[k]->cm_nickname, ret[j]->cm_nickname) == 0) { cm_store_entry_delete(ret[j]); talloc_free(ret[j]); ret[j] = NULL; break; } } if (k == j) { j++; } } fclose(fp); } } ret[j] = NULL; } globfree(&globs); } return ret; } static int cm_store_ca_write(FILE *fp, struct cm_store_ca *ca) { const char *p; char timestamp[15]; if (ca->cm_nickname == NULL) { p = cm_store_timestamp_from_time(cm_time(NULL), timestamp); } else { p = ca->cm_nickname; } cm_store_file_write_str(fp, cm_store_file_field_id, p); cm_store_file_write_str(fp, cm_store_ca_field_aka, ca->cm_ca_aka); cm_store_file_write_strs(fp, cm_store_ca_field_known_issuer_names, ca->cm_ca_known_issuer_names); cm_store_file_write_int(fp, cm_store_ca_field_is_default, ca->cm_ca_is_default); switch (ca->cm_ca_type) { case cm_ca_internal_self: cm_store_file_write_str(fp, cm_store_ca_field_type, "INTERNAL:SELF"); cm_store_file_write_str(fp, cm_store_ca_field_internal_serial, ca->cm_ca_internal_serial); if (ca->cm_ca_internal_force_issue_time) { cm_store_file_write_int(fp, cm_store_ca_field_internal_issue_time, ca->cm_ca_internal_issue_time); } break; case cm_ca_external: cm_store_file_write_str(fp, cm_store_ca_field_type, "EXTERNAL"); cm_store_file_write_str(fp, cm_store_ca_field_external_helper, ca->cm_ca_external_helper); break; } cm_store_file_write_nickcert_list(fp, cm_store_ca_field_root_certs, ca->cm_ca_root_certs); cm_store_file_write_nickcert_list(fp, cm_store_ca_field_other_root_certs, ca->cm_ca_other_root_certs); cm_store_file_write_nickcert_list(fp, cm_store_ca_field_other_certs, ca->cm_ca_other_certs); cm_store_file_write_strs(fp, cm_store_ca_field_required_enroll_attributes, ca->cm_ca_required_enroll_attributes); cm_store_file_write_strs(fp, cm_store_ca_field_required_renewal_attributes, ca->cm_ca_required_renewal_attributes); cm_store_file_write_strs(fp, cm_store_ca_field_profiles, ca->cm_ca_profiles); cm_store_file_write_str(fp, cm_store_ca_field_default_profile, ca->cm_ca_default_profile); cm_store_file_write_str(fp, cm_store_ca_field_pre_save_command, ca->cm_ca_pre_save_command); cm_store_file_write_str(fp, cm_store_ca_field_pre_save_uid, ca->cm_ca_pre_save_uid); cm_store_file_write_str(fp, cm_store_ca_field_post_save_command, ca->cm_ca_post_save_command); cm_store_file_write_str(fp, cm_store_ca_field_post_save_uid, ca->cm_ca_post_save_uid); cm_store_file_write_strs(fp, cm_store_ca_field_root_cert_files, ca->cm_ca_root_cert_store_files); cm_store_file_write_strs(fp, cm_store_ca_field_other_root_cert_files, ca->cm_ca_other_root_cert_store_files); cm_store_file_write_strs(fp, cm_store_ca_field_other_cert_files, ca->cm_ca_other_cert_store_files); cm_store_file_write_strs(fp, cm_store_ca_field_root_cert_nssdbs, ca->cm_ca_root_cert_store_nssdbs); cm_store_file_write_strs(fp, cm_store_ca_field_other_root_cert_nssdbs, ca->cm_ca_other_root_cert_store_nssdbs); cm_store_file_write_strs(fp, cm_store_ca_field_other_cert_nssdbs, ca->cm_ca_other_cert_store_nssdbs); cm_store_file_write_strs(fp, cm_store_ca_field_capabilities, ca->cm_ca_capabilities); cm_store_file_write_str(fp, cm_store_ca_field_scep_ca_identifier, ca->cm_ca_scep_ca_identifier); cm_store_file_write_str(fp, cm_store_ca_field_encryption_cert, ca->cm_ca_encryption_cert); cm_store_file_write_str(fp, cm_store_ca_field_encryption_issuer_cert, ca->cm_ca_encryption_issuer_cert); cm_store_file_write_str(fp, cm_store_ca_field_encryption_cert_pool, ca->cm_ca_encryption_cert_pool); if (ferror(fp)) { return -1; } return 0; } int cm_store_ca_delete(struct cm_store_ca *ca) { int ret; const char *filename; if (ca->cm_store_private != NULL) { filename = (const char *) ca->cm_store_private; ret = remove(ca->cm_store_private); if (ret == 0) { cm_log(3, "Removed file \"%s\".\n", filename); talloc_free(ca->cm_store_private); ca->cm_store_private = NULL; } else { cm_log(1, "Failed to remove file \"%s\": %s.\n", filename, strerror(errno)); } } else { cm_log(3, "No file to remove for \"%s\".\n", ca->cm_nickname); ret = 0; } return 0; } int cm_store_ca_save(struct cm_store_ca *ca) { FILE *fp; char timestamp[15], path[PATH_MAX]; int i, fd = -1, give_up; const char *directory, *dest; if (ca->cm_store_private == NULL) { cm_store_timestamp_from_time(cm_time(NULL), timestamp); directory = cm_env_ca_dir(); if (directory != NULL) { snprintf(path, sizeof(path), "%s/%s", directory, timestamp); fd = open(path, O_WRONLY | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); if ((fd == -1) && (errno == ENOENT)) { cm_store_create_containing_dir(path, S_IRWXU); fd = open(path, O_WRONLY | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); } if (fd == -1) { switch (errno) { case ENOENT: case EPERM: case EACCES: break; default: for (give_up = 0, i = 1; !give_up && (i < 1024); i++) { snprintf(path, sizeof(path), "%s/%s-%d", directory, timestamp, i); fd = open(path, O_WRONLY | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); if (fd != -1) { break; } switch (errno) { case ENOENT: case EPERM: case EACCES: give_up++; break; } } break; } } } if (fd == -1) { return -1; } close(fd); ca->cm_store_private = talloc_strdup(ca, path); } snprintf(path, sizeof(path), "%s.tmp", (const char *) ca->cm_store_private); fp = fopen(path, "w"); if (fp != NULL) { if (cm_store_ca_write(fp, ca) == 0) { fclose(fp); dest = (const char *) ca->cm_store_private; if (rename(path, dest) != 0) { cm_log(0, "Error renaming \"%s\" to \"%s\": " "%s.\n", path, dest, strerror(errno)); return -1; } return 0; } else { fclose(fp); if (remove(path) != 0) { cm_log(0, "Error removing \"%s\": %s.\n", path, strerror(errno)); } return -1; } } else { cm_log(1, "Error opening \"%s\" for writing: %s.\n", path, strerror(errno)); return -1; } } struct cm_store_ca ** cm_store_get_all_cas(void *parent) { struct cm_store_ca **ret; unsigned int i; int j, k; const char *directory; char path[PATH_MAX + 1], *p; FILE *fp; glob_t globs; directory = cm_env_ca_dir(); snprintf(path, sizeof(path), "%s/*", directory); memset(&globs, 0, sizeof(globs)); ret = NULL; if (glob(path, 0, NULL, &globs) != 0) { globs.gl_pathc = 0; } ret = talloc_array_ptrtype(parent, ret, globs.gl_pathc + 6); if (ret != NULL) { for (i = 0, j = 0; i < globs.gl_pathc; i++) { p = globs.gl_pathv[i]; if (cm_store_should_ignore_file(p)) { continue; } fp = fopen(globs.gl_pathv[i], "r"); if (fp != NULL) { ret[j] = cm_store_ca_read(ret, globs.gl_pathv[i], fp); if ((ret[j] != NULL) && (ret[j]->cm_nickname == NULL)) { talloc_free(ret[j]); ret[j] = NULL; } if (ret[j] != NULL) { /* Check for duplicate names. */ for (k = 0; k < j; k++) { if (strcmp(ret[k]->cm_nickname, ret[j]->cm_nickname) == 0) { cm_store_ca_delete(ret[j]); talloc_free(ret[j]); ret[j] = NULL; break; } } if (k == j) { j++; } } fclose(fp); } } /* Make sure we get at least one internal/self sign entry. */ for (k = 0; k < j; k++) { if (ret[k]->cm_ca_type == cm_ca_internal_self) { break; } } if (k == j) { ret[j] = cm_store_ca_new(ret); ret[j]->cm_busname = cm_store_ca_next_busname(ret[j]); ret[j]->cm_nickname = talloc_strdup(ret[j], CM_SELF_SIGN_CA_NAME); ret[j]->cm_ca_type = cm_ca_internal_self; ret[j]->cm_ca_internal_serial = talloc_strdup(ret[j], CM_DEFAULT_CERT_SERIAL); j++; } #ifdef WITH_IPA /* Make sure we get at least one IPA entry. */ for (k = 0; k < j; k++) { if ((ret[k]->cm_ca_type == cm_ca_external) && (strcmp(ret[k]->cm_nickname, CM_IPA_CA_NAME) == 0)) { break; } } if (k == j) { ret[j] = cm_store_ca_new(ret); ret[j]->cm_busname = cm_store_ca_next_busname(ret[j]); ret[j]->cm_nickname = talloc_strdup(ret[j], CM_IPA_CA_NAME); ret[j]->cm_ca_type = cm_ca_external; ret[j]->cm_ca_external_helper = talloc_strdup(ret[j], CM_IPA_HELPER_PATH); j++; } #endif #ifdef WITH_CERTMASTER /* Make sure we get at least one certmaster entry. */ for (k = 0; k < j; k++) { if ((ret[k]->cm_ca_type == cm_ca_external) && (strcmp(ret[k]->cm_nickname, CM_CERTMASTER_CA_NAME) == 0)) { break; } } if (k == j) { ret[j] = cm_store_ca_new(ret); ret[j]->cm_busname = cm_store_ca_next_busname(ret[j]); ret[j]->cm_nickname = talloc_strdup(ret[j], CM_CERTMASTER_CA_NAME); ret[j]->cm_ca_type = cm_ca_external; ret[j]->cm_ca_external_helper = talloc_strdup(ret[j], CM_CERTMASTER_HELPER_PATH); j++; } #endif #ifdef WITH_IPA /* Make sure we get at least 1 dogtag-ipa-renew-agent entry. */ for (k = 0; k < j; k++) { if ((ret[k]->cm_ca_type == cm_ca_external) && (strcmp(ret[k]->cm_nickname, CM_DOGTAG_IPA_RENEW_AGENT_CA_NAME) == 0)) { break; } } if (k == j) { ret[j] = cm_store_ca_new(ret); ret[j]->cm_busname = cm_store_ca_next_busname(ret[j]); ret[j]->cm_nickname = talloc_strdup(ret[j], CM_DOGTAG_IPA_RENEW_AGENT_CA_NAME); ret[j]->cm_ca_type = cm_ca_external; ret[j]->cm_ca_external_helper = talloc_strdup(ret[j], CM_DOGTAG_IPA_RENEW_AGENT_HELPER_PATH); j++; } #endif #ifdef WITH_LOCAL /* Make sure we get at least 1 "local" entry. */ for (k = 0; k < j; k++) { if ((ret[k]->cm_ca_type == cm_ca_external) && (strcmp(ret[k]->cm_nickname, CM_LOCAL_CA_NAME) == 0)) { break; } } if (k == j) { ret[j] = cm_store_ca_new(ret); ret[j]->cm_busname = cm_store_ca_next_busname(ret[j]); ret[j]->cm_nickname = talloc_strdup(ret[j], CM_LOCAL_CA_NAME); ret[j]->cm_ca_type = cm_ca_external; ret[j]->cm_ca_external_helper = talloc_strdup(ret[j], CM_LOCAL_HELPER_PATH); j++; } #endif ret[j] = NULL; } if (globs.gl_pathc > 0) { globfree(&globs); } return ret; } static struct cm_nickcert ** cm_store_maybe_dup_nickcert_list(void *parent, struct cm_nickcert **certs) { struct cm_nickcert **ret = NULL, *nc; int i; if (certs == NULL) { return NULL; } for (i = 0; certs[i] != NULL; i++) { continue; } ret = talloc_array_ptrtype(parent, ret, i + 1); if (ret == NULL) { return NULL; } for (i = 0; certs[i] != NULL; i++) { nc = talloc_ptrtype(parent, nc); if (nc == NULL) { talloc_free(ret); return NULL; } memset(nc, 0, sizeof(*nc)); nc->cm_nickname = talloc_strdup(nc, certs[i]->cm_nickname); nc->cm_cert = talloc_strdup(nc, certs[i]->cm_cert); if ((nc->cm_nickname == NULL) || (nc->cm_cert == NULL)) { talloc_free(ret); return NULL; } ret[i] = nc; } ret[i] = NULL; return ret; } struct cm_store_entry * cm_store_entry_dup(void *parent, struct cm_store_entry *entry) { struct cm_store_entry *ret; ret = cm_store_entry_new(parent); if (ret == NULL) { return ret; } ret->cm_busname = cm_store_maybe_strdup(ret, entry->cm_busname); ret->cm_store_private = cm_store_maybe_strdup(ret, entry->cm_store_private); ret->cm_nickname = cm_store_maybe_strdup(ret, entry->cm_nickname); ret->cm_key_type = entry->cm_key_type; ret->cm_key_storage_type = entry->cm_key_storage_type; ret->cm_key_storage_location = cm_store_maybe_strdup(ret, entry->cm_key_storage_location); ret->cm_key_token = cm_store_maybe_strdup(ret, entry->cm_key_token); ret->cm_key_nickname = cm_store_maybe_strdup(ret, entry->cm_key_nickname); ret->cm_key_pin = cm_store_maybe_strdup(ret, entry->cm_key_pin); ret->cm_key_pin_file = cm_store_maybe_strdup(ret, entry->cm_key_pin_file); if (ret->cm_key_pin_file != NULL) { ret->cm_key_pin = NULL; } ret->cm_key_owner = cm_store_maybe_strdup(ret, entry->cm_key_owner); ret->cm_key_perms = entry->cm_key_perms; ret->cm_key_pubkey = cm_store_maybe_strdup(ret, entry->cm_key_pubkey); ret->cm_key_pubkey_info = cm_store_maybe_strdup(ret, entry->cm_key_pubkey_info); ret->cm_key_next_type = entry->cm_key_next_type; ret->cm_key_next_pubkey = cm_store_maybe_strdup(ret, entry->cm_key_next_pubkey); ret->cm_key_next_pubkey_info = cm_store_maybe_strdup(ret, entry->cm_key_next_pubkey_info); ret->cm_key_next_marker = cm_store_maybe_strdup(ret, entry->cm_key_next_marker); ret->cm_key_preserve = entry->cm_key_preserve; ret->cm_key_generated_date = entry->cm_key_generated_date; ret->cm_key_next_generated_date = entry->cm_key_next_generated_date; ret->cm_key_requested_count = entry->cm_key_requested_count; ret->cm_key_next_requested_count = entry->cm_key_next_requested_count; ret->cm_key_issued_count = entry->cm_key_issued_count; ret->cm_cert_storage_type = entry->cm_cert_storage_type; ret->cm_cert_storage_location = cm_store_maybe_strdup(ret, entry->cm_cert_storage_location); ret->cm_cert_token = cm_store_maybe_strdup(ret, entry->cm_cert_token); ret->cm_cert_nickname = cm_store_maybe_strdup(ret, entry->cm_cert_nickname); ret->cm_cert_owner = cm_store_maybe_strdup(ret, entry->cm_cert_owner); ret->cm_cert_perms = entry->cm_cert_perms; ret->cm_cert_issuer_der = cm_store_maybe_strdup(ret, entry->cm_cert_issuer_der); ret->cm_cert_issuer = cm_store_maybe_strdup(ret, entry->cm_cert_issuer); ret->cm_cert_serial = cm_store_maybe_strdup(ret, entry->cm_cert_serial); ret->cm_cert_subject_der = cm_store_maybe_strdup(ret, entry->cm_cert_subject_der); ret->cm_cert_subject = cm_store_maybe_strdup(ret, entry->cm_cert_subject); ret->cm_cert_spki = cm_store_maybe_strdup(ret, entry->cm_cert_spki); ret->cm_cert_not_before = entry->cm_cert_not_before; ret->cm_cert_not_after = entry->cm_cert_not_after; ret->cm_cert_hostname = cm_store_maybe_strdupv(ret, entry->cm_cert_hostname); ret->cm_cert_email = cm_store_maybe_strdupv(ret, entry->cm_cert_email); ret->cm_cert_principal = cm_store_maybe_strdupv(ret, entry->cm_cert_principal); ret->cm_cert_ipaddress = cm_store_maybe_strdupv(ret, entry->cm_cert_ipaddress); ret->cm_cert_ku = cm_store_maybe_strdup(ret, entry->cm_cert_ku); ret->cm_cert_eku = cm_store_maybe_strdup(ret, entry->cm_cert_eku); ret->cm_cert_is_ca = entry->cm_cert_is_ca; ret->cm_cert_ca_path_length = entry->cm_cert_ca_path_length; ret->cm_cert_crl_distribution_point = cm_store_maybe_strdupv(ret, entry->cm_cert_crl_distribution_point); ret->cm_cert_freshest_crl = cm_store_maybe_strdupv(ret, entry->cm_cert_freshest_crl); ret->cm_cert_ocsp_location = cm_store_maybe_strdupv(ret, entry->cm_cert_ocsp_location); ret->cm_cert_ns_comment = cm_store_maybe_strdup(ret, entry->cm_cert_ns_comment); ret->cm_cert_profile = cm_store_maybe_strdup(ret, entry->cm_cert_profile); ret->cm_cert_no_ocsp_check = entry->cm_cert_no_ocsp_check; ret->cm_cert_ns_certtype = cm_store_maybe_strdup(ret, entry->cm_cert_ns_certtype); ret->cm_last_need_notify_check = entry->cm_last_need_notify_check; ret->cm_last_need_enroll_check = entry->cm_last_need_enroll_check; ret->cm_notification_method = entry->cm_notification_method; ret->cm_notification_destination = cm_store_maybe_strdup(ret, entry->cm_notification_destination); ret->cm_template_subject_der = cm_store_maybe_strdup(ret, entry->cm_template_subject_der); ret->cm_template_subject = cm_store_maybe_strdup(ret, entry->cm_template_subject); ret->cm_template_hostname = cm_store_maybe_strdupv(ret, entry->cm_template_hostname); ret->cm_template_email = cm_store_maybe_strdupv(ret, entry->cm_template_email); ret->cm_template_principal = cm_store_maybe_strdupv(ret, entry->cm_template_principal); ret->cm_template_ipaddress = cm_store_maybe_strdupv(ret, entry->cm_template_ipaddress); ret->cm_template_ku = cm_store_maybe_strdup(ret, entry->cm_template_ku); ret->cm_template_eku = cm_store_maybe_strdup(ret, entry->cm_template_eku); ret->cm_template_is_ca = entry->cm_template_is_ca; ret->cm_template_ca_path_length = entry->cm_template_ca_path_length; ret->cm_template_crl_distribution_point = cm_store_maybe_strdupv(ret, entry->cm_template_crl_distribution_point); ret->cm_template_freshest_crl = cm_store_maybe_strdupv(ret, entry->cm_template_freshest_crl); ret->cm_template_ocsp_location = cm_store_maybe_strdupv(ret, entry->cm_template_ocsp_location); ret->cm_template_ns_comment = cm_store_maybe_strdup(ret, entry->cm_template_ns_comment); ret->cm_template_profile = cm_store_maybe_strdup(ret, entry->cm_template_profile); ret->cm_template_no_ocsp_check = entry->cm_template_no_ocsp_check; ret->cm_template_ns_certtype = cm_store_maybe_strdup(ret, entry->cm_template_ns_certtype); ret->cm_template_challenge_password = cm_store_maybe_strdup(ret, entry->cm_template_challenge_password); ret->cm_template_challenge_password_file = cm_store_maybe_strdup(ret, entry->cm_template_challenge_password_file); ret->cm_csr = cm_store_maybe_strdup(ret, entry->cm_csr); ret->cm_spkac = cm_store_maybe_strdup(ret, entry->cm_spkac); ret->cm_scep_tx = cm_store_maybe_strdup(ret, entry->cm_scep_tx); ret->cm_scep_nonce = cm_store_maybe_strdup(ret, entry->cm_scep_nonce); ret->cm_scep_last_nonce = cm_store_maybe_strdup(ret, entry->cm_scep_last_nonce); ret->cm_scep_gic = cm_store_maybe_strdup(ret, entry->cm_scep_gic); ret->cm_scep_gic_next = cm_store_maybe_strdup(ret, entry->cm_scep_gic_next); ret->cm_scep_req = cm_store_maybe_strdup(ret, entry->cm_scep_req); ret->cm_scep_req_next = cm_store_maybe_strdup(ret, entry->cm_scep_req_next); ret->cm_minicert = cm_store_maybe_strdup(ret, entry->cm_minicert); ret->cm_state = entry->cm_state; ret->cm_autorenew = entry->cm_autorenew; ret->cm_monitor = entry->cm_monitor; ret->cm_ca_nickname = cm_store_maybe_strdup(ret, entry->cm_ca_nickname); ret->cm_submitted = entry->cm_submitted; ret->cm_ca_cookie = cm_store_maybe_strdup(ret, entry->cm_ca_cookie); ret->cm_ca_error = cm_store_maybe_strdup(ret, entry->cm_ca_error); ret->cm_cert = cm_store_maybe_strdup(ret, entry->cm_cert); ret->cm_cert_chain = cm_store_maybe_dup_nickcert_list(ret, entry->cm_cert_chain); ret->cm_cert_roots = cm_store_maybe_dup_nickcert_list(ret, entry->cm_cert_roots); ret->cm_pre_certsave_command = cm_store_maybe_strdup(ret, entry->cm_pre_certsave_command); ret->cm_pre_certsave_uid = cm_store_maybe_strdup(ret, entry->cm_pre_certsave_uid); ret->cm_post_certsave_command = cm_store_maybe_strdup(ret, entry->cm_post_certsave_command); ret->cm_post_certsave_uid = cm_store_maybe_strdup(ret, entry->cm_post_certsave_uid); ret->cm_root_cert_store_files = cm_store_maybe_strdupv(ret, entry->cm_root_cert_store_files); ret->cm_other_root_cert_store_files = cm_store_maybe_strdupv(ret, entry->cm_other_root_cert_store_files); ret->cm_other_cert_store_files = cm_store_maybe_strdupv(ret, entry->cm_other_cert_store_files); ret->cm_root_cert_store_nssdbs = cm_store_maybe_strdupv(ret, entry->cm_other_cert_store_nssdbs); ret->cm_other_root_cert_store_nssdbs = cm_store_maybe_strdupv(ret, entry->cm_other_cert_store_nssdbs); ret->cm_other_cert_store_nssdbs = cm_store_maybe_strdupv(ret, entry->cm_other_cert_store_nssdbs); return ret; } struct cm_store_ca * cm_store_ca_dup(void *parent, struct cm_store_ca *ca) { struct cm_store_ca *ret; ret = cm_store_ca_new(parent); if (ret == NULL) { return NULL; } ret->cm_busname = cm_store_maybe_strdup(ret, ca->cm_busname); ret->cm_store_private = cm_store_maybe_strdup(ret, ca->cm_store_private); ret->cm_nickname = cm_store_maybe_strdup(ret, ca->cm_nickname); ret->cm_ca_aka = cm_store_maybe_strdup(ret, ca->cm_ca_aka); ret->cm_ca_error = cm_store_maybe_strdup(ret, ca->cm_ca_error); ret->cm_ca_known_issuer_names = cm_store_maybe_strdupv(ret, ca->cm_ca_known_issuer_names); ret->cm_ca_is_default = ca->cm_ca_is_default; ret->cm_ca_type = ca->cm_ca_type; ret->cm_ca_internal_serial = cm_store_maybe_strdup(ret, ca->cm_ca_internal_serial); ret->cm_ca_internal_force_issue_time = ca->cm_ca_internal_force_issue_time; ret->cm_ca_internal_issue_time = ca->cm_ca_internal_issue_time; ret->cm_ca_external_helper = cm_store_maybe_strdup(ret, ca->cm_ca_external_helper); ret->cm_ca_root_certs = cm_store_maybe_dup_nickcert_list(ret, ca->cm_ca_root_certs); ret->cm_ca_other_root_certs = cm_store_maybe_dup_nickcert_list(ret, ca->cm_ca_other_root_certs); ret->cm_ca_other_certs = cm_store_maybe_dup_nickcert_list(ret, ca->cm_ca_other_certs); ret->cm_ca_required_enroll_attributes = cm_store_maybe_strdupv(ret, ca->cm_ca_required_enroll_attributes); ret->cm_ca_required_renewal_attributes = cm_store_maybe_strdupv(ret, ca->cm_ca_required_renewal_attributes); ret->cm_ca_profiles = cm_store_maybe_strdupv(ret, ca->cm_ca_profiles); ret->cm_ca_default_profile = cm_store_maybe_strdup(ret, ca->cm_ca_default_profile); ret->cm_ca_pre_save_command = cm_store_maybe_strdup(ret, ca->cm_ca_pre_save_command); ret->cm_ca_pre_save_uid = cm_store_maybe_strdup(ret, ca->cm_ca_pre_save_uid); ret->cm_ca_post_save_command = cm_store_maybe_strdup(ret, ca->cm_ca_post_save_command); ret->cm_ca_post_save_uid = cm_store_maybe_strdup(ret, ca->cm_ca_post_save_uid); ret->cm_ca_root_cert_store_files = cm_store_maybe_strdupv(ret, ca->cm_ca_root_cert_store_files); ret->cm_ca_other_root_cert_store_files = cm_store_maybe_strdupv(ret, ca->cm_ca_other_root_cert_store_files); ret->cm_ca_other_cert_store_files = cm_store_maybe_strdupv(ret, ca->cm_ca_other_cert_store_files); ret->cm_ca_root_cert_store_nssdbs = cm_store_maybe_strdupv(ret, ca->cm_ca_other_cert_store_nssdbs); ret->cm_ca_other_root_cert_store_nssdbs = cm_store_maybe_strdupv(ret, ca->cm_ca_other_cert_store_nssdbs); ret->cm_ca_other_cert_store_nssdbs = cm_store_maybe_strdupv(ret, ca->cm_ca_other_cert_store_nssdbs); ret->cm_ca_capabilities = cm_store_maybe_strdupv(ret, ca->cm_ca_capabilities); ret->cm_ca_scep_ca_identifier = cm_store_maybe_strdup(ret, ca->cm_ca_scep_ca_identifier); ret->cm_ca_encryption_cert = cm_store_maybe_strdup(ret, ca->cm_ca_encryption_cert); ret->cm_ca_encryption_issuer_cert = cm_store_maybe_strdup(ret, ca->cm_ca_encryption_issuer_cert); ret->cm_ca_encryption_cert_pool = cm_store_maybe_strdup(ret, ca->cm_ca_encryption_cert_pool); return ret; } certmonger-0.78.6/src/scepgen-n.c0000664000175000017500000003061012645513264013526 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certext.h" #include "keygen.h" #include "keyiread-n.h" #include "log.h" #include "pin.h" #include "pkcs7.h" #include "prefs-n.h" #include "scepgen.h" #include "scepgen-int.h" #include "store.h" #include "store-int.h" #include "submit-o.h" #include "submit-u.h" #include "subproc.h" #include "util-n.h" struct cm_scepgen_state { struct cm_scepgen_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; static void cm_scepgen_n_resign(PKCS7 *p7, SECKEYPrivateKey *privkey) { unsigned char *sabuf = NULL, *u; int salen; SECItem signature; SECOidTag digalg, sigalg; PKCS7_SIGNER_INFO *sinfo; if (p7 == NULL) { return; } if (sk_PKCS7_SIGNER_INFO_num(p7->d.sign->signer_info) != 1) { cm_log(1, "More than one signer, not sure what to do.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } sinfo = sk_PKCS7_SIGNER_INFO_value(p7->d.sign->signer_info, 0); salen = i2d_ASN1_SET_OF_X509_ATTRIBUTE(sinfo->auth_attr, NULL, i2d_X509_ATTRIBUTE, V_ASN1_SET, V_ASN1_UNIVERSAL, IS_SET); sabuf = malloc(salen); if (sabuf == NULL) { cm_log(1, "Out of memory.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } u = sabuf; if (i2d_ASN1_SET_OF_X509_ATTRIBUTE(sinfo->auth_attr, &u, i2d_X509_ATTRIBUTE, V_ASN1_SET, V_ASN1_UNIVERSAL, IS_SET) != salen) { cm_log(1, "Encoding error.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } memset(&signature, 0, sizeof(signature)); digalg = cm_submit_n_tag_from_nid(OBJ_obj2nid(sinfo->digest_alg->algorithm)); sigalg = SEC_GetSignatureAlgorithmOidTag(privkey->keyType, digalg); if (sigalg == SEC_OID_UNKNOWN) { cm_log(1, "Unable to match digest algorithm and key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (SEC_SignData(&signature, sabuf, salen, privkey, sigalg) != SECSuccess) { cm_log(1, "Error re-signing: %s.\n", PR_ErrorToName(PORT_GetError())); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } M_ASN1_OCTET_STRING_set(sinfo->enc_digest, signature.data, signature.len); free(sabuf); } static int cm_scepgen_n_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { FILE *status; NSSInitContext *ctx; unsigned char nonce[16]; struct cm_keyiread_n_ctx_and_keys *keys; const char *p, *es, *reason; int ec; PKCS7 *csr_new, *csr_old, *ias_new, *ias_old; EVP_PKEY *key; RSA *rsa; BIGNUM *exponent; status = fdopen(fd, "w"); if (status == NULL) { _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (ca->cm_ca_encryption_cert == NULL) { cm_log(1, "Can't generate new SCEP request data without " "the RA/CA encryption certificate.\n"); _exit(CM_SUB_STATUS_NEED_SCEP_DATA); } /* Start up NSS and open the database. */ errno = 0; ctx = NSS_InitContext(entry->cm_key_storage_location, NULL, NULL, NULL, NULL, NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); ec = PORT_GetError(); if (ctx == NULL) { if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { fprintf(status, "Error opening database " "'%s': %s.\n", entry->cm_key_storage_location, es); cm_log(1, "Error opening database '%s': %s.\n", entry->cm_key_storage_location, es); } else { fprintf(status, "Error opening database '%s'.\n", entry->cm_key_storage_location); cm_log(1, "Error opening database '%s'.\n", entry->cm_key_storage_location); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: _exit(CM_SUB_STATUS_ERROR_INITIALIZING); break; } } reason = util_n_fips_hook(); if (reason != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", reason); _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } /* Use a dummy key to sign using OpenSSL. */ cm_log(1, "Generating dummy key.\n"); key = EVP_PKEY_new(); if (key == NULL) { cm_log(1, "Error allocating new key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } exponent = BN_new(); if (exponent == NULL) { cm_log(1, "Error setting up exponent.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } BN_set_word(exponent, CM_DEFAULT_RSA_EXPONENT); rsa = RSA_new(); if (rsa == NULL) { cm_log(1, "Error allocating new RSA key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } retry_gen: if (RSA_generate_key_ex(rsa, CM_DEFAULT_PUBKEY_SIZE, exponent, NULL) != 1) { cm_log(1, "Error generating key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (RSA_check_key(rsa) != 1) { /* should be unnecessary */ cm_log(1, "Key fails checks. Retrying.\n"); goto retry_gen; } BN_free(exponent); /* Read the proper keys. */ keys = cm_keyiread_n_get_keys(entry, 0); if ((keys->privkey->keyType != rsaKey) || ((keys->privkey_next != NULL) && (keys->privkey_next->keyType != rsaKey))) { cm_log(1, "Keys aren't RSA. They won't work with SCEP.\n"); _exit(CM_SUB_STATUS_ERROR_KEY_TYPE); } /* Sign using a dummy key. */ EVP_PKEY_set1_RSA(key, rsa); csr_new = NULL; csr_old = NULL; ias_new = NULL; ias_old = NULL; cm_scepgen_o_cooked(ca, entry, nonce, sizeof(nonce), key, (keys->privkey_next != NULL) ? key : NULL, &csr_new, &csr_old, &ias_new, &ias_old); EVP_PKEY_free(key); /* Re-sign using the proper keys. */ if (csr_old != NULL) { cm_log(1, "Re-signing PKCSREQ message with old key.\n"); cm_scepgen_n_resign(csr_old, keys->privkey); } if (ias_old != NULL) { cm_log(1, "Re-signing GetCertInitial message with old key.\n"); cm_scepgen_n_resign(ias_old, keys->privkey); } if (keys->privkey_next != NULL) { if (csr_new != NULL) { cm_log(1, "Re-signing PKCSREQ rekeying message with " "new key.\n"); cm_scepgen_n_resign(csr_new, keys->privkey_next); } if (ias_new != NULL) { cm_log(1, "Re-signing GetCertInitial rekeying message " "with new key.\n"); cm_scepgen_n_resign(ias_new, keys->privkey_next); } } p = cm_store_base64_from_bin(NULL, nonce, sizeof(nonce)); fprintf(status, "%s:", p ? p : ""); p = csr_old ? cm_scepgen_o_b64_from_p7(NULL, csr_old) : NULL; fprintf(status, "%s:", p ? p : ""); p = ias_old ? cm_scepgen_o_b64_from_p7(NULL, ias_old) : NULL; fprintf(status, "%s:", p ? p : ""); p = csr_new ? cm_scepgen_o_b64_from_p7(NULL, csr_new) : NULL; fprintf(status, "%s:", p ? p : ""); p = ias_new ? cm_scepgen_o_b64_from_p7(NULL, ias_new) : NULL; fprintf(status, "%s:\n", p ? p : ""); fclose(status); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } SECKEY_DestroyPrivateKey(keys->privkey); if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(0); } /* Check if a SCEP is ready. */ static int cm_scepgen_n_ready(struct cm_scepgen_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_scepgen_n_get_fd(struct cm_scepgen_state *state) { return cm_subproc_get_fd(state->subproc); } static char * make_pem(void *parent, const char *p, size_t len) { char *s, *t; s = talloc_strndup(parent, p, len); if (s != NULL) { t = cm_submit_u_pem_from_base64("PKCS7", 0, s); if (t != NULL) { talloc_free(s); s = talloc_strdup(parent, t); free(t); } } return s; } /* Save the SCEP data to the entry. */ static int cm_scepgen_n_save_scep(struct cm_scepgen_state *state) { int status; const char *p, *q; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != 0)) { return -1; } talloc_free(state->entry->cm_scep_nonce); talloc_free(state->entry->cm_scep_req); talloc_free(state->entry->cm_scep_gic); talloc_free(state->entry->cm_scep_req_next); talloc_free(state->entry->cm_scep_gic_next); p = cm_subproc_get_msg(state->subproc, NULL); q = p + strcspn(p, ":"); state->entry->cm_scep_nonce = talloc_strndup(state->entry, p, q - p); state->entry->cm_scep_req = NULL; state->entry->cm_scep_gic = NULL; state->entry->cm_scep_req_next = NULL; state->entry->cm_scep_gic_next = NULL; if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_req = make_pem(state->entry, p, q - p); } } if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_gic = make_pem(state->entry, p, q - p); } } if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_req_next = make_pem(state->entry, p, q - p); } } if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_gic_next = make_pem(state->entry, p, q - p); } } return 0; } /* Check if we need a PIN (or a new PIN) to access the key information. */ static int cm_scepgen_n_need_pin(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to access the key information. */ static int cm_scepgen_n_need_token(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Check if we need information about the CA in order to generate data. */ static int cm_scepgen_n_need_encryption_certs(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_NEED_SCEP_DATA)) { return 0; } return -1; } /* Check if we need a different key type (which is probably RSA). */ static int cm_scepgen_n_need_different_key_type(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_KEY_TYPE)) { return 0; } return -1; } /* Clean up after SCEP generation. */ static void cm_scepgen_n_done(struct cm_scepgen_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start SCEP request data generation using template information in the entry. * */ struct cm_scepgen_state * cm_scepgen_n_start(struct cm_store_ca *ca, struct cm_store_entry *entry) { struct cm_scepgen_state *state; state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = &cm_scepgen_n_ready; state->pvt.get_fd = &cm_scepgen_n_get_fd; state->pvt.save_scep = &cm_scepgen_n_save_scep; state->pvt.need_pin = &cm_scepgen_n_need_pin; state->pvt.need_token = &cm_scepgen_n_need_token; state->pvt.need_encryption_certs = &cm_scepgen_n_need_encryption_certs; state->pvt.need_different_key_type = &cm_scepgen_n_need_different_key_type; state->pvt.done = &cm_scepgen_n_done; state->entry = entry; state->subproc = cm_subproc_start(cm_scepgen_n_main, state, ca, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/scepgen-int.h0000664000175000017500000000406612645513264014076 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmscepgenint_h #define cmscepgenint_h struct cm_scepgen_state_pvt { /* Check if the SCEP request data is ready. */ int (*ready)(struct cm_scepgen_state *state); /* Get a selectable-for-read descriptor which will either have data or * be closed when status changes. */ int (*get_fd)(struct cm_scepgen_state *state); /* Save the SCEP data to the entry. */ int (*save_scep)(struct cm_scepgen_state *state); /* Check if we need a PIN (or a new PIN) to get at the key material. */ int (*need_pin)(struct cm_scepgen_state *state); /* Check if we need the token to be inserted to get at the key * material. */ int (*need_token)(struct cm_scepgen_state *state); /* Check if we need the server's encryption certs in order to be able * to generate request data. */ int (*need_encryption_certs)(struct cm_scepgen_state *state); /* Check if we need a different key type, because SCEP only works with * RSA keys. */ int (*need_different_key_type)(struct cm_scepgen_state *state); /* Clean up after SCEP request generation. */ void (*done)(struct cm_scepgen_state *state); }; void cm_scepgen_o_cooked(struct cm_store_ca *ca, struct cm_store_entry *entry, unsigned char *nonce, size_t nonce_length, EVP_PKEY *old_pkey, EVP_PKEY *new_pkey, PKCS7 **csr_new, PKCS7 **csr_old, PKCS7 **ias_new, PKCS7 **ias_old); char *cm_scepgen_o_b64_from_p7(void *parent, PKCS7 *p7); #endif certmonger-0.78.6/src/scepgen.h0000664000175000017500000000417212645513264013304 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmscepgen_h #define cmscepgen_h struct cm_scepgen_state; struct cm_store_ca; struct cm_store_entry; /* Start SCEP request generation using template information in the entry. */ struct cm_scepgen_state *cm_scepgen_start(struct cm_store_ca *ca, struct cm_store_entry *entry); struct cm_scepgen_state *cm_scepgen_n_start(struct cm_store_ca *ca, struct cm_store_entry *entry); struct cm_scepgen_state *cm_scepgen_o_start(struct cm_store_ca *ca, struct cm_store_entry *entry); /* Check if SCEP request data is ready. */ int cm_scepgen_ready(struct cm_scepgen_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_scepgen_get_fd(struct cm_scepgen_state *state); /* Check if we need a PIN (or a new PIN) to sign SCEP requests. */ int cm_scepgen_need_pin(struct cm_scepgen_state *state); /* Check if we need the right token to be present to sign SCEP requests. */ int cm_scepgen_need_token(struct cm_scepgen_state *state); /* Check if we need the server's certificates to encrypt SCEP requests. */ int cm_scepgen_need_encryption_certs(struct cm_scepgen_state *state); /* Check if we need a different key type. */ int cm_scepgen_need_different_key_type(struct cm_scepgen_state *state); /* Save the SCEP request data to the entry. */ int cm_scepgen_save_scep(struct cm_scepgen_state *state); /* Clean up after SCEP request generation. */ void cm_scepgen_done(struct cm_scepgen_state *state); #endif certmonger-0.78.6/src/scepgen.c0000664000175000017500000000542312645513264013277 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include "scepgen.h" #include "scepgen-int.h" #include "log.h" #include "store-int.h" struct cm_scepgen_state * cm_scepgen_start(struct cm_store_ca *ca, struct cm_store_entry *entry) { switch (entry->cm_key_storage_type) { case cm_key_storage_none: cm_log(1, "Can't generate new SCEP data for %s('%s') without " "the key, and we don't know where that is or should " "be.\n", entry->cm_busname, entry->cm_nickname); break; #ifdef HAVE_OPENSSL case cm_key_storage_file: return cm_scepgen_o_start(ca, entry); break; #endif #ifdef HAVE_NSS case cm_key_storage_nssdb: return cm_scepgen_n_start(ca, entry); break; #endif } return NULL; } int cm_scepgen_ready(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; return pvt->ready(state); } int cm_scepgen_get_fd(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; return pvt->get_fd(state); } int cm_scepgen_save_scep(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; return pvt->save_scep(state); } int cm_scepgen_need_pin(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; return pvt->need_pin(state); } int cm_scepgen_need_token(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; return pvt->need_token(state); } int cm_scepgen_need_encryption_certs(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; return pvt->need_encryption_certs(state); } int cm_scepgen_need_different_key_type(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; return pvt->need_different_key_type(state); } void cm_scepgen_done(struct cm_scepgen_state *state) { struct cm_scepgen_state_pvt *pvt = (struct cm_scepgen_state_pvt *) state; pvt->done(state); } certmonger-0.78.6/src/scep.h0000664000175000017500000000311612645513264012607 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmscep_h #define cmscep_h #define SCEP_MSGTYPE_PKCSREQ "19" #define SCEP_MSGTYPE_CERTREP "3" #define SCEP_MSGTYPE_GETCERTINITIAL "20" #define SCEP_MSGTYPE_GETCERT "21" #define SCEP_MSGTYPE_GETCRL "22" #define SCEP_PKISTATUS_SUCCESS "0" #define SCEP_PKISTATUS_FAILURE "2" #define SCEP_PKISTATUS_PENDING "3" #define SCEP_FAILINFO_BAD_ALG "0" #define SCEP_FAILINFO_BAD_MESSAGE_CHECK "1" #define SCEP_FAILINFO_BAD_REQUEST "2" #define SCEP_FAILINFO_BAD_TIME "3" #define SCEP_FAILINFO_BAD_CERT_ID "4" /* These aren't in the drafts that I can find, but Dogtag uses them. */ #define SCEP_FAILINFO_UNSUPPORTED_EXT "5" #define SCEP_FAILINFO_MUST_ARCHIVE_KEYS "6" #define SCEP_FAILINFO_BAD_IDENTITY "7" #define SCEP_FAILINFO_POP_REQUIRED "8" #define SCEP_FAILINFO_POP_FAILED "9" #define SCEP_FAILINFO_NO_KEY_REUSE "10" #define SCEP_FAILINFO_INTERNAL_CA_ERROR "11" #define SCEP_FAILINFO_TRY_LATER "12" #endif certmonger-0.78.6/src/prefs-n.h0000664000175000017500000000160012645513264013223 00000000000000/* * Copyright (C) 2010,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmprefsn_h #define cmprefsn_h unsigned int cm_prefs_nss_sig_alg(SECKEYPrivateKey *pkey); unsigned int cm_prefs_nss_dig_alg(void); unsigned int cm_prefs_nss_dig_alg_len(void); #endif certmonger-0.78.6/src/prefs-n.c0000664000175000017500000000674112645513264013231 00000000000000/* * Copyright (C) 2010,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include "prefs.h" #include "prefs-n.h" unsigned int cm_prefs_nss_sig_alg(SECKEYPrivateKey *pkey) { switch (pkey->keyType) { case nullKey: switch (cm_prefs_preferred_digest()) { case cm_prefs_md5: return SEC_OID_MD5; break; case cm_prefs_sha1: return SEC_OID_SHA1; break; case cm_prefs_sha256: return SEC_OID_SHA256; break; case cm_prefs_sha384: return SEC_OID_SHA384; break; case cm_prefs_sha512: return SEC_OID_SHA512; break; } return SEC_OID_SHA256; break; case rsaKey: switch (cm_prefs_preferred_digest()) { case cm_prefs_md5: return SEC_OID_PKCS1_MD5_WITH_RSA_ENCRYPTION; break; case cm_prefs_sha1: return SEC_OID_PKCS1_SHA1_WITH_RSA_ENCRYPTION; break; case cm_prefs_sha256: return SEC_OID_PKCS1_SHA256_WITH_RSA_ENCRYPTION; break; case cm_prefs_sha384: return SEC_OID_PKCS1_SHA384_WITH_RSA_ENCRYPTION; break; case cm_prefs_sha512: return SEC_OID_PKCS1_SHA512_WITH_RSA_ENCRYPTION; break; } return SEC_OID_PKCS1_SHA256_WITH_RSA_ENCRYPTION; break; case rsaPssKey: return SEC_OID_PKCS1_RSA_PSS_SIGNATURE; break; case dsaKey: switch (cm_prefs_preferred_digest()) { case cm_prefs_md5: case cm_prefs_sha1: return SEC_OID_ANSIX9_DSA_SIGNATURE_WITH_SHA1_DIGEST; break; case cm_prefs_sha256: return SEC_OID_NIST_DSA_SIGNATURE_WITH_SHA256_DIGEST; break; case cm_prefs_sha384: case cm_prefs_sha512: break; } return SEC_OID_NIST_DSA_SIGNATURE_WITH_SHA256_DIGEST; break; case ecKey: switch (cm_prefs_preferred_digest()) { case cm_prefs_md5: case cm_prefs_sha1: return SEC_OID_ANSIX962_ECDSA_SHA224_SIGNATURE; break; case cm_prefs_sha256: return SEC_OID_ANSIX962_ECDSA_SHA256_SIGNATURE; break; case cm_prefs_sha384: return SEC_OID_ANSIX962_ECDSA_SHA384_SIGNATURE; break; case cm_prefs_sha512: return SEC_OID_ANSIX962_ECDSA_SHA512_SIGNATURE; break; } return SEC_OID_ANSIX962_ECDSA_SHA256_SIGNATURE; break; default: return SEC_OID_UNKNOWN; break; } } unsigned int cm_prefs_nss_dig_alg(void) { switch (cm_prefs_preferred_digest()) { case cm_prefs_md5: return SEC_OID_MD5; break; case cm_prefs_sha1: return SEC_OID_SHA1; break; case cm_prefs_sha256: return SEC_OID_SHA256; break; case cm_prefs_sha384: return SEC_OID_SHA384; break; case cm_prefs_sha512: return SEC_OID_SHA512; break; } return SEC_OID_SHA256; } unsigned int cm_prefs_nss_dig_alg_len(void) { switch (cm_prefs_nss_dig_alg()) { case SEC_OID_MD5: return 128 / 8; break; case SEC_OID_SHA1: return 160 / 8; break; case SEC_OID_SHA256: return 256 / 8; break; case SEC_OID_SHA384: return 384 / 8; break; case SEC_OID_SHA512: return 512 / 8; break; } return 0; } certmonger-0.78.6/src/prefs.h0000664000175000017500000000437112645513264013000 00000000000000/* * Copyright (C) 2010,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmprefs_h #define cmprefs_h enum cm_prefs_cipher { cm_prefs_aes128, cm_prefs_aes256, cm_prefs_des3, cm_prefs_des, }; enum cm_prefs_digest { cm_prefs_sha256, cm_prefs_sha384, cm_prefs_sha512, cm_prefs_sha1, cm_prefs_md5, }; enum cm_notification_method; enum cm_key_storage_type; enum cm_cert_storage_type; enum cm_key_algorithm cm_prefs_preferred_key_algorithm(void); enum cm_prefs_cipher cm_prefs_preferred_cipher(void); enum cm_prefs_digest cm_prefs_preferred_digest(void); int cm_prefs_notify_ttls(const time_t **ttls, unsigned int *n_ttls); int cm_prefs_enroll_ttls(const time_t **ttls, unsigned int *n_ttls); enum cm_notification_method cm_prefs_notification_method(void); const char *cm_prefs_notification_destination(void); const char *cm_prefs_default_ca(void); const char *cm_prefs_selfsign_validity_period(void); const char *cm_prefs_local_validity_period(void); int cm_prefs_monitor(void); int cm_prefs_autorenew(void); int cm_prefs_populate_unique_id(void); const char *cm_prefs_nss_ca_trust(void); const char *cm_prefs_nss_other_trust(void); const char *cm_prefs_dogtag_ee_url(void); const char *cm_prefs_dogtag_agent_url(void); const char *cm_prefs_dogtag_profile(void); int cm_prefs_dogtag_renew(void); const char *cm_prefs_dogtag_ca_info(void); const char *cm_prefs_dogtag_ca_path(void); const char *cm_prefs_dogtag_ssldir(void); const char *cm_prefs_dogtag_sslcert(void); const char *cm_prefs_dogtag_sslkey(void); const char *cm_prefs_dogtag_sslpinfile(void); long long prefs_key_end_of_life(time_t ref); long prefs_max_key_use_count(void); #endif certmonger-0.78.6/src/prefs.c0000664000175000017500000002636112645513264012776 00000000000000/* * Copyright (C) 2010,2011,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include "env.h" #include "prefs.h" #include "store-int.h" #include "submit.h" #include "submit-u.h" #include "util.h" #include "tm.h" static char * cm_prefs_read(void) { const char *dir, *base = "/" PACKAGE_NAME ".conf"; char *path, *ret; ret = NULL; dir = cm_env_config_dir(); if (dir != NULL) { path = malloc(strlen(dir) + strlen(base) + 1); if (path != NULL) { snprintf(path, strlen(dir) + strlen(base) + 1, "%s%s", dir, base); ret = read_config_file(path); free(path); } } return ret; } static void cm_prefs_free(void); static char * cm_prefs_config(const char *section, const char *key) { static char *cm_configuration = NULL; if (key == NULL) { return cm_configuration; } if (cm_configuration == NULL) { cm_configuration = cm_prefs_read(); if (cm_configuration != NULL) { atexit(cm_prefs_free); } } if (cm_configuration != NULL) { return get_config_entry(cm_configuration, section ? section : "defaults", key); } return NULL; } static void cm_prefs_free(void) { char *prefs; prefs = cm_prefs_config(NULL, NULL); if (prefs != NULL) { free(prefs); } } enum cm_prefs_cipher cm_prefs_preferred_cipher(void) { char *cipher; cipher = cm_prefs_config(NULL, "symmetric_cipher"); if (cipher != NULL) { if (strcasecmp(cipher, "aes") == 0) { free(cipher); return cm_prefs_aes128; } if ((strcasecmp(cipher, "aes128") == 0) || (strcasecmp(cipher, "aes-128") == 0)) { free(cipher); return cm_prefs_aes128; } if ((strcasecmp(cipher, "aes256") == 0) || (strcasecmp(cipher, "aes-256") == 0)) { free(cipher); return cm_prefs_aes256; } if (strcasecmp(cipher, "des") == 0) { free(cipher); return cm_prefs_des; } if (strcasecmp(cipher, "des3") == 0) { free(cipher); return cm_prefs_des3; } free(cipher); } return cm_prefs_aes128; } enum cm_prefs_digest cm_prefs_preferred_digest(void) { char *digest; digest = cm_prefs_config(NULL, "digest"); if (digest != NULL) { if ((strcasecmp(digest, "md5") == 0) || (strcasecmp(digest, "md-5") == 0)) { free(digest); return cm_prefs_md5; } if ((strcasecmp(digest, "sha1") == 0) || (strcasecmp(digest, "sha-1") == 0)) { free(digest); return cm_prefs_sha1; } if ((strcasecmp(digest, "sha256") == 0) || (strcasecmp(digest, "sha-256") == 0)) { free(digest); return cm_prefs_sha256; } if ((strcasecmp(digest, "sha384") == 0) || (strcasecmp(digest, "sha-384") == 0)) { free(digest); return cm_prefs_sha384; } if ((strcasecmp(digest, "sha512") == 0) || (strcasecmp(digest, "sha-512") == 0)) { free(digest); return cm_prefs_sha512; } free(digest); } return cm_prefs_sha256; } static int cm_prefs_compare_ttl_values(const void *a, const void *b) { return *(time_t *)a - *(time_t *) b; } static int cm_prefs_ttls(time_t **config, const time_t **ttls, unsigned int *n_ttls, const char *preferred, const char *fallback) { static time_t default_ttls[] = {CM_DEFAULT_TTL_LIST}; static unsigned int n_config = 0; char *confttls, *p, *q, c; int i; if (*config == NULL) { confttls = cm_prefs_config(NULL, preferred); if (confttls == NULL) { confttls = cm_prefs_config(NULL, fallback); } if (confttls == NULL) { *config = default_ttls; n_config = sizeof(default_ttls) / sizeof(default_ttls[0]); qsort(*config, n_config, sizeof((*config)[0]), &cm_prefs_compare_ttl_values); } else { *config = malloc(strlen(confttls) * sizeof((*config)[0])); if (*config != NULL) { i = 0; p = confttls; while (strcspn(p, " \t,") > 0) { q = p + strcspn(p, " \t,"); c = *q; *q = '\0'; if (cm_submit_u_delta_from_string(p, cm_time(NULL), &(*config)[i]) == 0) { i++; }; *q = c; p = q + strspn(q, " \t,"); } n_config = i; qsort(*config, n_config, sizeof((*config)[0]), &cm_prefs_compare_ttl_values); } free(confttls); } } if (*config != NULL) { *ttls = *config; *n_ttls = n_config; return 0; } return -1; } int cm_prefs_enroll_ttls(const time_t **ttls, unsigned int *n_ttls) { static time_t *config = NULL; return cm_prefs_ttls(&config, ttls, n_ttls, "enroll_ttls", "ttls"); } int cm_prefs_notify_ttls(const time_t **ttls, unsigned int *n_ttls) { static time_t *config = NULL; return cm_prefs_ttls(&config, ttls, n_ttls, "notify_ttls", "ttls"); } enum cm_notification_method cm_prefs_notification_method(void) { char *method; enum cm_notification_method ret; ret = CM_DEFAULT_NOTIFICATION_METHOD; method = cm_prefs_config(NULL, "notification_method"); if (method != NULL) { if (strcasecmp(method, "none") == 0) { ret = cm_notification_none; } if (strcasecmp(method, "syslog") == 0) { ret = cm_notification_syslog; } if ((strcasecmp(method, "email") == 0) || (strcasecmp(method, "mail") == 0) || (strcasecmp(method, "mailto") == 0)) { ret = cm_notification_email; } if (strcasecmp(method, "stdout") == 0) { ret = cm_notification_stdout; } if (strcasecmp(method, "command") == 0) { ret = cm_notification_command; } free(method); } return ret; } const char * cm_prefs_notification_destination(void) { static const char *destination; if (destination == NULL) { destination = cm_prefs_config(NULL, "notification_destination"); if (destination == NULL) { destination = CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY; } } return destination; } const char * cm_prefs_default_ca(void) { static const char *ca; if (ca == NULL) { ca = cm_prefs_config(NULL, "default_ca"); } return ca; } const char * cm_prefs_selfsign_validity_period(void) { static const char *period; if (period == NULL) { period = cm_prefs_config("selfsign", "validity_period"); if (period == NULL) { period = CM_DEFAULT_CERT_LIFETIME; } } return period; } const char * cm_prefs_local_validity_period(void) { static const char *period; if (period == NULL) { period = cm_prefs_config("local", "validity_period"); if (period == NULL) { period = cm_prefs_config("selfsign", "validity_period"); if (period == NULL) { period = CM_DEFAULT_CERT_LIFETIME; } } } return period; } static const char * yes_words[] = {"yes", "y", "true", "t", "1"}; static const char * no_words[] = {"no", "n", "false", "f", "0"}; static int cm_prefs_yesno(const char *val) { unsigned int i; if (val != NULL) { for (i = 0; i < sizeof(yes_words) / sizeof(yes_words[0]); i++) { if (strcasecmp(yes_words[i], val) == 0) { return 1; } } for (i = 0; i < sizeof(no_words) / sizeof(no_words[0]); i++) { if (strcasecmp(no_words[i], val) == 0) { return 0; } } } return -1; } int cm_prefs_populate_unique_id(void) { static int populate = -1; if (populate == -1) { const char *val; val = cm_prefs_config("selfsign", "populate_unique_id"); if (val == NULL) { val = CM_DEFAULT_POPULATE_UNIQUE_ID; } if (val != NULL) { populate = cm_prefs_yesno(val); } } return populate != -1 ? populate : 0; } int cm_prefs_monitor(void) { /* The documented hard-coded default is to try. */ return 1; } int cm_prefs_autorenew(void) { /* The documented hard-coded default is to try. */ return 1; } const char * cm_prefs_dogtag_ee_url(void) { static const char *url; #if 0 if (url == NULL) { url = cm_prefs_config("dogtag", "ee_url"); } #endif return url; } const char * cm_prefs_dogtag_agent_url(void) { static const char *url; #if 0 if (url == NULL) { url = cm_prefs_config("dogtag", "agent_url"); } #endif return url; } const char * cm_prefs_dogtag_profile(void) { static const char *profile; #if 0 if (profile == NULL) { profile = cm_prefs_config("dogtag", "profile"); } #endif return profile; } int cm_prefs_dogtag_renew(void) { static int prefer = -1; #if 0 if (prefer == -1) { prefer = cm_prefs_yesno(cm_prefs_config("dogtag", "prefer_renewal")); } #endif return (prefer != -1) ? (prefer != 0) : TRUE; } const char * cm_prefs_dogtag_ca_info(void) { static const char *info; #if 0 if (info == NULL) { info = cm_prefs_config("dogtag", "ca_info"); } #endif return info; } const char * cm_prefs_dogtag_ca_path(void) { static const char *path; #if 0 if (path == NULL) { path = cm_prefs_config("dogtag", "ca_path"); } #endif return path; } const char * cm_prefs_dogtag_ssldir(void) { static const char *dbdir; #if 0 if (dbdir == NULL) { dbdir = cm_prefs_config("dogtag", "nss_dbdir"); } #endif return dbdir; } const char * cm_prefs_dogtag_sslcert(void) { static const char *cert; #if 0 if (cert == NULL) { cert = cm_prefs_config("dogtag", "ssl_certificate"); if (cert == NULL) { cert = cm_prefs_config("dogtag", "nss_nickname"); } } #endif return cert; } const char * cm_prefs_dogtag_sslkey(void) { static const char *key; #if 0 if (key == NULL) { key = cm_prefs_config("dogtag", "ssl_key"); } #endif return key; } const char * cm_prefs_dogtag_sslpinfile(void) { static const char *pinfile; #if 0 if (pinfile == NULL) { pinfile = cm_prefs_config("dogtag", "ssl_pinfile"); } #endif return pinfile; } enum cm_key_algorithm cm_prefs_preferred_key_algorithm(void) { char *keytype; keytype = cm_prefs_config(NULL, "key_type"); if (keytype != NULL) { if (strcasecmp(keytype, "RSA") == 0) { free(keytype); return cm_key_rsa; } #ifdef CM_ENABLE_DSA else if (strcasecmp(keytype, "DSA") == 0) { free(keytype); return cm_key_dsa; } #endif #ifdef CM_ENABLE_EC else if ((strcasecmp(keytype, "ECDSA") == 0) || (strcasecmp(keytype, "EC") == 0)) { free(keytype); return cm_key_rsa; } #endif } return CM_DEFAULT_PUBKEY_TYPE; } const char * cm_prefs_nss_ca_trust(void) { static const char *trust; if (trust == NULL) { trust = cm_prefs_config(NULL, "nss_ca_trust"); } return trust; } const char * cm_prefs_nss_other_trust(void) { static const char *trust; if (trust == NULL) { trust = cm_prefs_config(NULL, "nss_other_trust"); } return trust; } long long prefs_key_end_of_life(time_t ref) { const char *cfg; time_t tmp; tmp = -1; cfg = cm_prefs_config(NULL, "max_key_lifetime"); if (cfg != NULL) { if (cm_submit_u_delta_from_string(cfg, ref, &tmp) == 0) { return tmp; } } return -1; } long prefs_max_key_use_count(void) { static long count = -2; long tmp; const char *cfg; char *p; if (count == -2) { count = -1; cfg = cm_prefs_config(NULL, "max_key_use_count"); if (cfg != NULL) { tmp = strtol(cfg, &p, 10); if ((p != NULL) && (*p == '\0')) { count = tmp; } } } return count; } certmonger-0.78.6/src/pin.h0000664000175000017500000000227512645513264012450 00000000000000/* * Copyright (C) 2010,2011,2013 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmpin_h #define cmpin_h struct cm_pin_cb_data { struct cm_store_entry *entry; int n_attempts; }; struct cm_store_entry; int cm_pin_read_for_key_ossl_cb(char *buf, int size, int rwflag, void *u); int cm_pin_read_for_key(struct cm_store_entry *entry, char **pin); int cm_pin_read_for_cert(struct cm_store_entry *entry, char **pin); char *cm_pin_read_for_key_nss_cb(PK11SlotInfo *slot, PRBool retry, void *arg); char *cm_pin_read_for_cert_nss_cb(PK11SlotInfo *slot, PRBool retry, void *arg); #endif certmonger-0.78.6/src/pin.c0000664000175000017500000001035712645513264012443 00000000000000/* * Copyright (C) 2010,2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "pin.h" #include "store-int.h" enum cm_pin_type { cm_pin_for_key, cm_pin_for_cert, }; static int cm_pin_read(struct cm_store_entry *entry, enum cm_pin_type pin_type, char **pin) { const char *pinfile, *pinvalue; struct stat st; int fd, l, err; switch (pin_type) { case cm_pin_for_key: pinfile = entry->cm_key_pin_file; pinvalue = entry->cm_key_pin; break; case cm_pin_for_cert: pinfile = entry->cm_key_pin_file; /* XXX */ pinvalue = entry->cm_key_pin; /* XXX */ break; default: pinfile = NULL; pinvalue = NULL; break; } if (pin == NULL) { return EINVAL; } *pin = NULL; err = 0; if ((pinfile != NULL) && (strlen(pinfile) > 0)) { fd = open(pinfile, O_RDONLY); if (fd != -1) { if ((fstat(fd, &st) == 0) && (st.st_size > 0)) { *pin = talloc_zero_size(entry, st.st_size + 1); if (*pin != NULL) { if (read(fd, *pin, st.st_size) != -1) { l = strcspn(*pin, "\r\n"); if (l == 0) { talloc_free(*pin); *pin = NULL; } else { (*pin)[l] = '\0'; } } else { err = errno; cm_log(-1, "Error reading \"%s\": " "%s.\n", pinfile, strerror(err)); talloc_free(*pin); *pin = NULL; } } } else { err = errno; cm_log(-1, "Error determining size of \"%s\": " "%s.\n", pinfile, strerror(err)); } close(fd); } else { err = errno; cm_log(-1, "Error reading PIN from \"%s\": %s.\n", pinfile, strerror(err)); } } if ((pin != NULL) && (*pin == NULL) && (err == 0)) { if (pinvalue != NULL) { *pin = talloc_strdup(entry, pinvalue); } } return err; } int cm_pin_read_for_key_ossl_cb(char *buf, int size, int rwflag, void *u) { struct cm_pin_cb_data *cb_data; char *pin; int ret; /* Record that we were called, so a PIN was needed. */ cb_data = u; cb_data->n_attempts++; memset(buf, '\0', size); if (cm_pin_read(cb_data->entry, cm_pin_for_key, &pin) == 0) { if (pin != NULL) { ret = strlen(pin); if (ret < size) { strcpy(buf, pin); } else { ret = 0; } talloc_free(pin); } else { ret = 0; } } else { ret = 0; } return ret; } static char * cm_pin_nss_cb(PK11SlotInfo *slot, PRBool retry, void *arg, enum cm_pin_type pin_type) { struct cm_pin_cb_data *cb_data; char *pin, *ret; /* Record that we were called, so a PIN was needed. */ cb_data = arg; cb_data->n_attempts++; if (retry) { /* We're not going to change what we're suggesting. */ ret = NULL; } else { if (cm_pin_read(cb_data->entry, pin_type, &pin) == 0) { if (pin != NULL) { ret = PR_Malloc(strlen(pin) + 1); if (ret != NULL) { strcpy(ret, pin); } talloc_free(pin); } else { ret = NULL; } } else { ret = NULL; } } return ret; } int cm_pin_read_for_key(struct cm_store_entry *entry, char **pin) { return cm_pin_read(entry, cm_pin_for_key, pin); } char * cm_pin_read_for_key_nss_cb(PK11SlotInfo *slot, PRBool retry, void *arg) { return cm_pin_nss_cb(slot, retry, arg, cm_pin_for_key); } int cm_pin_read_for_cert(struct cm_store_entry *entry, char **pin) { return cm_pin_read(entry, cm_pin_for_cert, pin); } char * cm_pin_read_for_cert_nss_cb(PK11SlotInfo *slot, PRBool retry, void *arg) { return cm_pin_nss_cb(slot, retry, arg, cm_pin_for_cert); } certmonger-0.78.6/src/oiddict.h0000664000175000017500000000151512645513264013275 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmoiddict_h #define cmoiddict_h char *cm_oid_to_name(void *ctx, const char *oid); char *cm_oid_from_name(void *ctx, const char *oid); #endif certmonger-0.78.6/src/oiddict.c0000664000175000017500000000705412645513264013274 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include static const struct { const char *name; const char *oidish; } cm_named_oids[] = { {"iso.org.dod.internet.security", "1.3.6.1.5"}, {"iso.org.dod.internet.security.kerberosV5", "iso.org.dod.internet.security.2"}, {"iso.org.dod.internet.security.mechanisms", "iso.org.dod.internet.security.5"}, {"id-pkix", "iso.org.dod.internet.security.mechanisms.7"}, {"id-mod", "id-pkix.0"}, {"id-pe", "id-pkix.1"}, {"id-pe-authorityInfoAccess", "id-pe.1"}, {"id-pe-nsa", "id-pe.23"}, {"id-qt", "id-pkix.2"}, {"id-qt-cps", "id-qt.1"}, {"id-qt-unotice", "id-qt.2"}, {"id-kp", "id-pkix.3"}, {"id-kp-serverAuth", "id-kp.1"}, {"id-kp-clientAuth", "id-kp.2"}, {"id-kp-codeSigning", "id-kp.3"}, {"id-kp-emailProtection", "id-kp.4"}, {"id-kp-timeStamping", "id-kp.8"}, {"id-kp-OCSPSigning", "id-kp.9"}, {"id-on", "id-pkix.8"}, {"id-on-dnsSRV", "id-on.7"}, {"id-ad", "id-pkix.48"}, {"id-ad-ca-ocsp", "id-ad.1"}, {"id-pkix-ocsp-nocheck", "id-ad-ca-ocsp.5"}, {"id-ad-ca-Issuers", "id-ad.2"}, {"id-pkinit", "iso.org.dod.internet.security.kerberosV5.3"}, {"id-pkinit-KPClientAuth", "id-pkinit.4"}, {"id-pkinit-KPKdc", "id-pkinit.5"}, {"id-ms-kp-sc-logon", "1.3.6.1.4.1.311.20.2.2"}, {"id-ce", "2.5.29"}, {"id-ce-authorityKeyIdentifier", "id-ce.35"}, {"id-ce-subjectKeyIdentifier", "id-ce.14"}, {"id-ce-keyUsage", "id-ce.15"}, {"id-ce-subjectAltName", "id-ce.17"}, {"id-ce-issuerAltName", "id-ce.18"}, {"id-ce-basicConstraints", "id-ce.19"}, {"id-ce-cRLNumber", "id-ce.20"}, {"id-ce-cRLDistributionPoints", "id-ce.31"}, {"id-ce-extKeyUsage", "id-ce.37"}, {"id-ce-freshestCRL", "id-ce.46"}, }; static int cm_is_a_prefix(const char *possible_prefix, const char *value) { unsigned int len; len = strlen(possible_prefix); if (strlen(value) < len) { return 0; } if (strncasecmp(possible_prefix, value, len) != 0) { return 0; } return ((value[len] == '.') || (value[len] == 0)); } char * cm_oid_to_name(void *ctx, const char *oid) { char *p, *q; unsigned int i, len; p = talloc_strdup(ctx, oid); for (i = 0; i < sizeof(cm_named_oids) / sizeof(cm_named_oids[0]); i++) { if (cm_is_a_prefix(cm_named_oids[i].oidish, p)) { len = strlen(cm_named_oids[i].oidish); q = talloc_asprintf(ctx, "%s%s", cm_named_oids[i].name, p + len); talloc_free(p); p = q; } } return p; } char * cm_oid_from_name(void *ctx, const char *name) { char *p, *q; int i, len; p = talloc_strdup(ctx, name); for (i = sizeof(cm_named_oids) / sizeof(cm_named_oids[0]) - 1; i >= 0; i--) { if (cm_is_a_prefix(cm_named_oids[i].name, p)) { len = strlen(cm_named_oids[i].name); q = talloc_asprintf(ctx, "%s%s", cm_named_oids[i].oidish, p + len); talloc_free(p); p = q; } } if (strspn(p, "0123456789.") != strlen(p)) { talloc_free(p); p = NULL; } return p; } certmonger-0.78.6/src/notify.h0000664000175000017500000000310012645513264013156 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmnotify_h #define cmnotify_h struct cm_store_entry; struct cm_notify_state; enum cm_notify_event { cm_notify_event_unknown = 0, cm_notify_event_validity_ending, cm_notify_event_rejected, cm_notify_event_issued_not_saved, cm_notify_event_issued_and_saved, cm_notify_event_issued_ca_not_saved, cm_notify_event_ca_not_saved }; /* Start to notify the administrator or user that expiration is imminent. */ struct cm_notify_state *cm_notify_start(struct cm_store_entry *entry, enum cm_notify_event event); /* Get a selectable-for-read descriptor we can poll for status changes when * we're finished sending the notification. */ int cm_notify_get_fd(struct cm_notify_state *state); /* Check if we're ready to call notification done. */ int cm_notify_ready(struct cm_notify_state *state); /* Clean up after notification. */ void cm_notify_done(struct cm_notify_state *state); #endif certmonger-0.78.6/src/notify.c0000664000175000017500000003071712645513264013167 00000000000000/* * Copyright (C) 2009,2011,2012,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "notify.h" #include "prefs.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "tm.h" struct cm_notify_state { struct cm_subproc_state *subproc; }; struct cm_notify_details { enum cm_notify_event event; }; /* Fire off the proper notification. */ static int cm_notify_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { struct cm_notify_details *details = userdata; enum cm_notification_method method; const char *dest, *p, *q, *message = NULL, *error; char *tok, t[15], **argv; int facility, level; struct { const char *name; int value; } facilities[] = { {"auth", LOG_AUTH}, {"authpriv", LOG_AUTHPRIV}, {"cron", LOG_CRON}, {"daemon", LOG_DAEMON}, {"ftp", LOG_FTP}, {"kern", LOG_KERN}, {"local0", LOG_LOCAL0}, {"local1", LOG_LOCAL1}, {"local2", LOG_LOCAL2}, {"local3", LOG_LOCAL3}, {"local4", LOG_LOCAL4}, {"local5", LOG_LOCAL5}, {"local6", LOG_LOCAL6}, {"local7", LOG_LOCAL7}, {"lpr", LOG_LPR}, {"mail", LOG_MAIL}, {"news", LOG_NEWS}, {"user", LOG_USER}, {"uucp", LOG_UUCP}, }, levels[] = { {"emerg", LOG_EMERG}, {"alert", LOG_ALERT}, {"crit", LOG_CRIT}, {"err", LOG_ERR}, {"warning", LOG_WARNING}, {"notice", LOG_NOTICE}, {"info", LOG_INFO}, {"debug", LOG_DEBUG}, }; unsigned int i; switch (details->event) { case cm_notify_event_unknown: message = talloc_asprintf(entry, "Something " "happened with certiifcate " "named \"%s\" " "in token \"%s\" " "in database \"%s\".", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location); break; case cm_notify_event_validity_ending: if (entry->cm_cert_not_after > cm_time(NULL)) { switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: if (entry->cm_cert_token != NULL) { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in token \"%s\" " "in database \"%s\" " "will not be valid " "after %s.", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location, cm_store_timestamp_from_time(entry->cm_cert_not_after, t)); } else { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in database \"%s\" " "will expire at " "%s.", entry->cm_cert_nickname, entry->cm_cert_storage_location, cm_store_timestamp_from_time(entry->cm_cert_not_after, t)); } break; case cm_cert_storage_file: message = talloc_asprintf(entry, "Certificate " "in file \"%s\" will not be " "valid after %s.", entry->cm_cert_storage_location, cm_store_timestamp_from_time(entry->cm_cert_not_after, t)); break; } } else { switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: if (entry->cm_cert_token != NULL) { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in token \"%s\" " "in database \"%s\" " "is no longer valid.", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location); } else { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in database \"%s\" " "is no longer valid.", entry->cm_cert_nickname, entry->cm_cert_storage_location); } break; case cm_cert_storage_file: message = talloc_asprintf(entry, "Certificate " "in file \"%s\" is no longer " "valid.", entry->cm_cert_storage_location); break; } } break; case cm_notify_event_rejected: switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: if (entry->cm_cert_token != NULL) { message = talloc_asprintf(entry, "Request for " "certificate to be " "named \"%s\" " "in token \"%s\" " "in database \"%s\" " "rejected by CA.", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location); } else { message = talloc_asprintf(entry, "Request for " "certificate to be " "named \"%s\" " "in database \"%s\" " "rejected by CA.", entry->cm_cert_nickname, entry->cm_cert_storage_location); } break; case cm_cert_storage_file: message = talloc_asprintf(entry, "Request for certificate to be " "stored in file \"%s\" rejected by CA.", entry->cm_cert_storage_location); break; } break; case cm_notify_event_issued_not_saved: switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: if (entry->cm_cert_token != NULL) { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in token \"%s\" " "in database \"%s\" " "issued by CA but not saved.", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location); } else { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in database \"%s\" " "issued by CA but not saved.", entry->cm_cert_nickname, entry->cm_cert_storage_location); } break; case cm_cert_storage_file: message = talloc_asprintf(entry, "Certificate " "in file \"%s\" " "issued by CA but not saved.", entry->cm_cert_storage_location); break; } break; case cm_notify_event_issued_and_saved: switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: if (entry->cm_cert_token != NULL) { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in token \"%s\" " "in database \"%s\" " "issued by CA and saved.", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location); } else { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in database \"%s\" " "issued by CA and saved.", entry->cm_cert_nickname, entry->cm_cert_storage_location); } break; case cm_cert_storage_file: message = talloc_asprintf(entry, "Certificate " "in file \"%s\" " "issued by CA and saved.", entry->cm_cert_storage_location); break; } break; case cm_notify_event_issued_ca_not_saved: switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: if (entry->cm_cert_token != NULL) { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in token \"%s\" " "in database \"%s\" " "issued by CA and " "saved, but the CA " "certificate was " "not saved.", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location); } else { message = talloc_asprintf(entry, "Certificate " "named \"%s\" " "in database \"%s\" " "issued by CA and " "saved, but the CA " "certificate was " "not saved.", entry->cm_cert_nickname, entry->cm_cert_storage_location); } break; case cm_cert_storage_file: message = talloc_asprintf(entry, "Certificate " "in file \"%s\" " "issued by CA and saved, " "but the CA certificate was " "not saved.", entry->cm_cert_storage_location); break; } break; case cm_notify_event_ca_not_saved: switch (entry->cm_cert_storage_type) { case cm_cert_storage_nssdb: if (entry->cm_cert_token != NULL) { message = talloc_asprintf(entry, "CA certificate " "for certificate " "named \"%s\" " "in token \"%s\" " "in database \"%s\" " "(CA \"%s\") not saved.", entry->cm_cert_nickname, entry->cm_cert_token, entry->cm_cert_storage_location, entry->cm_ca_nickname); } else { message = talloc_asprintf(entry, "CA certificate " "for certificate " "named \"%s\" " "in database \"%s\" " "(CA \"%s\") not saved.", entry->cm_cert_nickname, entry->cm_cert_storage_location, entry->cm_ca_nickname); } break; case cm_cert_storage_file: message = talloc_asprintf(entry, "CA certificate " "for certificate " "in file \"%s\" " "(CA \"%s\") not saved.", entry->cm_cert_storage_location, entry->cm_ca_nickname); break; } break; } method = entry->cm_notification_method; if (method == cm_notification_unspecified) { method = cm_prefs_notification_method(); } dest = entry->cm_notification_destination; if (dest == NULL) { dest = cm_prefs_notification_destination(); } switch (method) { case cm_notification_none: /* do nothing! */ break; case cm_notification_unspecified: abort(); break; case cm_notification_stdout: sleep(5); /* XXX that was SO wrong, but it makes the output of the test * suite consistent when we mix the parent printing the current * state and this process also outputting the warning */ printf("%s\n", message); fflush(NULL); break; case cm_notification_syslog: facility = LOG_USER; level = LOG_NOTICE; for (p = dest; *p != '\0'; p = q) { q = p + strcspn(p, ".,:/|"); tok = talloc_strndup(entry, p, q - p); if (tok == NULL) { continue; } for (i = 0; i < sizeof(facilities) / sizeof(facilities[0]); i++) { if (strcasecmp(facilities[i].name, tok) == 0) { facility = facilities[i].value; } } for (i = 0; i < sizeof(levels) / sizeof(levels[0]); i++) { if (strcasecmp(levels[i].name, tok) == 0) { level = levels[i].value; } } q += strspn(q, ".,:/|"); } cm_log(4, "0x%02x %s\n", facility | level, message); syslog(facility | level, "%s", message); break; case cm_notification_email: execlp("mail", "mail", "-s", message, dest, NULL); break; case cm_notification_command: argv = cm_subproc_parse_args(entry, dest, &error); if (argv == NULL) { if (error != NULL) { cm_log(0, "Error parsing \"%s\": %s.\n", dest, error); } else { cm_log(0, "Error parsing \"%s\".\n", dest); } return -1; } cm_log(1, "Running notification helper \"%s\".\n", argv[0]); cm_subproc_mark_most_cloexec(-1, -1, -1); setenv(CM_NOTIFICATION_ENV, message, 1); if (execvp(argv[0], argv) == -1) { cm_log(0, "Error execvp()ing command \"%s\" (\"%s\"): %s.\n", argv[0], entry->cm_post_certsave_command, strerror(errno)); return -1; } } return 0; } /* Start notifying the user that the certificate will expire soon. */ struct cm_notify_state * cm_notify_start(struct cm_store_entry *entry, enum cm_notify_event event) { struct cm_notify_state *state; struct cm_notify_details details; state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); memset(&details, 0, sizeof(details)); details.event = event; state->subproc = cm_subproc_start(cm_notify_main, state, NULL, entry, &details); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_notify_get_fd(struct cm_notify_state *state) { return cm_subproc_get_fd(state->subproc); } /* Check if our child process has exited. */ int cm_notify_ready(struct cm_notify_state *state) { return cm_subproc_ready(state->subproc); } /* Clean up after notification. */ void cm_notify_done(struct cm_notify_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } certmonger-0.78.6/src/netlink.h0000664000175000017500000000157712645513264013332 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmnetlink_h #define cmnetlink_h int cm_netlink_socket(void); int cm_netlink_pkt_is_route_change(char *buf, int len, struct sockaddr *src_addr, socklen_t addrlen); #endif certmonger-0.78.6/src/netlink.c0000664000175000017500000000454012645513264013316 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include "log.h" #include "netlink.h" #if defined(HAVE_LINUX_NETLINK_H) && defined(HAVE_LINUX_RTNETLINK_H) #include #include int cm_netlink_socket(void) { int fd; struct sockaddr_nl sn; fd = socket(AF_NETLINK, SOCK_DGRAM, NETLINK_ROUTE); if (fd == -1) { return -1; } if (fcntl(fd, F_SETFL, (long) O_NONBLOCK) == -1) { close(fd); return -1; }; if (fcntl(fd, F_SETFD, (long) FD_CLOEXEC) == -1) { close(fd); return -1; }; memset(&sn, 0, sizeof(sn)); sn.nl_family = AF_NETLINK; sn.nl_pad = 0; sn.nl_pid = getpid(); sn.nl_groups = RTMGRP_NOTIFY | RTMGRP_IPV4_ROUTE | RTMGRP_IPV6_ROUTE; if (bind(fd, (struct sockaddr *) &sn, sizeof(sn)) == -1) { close(fd); return -1; } return fd; } int cm_netlink_pkt_is_route_change(char *buf, int len, struct sockaddr *src_addr, socklen_t addrlen) { struct nlmsghdr *nlmsg; struct sockaddr_nl *src; if (addrlen != sizeof(*src)) { return -1; } src = (struct sockaddr_nl *) src_addr; if (src->nl_pid != 0) { return -1; } for (nlmsg = (struct nlmsghdr *) buf; (len > 0) && NLMSG_OK(nlmsg, (unsigned int) len); nlmsg = NLMSG_NEXT(nlmsg, len)) { switch (nlmsg->nlmsg_type) { case RTM_NEWLINK: case RTM_DELLINK: case RTM_NEWROUTE: case RTM_DELROUTE: return 0; break; } } return -1; } #else int cm_netlink_socket(void) { return -1; } int cm_netlink_pkt_is_route_change(char *buf, int len, struct sockaddr *src_addr, socklen_t addrlen) { return -1; } #endif certmonger-0.78.6/src/log.h0000664000175000017500000000245112645513264012437 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmlog_h #define cmlog_h enum cm_sub_status { CM_SUB_STATUS_OK = 0, CM_SUB_STATUS_ERROR_INITIALIZING = 1, CM_SUB_STATUS_INTERNAL_ERROR = 2, CM_SUB_STATUS_ERROR_NO_TOKEN = 3, CM_SUB_STATUS_ERROR_AUTH = 4, CM_SUB_STATUS_ERROR_PERMS = 5, CM_SUB_STATUS_ERROR_KEY_TYPE = 6, CM_SUB_STATUS_NEED_SCEP_DATA = 16, }; enum cm_log_method { cm_log_none = 0, cm_log_syslog, cm_log_stderr, cm_log_stdout, }; int cm_log_set_level(int level); enum cm_log_method cm_log_set_method(enum cm_log_method method); void cm_log(int level, const char *fmt, ...) #ifdef __GNUC__ __attribute__((format(printf,2,3))) #endif ; #endif certmonger-0.78.6/src/log.c0000664000175000017500000000462112645513264012433 00000000000000/* * Copyright (C) 2009,2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "tm.h" static int cm_log_level = 0; static enum cm_log_method cm_log_method; int cm_log_set_level(int level) { int old_level; old_level = cm_log_level; cm_log_level = level; return old_level; } enum cm_log_method cm_log_set_method(enum cm_log_method method) { enum cm_log_method old_method; old_method = cm_log_method; cm_log_method = method; return old_method; } void cm_log(int level, const char *fmt, ...) { FILE *stream; va_list args; int slevel; char *p; struct tm lt; time_t now; if (level <= cm_log_level) { stream = stderr; switch (cm_log_method) { case cm_log_none: break; case cm_log_stdout: stream = stdout; /* fall through */ case cm_log_stderr: now = cm_time(NULL); localtime_r(&now, <); p = talloc_asprintf(NULL, "%04d-%02d-%02d %02d:%02d:%02d " "[%lu] %s", lt.tm_year + 1900, lt.tm_mon + 1, lt.tm_mday, lt.tm_hour, lt.tm_min, lt.tm_sec, (unsigned long) getpid(), fmt); if (p != NULL) { va_start(args, fmt); vfprintf(stream, p, args); va_end(args); talloc_free(p); } fflush(NULL); break; case cm_log_syslog: va_start(args, fmt); switch (level) { case -2: slevel = LOG_CRIT; break; case -1: slevel = LOG_WARNING; break; case 0: slevel = LOG_INFO; break; default: slevel = LOG_DEBUG; break; } vsyslog(LOG_DAEMON | slevel, fmt, args); va_end(args); break; } } } certmonger-0.78.6/src/kudict.h0000664000175000017500000000151112645513264013135 00000000000000/* * Copyright (C) 2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmkudict_h #define cmkudict_h const char *cm_ku_to_name(int bit); int cm_ku_n_names(void); int cm_ku_from_name(const char *name); #endif certmonger-0.78.6/src/kudict.c0000664000175000017500000000327412645513264013140 00000000000000/* * Copyright (C) 2012 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include "kudict.h" static struct { int bit; const char *name; } key_usage_dict[] = { { .bit = 0, .name = "digitalSignature" }, { .bit = 1, .name = "nonRepudiation" }, { .bit = 1, .name = "contentCommitment" }, /* an alias */ { .bit = 2, .name = "keyEncipherment" }, { .bit = 3, .name = "dataEncipherment" }, { .bit = 4, .name = "keyAgreement" }, { .bit = 5, .name = "keyCertSign" }, { .bit = 6, .name = "cRLSign" }, { .bit = 7, .name = "encipherOnly" }, { .bit = 8, .name = "decipherOnly" }, }; int cm_ku_n_names(void) { return (int) (sizeof(key_usage_dict) / sizeof(key_usage_dict[0])); } const char * cm_ku_to_name(int bit) { int i; for (i = 0; i < cm_ku_n_names(); i++) { if (bit == key_usage_dict[i].bit) { return key_usage_dict[i].name; } } return NULL; } int cm_ku_from_name(const char *name) { int i; for (i = 0; i < cm_ku_n_names(); i++) { if (strcasecmp(name, key_usage_dict[i].name) == 0) { return key_usage_dict[i].bit; } } return -1; } certmonger-0.78.6/src/keyiread-n.h0000664000175000017500000000205212645513264013703 00000000000000/* * Copyright (C) 2009,2011,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmkeyireadn_h #define cmkeyireadn_h struct cm_keyiread_n_ctx_and_keys { PLArenaPool *arena; /* owns this structure */ NSSInitContext *ctx; SECKEYPrivateKey *privkey, *privkey_next; SECKEYPublicKey *pubkey, *pubkey_next; }; struct cm_keyiread_n_ctx_and_keys *cm_keyiread_n_get_keys(struct cm_store_entry *entry, int readwrite); #endif certmonger-0.78.6/src/keyiread-n.c0000664000175000017500000004674712645513264013721 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "keyiread.h" #include "keyiread-int.h" #include "keyiread-n.h" #include "log.h" #include "pin.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-n.h" #ifndef PRIVKEY_LIST_EMPTY #define PRIVKEY_LIST_EMPTY(l) PRIVKEY_LIST_END(PRIVKEY_LIST_HEAD(l), l) #endif struct cm_keyiread_state { struct cm_keyiread_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; struct cm_keyiread_n_settings { unsigned int readwrite:1; }; struct cm_keyiread_n_ctx_and_keys * cm_keyiread_n_get_keys(struct cm_store_entry *entry, int readwrite) { const char *token, *nickname = "(no such key)", *reason, *es; char *pin, *pubhex, *nextnick; PLArenaPool *arena; SECStatus error; NSSInitContext *ctx; PK11SlotInfo *slot; PK11SlotList *slotlist; PK11SlotListElement *sle; SECKEYPrivateKeyList *keys; SECKEYPrivateKeyListNode *knode; SECKEYPrivateKey *key, *ckey, *nextkey = NULL; SECKEYPublicKey *pubkey, *nextpubkey = NULL; CK_MECHANISM_TYPE mech; CERTCertList *certs; CERTCertListNode *cnode; CERTCertificate *cert; CERTSubjectPublicKeyInfo *spki; SECItem item; struct cm_pin_cb_data cb_data; int n_tokens, ec; struct cm_keyiread_n_ctx_and_keys *ret; /* Open the database. */ ctx = NSS_InitContext(entry->cm_key_storage_location, NULL, NULL, NULL, NULL, (readwrite ? 0 : NSS_INIT_READONLY) | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (ctx == NULL) { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Unable to open NSS database '%s': %s.\n", entry->cm_key_storage_location, es); } else { cm_log(1, "Unable to open NSS database '%s'.\n", entry->cm_key_storage_location); } switch (PORT_GetError()) { case PR_NO_ACCESS_RIGHTS_ERROR: _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: _exit(CM_SUB_STATUS_ERROR_INITIALIZING); break; } } reason = util_n_fips_hook(); if (reason != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", reason); _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } /* Allocate a memory pool. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(1, "Out of memory opening database '%s'.\n", entry->cm_key_storage_location); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } /* Find the tokens that we might use for key storage. */ mech = 0; slotlist = PK11_GetAllTokens(mech, PR_FALSE, PR_FALSE, NULL); if (slotlist == NULL) { cm_log(1, "Error locating token to be used for key storage.\n"); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_NO_TOKEN); } /* Walk the list looking for the requested token, or look at all of * them if none specifically was requested. */ key = NULL; pin = NULL; if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading PIN for key storage.\n"); _exit(CM_SUB_STATUS_ERROR_AUTH); } PK11_SetPasswordFunc(&cm_pin_read_for_cert_nss_cb); n_tokens = 0; pubkey = NULL; /* In practice, the internal slot is either a non-storage slot (in * non-FIPS mode) or the database slot (in FIPS mode), and we only want * to skip over the one that can't be used to store things. */ for (sle = slotlist->head; (key == NULL) && ((sle != NULL) && (sle->slot != NULL)); sle = sle->next) { slot = sle->slot; if (PK11_IsInternal(slot) && !PK11_IsInternalKeySlot(slot)) { cm_log(3, "Skipping NSS internal slot (%s).\n", PK11_GetTokenName(slot)); goto next_slot; } /* Read the token's name. */ token = PK11_GetTokenName(slot); if (token != NULL) { cm_log(3, "Found token '%s'.\n", token); } else { cm_log(3, "Found unnamed token.\n"); } /* If this is the wrong token, move on. */ if ((entry->cm_key_token != NULL) && (strlen(entry->cm_key_token) > 0) && ((token == NULL) || (strcmp(entry->cm_key_token, token) != 0))) { if (token != NULL) { cm_log(1, "Token is named \"%s\", not \"%s\", " "skipping.\n", token, entry->cm_key_token); } else { cm_log(1, "Token is unnamed, not \"%s\", " "skipping.\n", entry->cm_key_token); } goto next_slot; } n_tokens++; /* Be ready to count our uses of a PIN. */ memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; /* If we're supposed to be using a PIN, and we're offered a * chance to set one, do it now. */ if (readwrite) { if (PK11_NeedUserInit(slot)) { if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading PIN to assign " "to storage slot, skipping.\n"); goto next_slot; } PK11_InitPin(slot, NULL, pin ? pin : ""); if (PK11_NeedUserInit(slot)) { cm_log(1, "Key storage slot still " "needs user PIN to be set.\n"); goto next_slot; } if ((pin != NULL) && (strlen(pin) > 0)) { /* We're authenticated now, so count * this as a use of the PIN. */ cb_data.n_attempts++; } } } /* Now log in, if we have to. */ if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading PIN for key storage " "token \"%s\", skipping.\n", token); PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_AUTH); } error = PK11_Authenticate(slot, PR_TRUE, &cb_data); if (error != SECSuccess) { cm_log(1, "Error authenticating to token " "\"%s\".\n", token); PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_AUTH); } if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to auth to token" ", though one was provided. " "Treating this as an error.\n"); PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_AUTH); } /* Look up the "next" key. */ if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) != 0)) { nextnick = util_build_next_nickname(entry->cm_key_nickname, entry->cm_key_next_marker); keys = PK11_ListPrivKeysInSlot(slot, nextnick, NULL); if (keys != NULL) { for (knode = PRIVKEY_LIST_HEAD(keys); !PRIVKEY_LIST_EMPTY(keys) && !PRIVKEY_LIST_END(knode, keys); knode = PRIVKEY_LIST_NEXT(knode)) { nickname = PK11_GetPrivateKeyNickname(knode->key); if ((nickname != NULL) && (strcmp(nextnick, nickname) == 0)) { cm_log(3, "Located the key '%s'.\n", nextnick); nextkey = SECKEY_CopyPrivateKey(knode->key); break; } } SECKEY_DestroyPrivateKeyList(keys); } /* Try to recover a public key. */ nextpubkey = nextkey ? SECKEY_ConvertToPublicKey(nextkey) : NULL; if (pubkey != NULL) { cm_log(3, "Converted private key '%s' to public key.\n", nextnick); } } /* Walk the list of private keys in the token, looking at each * one to see if it matches the specified nickname. */ keys = PK11_ListPrivKeysInSlot(slot, entry->cm_key_nickname, NULL); if (keys != NULL) { for (knode = PRIVKEY_LIST_HEAD(keys); !PRIVKEY_LIST_EMPTY(keys) && !PRIVKEY_LIST_END(knode, keys); knode = PRIVKEY_LIST_NEXT(knode)) { nickname = PK11_GetPrivateKeyNickname(knode->key); if ((nickname != NULL) && (entry->cm_key_nickname != NULL) && (strcmp(entry->cm_key_nickname, nickname) == 0)) { cm_log(3, "Located the key '%s'.\n", nickname); key = SECKEY_CopyPrivateKey(knode->key); break; } } SECKEY_DestroyPrivateKeyList(keys); } /* Try to recover a public key. */ pubkey = key ? SECKEY_ConvertToPublicKey(key) : NULL; if (pubkey != NULL) { cm_log(3, "Converted private key '%s' to public key.\n", nickname); } /* Walk the list of certificates in the token, looking at each * one to see if it matches the specified nickname and has a * private key associated with it. */ if ((key == NULL) || (pubkey == NULL)) { certs = PK11_ListCertsInSlot(slot); } else { certs = NULL; } if (certs != NULL) { cert = NULL; for (cnode = CERT_LIST_HEAD(certs); !CERT_LIST_EMPTY(certs) && !CERT_LIST_END(cnode, certs); cnode = CERT_LIST_NEXT(cnode)) { nickname = entry->cm_key_nickname; cert = cnode->cert; if ((nickname != NULL) && (strcmp(cert->nickname, nickname) == 0)) { cm_log(3, "Located a certificate with " "the key's nickname (\"%s\").\n", nickname); ckey = PK11_FindPrivateKeyFromCert(slot, cert, NULL); if (ckey != NULL) { if (key == NULL) { cm_log(3, "Located " "its private " "key.\n"); key = ckey; break; } else { if ((key->pkcs11Slot == ckey->pkcs11Slot) && (key->pkcs11ID == ckey->pkcs11ID)) { cm_log(3, "Located its " "private key.\n"); SECKEY_DestroyPrivateKey(ckey); break; } } } cm_log(3, "But we didn't find " "its private key.\n"); } cert = NULL; } /* If we don't have the public key, try to extract it * from the private key. */ if ((pubkey == NULL) && (key != NULL)) { pubkey = SECKEY_ConvertToPublicKey(key); if (pubkey != NULL) { cm_log(3, "Recovered public key " "from private key.\n"); } } /* If we don't have the public key, try to extract it * from the certificate. */ if ((pubkey == NULL) && (cert != NULL)) { spki = SECKEY_DecodeDERSubjectPublicKeyInfo(&cert->derPublicKey); if (spki != NULL) { pubkey = SECKEY_ExtractPublicKey(spki); SECKEY_DestroySubjectPublicKeyInfo(spki); if (pubkey != NULL) { cm_log(3, "Recovered public key " "from certificate.\n"); } } } CERT_DestroyCertList(certs); } /* If we don't have the public key, try to use a cached copy of * it. */ if ((pubkey == NULL) && (entry->cm_key_pubkey_info != NULL)) { memset(&item, 0, sizeof(item)); pubhex = entry->cm_key_pubkey_info; item.len = strlen(pubhex) / 2; item.data = malloc(item.len); if (item.data != NULL) { item.len = cm_store_hex_to_bin(pubhex, item.data, item.len); spki = SECKEY_DecodeDERSubjectPublicKeyInfo(&item); if (spki != NULL) { pubkey = SECKEY_ExtractPublicKey(spki); SECKEY_DestroySubjectPublicKeyInfo(spki); } } if (pubkey != NULL) { cm_log(3, "Using cached public key.\n"); } } next_slot: /* If this was the last token, stop walking. */ if (sle == slotlist->tail) { break; } } PK11_FreeSlotList(slotlist); if ((key == NULL) || ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) != 0) && (nextkey == NULL))) { cm_log(1, "Error locating a key.\n"); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } PORT_FreeArena(arena, PR_TRUE); ret = NULL; } else { ret = PORT_ArenaZAlloc(arena, sizeof(*ret)); if (ret == NULL) { cm_log(1, "Out of memory searching database '%s'.\n", entry->cm_key_storage_location); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } PORT_FreeArena(arena, PR_TRUE); _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } ret->arena = arena; ret->ctx = ctx; ret->privkey = key; ret->pubkey = pubkey; ret->privkey_next = nextkey; ret->pubkey_next = nextpubkey; } if ((n_tokens == 0) && (entry->cm_key_token != NULL) && (strlen(entry->cm_key_token) > 0)) { _exit(CM_SUB_STATUS_ERROR_NO_TOKEN); } return ret; } static int cm_keyiread_n_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { struct cm_keyiread_n_ctx_and_keys *keys; CERTSubjectPublicKeyInfo *spki; PK11SlotInfo *slot; const char *alg, *name; SECItem *info; char *pubhex, *pubihex; int status = 1, size, readwrite; FILE *fp; struct cm_keyiread_n_settings *settings; /* Open the status descriptor for stdio. */ fp = fdopen(fd, "w"); if (fp == NULL) { cm_log(1, "Unable to initialize I/O.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Read the key. */ settings = userdata; readwrite = settings->readwrite; keys = cm_keyiread_n_get_keys(entry, readwrite); alg = ""; size = 0; if (keys != NULL) { switch (SECKEY_GetPrivateKeyType(keys->privkey)) { case rsaKey: cm_log(3, "Key is an RSA key.\n"); alg = "RSA"; break; case dsaKey: cm_log(3, "Key is a DSA key.\n"); alg = "DSA"; break; case ecKey: cm_log(3, "Key is an EC key.\n"); alg = "EC"; break; case nullKey: default: cm_log(3, "Key is of an unknown type.\n"); break; } slot = PK11_GetSlotFromPrivateKey(keys->privkey); if (slot != NULL) { name = PK11_GetTokenName(slot); if ((name != NULL) && (strlen(name) == 0)) { name = NULL; } else { name = talloc_strdup(entry, name); } PK11_FreeSlot(slot); } else { name = NULL; } if (strlen(alg) > 0) { if (keys->pubkey != NULL) { size = SECKEY_PublicKeyStrengthInBits(keys->pubkey); cm_log(3, "Key size is %d.\n", size); info = SECKEY_EncodeDERSubjectPublicKeyInfo(keys->pubkey); pubihex = cm_store_hex_from_bin(NULL, info->data, info->len); spki = SECKEY_DecodeDERSubjectPublicKeyInfo(info); pubhex = cm_store_hex_from_bin(NULL, spki->subjectPublicKey.data, spki->subjectPublicKey.len / 8); fprintf(fp, "%s/%d/%s/%s%s%s\n", alg, size, pubihex, pubhex, (name != NULL ? "/" : ""), (name != NULL ? name : "")); status = 0; } else { cm_log(1, "Error reading public key.\n"); } } if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) != 0)) { if ((keys->privkey_next == NULL) || (keys->pubkey_next == NULL)) { cm_log(1, "Error reading next key.\n"); fprintf(fp, "\n"); } else { switch (SECKEY_GetPrivateKeyType(keys->privkey_next)) { case rsaKey: cm_log(3, "Next key is an RSA key.\n"); alg = "RSA"; break; case dsaKey: cm_log(3, "Next key is a DSA key.\n"); alg = "DSA"; break; case ecKey: cm_log(3, "Next key is an EC key.\n"); alg = "EC"; break; case nullKey: default: cm_log(3, "Next key is of an unknown type.\n"); break; } size = SECKEY_PublicKeyStrengthInBits(keys->pubkey_next); cm_log(3, "Next key size is %d.\n", size); info = SECKEY_EncodeDERSubjectPublicKeyInfo(keys->pubkey_next); pubihex = cm_store_hex_from_bin(NULL, info->data, info->len); spki = SECKEY_DecodeDERSubjectPublicKeyInfo(info); pubhex = cm_store_hex_from_bin(NULL, spki->subjectPublicKey.data, spki->subjectPublicKey.len / 8); fprintf(fp, "%s/%d/%s/%s\n", alg, size, pubihex, pubhex); status = 0; } } if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } SECKEY_DestroyPrivateKey(keys->privkey); if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } } fclose(fp); if (keys != NULL) { if (NSS_ShutdownContext(keys->ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } PORT_FreeArena(keys->arena, PR_TRUE); } if (status != 0) { _exit(status); } return 0; } /* Check if something changed, for example we finished reading the data we need * from the key data. */ static int cm_keyiread_n_ready(struct cm_keyiread_state *state) { return cm_subproc_ready(state->subproc); } /* Check if we were able to successfully read the key information. */ static int cm_keyiread_n_finished_reading(struct cm_keyiread_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == 0)) { return 0; } return -1; } /* Check if we need a PIN (or a new PIN) to access the key information. */ static int cm_keyiread_n_need_pin(struct cm_keyiread_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to access the key information. */ static int cm_keyiread_n_need_token(struct cm_keyiread_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_keyiread_n_get_fd(struct cm_keyiread_state *state) { return cm_subproc_get_fd(state->subproc); } /* Clean up after reading the key info. */ static void cm_keyiread_n_done(struct cm_keyiread_state *state) { if (state->subproc != NULL) { cm_keyiread_read_data_from_buffer(state->entry, cm_subproc_get_msg(state->subproc, NULL)); cm_subproc_done(state->subproc); } talloc_free(state); } /* Start reading the key info from the configured location. */ struct cm_keyiread_state * cm_keyiread_n_start(struct cm_store_entry *entry) { struct cm_keyiread_state *state; struct cm_keyiread_n_settings settings = { .readwrite = 0, }; if (entry->cm_key_storage_type != cm_key_storage_nssdb) { cm_log(1, "Wrong read method: can only read keys " "from an NSS database.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.finished_reading = cm_keyiread_n_finished_reading; state->pvt.need_pin = cm_keyiread_n_need_pin; state->pvt.need_token = cm_keyiread_n_need_token; state->pvt.ready = cm_keyiread_n_ready; state->pvt.get_fd= cm_keyiread_n_get_fd; state->pvt.done= cm_keyiread_n_done; state->entry = entry; state->subproc = cm_subproc_start(cm_keyiread_n_main, state, NULL, entry, &settings); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/keyiread-int.h0000664000175000017500000000305612645513264014245 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmkeyireadint_h #define cmkeyireadint_h struct cm_keyiread_state_pvt { /* Check if something changed, for example we finished reading the * key info. */ int (*ready)(struct cm_keyiread_state *state); /* Check if we successfully read the info. */ int (*finished_reading)(struct cm_keyiread_state *state); /* Check if we need a PIN (or a new PIN) to succeed with the task. */ int (*need_pin)(struct cm_keyiread_state *state); /* Check if we need the token to succeed with the task. */ int (*need_token)(struct cm_keyiread_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. * */ int (*get_fd)(struct cm_keyiread_state *state); /* Clean up after reading the key info. */ void (*done)(struct cm_keyiread_state *state); }; void cm_keyiread_read_data_from_buffer(struct cm_store_entry *entry, const char *p); #endif certmonger-0.78.6/src/keyiread.h0000664000175000017500000000354312645513264013456 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmkeyiread_h #define cmkeyiread_h struct cm_keyiread_state; struct cm_store_entry; /* Check if we have a key in the designated location, and report the algorithm * and key size. */ struct cm_keyiread_state *cm_keyiread_start(struct cm_store_entry *entry); struct cm_keyiread_state *cm_keyiread_n_start(struct cm_store_entry *entry); struct cm_keyiread_state *cm_keyiread_o_start(struct cm_store_entry *entry); /* Check if something changed, for example we finished reading the key info. */ int cm_keyiread_ready(struct cm_keyiread_state *state); /* Check if we were able to read the information. */ int cm_keyiread_finished_reading(struct cm_keyiread_state *state); /* Check if we need to supply a PIN (or a new PIN) to try again. */ int cm_keyiread_need_pin(struct cm_keyiread_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_keyiread_get_fd(struct cm_keyiread_state *state); /* Check if we need the token to be reinserted to read information about the * key. */ int cm_keyiread_need_token(struct cm_keyiread_state *state); /* Clean up after reading the key info. */ void cm_keyiread_done(struct cm_keyiread_state *state); #endif certmonger-0.78.6/src/keyiread.c0000664000175000017500000001321712645513264013450 00000000000000/* * Copyright (C) 2009,2010,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include "keyiread.h" #include "keyiread-int.h" #include "log.h" #include "store-int.h" /* Start refreshing the key info from the entry from the configured location. */ struct cm_keyiread_state * cm_keyiread_start(struct cm_store_entry *entry) { switch (entry->cm_key_storage_type) { case cm_key_storage_none: break; #ifdef HAVE_OPENSSL case cm_key_storage_file: if (entry->cm_key_storage_location != NULL) { return cm_keyiread_o_start(entry); } else { return NULL; } break; #endif #ifdef HAVE_NSS case cm_key_storage_nssdb: if ((entry->cm_key_storage_location != NULL) && (entry->cm_key_nickname != NULL)) { return cm_keyiread_n_start(entry); } else { return NULL; } break; #endif } return NULL; } /* Check if something changed, for example we finished reading the key info. */ int cm_keyiread_ready(struct cm_keyiread_state *state) { struct cm_keyiread_state_pvt *pvt; pvt = (struct cm_keyiread_state_pvt *) state; return pvt->ready(state); } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_keyiread_get_fd(struct cm_keyiread_state *state) { struct cm_keyiread_state_pvt *pvt; pvt = (struct cm_keyiread_state_pvt *) state; return pvt->get_fd(state); } /* Check if we finished reading the key information. */ int cm_keyiread_finished_reading(struct cm_keyiread_state *state) { struct cm_keyiread_state_pvt *pvt; pvt = (struct cm_keyiread_state_pvt *) state; return pvt->finished_reading(state); } /* Check if we need a PIN (or a new PIN) in order to access the key info. */ int cm_keyiread_need_pin(struct cm_keyiread_state *state) { struct cm_keyiread_state_pvt *pvt; pvt = (struct cm_keyiread_state_pvt *) state; return pvt->need_pin(state); } /* Check if we need a token to be present in order to access the key info. */ int cm_keyiread_need_token(struct cm_keyiread_state *state) { struct cm_keyiread_state_pvt *pvt; pvt = (struct cm_keyiread_state_pvt *) state; return pvt->need_token(state); } /* Clean up after reading the key info. */ void cm_keyiread_done(struct cm_keyiread_state *state) { struct cm_keyiread_state_pvt *pvt; pvt = (struct cm_keyiread_state_pvt *) state; pvt->done(state); } /* Parse what we know about this key from a buffer. */ void cm_keyiread_read_data_from_buffer(struct cm_store_entry *entry, const char *p) { const char *q; int size = 0; enum cm_key_algorithm alg; /* Break out the algorithm. */ q = p + strcspn(p, "/"); if (((q - p) == strlen("RSA")) && (strncasecmp(p, "RSA", 3) == 0)) { alg = cm_key_rsa; #ifdef CM_ENABLE_DSA } else if (((q - p) == strlen("DSA")) && (strncasecmp(p, "DSA", 3) == 0)) { alg = cm_key_dsa; #endif #ifdef CM_ENABLE_EC } else if (((q - p) == strlen("EC")) && (strncasecmp(p, "EC", 2) == 0)) { alg = cm_key_ecdsa; #endif } else { alg = cm_key_unspecified; } if (alg != cm_key_unspecified) { p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (p != q) { size = atoi(p); if (size > 0) { entry->cm_key_type.cm_key_algorithm = alg; entry->cm_key_type.cm_key_size = size; } p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (p != q) { talloc_free(entry->cm_key_pubkey_info); entry->cm_key_pubkey_info = talloc_strndup(entry, p, q - p); } p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (p != q) { talloc_free(entry->cm_key_pubkey); entry->cm_key_pubkey = talloc_strndup(entry, p, q - p); } talloc_free(entry->cm_key_token); entry->cm_key_token = NULL; if (strchr("\r\n", *q) == NULL) { p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (p != q) { entry->cm_key_token = talloc_strndup(entry, p, q - p); } } } } /* Break out the algorithm. */ p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (((q - p) == strlen("RSA")) && (strncasecmp(p, "RSA", 3) == 0)) { alg = cm_key_rsa; #ifdef CM_ENABLE_DSA } else if (((q - p) == strlen("DSA")) && (strncasecmp(p, "DSA", 3) == 0)) { alg = cm_key_dsa; #endif #ifdef CM_ENABLE_EC } else if (((q - p) == strlen("EC")) && (strncasecmp(p, "EC", 2) == 0)) { alg = cm_key_ecdsa; #endif } else { alg = cm_key_unspecified; } if (alg != cm_key_unspecified) { p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (p != q) { size = atoi(p); if (size > 0) { entry->cm_key_next_type.cm_key_algorithm = alg; entry->cm_key_next_type.cm_key_size = size; } p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (p != q) { talloc_free(entry->cm_key_next_pubkey_info); entry->cm_key_next_pubkey_info = talloc_strndup(entry, p, q - p); } p = q + strspn(q, "/\r\n"); q = p + strcspn(p, "/\r\n"); if (p != q) { talloc_free(entry->cm_key_next_pubkey); entry->cm_key_next_pubkey = talloc_strndup(entry, p, q - p); } } } } certmonger-0.78.6/src/keygen-n.c0000664000175000017500000006124212645513264013371 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "keygen.h" #include "keygen-int.h" #include "log.h" #include "pin.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-n.h" #define PRIVKEY_LIST_EMPTY(l) PRIVKEY_LIST_END(PRIVKEY_LIST_HEAD(l), l) struct cm_keygen_state { struct cm_keygen_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; struct cm_keygen_n_settings { unsigned int readwrite:1; }; #ifdef CM_ENABLE_DSA static int pqg_size(int key_size) { if (key_size < 512) { key_size = 512; } if (key_size < 1024) { key_size = howmany(key_size, 64) * 64; } if (key_size > 1024) { key_size = howmany(key_size, 1024) * 1024; } if (key_size > 3072) { key_size = 3072; } return key_size; } #endif static char * make_nickname(const char *prefix, char **marker) { unsigned char suffix[6]; char *ret; size_t l; if (PK11_GenerateRandom(suffix, sizeof(suffix)) != SECSuccess) { /* Try again sometime later. */ cm_log(1, "Error generating suffix: %s.\n", PR_ErrorToName(PORT_GetError())); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } *marker = cm_store_base64_from_bin(NULL, suffix, sizeof(suffix)); if (*marker == NULL) { /* Try again sometime later. */ cm_log(1, "Error generating suffix.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } while ((l = strcspn(*marker, "+/")) != strlen(*marker)) { switch ((*marker)[l]) { case '+': (*marker)[l] = '='; break; case '/': (*marker)[l] = '_'; break; } } ret = util_build_next_nickname(prefix, *marker); return ret; } static int cm_keygen_n_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { FILE *status; enum cm_key_algorithm cm_key_algorithm; int cm_key_size, cm_requested_key_size, readwrite, ec; CK_MECHANISM_TYPE mech, pmech; SECStatus error; NSSInitContext *ctx; PK11SlotList *slotlist; PK11SlotListElement *sle; PK11SlotInfo *slot = NULL; PK11RSAGenParams rsa_params; #ifdef CM_ENABLE_DSA PQGParams *pqg_params = NULL; PQGVerify *pqg_verify; SECStatus pqg_ok; SECKEYPQGParams dsa_params; #endif SECItem *spki; CERTSubjectPublicKeyInfo *pubkeyinfo; void *params; #ifdef CM_ENABLE_EC SECOidData *ecurve; SECItem ec_params; #endif SECKEYPrivateKey *privkey, *delkey, *ckey; SECKEYPrivateKeyList *privkeys; SECKEYPrivateKeyListNode *node; SECKEYPublicKey *pubkey; CERTCertList *certs; CERTCertListNode *cnode; CERTCertificate *cert; const char *es, *token, *keyname, *reason; char *nickname, *marker = "", *markertmp; char *pin, *pubhex, *pubihex; struct cm_keygen_n_settings *settings; struct cm_pin_cb_data cb_data; int retry, generated_size; status = fdopen(fd, "w"); if (status == NULL) { _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Start up NSS and open the database. */ settings = userdata; readwrite = settings->readwrite; errno = 0; ctx = NSS_InitContext(entry->cm_key_storage_location, NULL, NULL, NULL, NULL, (readwrite ? 0 : NSS_INIT_READONLY) | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); ec = PORT_GetError(); if (ctx == NULL) { if ((ec == SEC_ERROR_BAD_DATABASE) && readwrite) { switch (errno) { case EACCES: case EPERM: ec = PR_NO_ACCESS_RIGHTS_ERROR; break; default: /* Sigh. Not a lot of detail. Check if we * succeed in read-only mode, which we'll * interpret as lack of write permissions. */ ctx = NSS_InitContext(entry->cm_key_storage_location, NULL, NULL, NULL, NULL, NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (ctx != NULL) { error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down " "NSS.\n"); } ctx = NULL; ec = PR_NO_ACCESS_RIGHTS_ERROR; } break; } } if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { fprintf(status, "Error initializing database " "'%s': %s.\n", entry->cm_key_storage_location, es); cm_log(1, "Error initializing database '%s': %s.\n", entry->cm_key_storage_location, es); } else { fprintf(status, "Error initializing database '%s'.\n", entry->cm_key_storage_location); cm_log(1, "Error initializing database '%s'.\n", entry->cm_key_storage_location); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: _exit(CM_SUB_STATUS_ERROR_INITIALIZING); break; } } reason = util_n_fips_hook(); if (reason != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", reason); _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } /* Handle the key size. */ cm_key_algorithm = entry->cm_key_type.cm_key_gen_algorithm; if (cm_key_algorithm == cm_key_unspecified) { cm_key_algorithm = CM_DEFAULT_PUBKEY_TYPE; } cm_requested_key_size = entry->cm_key_type.cm_key_gen_size; if (cm_requested_key_size <= 0) { cm_requested_key_size = CM_DEFAULT_PUBKEY_SIZE; } /* Convert our key type to a mechanism. */ switch (cm_key_algorithm) { case cm_key_rsa: mech = CKM_RSA_PKCS_KEY_PAIR_GEN; pmech = CKM_RSA_PKCS_KEY_PAIR_GEN; break; #ifdef CM_ENABLE_DSA case cm_key_dsa: cm_requested_key_size = pqg_size(cm_requested_key_size); mech = CKM_DSA_KEY_PAIR_GEN; pmech = CKM_DSA_PARAMETER_GEN; break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: mech = CKM_EC_KEY_PAIR_GEN; pmech = CKM_EC_KEY_PAIR_GEN; break; #endif default: fprintf(status, "Unknown or unsupported key type.\n"); cm_log(1, "Unknown or unsupported key type.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); break; } /* Find the tokens that we might use for key generation. */ slotlist = PK11_GetAllTokens(mech, PR_TRUE, PR_FALSE, NULL); if (slotlist == NULL) { fprintf(status, "Error locating token for key generation.\n"); cm_log(1, "Error locating token for key generation.\n"); _exit(CM_SUB_STATUS_ERROR_NO_TOKEN); } /* Walk the list looking for the requested slot, or the first one if * none was requested. */ slot = NULL; for (sle = slotlist->head; ((sle != NULL) && (sle->slot != NULL)); sle = sle->next) { if (PK11_IsInternal(sle->slot) && !PK11_IsInternalKeySlot(sle->slot)) { cm_log(3, "Skipping NSS internal slot (%s).\n", PK11_GetTokenName(sle->slot)); goto next_slot; } token = PK11_GetTokenName(sle->slot); if (token != NULL) { cm_log(3, "Found token '%s'.\n", token); } else { cm_log(3, "Found unnamed token.\n"); } if ((entry->cm_key_token == NULL) || (strlen(entry->cm_key_token) == 0) || ((token != NULL) && (strcmp(entry->cm_key_token, token) == 0))) { slot = sle->slot; break; } next_slot: if (sle == slotlist->tail) { break; } } if (slot == NULL) { fprintf(status, "Error locating token for key generation.\n"); cm_log(1, "Error locating token for key generation.\n"); _exit(CM_SUB_STATUS_ERROR_NO_TOKEN); } /* Be ready to count our uses of a PIN. */ memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; pin = NULL; /* If we're supposed to be using a PIN, and we're offered a chance to * set one, do it now. */ if (readwrite) { if (PK11_NeedUserInit(slot)) { if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading PIN to assign " "to storage slot, skipping.\n"); PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_AUTH); } PK11_InitPin(slot, NULL, pin ? pin : ""); ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (PK11_NeedUserInit(slot)) { if (es != NULL) { cm_log(1, "Key generation slot still " "needs user PIN to be set: " "%s.\n", es); } else { cm_log(1, "Key generation slot still " "needs user PIN to be set.\n"); } PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: _exit(CM_SUB_STATUS_ERROR_AUTH); break; } } /* We're authenticated now, so count this as a use of * the PIN. */ if ((pin != NULL) && (strlen(pin) > 0)) { cb_data.n_attempts++; } } } /* Now log in, if we have to. */ if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading PIN for key store, " "failing to generate CSR.\n"); PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_AUTH); } PK11_SetPasswordFunc(&cm_pin_read_for_key_nss_cb); error = PK11_Authenticate(slot, PR_TRUE, &cb_data); ec = PORT_GetError(); if (error != SECSuccess) { if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error authenticating to key store: %s.\n", es); } else { cm_log(1, "Error authenticating to key store.\n"); } PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_AUTH); } if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to auth to key " "store, though one was provided. " "Treating this as an error.\n"); PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_ERROR_AUTH); } /* Select an initial key size. */ if (cm_requested_key_size == 0) { cm_requested_key_size = CM_DEFAULT_PUBKEY_SIZE; } cm_key_size = cm_requested_key_size; retry_gen: /* Initialize the parameters. */ switch (cm_key_algorithm) { case cm_key_rsa: /* no parameters */ break; #ifdef CM_ENABLE_DSA case cm_key_dsa: cm_log(1, "Generating domain parameters.\n"); pqg_ok = SECFailure; cm_key_size = pqg_size(cm_key_size); retry = 0; while (pqg_ok == SECFailure) { pqg_params = NULL; pqg_verify = NULL; while (PK11_PQG_ParamGenV2(cm_key_size, 0, 64, &pqg_params, &pqg_verify) != SECSuccess) { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error generating params: %s.\n", es); } else { cm_log(1, "Error generating params.\n"); } if ((ec != SEC_ERROR_BAD_DATA) || (++retry > 10)) { PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_INTERNAL_ERROR); } cm_log(1, "Trying again.\n"); pqg_params = NULL; pqg_verify = NULL; goto retry_gen; } if (PK11_PQG_VerifyParams(pqg_params, pqg_verify, &pqg_ok) != SECSuccess) { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error verifying params: %s.\n", es); } else { cm_log(1, "Error verifying params.\n"); } if (++retry > 10) { PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_SUB_STATUS_INTERNAL_ERROR); } } generated_size = pqg_params->prime.len * 8; if ((generated_size < cm_key_size) && (generated_size > (cm_key_size * 9 / 10))) { cm_log(1, "Params are a bit small (%d vs %d). Retrying.\n", pqg_params->prime.len * 8, cm_key_size); goto retry_gen; } if (pqg_ok == SECFailure) { cm_log(1, "Params are bad. Retrying.\n"); } } break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: /* no parameters to generate */ break; #endif default: params = NULL; break; } /* Initialize the key generation parameters. */ switch (cm_key_algorithm) { case cm_key_rsa: memset(&rsa_params, 0, sizeof(rsa_params)); rsa_params.keySizeInBits = cm_key_size; rsa_params.pe = CM_DEFAULT_RSA_EXPONENT; params = &rsa_params; break; #ifdef CM_ENABLE_DSA case cm_key_dsa: memset(&dsa_params, 0, sizeof(dsa_params)); PK11_PQG_GetPrimeFromParams(pqg_params, &dsa_params.prime); PK11_PQG_GetSubPrimeFromParams(pqg_params, &dsa_params.subPrime); PK11_PQG_GetBaseFromParams(pqg_params, &dsa_params.base); params = &dsa_params; break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: memset(&ec_params, 0, sizeof(ec_params)); if (cm_key_size <= 256) ecurve = SECOID_FindOIDByTag(SEC_OID_ANSIX962_EC_PRIME256V1); else if (cm_key_size <= 384) ecurve = SECOID_FindOIDByTag(SEC_OID_SECG_EC_SECP384R1); else ecurve = SECOID_FindOIDByTag(SEC_OID_SECG_EC_SECP521R1); SEC_ASN1EncodeItem(NULL, &ec_params, &ecurve->oid, SEC_ObjectIDTemplate); params = &ec_params; break; #endif default: params = NULL; break; } /* Generate the key pair. */ cm_log(1, "Generating key pair.\n"); pubkey = NULL; privkey = PK11_GenerateKeyPair(slot, mech, params, &pubkey, PR_TRUE, PR_TRUE, NULL); /* Retry with the optimum key size. */ if (privkey == NULL) { cm_key_size = PK11_GetBestKeyLength(slot, pmech); if (cm_key_size != cm_requested_key_size) { cm_log(1, "Overriding requested key size of %d with %d.\n", cm_requested_key_size, cm_key_size); goto retry_gen; } ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error generating key pair: %s.\n", es); } else { cm_log(1, "Error generating key pair.\n"); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: _exit(CM_SUB_STATUS_INTERNAL_ERROR); break; } } /* If we're just a bit(s?) short (as opposed to cut off at an arbitrary * limit that's less than 90% of what we asked for), try again. */ generated_size = SECKEY_PublicKeyStrengthInBits(pubkey); if ((generated_size < cm_key_size) && (generated_size > (cm_key_size * 9 / 10))) { cm_log(1, "Ended up with %d instead of %d. Retrying.\n", SECKEY_PublicKeyStrengthInBits(pubkey), cm_key_size); goto retry_gen; } /* Check for keys with the desired name, selecting a new name if * there's already one with the desired name. */ nickname = strdup(entry->cm_key_nickname); if (nickname == NULL) { cm_log(1, "Out of memory.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } privkeys = PK11_ListPrivKeysInSlot(slot, nickname, NULL); while ((privkeys != NULL) && !PRIVKEY_LIST_EMPTY(privkeys)) { markertmp = NULL; for (node = PRIVKEY_LIST_HEAD(privkeys); !PRIVKEY_LIST_EMPTY(privkeys) && !PRIVKEY_LIST_END(node, privkeys); node = PRIVKEY_LIST_NEXT(node)) { keyname = PK11_GetPrivateKeyNickname(node->key); if ((keyname != NULL) && (strcmp(keyname, nickname) == 0)) { /* We're going to need to use a different nickname. */ cm_log(1, "Key already exists with nickname \"%s\".\n", nickname); free(nickname); nickname = make_nickname(entry->cm_key_nickname, &markertmp); break; } } SECKEY_DestroyPrivateKeyList(privkeys); if (markertmp != NULL) { /* If we found at least one match, scan again for the new nickname. */ privkeys = PK11_ListPrivKeysInSlot(slot, nickname, NULL); marker = markertmp; } else { cm_log(1, "Nickname \"%s\" appears to be unused.\n", nickname); privkeys = NULL; } } if ((marker == NULL) || (strlen(marker) == 0)) { /* Look harder. Walk the list of certificates in the token, * looking at each one to see if it matches the specified * nickname. */ markertmp = NULL; certs = PK11_ListCertsInSlot(slot); while (certs != NULL) { cert = NULL; for (cnode = CERT_LIST_HEAD(certs); !CERT_LIST_EMPTY(certs) && !CERT_LIST_END(cnode, certs); cnode = CERT_LIST_NEXT(cnode)) { cert = cnode->cert; if ((nickname != NULL) && (strcmp(cert->nickname, nickname) == 0)) { cm_log(3, "Located a certificate with " "the desired nickname (\"%s\").\n", nickname); ckey = PK11_FindPrivateKeyFromCert(slot, cert, NULL); if (ckey != NULL) { cm_log(3, "And we found " "its private key.\n"); SECKEY_DestroyPrivateKey(ckey); } else { cm_log(3, "But we didn't find " "its private key.\n"); } break; } cert = NULL; } if (cert == NULL) { cm_log(1, "Nickname \"%s\" appears to be unused.\n", nickname); CERT_DestroyCertList(certs); certs = NULL; } else { free(nickname); nickname = make_nickname(entry->cm_key_nickname, &markertmp); marker = markertmp; } } } /* Attach the specified nickname to the key. */ error = PK11_SetPrivateKeyNickname(privkey, nickname); if (error != SECSuccess) { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error setting nickname \"%s\" on private key: " "%s.\n", nickname, es); } else { cm_log(1, "Error setting nickname \"%s\" on private key.\n", nickname); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: _exit(CM_SUB_STATUS_INTERNAL_ERROR); break; } } cm_log(1, "Set nickname \"%s\" on private key.\n", nickname); /* Encode the public key to hex, and print it. */ spki = SECKEY_EncodeDERSubjectPublicKeyInfo(pubkey); if (spki != NULL) { pubihex = cm_store_hex_from_bin(NULL, spki->data, spki->len); SECITEM_FreeItem(spki, PR_TRUE); } else { pubihex = ""; } pubkeyinfo = SECKEY_CreateSubjectPublicKeyInfo(pubkey); if (pubkeyinfo != NULL) { pubhex = cm_store_hex_from_bin(NULL, pubkeyinfo->subjectPublicKey.data, pubkeyinfo->subjectPublicKey.len / 8); SECKEY_DestroySubjectPublicKeyInfo(pubkeyinfo); } else { pubhex = ""; } fprintf(status, "%s\n%s\n%s\n", pubihex, pubhex, marker ? marker : ""); SECKEY_DestroyPrivateKey(privkey); SECKEY_DestroyPublicKey(pubkey); /* Try to remove any keys with old candidate names. */ if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { free(nickname); nickname = util_build_next_nickname(entry->cm_key_nickname, entry->cm_key_next_marker); privkeys = PK11_ListPrivKeysInSlot(slot, nickname, NULL); while ((privkeys != NULL) && !PRIVKEY_LIST_EMPTY(privkeys)) { delkey = NULL; for (node = PRIVKEY_LIST_HEAD(privkeys); !PRIVKEY_LIST_EMPTY(privkeys) && !PRIVKEY_LIST_END(node, privkeys); node = PRIVKEY_LIST_NEXT(node)) { keyname = PK11_GetPrivateKeyNickname(node->key); if ((keyname != NULL) && (nickname != NULL) && (strcmp(keyname, nickname) == 0)) { /* Avoid stealing the key reference from the * list. */ delkey = SECKEY_CopyPrivateKey(node->key); break; } } SECKEY_DestroyPrivateKeyList(privkeys); if (delkey != NULL) { PK11_DeleteTokenPrivateKey(delkey, PR_FALSE); cm_log(1, "Removing key with nickname \"%s\".\n", nickname); /* If we found at least one key before, scan again. */ privkeys = PK11_ListPrivKeysInSlot(slot, nickname, NULL); } else { privkeys = NULL; } } } PK11_FreeSlotList(slotlist); error = NSS_ShutdownContext(ctx); free(nickname); util_set_db_entry_key_owner(entry->cm_key_storage_location, entry); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); return 0; } /* Check if the keypair is ready. */ static int cm_keygen_n_ready(struct cm_keygen_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_keygen_n_get_fd(struct cm_keygen_state *state) { return cm_subproc_get_fd(state->subproc); } /* Tell us if the keypair was saved to the location specified in the entry. */ static int cm_keygen_n_saved_keypair(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == 0)) { return 0; } return -1; } /* Tell us if we don't have permissions. */ static int cm_keygen_n_need_perms(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_PERMS)) { return 0; } return -1; } /* Tell us if we need a new/correct PIN to use the key store. */ static int cm_keygen_n_need_pin(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to generate the key. */ static int cm_keygen_n_need_token(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Clean up after key generation. */ static void cm_keygen_n_done(struct cm_keygen_state *state) { const char *output, *p, *q; char *pubkey_info, *pubkey, *marker = NULL; int len; if (state->subproc != NULL) { output = cm_subproc_get_msg(state->subproc, NULL); if (output != NULL) { p = output; len = strcspn(output, "\r\n"); pubkey_info = talloc_strndup(state->entry, p, len); q = p + len; p = q + strspn(q, "\r\n"); len = strcspn(p, "\r\n"); pubkey = talloc_strndup(state->entry, p, len); q = p + len; p = q + strspn(q, "\r\n"); len = strcspn(p, "\r\n"); if (len > 0) { marker = talloc_strndup(state->entry, p, len); } if ((marker != NULL) && (strlen(marker) > 0)) { state->entry->cm_key_next_pubkey_info = pubkey_info; state->entry->cm_key_next_pubkey = pubkey; state->entry->cm_key_next_marker = marker; state->entry->cm_key_next_generated_date = time(NULL); state->entry->cm_key_next_requested_count = 0; } else { state->entry->cm_key_next_pubkey_info = NULL; state->entry->cm_key_next_pubkey = NULL; state->entry->cm_key_next_marker = NULL; state->entry->cm_key_next_generated_date = 0; state->entry->cm_key_pubkey_info = pubkey_info; state->entry->cm_key_pubkey = pubkey; state->entry->cm_key_generated_date = time(NULL); state->entry->cm_key_requested_count = 0; state->entry->cm_key_issued_count = 0; } } cm_subproc_done(state->subproc); } talloc_free(state); } /* Start keypair generation using parameters stored in the entry. */ struct cm_keygen_state * cm_keygen_n_start(struct cm_store_entry *entry) { struct cm_keygen_state *state; struct cm_keygen_n_settings settings = { .readwrite = 1, }; if (entry->cm_key_storage_type != cm_key_storage_nssdb) { return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = cm_keygen_n_ready; state->pvt.get_fd = cm_keygen_n_get_fd; state->pvt.saved_keypair = cm_keygen_n_saved_keypair; state->pvt.need_perms = cm_keygen_n_need_perms; state->pvt.need_pin = cm_keygen_n_need_pin; state->pvt.need_token = cm_keygen_n_need_token; state->pvt.done = cm_keygen_n_done; state->entry = entry; state->subproc = cm_subproc_start(cm_keygen_n_main, state, NULL, entry, &settings); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/keygen-int.h0000664000175000017500000000307312645513264013731 00000000000000/* * Copyright (C) 2009,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmkeygenint_h #define cmkeygenint_h struct cm_keygen_state_pvt { /* Check if the keypair is ready. */ int (*ready)(struct cm_keygen_state *state); /* Get a selectable-for-read descriptor which will either have data or * be closed when status changes. */ int (*get_fd)(struct cm_keygen_state *state); /* Tell us if the keypair was saved to the right location. */ int (*saved_keypair)(struct cm_keygen_state *state); /* Tell us if we need filesystem permissions to write the key. */ int (*need_perms)(struct cm_keygen_state *state); /* Tell us if we need a PIN (or a new PIN) to access the key store. */ int (*need_pin)(struct cm_keygen_state *state); /* Tell us if we need a token to be inserted to access the key store. */ int (*need_token)(struct cm_keygen_state *state); /* Clean up after key generation. */ void (*done)(struct cm_keygen_state *state); }; #endif certmonger-0.78.6/src/keygen.h0000664000175000017500000000363612645513264013146 00000000000000/* * Copyright (C) 2009,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmkeygen_h #define cmkeygen_h struct cm_keygen_state; struct cm_store_entry; /* Start keypair generation using parameters stored in the entry. */ struct cm_keygen_state *cm_keygen_start(struct cm_store_entry *entry); struct cm_keygen_state *cm_keygen_n_start(struct cm_store_entry *entry); struct cm_keygen_state *cm_keygen_o_start(struct cm_store_entry *entry); /* Check if the keypair is ready. */ int cm_keygen_ready(struct cm_keygen_state *state); /* Get a selectable-for-read descriptor which will either have data or be * closed when status changes. */ int cm_keygen_get_fd(struct cm_keygen_state *state); /* Check if we need a PIN (or a new PIN) to generate a key pair. */ int cm_keygen_need_pin(struct cm_keygen_state *state); /* Check if we need the right token to be present to generate a key pair. */ int cm_keygen_need_token(struct cm_keygen_state *state); /* Tell us if the keypair was saved to the location specified in the entry. */ int cm_keygen_saved_keypair(struct cm_keygen_state *state); /* Tell us if we need filesystem permissions to write the key. */ int cm_keygen_need_perms(struct cm_keygen_state *state); /* Clean up after key generation. */ void cm_keygen_done(struct cm_keygen_state *state); #endif certmonger-0.78.6/src/keygen.c0000664000175000017500000000550712645513264013140 00000000000000/* * Copyright (C) 2009,2010,2011,2013 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include "keygen.h" #include "keygen-int.h" #include "log.h" #include "store-int.h" struct cm_keygen_state * cm_keygen_start(struct cm_store_entry *entry) { switch (entry->cm_key_storage_type) { case cm_key_storage_none: cm_log(1, "Can't generate key for %s('%s') without knowing " "where to store it.\n", entry->cm_busname, entry->cm_nickname); break; #ifdef HAVE_OPENSSL case cm_key_storage_file: return cm_keygen_o_start(entry); break; #endif #ifdef HAVE_NSS case cm_key_storage_nssdb: return cm_keygen_n_start(entry); break; #endif } return NULL; } /* Check if the keypair is ready. */ int cm_keygen_ready(struct cm_keygen_state *state) { struct cm_keygen_state_pvt *pvt = (struct cm_keygen_state_pvt *) state; return pvt->ready(state); } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_keygen_get_fd(struct cm_keygen_state *state) { struct cm_keygen_state_pvt *pvt = (struct cm_keygen_state_pvt *) state; return pvt->get_fd(state); } /* Tell us if the keypair was saved to the location specified in the entry. */ int cm_keygen_saved_keypair(struct cm_keygen_state *state) { struct cm_keygen_state_pvt *pvt = (struct cm_keygen_state_pvt *) state; return pvt->saved_keypair(state); } /* Tell us if we need filesystem permissions to write the key. */ int cm_keygen_need_perms(struct cm_keygen_state *state) { struct cm_keygen_state_pvt *pvt = (struct cm_keygen_state_pvt *) state; return pvt->need_perms(state); } /* Tell us if we need a PIN (or a new PIN) to access the key store. */ int cm_keygen_need_pin(struct cm_keygen_state *state) { struct cm_keygen_state_pvt *pvt = (struct cm_keygen_state_pvt *) state; return pvt->need_pin(state); } /* Tell us if we need a token to be inserted to access the key store. */ int cm_keygen_need_token(struct cm_keygen_state *state) { struct cm_keygen_state_pvt *pvt = (struct cm_keygen_state_pvt *) state; return pvt->need_token(state); } /* Clean up after key generation. */ void cm_keygen_done(struct cm_keygen_state *state) { struct cm_keygen_state_pvt *pvt = (struct cm_keygen_state_pvt *) state; pvt->done(state); } certmonger-0.78.6/src/json.h0000664000175000017500000000563712645513264012640 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmjson_h #define cmjson_h struct cm_json; enum cm_json_type { cm_json_type_undefined = 0, cm_json_type_null, cm_json_type_string, cm_json_type_numberl, cm_json_type_numberd, cm_json_type_boolean, cm_json_type_object, cm_json_type_array, }; #define CM_JSON_EXPECTED_KEY_OR_CLOSE -2 #define CM_JSON_EXPECTED_KEY -3 #define CM_JSON_EXPECTED_COLON -4 #define CM_JSON_EXPECTED_COMMA_OR_CLOSE -5 #define CM_JSON_EXPECTED_EXPRESSION_OR_CLOSE -6 #define CM_JSON_EXPECTED_EXPRESSION -7 int cm_json_decode(void *parent, const char *encoded, ssize_t length, struct cm_json **json, const char **next); const char *cm_json_decode_strerror(int error); struct cm_json *cm_json_find(struct cm_json *json, const char *path); char *cm_json_encode(void *parent, struct cm_json *json); enum cm_json_type cm_json_type(struct cm_json *json); ssize_t cm_json_n_keys(struct cm_json *json); const char *cm_json_nth_key(struct cm_json *json, size_t n); struct cm_json *cm_json_get(struct cm_json *json, const char *key); struct cm_json *cm_json_nth_val(struct cm_json *json, size_t n); int cm_json_set(struct cm_json *json, const char *key, struct cm_json *value); ssize_t cm_json_array_size(struct cm_json *json); struct cm_json *cm_json_n(struct cm_json *json, size_t n); int cm_json_append(struct cm_json *json, struct cm_json *value); int cm_json_set_n(struct cm_json *json, size_t n, struct cm_json *value); const char *cm_json_string(struct cm_json *json, ssize_t *length); long double cm_json_numberd(struct cm_json *json); long long cm_json_numberl(struct cm_json *json); unsigned char cm_json_boolean(struct cm_json *json); struct cm_json *cm_json_new_null(void *parent); struct cm_json *cm_json_new_string(void *parent, const char *string, ssize_t length); struct cm_json *cm_json_new_numberl(void *parent, long long number); struct cm_json *cm_json_new_numberd(void *parent, long double number); struct cm_json *cm_json_new_boolean(void *parent, unsigned char value); struct cm_json *cm_json_new_object(void *parent); struct cm_json *cm_json_new_array(void *parent); int cm_json_utf8_to_point(const char *p, uint32_t *point); int cm_json_point_to_utf8_length(uint32_t point); int cm_json_point_to_utf8(uint32_t point, char *out, ssize_t max); #endif certmonger-0.78.6/src/json.c0000664000175000017500000005430112645513264012623 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include "json.h" struct cm_json { enum cm_json_type type; union { struct { char *s; ssize_t l; } s; long long l; long double d; unsigned char b; struct { size_t n; struct cm_json_object_rec { char *key; struct cm_json *val; } *o; } o; struct { size_t n; struct cm_json **a; } a; }; }; enum cm_json_type cm_json_type(struct cm_json *json) { if (json == NULL) { return cm_json_type_undefined; } return json->type; } struct cm_json * cm_json_new_null(void *parent) { struct cm_json *json; json = talloc_zero(parent, struct cm_json); if (json != NULL) { json->type = cm_json_type_null; } return json; } struct cm_json * cm_json_new_string(void *parent, const char *string, ssize_t length) { struct cm_json *json; json = talloc_zero(parent, struct cm_json); if (json != NULL) { json->type = cm_json_type_string; if (length < 0) { json->s.s = talloc_strdup(json, string); json->s.l = strlen(json->s.s); } else { json->s.s = talloc_size(json, length + 1); if (json->s.s != NULL) { memcpy(json->s.s, string, length); json->s.s[length] = '\0'; } json->s.l = length; } if (json->s.s == NULL) { talloc_free(json); json = NULL; } } return json; } struct cm_json * cm_json_new_numberl(void *parent, long long number) { struct cm_json *json; json = talloc_zero(parent, struct cm_json); if (json != NULL) { json->type = cm_json_type_numberl; json->l = number; } return json; } struct cm_json * cm_json_new_numberd(void *parent, long double number) { struct cm_json *json; json = talloc_zero(parent, struct cm_json); if (json != NULL) { json->type = cm_json_type_numberd; json->d = number; } return json; } struct cm_json * cm_json_new_boolean(void *parent, unsigned char value) { struct cm_json *json; json = talloc_zero(parent, struct cm_json); if (json != NULL) { json->type = cm_json_type_boolean; json->b = value; } return json; } struct cm_json * cm_json_new_object(void *parent) { struct cm_json *json; json = talloc_zero(parent, struct cm_json); if (json != NULL) { json->type = cm_json_type_object; json->o.n = 0; json->o.o = NULL; } return json; } struct cm_json * cm_json_new_array(void *parent) { struct cm_json *json; json = talloc_zero(parent, struct cm_json); if (json != NULL) { json->type = cm_json_type_array; json->a.n = 0; json->a.a = NULL; } return json; } const char * cm_json_string(struct cm_json *json, ssize_t *length) { if (cm_json_type(json) != cm_json_type_string) { return NULL; } if (length != NULL) { *length = json->s.l; } return json->s.s; } long double cm_json_numberd(struct cm_json *json) { if (cm_json_type(json) != cm_json_type_numberd) { return -1; } return json->d; } long long cm_json_numberl(struct cm_json *json) { if (cm_json_type(json) != cm_json_type_numberl) { return -1; } return json->l; } unsigned char cm_json_boolean(struct cm_json *json) { if (cm_json_type(json) != cm_json_type_boolean) { return -1; } return json->b; } ssize_t cm_json_n_keys(struct cm_json *json) { if (cm_json_type(json) != cm_json_type_object) { return -1; } return json->o.n; } const char * cm_json_nth_key(struct cm_json *json, size_t n) { if ((cm_json_type(json) != cm_json_type_object) || (n >= json->o.n)) { return NULL; } return json->o.o[n].key; } struct cm_json * cm_json_nth_val(struct cm_json *json, size_t n) { if ((cm_json_type(json) != cm_json_type_object) || (n >= json->o.n)) { return NULL; } return json->o.o[n].val; } ssize_t cm_json_array_size(struct cm_json *json) { if (cm_json_type(json) != cm_json_type_array) { return -1; } return json->a.n; } struct cm_json * cm_json_n(struct cm_json *json, size_t n) { if ((cm_json_type(json) != cm_json_type_array) || (n >= json->a.n)) { return NULL; } return json->a.a[n]; } struct cm_json * cm_json_get(struct cm_json *json, const char *key) { ssize_t n; if ((cm_json_type(json) != cm_json_type_object) || (key == NULL)) { return NULL; } for (n = json->o.n - 1; n >= 0; n--) { if (strcmp(key, json->o.o[n].key) == 0) { return json->o.o[n].val; } } return NULL; } int cm_json_set(struct cm_json *json, const char *key, struct cm_json *value) { struct cm_json_object_rec *recs; ssize_t n; for (n = json->o.n - 1; n >= 0; n--) { if (strcmp(key, json->o.o[n].key) == 0) { if (value != NULL) { talloc_steal(json, value); } json->o.o[n].val = value; break; } } if (n < 0) { n = json->o.n; recs = talloc_realloc(json, json->o.o, struct cm_json_object_rec, n + 1); if (recs == NULL) { return ENOMEM; } json->o.o = recs; recs[n].key = talloc_strdup(json, key); if (recs[n].key == NULL) { return ENOMEM; } if (value != NULL) { talloc_steal(json, value); } recs[n].val = value; json->o.n = n + 1; } return 0; } int cm_json_append(struct cm_json *json, struct cm_json *value) { struct cm_json **recs; ssize_t n; n = json->a.n; recs = talloc_realloc(json, json->a.a, struct cm_json *, n + 1); if (recs == NULL) { return ENOMEM; } json->a.a = recs; talloc_steal(json, value); recs[n] = value; json->a.n = n + 1; return 0; } int cm_json_set_n(struct cm_json *json, size_t n, struct cm_json *value) { struct cm_json **recs; size_t size, i; if (json->a.n < n + 1) { size = n + 1; recs = talloc_realloc(json, json->a.a, struct cm_json *, size); if (recs == NULL) { return ENOMEM; } json->a.a = recs; for (i = json->a.n; i < n; i++) { json->a.a[i] = NULL; } json->a.n = size; } talloc_steal(json, value); json->a.a[n] = value; return 0; } int cm_json_utf8_to_point(const char *p, uint32_t *point) { const unsigned char *u; uint32_t ret; int count, i; unsigned char uc; u = (const unsigned char *)p; uc = *u; if ((uc & 0x80) == 0) { *point = uc; return 1; } if ((uc & 0x40) == 0) { /* sync error: not the first of a utf-8 multibyte character */ *point = 0; return -1; } count = 0; /* the number of bytes */ while ((uc & 0x80) != 0) { count++; uc <<= 1; } if (count > 6) { /* shouldn't happen - code point way too high */ *point = 0; return -5; } ret = *u & (0xff >> (count + 1)); for (i = 1; i < count; i++) { uc = u[i]; if (uc == '\0') { /* not enough input bytes */ *point = 0; return -3; } if ((uc & 0xc0) != 0x80) { /* sync error: not a subsequent byte */ *point = 0; return -2; } ret = (ret << 6) | (uc & 0x3f); } *point = ret; return count; } static char * cm_json_escape(void *parent, const char *s, ssize_t l) { char *ret, *q; const unsigned char *p; unsigned char uc; uint32_t uni; int esc = 0, n; if (l < 0) { l = strlen(s); } for (p = (const unsigned char *) s; (const char *) p < s + l; p++) { uc = *p; if ((uc < 0x20) || (uc == 0x22) || (uc == 0x5c) || (uc > 0x7f)) { esc++; } } ret = talloc_size(parent, l + esc * 12 + 2 + 1); if (ret != NULL) { q = ret; *q++ = '"'; for (p = (const unsigned char *) s; (const char *) p < s + l; p++) { uc = *p; switch (uc) { case '"': case '\\': *q++ = '\\'; *q++ = *p; break; case '\b': *q++ = '\\'; *q++ = 'b'; break; case '\f': *q++ = '\\'; *q++ = 'f'; break; case '\n': *q++ = '\\'; *q++ = 'n'; break; case '\r': *q++ = '\\'; *q++ = 'r'; break; case '\t': *q++ = '\\'; *q++ = 't'; break; default: if ((uc >= 0x20) && (uc < 0x80)) { *q++ = *p; } else { n = cm_json_utf8_to_point((const char *) p, &uni); if ((n < 0) || (n > 6)) { /* invalid */ talloc_free(ret); return NULL; } if (uni > 0x10ffff) { /* invalid */ talloc_free(ret); return NULL; } p += n; if ((uni < 0xd800) || ((uni >= 0xe000) && (uni <= 0xffff))) { sprintf(q, "\\u%04X", uni); q += 6; } else { uni -= 0x10000; sprintf(q, "\\u%04X\\u%04X", (uni >> 10) | 0xd800, (uni & 0x3ff) | 0xdc00); q += 12; } p--; } break; } } *q++ = '"'; *q = '\0'; } return ret; } char * cm_json_encode(void *parent, struct cm_json *json) { char *ret = NULL, *key, *val; size_t i; if (json == NULL) { return talloc_strdup(parent, ""); } switch (json->type) { case cm_json_type_undefined: break; case cm_json_type_null: ret = talloc_strdup(parent, "null"); break; case cm_json_type_string: ret = cm_json_escape(ret, json->s.s, json->s.l); break; case cm_json_type_numberl: ret = talloc_asprintf(parent, "%lld", json->l); break; case cm_json_type_numberd: ret = talloc_asprintf(parent, "%Lf", json->d); break; case cm_json_type_boolean: ret = talloc_strdup(parent, json->b ? "true" : "false"); break; case cm_json_type_object: ret = talloc_strdup(parent, "{"); for (i = 0; i < json->o.n; i++) { if ((json->o.o[i].key == NULL) || (json->o.o[i].val == NULL)) { continue; } key = cm_json_escape(ret, json->o.o[i].key, -1); val = cm_json_encode(ret, json->o.o[i].val); if ((key == NULL) || (val == NULL)) { talloc_free(ret); ret = NULL; break; } else { ret = talloc_asprintf_append(ret, "%s%s:%s", i > 0 ? "," : "", key, val); talloc_free(key); talloc_free(val); } } ret = talloc_strdup_append(ret, "}"); break; case cm_json_type_array: ret = talloc_strdup(parent, "["); for (i = 0; i < json->a.n; i++) { val = cm_json_encode(ret, json->a.a[i]); if (val == NULL) { talloc_free(ret); ret = NULL; break; } else { ret = talloc_asprintf_append(ret, "%s%s", i > 0 ? "," : "", val); talloc_free(val); } } ret = talloc_strdup_append(ret, "]"); break; } return ret; } int cm_json_point_to_utf8_length(uint32_t point) { int ret; if (point < 0x80) { return 1; } if ((point >= 0xd800) && (point <= 0xdfff)){ return -1; } ret = 2; point >>= 11; while (point != 0) { ret++; point >>= 5; } return ret; } int cm_json_point_to_utf8(uint32_t point, char *out, ssize_t max) { int count, i; unsigned char final; count = cm_json_point_to_utf8_length(point); if ((count < 0) || (count > max)) { return -1; } if (point < 0x80) { *out = (point & 0x7f); return 1; } final = 0x80; for (i = 0; i < count - 1; i++) { out[count - i - 1] = 0x80 | (point & 0x3f); point >>= 6; final = (final >> 1) | 0x80; } *out = final | (point & 0x3f); return count; } static char * cm_json_decode_string(void *parent, const char *s, ssize_t length, const char **next, ssize_t *out_length) { char *ret = NULL, *q, *end; const char *p, *hex, *hexchars = "00112233445566778899AaBbCcDdEeFf", *psave; int unesc = 0, i, closed = 0; uint32_t point, point2; if (out_length != NULL) { *out_length = 0; } *next = s; if (*s != '"') { return NULL; } s++; length--; for (p = s; p < s + length; p++) { switch (*p) { case '"': length = p - s; *next = s + length + 1; closed++; break; case '\\': psave = p; p++; switch (*p) { case 'u': p++; point = 0; for (i = 0; i < 4; i++) { hex = strchr(hexchars, *p); if (hex == NULL) { break; } point = (point << 4) | ((hex - hexchars) / 2); p++; } if ((point >= 0xd800) && (point < 0xdc000) && (p + 2 < s + length) && (p[0] == '\\') && (p[1] == 'u')) { psave = p; p += 2; point2 = 0; for (i = 0; (i < 4) && (p + 2 + i < s + length); i++) { hex = strchr(hexchars, *p); if (hex == NULL) { break; } point2 = (point2 << 4) | ((hex - hexchars) / 2); p++; } if ((point >= 0xd800) && (point < 0xdc00) && (point2 >= 0xdc00) && (point2 <= 0xdcff)) { point = ((point & 0x3ff) << 10) | (point2 & 0x3ff); point += 0x10000; } else { p = psave; } } i = cm_json_point_to_utf8_length(point); if (i < 0) { *next = psave; return NULL; } unesc += i; p--; break; default: unesc++; break; } break; default: unesc++; break; } } if (!closed) { *next = p; return NULL; } ret = talloc_size(parent, unesc + 1); end = ret + unesc + 1; for (p = s, q = ret; p < s + length; p++) { switch (*p) { case '\\': psave = p; p++; switch (*p) { case 'u': p++; point = 0; for (i = 0; i < 4; i++) { hex = strchr(hexchars, *p); if (hex == NULL) { break; } point = (point << 4) | ((hex - hexchars) / 2); p++; } if ((point >= 0xd800) && (point < 0xdc00) && (p + 2 < s + length) && (p[0] == '\\') && (p[1] == 'u')) { psave = p; p += 2; point2 = 0; for (i = 0; (i < 4) && (p + 2 + i < s + length); i++) { hex = strchr(hexchars, *p); if (hex == NULL) { break; } point2 = (point2 << 4) | ((hex - hexchars) / 2); p++; } if ((point >= 0xd800) && (point < 0xdc00) && (point2 >= 0xdc00) && (point2 <= 0xdcff)) { point = ((point & 0x3ff) << 10) | (point2 & 0x3ff); point += 0x10000; } else { p = psave; } } i = cm_json_point_to_utf8(point, q, end - q); if (i < 0) { *next = psave; return NULL; } q += i; p--; break; case 'b': *q++ = '\b'; break; case 'f': *q++ = '\f'; break; case 'n': *q++ = '\n'; break; case 'r': *q++ = '\r'; break; case 't': *q++ = '\t'; break; default: *q++ = *p; break; } break; default: *q++ = *p; break; } } *q = '\0'; if (out_length != NULL) { *out_length = q - ret; } return ret; } static long double my_strtold(const char *nptr, char **endptr) { #if HAVE_DECL_STRTOLD return strtold(nptr, endptr); #else return strtod(nptr, endptr); #endif } int cm_json_decode(void *parent, const char *encoded, ssize_t length, struct cm_json **json, const char **next) { int ret = 0; const char *p, *q, *nextp; char *s = NULL, *tmp; struct cm_json *agg = NULL, *sub = NULL; enum cm_json_type aggtype; ssize_t slength; enum {key, keyorclose, colon, commaorclose, expr, exprorclose} expect = expr; p = encoded; if (next == NULL) { next = &nextp; } *next = p; if (length == -1) { length = strlen(encoded); } aggtype = cm_json_type_undefined; *json = NULL; while ((p < encoded + length) && (*json == NULL)) { switch (*p) { case ' ': case '\t': case '\r': case '\n': p++; continue; break; case '[': switch (expect) { case key: case keyorclose: case colon: case commaorclose: goto done; break; case expr: case exprorclose: break; } if (aggtype != cm_json_type_undefined) { /* This is an array item in an aggregate. */ ret = cm_json_decode(parent, p, length - (p - encoded), &sub, &p); if (ret != 0) { goto done; } expect = commaorclose; } else { /* This level is an array. */ aggtype = cm_json_type_array; agg = cm_json_new_array(parent); p++; expect = exprorclose; } break; case ']': switch (expect) { case key: case colon: case expr: goto done; break; case keyorclose: case exprorclose: case commaorclose: break; } if (aggtype != cm_json_type_array) { /* Not expecting an array close. */ goto done; } if (sub != NULL) { ret = cm_json_append(agg, sub); sub = NULL; } *json = agg; p++; break; case '{': switch (expect) { case keyorclose: case key: case colon: case commaorclose: goto done; break; case exprorclose: case expr: break; } if (aggtype != cm_json_type_undefined) { /* This is an object item in an aggregate. */ ret = cm_json_decode(parent, p, length - (p - encoded), &sub, &p); if (ret != 0) { goto done; } expect = commaorclose; } else { /* This level is an object. */ aggtype = cm_json_type_object; agg = cm_json_new_object(parent); expect = keyorclose; p++; } break; case '}': switch (expect) { case key: case colon: case expr: goto done; break; case keyorclose: case exprorclose: case commaorclose: break; } if (aggtype != cm_json_type_object) { goto done; } if ((s != NULL) && (sub != NULL)) { ret = cm_json_set(agg, s, sub); } talloc_free(s); s = NULL; sub = NULL; *json = agg; p++; break; case ',': switch (expect) { case key: case colon: case expr: case keyorclose: case exprorclose: goto done; break; case commaorclose: break; } if (aggtype == cm_json_type_object) { if ((s == NULL) || (sub == NULL)) { goto done; } ret = cm_json_set(agg, s, sub); talloc_free(s); s = NULL; sub = NULL; expect = key; } else if (aggtype == cm_json_type_array) { if (sub == NULL) { goto done; } ret = cm_json_append(agg, sub); sub = NULL; expect = expr; } else { goto done; } p++; break; case ':': switch (expect) { case colon: break; case keyorclose: case key: case exprorclose: case expr: case commaorclose: goto done; break; } if (aggtype != cm_json_type_object) { goto done; } expect = expr; p++; break; case '"': switch (expect) { case colon: case commaorclose: goto done; break; case keyorclose: case key: case exprorclose: case expr: break; } if (aggtype == cm_json_type_undefined) { /* This level is a string. */ if (s != NULL) { goto done; } s = cm_json_decode_string(parent, p, length - (p - encoded), &p, &slength); if (s == NULL) { goto done; } *json = cm_json_new_string(parent, s, slength); talloc_free(s); s = NULL; } else { tmp = cm_json_decode_string(parent, p, length - (p - encoded), &p, &slength); if (tmp == NULL) { goto done; } if ((expect == key) || (expect == keyorclose)) { /* It's a key in an object. */ s = tmp; expect = colon; } else { /* It's a value in an object or array. */ sub = cm_json_new_string(parent, tmp, slength); talloc_free(tmp); tmp = NULL; expect = commaorclose; } } break; default: switch (expect) { case keyorclose: case key: case colon: case commaorclose: goto done; break; case exprorclose: case expr: break; } if (sub != NULL) { goto done; } if ((length - (p - encoded) >= 4) && (memcmp(p, "null", 4) == 0)) { sub = cm_json_new_null(parent); p += 4; } else if ((length - (p - encoded) >= 4) && (memcmp(p, "true", 4) == 0)) { sub = cm_json_new_boolean(parent, 1); p += 4; } else if ((length - (p - encoded) >= 5) && (memcmp(p, "false", 4) == 0)) { sub = cm_json_new_boolean(parent, 0); p += 5; } else if (strchr("0123456789+-", *p) != NULL) { q = p + 1; while ((q < encoded + length) && (strchr("0123456789+-Ee.", *q) != NULL)) { q++; } tmp = talloc_strndup(parent, p, q - p); if (tmp == NULL) { ret = ENOMEM; goto done; } if (strcspn(tmp, "Ee.") == strlen(tmp)) { sub = cm_json_new_numberl(parent, strtoll(tmp, NULL, 10)); } else { sub = cm_json_new_numberd(parent, my_strtold(tmp, NULL)); } talloc_free(tmp); if (sub == NULL) { ret = ENOMEM; goto done; } p = q; } else { /* Doesn't look like a valid token. */ goto done; } if (aggtype == cm_json_type_undefined) { /* This level is a simple item. */ *json = sub; } else { expect = commaorclose; } break; } } done: while ((p < encoded + length) && (strchr(" \t\r\n", *p) != NULL)) { p++; } *next = p; if ((*json == NULL) && (ret == 0)) { switch (expect) { case keyorclose: ret = CM_JSON_EXPECTED_KEY_OR_CLOSE; break; case key: ret = CM_JSON_EXPECTED_KEY; break; case colon: ret = CM_JSON_EXPECTED_COLON; break; case commaorclose: ret = CM_JSON_EXPECTED_COMMA_OR_CLOSE; break; case exprorclose: ret = CM_JSON_EXPECTED_EXPRESSION_OR_CLOSE; break; case expr: ret = CM_JSON_EXPECTED_EXPRESSION; break; } } return ret; } const char * cm_json_decode_strerror(int error) { switch (error) { case CM_JSON_EXPECTED_KEY_OR_CLOSE: return "expected an object key or close ('}')"; break; case CM_JSON_EXPECTED_KEY: return "expected an object key"; break; case CM_JSON_EXPECTED_COLON: return "expected a colon (':')"; break; case CM_JSON_EXPECTED_COMMA_OR_CLOSE: return "expected a comma or close ('}' or ']')"; break; case CM_JSON_EXPECTED_EXPRESSION_OR_CLOSE: return "expected an expression or close ('}' or ']')"; break; case CM_JSON_EXPECTED_EXPRESSION: return "expected an expression"; break; } return "unknown error"; } struct cm_json * cm_json_find(struct cm_json *json, const char *path) { const char *p, *q; char *component, *end; long l; struct cm_json *this = json; while ((*path != '\0') && (this != NULL)) { while (*path == '/') { path++; } p = path; q = p + strcspn(p, "/"); if (p == q) { break; } path = q; component = talloc_strndup(json, p, q - p); if (this->type == cm_json_type_object) { this = cm_json_get(this, component); talloc_free(component); continue; } if (this->type == cm_json_type_array) { end = component; l = strtol(component, &end, 10); if ((end == NULL) || ((*end != '/') && (*end != '\0')) || (l < 0)) { this = NULL; talloc_free(component); continue; } this = cm_json_n(this, l); talloc_free(component); continue; } this = NULL; } return this; } certmonger-0.78.6/src/iterate.h0000664000175000017500000000553412645513264013320 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef iterate_h #define iterate_h struct cm_store_entry; struct cm_store_ca; struct cm_context; enum cm_ca_phase; /* Start tracking a working state for this entry. */ int cm_iterate_entry_init(struct cm_store_entry *entry, void **cm_iterate_state); /* Start tracking a working state for a CA's maintenance tasks. */ int cm_iterate_ca_init(struct cm_store_ca *ca, enum cm_ca_phase phase, void **cm_iterate_state); /* Figure out what to do next about this specific entry or CA. */ enum cm_time { cm_time_now, /* Poke again without delay. */ cm_time_soon, /* Soon - small delays ok. */ cm_time_soonish,/* Small delay. */ cm_time_delay, /* At specified delay. */ cm_time_no_time /* Wait for data on specified descriptor. */ }; int cm_iterate_entry(struct cm_store_entry *entry, struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *), void (*emit_entry_saved_cert)(struct cm_context *, struct cm_store_entry *), void (*emit_entry_changes)(struct cm_context *, struct cm_store_entry *, struct cm_store_entry *), void *cm_iterate_state, enum cm_time *when, int *delay, int *readfd); int cm_iterate_ca(struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *), void (*emit_ca_changes)(struct cm_context *, struct cm_store_ca *, struct cm_store_ca *), void *cm_iterate_state, enum cm_time *when, int *delay, int *readfd); /* We're shutting down. */ int cm_iterate_entry_done(struct cm_store_entry *entry, void *cm_iterate_state); int cm_iterate_ca_done(struct cm_store_ca *ca, void *cm_iterate_state); /* Wait for the descriptor to become readable. */ void cm_waitfor_readable_fd(int fd, int delay); #endif certmonger-0.78.6/src/iterate.c0000664000175000017500000024550112645513264013313 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include "cadata.h" #include "canalyze.h" #include "casave.h" #include "certread.h" #include "certsave.h" #include "cm.h" #include "csrgen.h" #include "hook.h" #include "iterate.h" #include "keygen.h" #include "keyiread.h" #include "log.h" #include "notify.h" #include "prefs.h" #include "scepgen.h" #include "store.h" #include "store-int.h" #include "submit.h" #include "tm.h" struct cm_entry_state { struct cm_keygen_state *cm_keygen_state; struct cm_keyiread_state *cm_keyiread_state; struct cm_csrgen_state *cm_csrgen_state; struct cm_scepgen_state *cm_scepgen_state; struct cm_submit_state *cm_submit_state; struct cm_certsave_state *cm_certsave_state; struct cm_hook_state *cm_hook_state; struct cm_certread_state *cm_certread_state; struct cm_notify_state *cm_notify_state; struct cm_casave_state *cm_casave_state; }; struct cm_ca_state { enum cm_ca_phase cm_phase; struct cm_ca_analyze_state *cm_ca_cert_analyze_state; struct cm_ca_analyze_state *cm_ca_ecert_analyze_state; time_t cm_cert_refresh_delay; time_t cm_ecert_refresh_delay; struct cm_cadata_state *cm_task_state; struct cm_hook_state *cm_hook_state; struct cm_casave_state *cm_casave_state; }; /* Helper routine to replace in-progress states with the previous "stable" * state. */ static void cm_entry_reset_state(struct cm_store_entry *entry) { switch (entry->cm_state) { case CM_NEED_KEY_PAIR: break; case CM_GENERATING_KEY_PAIR: entry->cm_state = CM_NEED_KEY_PAIR; break; case CM_NEED_KEY_GEN_TOKEN: entry->cm_state = CM_NEED_KEY_PAIR; break; case CM_NEED_KEY_GEN_PIN: entry->cm_state = CM_NEED_KEY_PAIR; break; case CM_NEED_KEY_GEN_PERMS: entry->cm_state = CM_NEED_KEY_PAIR; break; case CM_HAVE_KEY_PAIR: break; case CM_NEED_KEYINFO: break; case CM_READING_KEYINFO: entry->cm_state = CM_NEED_KEYINFO; break; case CM_NEED_KEYINFO_READ_TOKEN: entry->cm_state = CM_NEED_KEYINFO; break; case CM_NEED_KEYINFO_READ_PIN: entry->cm_state = CM_NEED_KEYINFO; break; case CM_HAVE_KEYINFO: break; case CM_NEED_CSR: entry->cm_state = CM_HAVE_KEYINFO; break; case CM_NEED_CSR_GEN_TOKEN: entry->cm_state = CM_HAVE_KEYINFO; break; case CM_NEED_CSR_GEN_PIN: entry->cm_state = CM_HAVE_KEYINFO; break; case CM_GENERATING_CSR: entry->cm_state = CM_HAVE_KEYINFO; break; case CM_HAVE_CSR: break; case CM_NEED_SCEP_DATA: break; case CM_NEED_SCEP_GEN_TOKEN: entry->cm_state = CM_NEED_SCEP_DATA; break; case CM_NEED_SCEP_GEN_PIN: entry->cm_state = CM_NEED_SCEP_DATA; break; case CM_NEED_SCEP_ENCRYPTION_CERT: entry->cm_state = CM_NEED_SCEP_DATA; break; case CM_NEED_SCEP_RSA_CLIENT_KEY: entry->cm_state = CM_NEED_SCEP_DATA; break; case CM_GENERATING_SCEP_DATA: entry->cm_state = CM_NEED_SCEP_DATA; break; case CM_HAVE_SCEP_DATA: break; case CM_NEED_TO_SUBMIT: entry->cm_state = CM_HAVE_CSR; break; case CM_SUBMITTING: entry->cm_state = CM_HAVE_CSR; break; case CM_NEED_TO_SAVE_CERT: break; case CM_START_SAVING_CERT: entry->cm_state = CM_NEED_TO_SAVE_CERT; break; case CM_PRE_SAVE_CERT: entry->cm_state = CM_NEED_TO_SAVE_CERT; break; case CM_SAVING_CERT: entry->cm_state = CM_NEED_TO_SAVE_CERT; break; case CM_NEED_CERTSAVE_PERMS: entry->cm_state = CM_NEED_TO_SAVE_CERT; break; case CM_NEED_CERTSAVE_TOKEN: entry->cm_state = CM_NEED_TO_SAVE_CERT; break; case CM_NEED_CERTSAVE_PIN: entry->cm_state = CM_NEED_TO_SAVE_CERT; break; case CM_NEED_TO_SAVE_CA_CERTS: break; case CM_START_SAVING_CA_CERTS: entry->cm_state = CM_NEED_TO_SAVE_CA_CERTS; break; case CM_SAVING_CA_CERTS: entry->cm_state = CM_NEED_TO_SAVE_CA_CERTS; break; case CM_NEED_CA_CERT_SAVE_PERMS: entry->cm_state = CM_NEED_TO_SAVE_CA_CERTS; break; case CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED: entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED; break; case CM_NOTIFYING_ISSUED_CA_SAVE_FAILED: entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED; break; case CM_NEED_TO_READ_CERT: break; case CM_READING_CERT: entry->cm_state = CM_NEED_TO_READ_CERT; break; case CM_SAVED_CERT: break; case CM_POST_SAVED_CERT: entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_SAVED; break; case CM_CA_REJECTED: break; case CM_CA_WORKING: entry->cm_state = CM_HAVE_CSR; break; case CM_CA_UNREACHABLE: entry->cm_state = CM_HAVE_CSR; break; case CM_CA_UNCONFIGURED: entry->cm_state = CM_HAVE_CSR; break; case CM_NEED_CA: entry->cm_state = CM_HAVE_CSR; break; case CM_NEED_GUIDANCE: break; case CM_MONITORING: break; case CM_NEED_TO_NOTIFY_VALIDITY: entry->cm_state = CM_MONITORING; break; case CM_NOTIFYING_VALIDITY: entry->cm_state = CM_NEED_TO_NOTIFY_VALIDITY; break; case CM_NEED_TO_NOTIFY_REJECTION: break; case CM_NOTIFYING_REJECTION: entry->cm_state = CM_NEED_TO_NOTIFY_REJECTION; break; case CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED: break; case CM_NOTIFYING_ISSUED_SAVE_FAILED: entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED; break; case CM_NEED_TO_NOTIFY_ISSUED_SAVED: break; case CM_NOTIFYING_ISSUED_SAVED: entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_SAVED; break; case CM_NEED_TO_SAVE_ONLY_CA_CERTS: entry->cm_state = CM_NEED_TO_SAVE_ONLY_CA_CERTS; break; case CM_START_SAVING_ONLY_CA_CERTS: entry->cm_state = CM_NEED_TO_SAVE_ONLY_CA_CERTS; break; case CM_SAVING_ONLY_CA_CERTS: entry->cm_state = CM_NEED_TO_SAVE_ONLY_CA_CERTS; break; case CM_NEED_ONLY_CA_CERT_SAVE_PERMS: entry->cm_state = CM_NEED_TO_SAVE_ONLY_CA_CERTS; break; case CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED: entry->cm_state = CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED; break; case CM_NOTIFYING_ONLY_CA_SAVE_FAILED: entry->cm_state = CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED; break; case CM_NEWLY_ADDED: break; case CM_NEWLY_ADDED_START_READING_KEYINFO: entry->cm_state = CM_NEWLY_ADDED; break; case CM_NEWLY_ADDED_READING_KEYINFO: entry->cm_state = CM_NEWLY_ADDED; break; case CM_NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN: entry->cm_state = CM_NEWLY_ADDED; break; case CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN: entry->cm_state = CM_NEWLY_ADDED; break; case CM_NEWLY_ADDED_START_READING_CERT: entry->cm_state = CM_NEWLY_ADDED; break; case CM_NEWLY_ADDED_READING_CERT: entry->cm_state = CM_NEWLY_ADDED; break; case CM_NEWLY_ADDED_DECIDING: entry->cm_state = CM_NEWLY_ADDED; break; case CM_INVALID: /* not reached */ abort(); break; } } void cm_waitfor_readable_fd(int fd, int delay) { fd_set fds, *fdset = NULL; struct timeval tv; memset(&tv, 0, sizeof(tv)); tv.tv_sec = delay; FD_ZERO(&fds); if (fd != -1) { fdset = &fds; FD_SET(fd, fdset); } if (select(fd + 1, fdset, NULL, fdset, (delay >= 0) ? &tv : NULL) < 0) { if (delay < 0) { /* No defined delay, but an error. */ cm_log(3, "indefinite select() on %d returned error: " "%s\n", fd, strerror(errno)); } } } /* Decide how long to wait before contacting the CA again. */ static time_t cm_decide_ca_delay(time_t remaining) { time_t delay; delay = CM_DELAY_CA_POLL; if ((remaining != (time_t) -1) && (remaining < 2 * delay)) { delay = remaining / 2; if (delay < CM_DELAY_CA_POLL_MINIMUM) { delay = CM_DELAY_CA_POLL_MINIMUM; } if (delay > CM_DELAY_CA_POLL_MAXIMUM) { delay = CM_DELAY_CA_POLL_MAXIMUM; } } return delay; } /* Decide how long to wait before looking at a certificate again. */ static time_t cm_decide_monitor_delay(time_t remaining) { time_t delay; delay = CM_DELAY_MONITOR_POLL; if ((remaining != (time_t) -1) && (remaining < 2 * delay)) { delay = remaining / 2; if (delay < CM_DELAY_MONITOR_POLL_MINIMUM) { delay = CM_DELAY_MONITOR_POLL_MINIMUM; } } return delay; } /* Decide how long to wait before attempting to contact the CA to retrieve * information again. */ static time_t cm_decide_cadata_delay(void) { time_t delay; delay = CM_DELAY_CADATA_POLL; return delay; } /* Manage a "lock" that we use to serialize access to THE REST OF THE WORLD. */ static void *writing_lock; static enum cm_ca_phase writing_lock_ca_phase = cm_ca_phase_invalid; static dbus_bool_t cm_writing_has_lock(void *holder, enum cm_ca_phase phase) { return (writing_lock == holder) && ((writing_lock_ca_phase == cm_ca_phase_invalid) || (writing_lock_ca_phase == phase)); } static dbus_bool_t cm_writing_lock_by_entry(struct cm_store_entry *entry) { if ((writing_lock == entry) || (writing_lock == NULL)) { if (writing_lock == NULL) { cm_log(3, "%s('%s') taking writing lock\n", entry->cm_busname, entry->cm_nickname); writing_lock = entry; } else { abort(); } return TRUE; } else { return FALSE; } } static dbus_bool_t cm_writing_unlock_by_entry(struct cm_store_entry *entry) { if ((writing_lock == entry) || (writing_lock == NULL)) { if (writing_lock == entry) { cm_log(3, "%s('%s') releasing writing lock\n", entry->cm_busname, entry->cm_nickname); writing_lock = NULL; } else { abort(); } return TRUE; } else { return FALSE; } } static dbus_bool_t cm_writing_lock_by_ca(struct cm_store_ca *ca, enum cm_ca_phase phase) { if (((writing_lock == ca) && (writing_lock_ca_phase == phase)) || (writing_lock == NULL)) { if (writing_lock == NULL) { cm_log(3, "%s('%s').%s taking writing lock\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(phase)); writing_lock = ca; if (phase == cm_ca_phase_invalid) { abort(); } writing_lock_ca_phase = phase; } else { abort(); } return TRUE; } else { return FALSE; } } static dbus_bool_t cm_writing_unlock_by_ca(struct cm_store_ca *ca, enum cm_ca_phase phase) { if (((writing_lock == ca) && (writing_lock_ca_phase == phase)) || (writing_lock == NULL)) { if (writing_lock == ca) { cm_log(3, "%s('%s').%s releasing writing lock\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(phase)); writing_lock = NULL; writing_lock_ca_phase = cm_ca_phase_invalid; } else { abort(); } return TRUE; } else { return FALSE; } } /* Set up run-time data associated with the entry. */ int cm_iterate_entry_init(struct cm_store_entry *entry, void **cm_iterate_state) { struct cm_entry_state *state; int fd; state = talloc_ptrtype(entry, state); if (state == NULL) { return ENOMEM; } memset(state, 0, sizeof(*state)); *cm_iterate_state = state; cm_entry_reset_state(entry); if (cm_writing_has_lock(entry, cm_ca_phase_invalid)) { cm_writing_unlock_by_entry(entry); } state->cm_keyiread_state = cm_keyiread_start(entry); if (state->cm_keyiread_state != NULL) { while (cm_keyiread_ready(state->cm_keyiread_state) != 0) { fd = cm_keyiread_get_fd(state->cm_keyiread_state); if (fd != -1) { cm_waitfor_readable_fd(fd, -1); } } cm_keyiread_done(state->cm_keyiread_state); state->cm_keyiread_state = NULL; } state->cm_certread_state = cm_certread_start(entry); if (state->cm_certread_state != NULL) { while (cm_certread_ready(state->cm_certread_state) != 0) { fd = cm_certread_get_fd(state->cm_certread_state); if (fd != -1) { cm_waitfor_readable_fd(fd, -1); } } cm_certread_done(state->cm_certread_state); state->cm_certread_state = NULL; } cm_store_entry_save(entry); cm_log(3, "%s('%s') starts in state '%s'\n", entry->cm_busname, entry->cm_nickname, cm_store_state_as_string(entry->cm_state)); return 0; } /* Check if the entry's expiration has crossed an interesting threshold. */ static int cm_check_expiration_is_noteworthy(struct cm_store_entry *entry, int (*get_ttls)(const time_t **, unsigned int *), time_t *last_check) { unsigned int i, n_ttls; time_t now, ttl, previous_ttl; const time_t *ttls; now = cm_time(NULL); /* Do we have validity information? */ if (entry->cm_cert_not_after == 0) { return -1; } /* Is it at least (some arbitrary minimum) old? */ if (entry->cm_cert_not_before > (now - CM_DELAY_MONITOR_POLL_MINIMUM)) { return -1; } /* How much time is left? */ if (entry->cm_cert_not_after < now) { ttl = 0; } else { ttl = entry->cm_cert_not_after - now; } /* How much time was left, last time we checked? */ if (entry->cm_cert_not_after < *last_check) { previous_ttl = 0; } else { previous_ttl = entry->cm_cert_not_after - *last_check; } /* Note that we're checking now. */ *last_check = now; /* Which list of interesting values are we consulting? */ ttls = NULL; n_ttls = 0; if (((*get_ttls)(&ttls, &n_ttls) != 0) || (n_ttls == 0)) { return -1; } /* Check for crosses. */ for (i = 0; i < n_ttls; i++) { /* We crossed a threshold. */ if ((ttl < ttls[i]) && (previous_ttl >= ttls[i])) { return 0; } /* We crossed a threshold... and time is running backwards. */ if ((ttl >= ttls[i]) && (previous_ttl < ttls[i])) { return 0; } } /* The certificate has expired. */ if (ttl == 0) { return 0; } return -1; } /* Check if our policy means that the entry needs a new key. */ static dbus_bool_t cm_check_rekey_is_expected(struct cm_store_entry *entry) { long long t, now; char tstr[25], nowstr[25]; long i; if (entry->cm_key_generated_date != 0) { t = prefs_key_end_of_life(entry->cm_key_generated_date); if (t >= 0) { now = time(NULL); if (now >= t) { cm_store_timestamp_from_time_for_display(t, tstr); cm_store_timestamp_from_time_for_display(now, nowstr); cm_log(1, "%s('%s') needs its key replaced " "after %s, and it's %s now.\n", entry->cm_busname, entry->cm_nickname, tstr, nowstr); return TRUE; } } } i = prefs_max_key_use_count(); if (i > 0) { if (entry->cm_key_issued_count >= i) { cm_log(1, "%s('%s') needs its key replaced after %ld " "uses, and it's been used %lld times.\n", entry->cm_busname, entry->cm_nickname, i, (long long) entry->cm_key_issued_count); return TRUE; } } return FALSE; } int cm_iterate_entry(struct cm_store_entry *entry, struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *), void (*emit_entry_saved_cert)(struct cm_context *, struct cm_store_entry *), void (*emit_entry_changes)(struct cm_context *, struct cm_store_entry *, struct cm_store_entry *), void *cm_iterate_state, enum cm_time *when, int *delay, int *readfd) { int i, j; time_t remaining; struct cm_entry_state *state; struct cm_store_ca *tmp_ca; struct cm_store_entry *old_entry; char *serial; const char *tmp_ca_name; state = cm_iterate_state; *readfd = -1; *when = cm_time_no_time; *delay = 0; old_entry = cm_store_entry_dup(entry, entry); if (entry->cm_cert_not_after != 0) { remaining = entry->cm_cert_not_after - cm_time(NULL); } else { remaining = -1; } switch (entry->cm_state) { case CM_NEED_KEY_PAIR: if (!cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } /* Start a helper. */ state->cm_keygen_state = cm_keygen_start(entry); if (state->cm_keygen_state != NULL) { /* Note that we're generating a key. */ entry->cm_state = CM_GENERATING_KEY_PAIR; /* Wait for status update, or poll. */ *readfd = cm_keygen_get_fd(state->cm_keygen_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start generating a key; try again. */ cm_writing_unlock_by_entry(entry); *when = cm_time_soonish; } break; case CM_GENERATING_KEY_PAIR: if (cm_keygen_ready(state->cm_keygen_state) == 0) { if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the * lock that we have, try to release it again * soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release saving " "lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } if (cm_keygen_saved_keypair(state->cm_keygen_state) == 0) { /* Saved key pair; move on. */ cm_keygen_done(state->cm_keygen_state); state->cm_keygen_state = NULL; entry->cm_state = CM_HAVE_KEY_PAIR; *when = cm_time_now; } else if (cm_keygen_need_perms(state->cm_keygen_state) == 0) { /* Whoops, we need help. */ cm_keygen_done(state->cm_keygen_state); state->cm_keygen_state = NULL; entry->cm_state = CM_NEED_KEY_GEN_PERMS; *when = cm_time_now; } else if (cm_keygen_need_token(state->cm_keygen_state) == 0) { /* Whoops, we need help. */ cm_keygen_done(state->cm_keygen_state); state->cm_keygen_state = NULL; entry->cm_state = CM_NEED_KEY_GEN_TOKEN; *when = cm_time_now; } else if (cm_keygen_need_pin(state->cm_keygen_state) == 0) { /* Whoops, we need help. */ cm_keygen_done(state->cm_keygen_state); state->cm_keygen_state = NULL; entry->cm_state = CM_NEED_KEY_GEN_PIN; *when = cm_time_now; } else { /* Failed to save key pair; take a breather and * try again. */ cm_keygen_done(state->cm_keygen_state); state->cm_keygen_state = NULL; entry->cm_state = CM_NEED_KEY_PAIR; *when = cm_time_soonish; } } else { /* Wait for status update, or poll. */ *readfd = cm_keygen_get_fd(state->cm_keygen_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_KEY_GEN_PERMS: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_KEY_GEN_TOKEN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_KEY_GEN_PIN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_HAVE_KEY_PAIR: entry->cm_state = CM_NEED_KEYINFO; *when = cm_time_now; break; case CM_NEED_KEYINFO: /* Try to read information about the key. */ state->cm_keyiread_state = cm_keyiread_start(entry); if (state->cm_keyiread_state != NULL) { entry->cm_state = CM_READING_KEYINFO; /* Note that we're reading information about * the key. */ *readfd = cm_keyiread_get_fd(state->cm_keyiread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start reading info about the key; * try again soon. */ *when = cm_time_soonish; } break; case CM_READING_KEYINFO: /* If we finished reading info about the key, move on to * generating a CSR. */ if (cm_keyiread_ready(state->cm_keyiread_state) == 0) { if (cm_keyiread_finished_reading(state->cm_keyiread_state) == 0) { entry->cm_state = CM_HAVE_KEYINFO; *when = cm_time_now; } else if (cm_keyiread_need_token(state->cm_keyiread_state) == 0) { /* If we need the token, just hang on. */ entry->cm_state = CM_NEED_KEYINFO_READ_TOKEN; *when = cm_time_now; } else if (cm_keyiread_need_pin(state->cm_keyiread_state) == 0) { /* If we need the PIN, just hang on. */ entry->cm_state = CM_NEED_KEYINFO_READ_PIN; *when = cm_time_now; } else { /* Otherwise try to generate a new key pair. */ entry->cm_state = CM_NEED_KEY_PAIR; *when = cm_time_soonish; } cm_keyiread_done(state->cm_keyiread_state); state->cm_keyiread_state = NULL; } else { /* Wait for status update, or poll. */ *readfd = cm_keyiread_get_fd(state->cm_keyiread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_KEYINFO_READ_TOKEN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_KEYINFO_READ_PIN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_HAVE_KEYINFO: entry->cm_state = CM_NEED_CSR; *when = cm_time_now; break; case CM_NEED_CSR: state->cm_csrgen_state = cm_csrgen_start(entry); if (state->cm_csrgen_state != NULL) { /* Note that we're generating a CSR. */ entry->cm_state = CM_GENERATING_CSR; /* Wait for status update, or poll. */ *readfd = cm_csrgen_get_fd(state->cm_csrgen_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start generating a CSR; take a breather * and try again. */ *when = cm_time_soonish; } break; case CM_GENERATING_CSR: if (cm_csrgen_ready(state->cm_csrgen_state) == 0) { if (cm_csrgen_save_csr(state->cm_csrgen_state) == 0) { /* Saved CSR; move on. */ cm_csrgen_done(state->cm_csrgen_state); state->cm_csrgen_state = NULL; entry->cm_state = CM_HAVE_CSR; *when = cm_time_now; } else if (cm_csrgen_need_token(state->cm_csrgen_state) == 0) { /* Need a token; wait for it. */ cm_csrgen_done(state->cm_csrgen_state); state->cm_csrgen_state = NULL; entry->cm_state = CM_NEED_CSR_GEN_TOKEN; *when = cm_time_now; } else if (cm_csrgen_need_pin(state->cm_csrgen_state) == 0) { /* Need a PIN; wait for it. */ cm_csrgen_done(state->cm_csrgen_state); state->cm_csrgen_state = NULL; entry->cm_state = CM_NEED_CSR_GEN_PIN; *when = cm_time_now; } else { /* Failed to save CSR; try again. */ cm_csrgen_done(state->cm_csrgen_state); state->cm_csrgen_state = NULL; entry->cm_state = CM_NEED_CSR; *when = cm_time_soonish; } } else { /* Wait for status update, or poll. */ *readfd = cm_csrgen_get_fd(state->cm_csrgen_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_CSR_GEN_TOKEN: *when = cm_time_no_time; break; case CM_NEED_CSR_GEN_PIN: *when = cm_time_no_time; break; case CM_HAVE_CSR: entry->cm_state = CM_NEED_TO_SUBMIT; *when = cm_time_now; break; case CM_NEED_TO_SUBMIT: state->cm_submit_state = cm_submit_start(ca, entry); if (state->cm_submit_state != NULL) { /* Note that we're in the process of submitting the CSR * to a CA. */ entry->cm_state = CM_SUBMITTING; /* Wait for status update, or poll. */ *readfd = cm_submit_get_fd(state->cm_submit_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } /* If we're doing internal-CA, mark this serial number * as used. */ if (ca != NULL) { switch (ca->cm_ca_type) { case cm_ca_external: break; case cm_ca_internal_self: serial = ca->cm_ca_internal_serial; ca->cm_ca_internal_serial = cm_store_increment_serial(ca, serial); talloc_free(serial); cm_store_ca_save(ca); } } /* In case we're talking to a server over SCEP, make a * note of the nonce, so that we won't re-send an * identical request. */ if (entry->cm_scep_nonce != NULL) { entry->cm_scep_last_nonce = talloc_strdup(entry, entry->cm_scep_nonce); } } else { if (ca == NULL) { /* No known CA is associated with this entry. */ entry->cm_state = CM_NEED_CA; *when = cm_time_now; } else { /* Failed to start submission; take a breather * and try again. */ *when = cm_time_soonish; } } break; case CM_NEED_SCEP_DATA: state->cm_scepgen_state = cm_scepgen_start(ca, entry); if (state->cm_scepgen_state != NULL) { /* Note that we're in the process of generating SCEP * data. */ entry->cm_state = CM_GENERATING_SCEP_DATA; /* Wait for status update, or poll. */ *readfd = cm_scepgen_get_fd(state->cm_scepgen_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start generating data; take a breather and * try again. */ *when = cm_time_soonish; } break; case CM_GENERATING_SCEP_DATA: if (cm_scepgen_ready(state->cm_scepgen_state) == 0) { if (cm_scepgen_save_scep(state->cm_scepgen_state) == 0) { /* Saved SCEP data; move on. */ cm_scepgen_done(state->cm_scepgen_state); state->cm_scepgen_state = NULL; entry->cm_state = CM_HAVE_SCEP_DATA; *when = cm_time_now; } else if (cm_scepgen_need_token(state->cm_scepgen_state) == 0) { /* Need a token; wait for it. */ cm_scepgen_done(state->cm_scepgen_state); state->cm_scepgen_state = NULL; entry->cm_state = CM_NEED_SCEP_GEN_TOKEN; *when = cm_time_now; } else if (cm_scepgen_need_pin(state->cm_scepgen_state) == 0) { /* Need a PIN; wait for it. */ cm_scepgen_done(state->cm_scepgen_state); state->cm_scepgen_state = NULL; entry->cm_state = CM_NEED_SCEP_GEN_PIN; *when = cm_time_now; } else if (cm_scepgen_need_encryption_certs(state->cm_scepgen_state) == 0) { /* Need the RA's encryption cert; wait for it. */ cm_scepgen_done(state->cm_scepgen_state); state->cm_scepgen_state = NULL; entry->cm_state = CM_NEED_SCEP_ENCRYPTION_CERT; *when = cm_time_now; } else if (cm_scepgen_need_different_key_type(state->cm_scepgen_state) == 0) { /* Need an RSA key. */ cm_scepgen_done(state->cm_scepgen_state); state->cm_scepgen_state = NULL; entry->cm_state = CM_NEED_SCEP_RSA_CLIENT_KEY; *when = cm_time_now; } else { /* Failed to save SCEP data; try again. */ cm_scepgen_done(state->cm_scepgen_state); state->cm_scepgen_state = NULL; entry->cm_state = CM_NEED_SCEP_DATA; *when = cm_time_soonish; } } else { /* Wait for status update, or poll. */ *readfd = cm_scepgen_get_fd(state->cm_scepgen_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_SCEP_GEN_TOKEN: *when = cm_time_no_time; break; case CM_NEED_SCEP_GEN_PIN: *when = cm_time_no_time; break; case CM_NEED_SCEP_ENCRYPTION_CERT: *when = cm_time_no_time; break; case CM_NEED_SCEP_RSA_CLIENT_KEY: *when = cm_time_no_time; break; case CM_HAVE_SCEP_DATA: entry->cm_state = CM_NEED_TO_SUBMIT; *when = cm_time_now; break; case CM_SUBMITTING: if (cm_submit_ready(state->cm_submit_state) == 0) { entry->cm_submitted = cm_time(NULL); if (cm_submit_issued(state->cm_submit_state) == 0) { /* We're all done. Save the certificate to its * real home. */ cm_submit_clear_ca_cookie(state->cm_submit_state); cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; entry->cm_state = CM_NEED_TO_SAVE_CERT; *when = cm_time_now; } else if (cm_submit_rejected(state->cm_submit_state) == 0) { /* The request was flat-out rejected. */ cm_submit_clear_ca_cookie(state->cm_submit_state); cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; if (entry->cm_cert != NULL) { cm_log(3, "%s('%s') already had a " "certificate, going back to " "monitoring it\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_MONITORING; *when = cm_time_soonish; } else { entry->cm_state = CM_NEED_TO_NOTIFY_REJECTION; *when = cm_time_now; } } else if (cm_submit_unreachable(state->cm_submit_state) == 0) { /* Let's try again later. The cookie is left * unmodified. */ *delay = cm_submit_specified_delay(state->cm_submit_state); cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; entry->cm_state = CM_CA_UNREACHABLE; *when = cm_time_delay; if (*delay < 0) { *delay = cm_decide_ca_delay(remaining); } } else if (cm_submit_save_ca_cookie(state->cm_submit_state) == 0) { /* Saved CA's identifier for our request; give * it the specified time, or a little time, and * then ask for a progress update. */ cm_log(4, "%s('%s') provided CA " "cookie \"%s\"\n", entry->cm_busname, entry->cm_nickname, entry->cm_ca_cookie); *delay = cm_submit_specified_delay(state->cm_submit_state); cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; entry->cm_state = CM_CA_WORKING; *when = cm_time_delay; if (*delay < 0) { *delay = cm_decide_ca_delay(remaining); } } else if (cm_submit_unconfigured(state->cm_submit_state) == 0) { /* Saved CA's identifier for our request; give * it a little time and then ask. */ *delay = cm_submit_specified_delay(state->cm_submit_state); cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; if (entry->cm_cert != NULL) { cm_log(3, "%s('%s') already had a " "certificate, going back to " "monitoring it\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_MONITORING; *when = cm_time_soonish; } else { entry->cm_state = CM_CA_UNCONFIGURED; *when = cm_time_delay; if (*delay < 0) { *delay = cm_decide_ca_delay(remaining); } } } else if (cm_submit_need_scep_messages(state->cm_submit_state) == 0) { /* We need to generate SCEP data. */ cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; cm_log(3, "%s('%s') goes to a CA over SCEP, " "need to generate SCEP data.\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_NEED_SCEP_DATA; *when = cm_time_now; } else if (cm_submit_need_rekey(state->cm_submit_state) == 0) { /* We need to generate a new key pair. */ cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; cm_log(3, "%s('%s') needs to be rekeyed.\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_NEED_KEY_PAIR; *when = cm_time_soonish; } else { /* Don't know what's going on. HELP! */ cm_log(1, "Unable to determine course of action " "for %s('%s').\n", entry->cm_busname, entry->cm_nickname); cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; entry->cm_state = CM_NEED_GUIDANCE; *when = cm_time_now; } } else { /* Wait for status update, or poll. */ *readfd = cm_submit_get_fd(state->cm_submit_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_TO_SAVE_CERT: if (!cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } state->cm_hook_state = cm_hook_start_presave(entry, context, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); if (state->cm_hook_state != NULL) { /* Note that we're doing the pre-save. */ entry->cm_state = CM_PRE_SAVE_CERT; /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start the pre-save, or nothing to do; skip * it. */ entry->cm_state = CM_START_SAVING_CERT; *when = cm_time_now; } break; case CM_PRE_SAVE_CERT: if (cm_hook_ready(state->cm_hook_state) == 0) { cm_hook_done(state->cm_hook_state); state->cm_hook_state = NULL; entry->cm_state = CM_START_SAVING_CERT; *when = cm_time_now; } else { /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_START_SAVING_CERT: state->cm_certsave_state = cm_certsave_start(entry); if (state->cm_certsave_state != NULL) { /* Note that we're saving the cert. */ entry->cm_state = CM_SAVING_CERT; /* Wait for status update, or poll. */ *readfd = cm_certsave_get_fd(state->cm_certsave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start saving the certificate; try again. */ *when = cm_time_soonish; } break; case CM_SAVING_CERT: if (cm_certsave_ready(state->cm_certsave_state) == 0) { if (cm_certsave_saved(state->cm_certsave_state) == 0) { /* Saved certificate. */ cm_certsave_done(state->cm_certsave_state); state->cm_certsave_state = NULL; entry->cm_state = CM_SAVED_CERT; *when = cm_time_now; } else if (cm_certsave_permissions_error(state->cm_certsave_state) == 0) { /* Whoops, we need help. */ cm_certsave_done(state->cm_certsave_state); state->cm_certsave_state = NULL; entry->cm_state = CM_NEED_CERTSAVE_PERMS; *when = cm_time_now; } else if (cm_certsave_token_error(state->cm_certsave_state) == 0) { /* Whoops, we need help. */ cm_certsave_done(state->cm_certsave_state); state->cm_certsave_state = NULL; entry->cm_state = CM_NEED_CERTSAVE_TOKEN; *when = cm_time_now; } else if (cm_certsave_pin_error(state->cm_certsave_state) == 0) { /* Whoops, we need help. */ cm_certsave_done(state->cm_certsave_state); state->cm_certsave_state = NULL; entry->cm_state = CM_NEED_CERTSAVE_PIN; *when = cm_time_now; } else { /* Failed to save cert; make a note and try * again in a bit. */ cm_certsave_done(state->cm_certsave_state); state->cm_certsave_state = NULL; entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED; *when = cm_time_soonish; } } else { /* Wait for status update, or poll. */ *readfd = cm_certsave_get_fd(state->cm_certsave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_CERTSAVE_PERMS: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_CERTSAVE_TOKEN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_CERTSAVE_PIN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_TO_READ_CERT: /* We should already have the lock here. In cases where we're * resuming things at startup, try to acquire it if we don't * have it. */ if (!cm_writing_has_lock(entry, cm_ca_phase_invalid) && !cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } state->cm_certread_state = cm_certread_start(entry); if (state->cm_certread_state != NULL) { /* Note that we're reading the cert. */ entry->cm_state = CM_READING_CERT; /* Wait for status update, or poll. */ *readfd = cm_certread_get_fd(state->cm_certread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start re-reading the certificate; try * again. */ *when = cm_time_soonish; } break; case CM_READING_CERT: if (cm_certread_ready(state->cm_certread_state) == 0) { /* Finished reloading certificate. */ cm_certread_done(state->cm_certread_state); state->cm_certread_state = NULL; if (emit_entry_saved_cert != NULL) { (*emit_entry_saved_cert)(context, entry); } /* Start the post-save hoook, if there is one. */ state->cm_hook_state = cm_hook_start_postsave(entry, context, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); if (state->cm_hook_state != NULL) { /* Note that we're doing the post-save. */ entry->cm_state = CM_POST_SAVED_CERT; /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start the post-save, or nothing to do; * skip it. */ entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_SAVED; *when = cm_time_now; } } else { /* Wait for status update, or poll. */ *readfd = cm_certread_get_fd(state->cm_certread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_POST_SAVED_CERT: if (cm_hook_ready(state->cm_hook_state) == 0) { cm_hook_done(state->cm_hook_state); state->cm_hook_state = NULL; entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_SAVED; *when = cm_time_now; } else { /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_SAVED_CERT: entry->cm_state = CM_NEED_TO_SAVE_CA_CERTS; *when = cm_time_now; break; case CM_CA_REJECTED: *when = cm_time_no_time; break; case CM_CA_WORKING: entry->cm_state = CM_NEED_TO_SUBMIT; *when = cm_time_now; break; case CM_CA_UNREACHABLE: entry->cm_state = CM_NEED_TO_SUBMIT; *when = cm_time_soonish; break; case CM_CA_UNCONFIGURED: *when = cm_time_no_time; break; case CM_NEED_GUIDANCE: *when = cm_time_no_time; break; case CM_NEED_CA: *when = cm_time_no_time; break; case CM_MONITORING: if (entry->cm_monitor && (cm_check_expiration_is_noteworthy(entry, &cm_prefs_notify_ttls, &entry->cm_last_need_notify_check) == 0)) { /* Kick off a notification. */ entry->cm_state = CM_NEED_TO_NOTIFY_VALIDITY; *when = cm_time_now; } else if (entry->cm_autorenew && (cm_check_expiration_is_noteworthy(entry, &cm_prefs_enroll_ttls, &entry->cm_last_need_enroll_check) == 0)) { /* Kick off an enrollment attempt. We need to go all * the way back to generating the CSR because the user * may have asked us to request with parameters that * have changed since we last generated a CSR. */ entry->cm_state = cm_check_rekey_is_expected(entry) ? CM_NEED_KEY_PAIR : CM_NEED_CSR; *when = cm_time_now; } else { /* Nothing to do here. Check again at an appropriate time. */ *when = cm_time_delay; *delay = cm_decide_monitor_delay(remaining); } break; case CM_NEED_TO_NOTIFY_VALIDITY: state->cm_notify_state = cm_notify_start(entry, cm_notify_event_validity_ending); if (state->cm_notify_state != NULL) { entry->cm_state = CM_NOTIFYING_VALIDITY; /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start notifying; try again. */ *when = cm_time_soonish; } break; case CM_NOTIFYING_VALIDITY: if (cm_notify_ready(state->cm_notify_state) == 0) { cm_notify_done(state->cm_notify_state); state->cm_notify_state = NULL; if (entry->cm_autorenew && (cm_check_expiration_is_noteworthy(entry, &cm_prefs_enroll_ttls, &entry->cm_last_need_enroll_check) == 0)) { /* Kick off an enrollment attempt. We need to go all * the way back to generating the CSR because the user * may have asked us to request with parameters that * have changed since we last generated a CSR. */ entry->cm_state = cm_check_rekey_is_expected(entry) ? CM_NEED_KEY_PAIR : CM_NEED_CSR; *when = cm_time_now; } else { entry->cm_state = CM_MONITORING; *when = cm_time_delay; *delay = cm_decide_monitor_delay(-1); } } else { /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_TO_NOTIFY_REJECTION: state->cm_notify_state = cm_notify_start(entry, cm_notify_event_rejected); if (state->cm_notify_state != NULL) { entry->cm_state = CM_NOTIFYING_REJECTION; /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start notifying; try again. */ *when = cm_time_soonish; } break; case CM_NOTIFYING_REJECTION: if (cm_notify_ready(state->cm_notify_state) == 0) { cm_notify_done(state->cm_notify_state); state->cm_notify_state = NULL; entry->cm_state = CM_CA_REJECTED; *when = cm_time_soon; } else { /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_TO_NOTIFY_ISSUED_SAVE_FAILED: /* We should already have the lock here. In cases where we're * resuming things at startup, try to acquire it if we don't * have it. */ if (!cm_writing_has_lock(entry, cm_ca_phase_invalid) && !cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release saving " "lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } state->cm_notify_state = cm_notify_start(entry, cm_notify_event_issued_not_saved); if (state->cm_notify_state != NULL) { entry->cm_state = CM_NOTIFYING_ISSUED_SAVE_FAILED; /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start notifying; try again. */ *when = cm_time_soonish; } break; case CM_NOTIFYING_ISSUED_SAVE_FAILED: if (cm_notify_ready(state->cm_notify_state) == 0) { cm_notify_done(state->cm_notify_state); state->cm_notify_state = NULL; entry->cm_state = CM_START_SAVING_CERT; *when = cm_time_soonish; } else { /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_TO_SAVE_CA_CERTS: /* We should already have the lock here. In cases where we're * resuming things at startup, try to acquire it if we don't * have it. */ if (!cm_writing_has_lock(entry, cm_ca_phase_invalid) && !cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } entry->cm_state = CM_START_SAVING_CA_CERTS; *when = cm_time_now; break; case CM_START_SAVING_CA_CERTS: state->cm_casave_state = cm_casave_start(entry, NULL, context, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); if (state->cm_casave_state != NULL) { entry->cm_state = CM_SAVING_CA_CERTS; /* Wait for status update, or poll. */ *readfd = cm_casave_get_fd(state->cm_casave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start saving CA certs; try again. */ *when = cm_time_soonish; } break; case CM_SAVING_CA_CERTS: if (cm_casave_ready(state->cm_casave_state) == 0) { if (cm_casave_saved(state->cm_casave_state) == 0) { /* Saved CA certificates, no go re-read the * issued certificate. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; entry->cm_state = CM_NEED_TO_READ_CERT; *when = cm_time_now; } else if (cm_casave_permissions_error(state->cm_casave_state) == 0) { /* Whoops, we need help. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; entry->cm_state = CM_NEED_CA_CERT_SAVE_PERMS; *when = cm_time_now; } else { /* Failed to save CA certs. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; entry->cm_state = CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED; *when = cm_time_soonish; } } else { /* Wait for status update, or poll. */ *readfd = cm_casave_get_fd(state->cm_casave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_CA_CERT_SAVE_PERMS: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_TO_NOTIFY_ISSUED_SAVED: /* We should already have the lock here. In cases where we're * resuming things at startup, try to acquire it if we don't * have it. */ if (!cm_writing_has_lock(entry, cm_ca_phase_invalid) && !cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release saving " "lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } state->cm_notify_state = cm_notify_start(entry, cm_notify_event_issued_and_saved); if (state->cm_notify_state != NULL) { entry->cm_state = CM_NOTIFYING_ISSUED_SAVED; /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start notifying; try again. */ *when = cm_time_soonish; } break; case CM_NOTIFYING_ISSUED_SAVED: if (cm_notify_ready(state->cm_notify_state) == 0) { cm_notify_done(state->cm_notify_state); state->cm_notify_state = NULL; entry->cm_state = CM_MONITORING; *when = cm_time_soon; } else { /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED: /* We should already have the lock here. In cases where we're * resuming things at startup, try to acquire it if we don't * have it. */ if (!cm_writing_has_lock(entry, cm_ca_phase_invalid) && !cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release saving " "lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } state->cm_notify_state = cm_notify_start(entry, cm_notify_event_issued_ca_not_saved); if (state->cm_notify_state != NULL) { entry->cm_state = CM_NOTIFYING_ISSUED_CA_SAVE_FAILED; /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start notifying; try again. */ *when = cm_time_soonish; } break; case CM_NOTIFYING_ISSUED_CA_SAVE_FAILED: if (cm_notify_ready(state->cm_notify_state) == 0) { cm_notify_done(state->cm_notify_state); state->cm_notify_state = NULL; entry->cm_state = CM_NEED_TO_SAVE_CA_CERTS; *when = cm_time_soonish; } else { /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_TO_SAVE_ONLY_CA_CERTS: if (!cm_writing_has_lock(entry, cm_ca_phase_invalid) && !cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } entry->cm_state = CM_START_SAVING_ONLY_CA_CERTS; *when = cm_time_now; break; case CM_START_SAVING_ONLY_CA_CERTS: state->cm_casave_state = cm_casave_start(entry, NULL, context, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); if (state->cm_casave_state != NULL) { entry->cm_state = CM_SAVING_ONLY_CA_CERTS; /* Wait for status update, or poll. */ *readfd = cm_casave_get_fd(state->cm_casave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start saving CA certs; try again. */ *when = cm_time_soonish; } break; case CM_SAVING_ONLY_CA_CERTS: if (cm_casave_ready(state->cm_casave_state) == 0) { if (cm_casave_saved(state->cm_casave_state) == 0) { if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release saving " "lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } /* Saved certificates. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; entry->cm_state = CM_MONITORING; *when = cm_time_now; } else if (cm_casave_permissions_error(state->cm_casave_state) == 0) { if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release saving " "lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } /* Whoops, we need help. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; entry->cm_state = CM_NEED_ONLY_CA_CERT_SAVE_PERMS; *when = cm_time_now; } else { /* Failed to save certs. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; entry->cm_state = CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED; *when = cm_time_soonish; } } else { /* Wait for status update, or poll. */ *readfd = cm_casave_get_fd(state->cm_casave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEED_ONLY_CA_CERT_SAVE_PERMS: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED: /* We should already have the lock here. In cases where we're * resuming things at startup, try to acquire it if we don't * have it. */ if (!cm_writing_has_lock(entry, cm_ca_phase_invalid) && !cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for saving lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release saving " "lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } state->cm_notify_state = cm_notify_start(entry, cm_notify_event_ca_not_saved); if (state->cm_notify_state != NULL) { entry->cm_state = CM_NOTIFYING_ONLY_CA_SAVE_FAILED; /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start notifying; try again. */ *when = cm_time_soonish; } break; case CM_NOTIFYING_ONLY_CA_SAVE_FAILED: if (cm_notify_ready(state->cm_notify_state) == 0) { cm_notify_done(state->cm_notify_state); state->cm_notify_state = NULL; entry->cm_state = CM_MONITORING; *when = cm_time_soonish; } else { /* Wait for status update, or poll. */ *readfd = cm_notify_get_fd(state->cm_notify_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEWLY_ADDED: /* Take the lock here because the database is opened read-write * in case we need to set a password on it. */ if (!cm_writing_lock_by_entry(entry)) { /* Just hang out in this state while we're messing * around with the outside world for another entry. */ cm_log(3, "%s('%s') waiting for reading lock\n", entry->cm_busname, entry->cm_nickname); *when = cm_time_soon; break; } /* We need to do some recon, and then decide what we need to * do to make things the way the user has specified that they * should be. */ if (entry->cm_key_storage_type != cm_key_storage_none) { entry->cm_state = CM_NEWLY_ADDED_START_READING_KEYINFO; *when = cm_time_now; } else { entry->cm_state = CM_NEWLY_ADDED_START_READING_CERT; *when = cm_time_now; } break; case CM_NEWLY_ADDED_START_READING_KEYINFO: /* Try to read information about the key. */ state->cm_keyiread_state = cm_keyiread_start(entry); if (state->cm_keyiread_state != NULL) { entry->cm_state = CM_NEWLY_ADDED_READING_KEYINFO; /* Note that we're reading information about * the key. */ *readfd = cm_keyiread_get_fd(state->cm_keyiread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start reading info about the key; * try again soon. */ *when = cm_time_soonish; } break; case CM_NEWLY_ADDED_READING_KEYINFO: /* If we finished reading info about the key, move on to try * and read the certificate. */ if (cm_keyiread_ready(state->cm_keyiread_state) == 0) { if (cm_keyiread_finished_reading(state->cm_keyiread_state) == 0) { entry->cm_state = CM_NEWLY_ADDED_START_READING_CERT; *when = cm_time_now; } else if (cm_keyiread_need_token(state->cm_keyiread_state) == 0) { if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to * release the lock that we have, try * to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release " "reading lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } /* If we need the token, just hang on. */ entry->cm_state = CM_NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN; *when = cm_time_now; } else if (cm_keyiread_need_pin(state->cm_keyiread_state) == 0) { if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to * release the lock that we have, try * to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release " "reading lock, probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } /* If we need the PIN, just hang on. */ entry->cm_state = CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN; *when = cm_time_now; } else { /* Otherwise try to move on. */ entry->cm_state = CM_NEWLY_ADDED_START_READING_CERT; *when = cm_time_now; } cm_keyiread_done(state->cm_keyiread_state); state->cm_keyiread_state = NULL; } else { /* Wait for status update, or poll. */ *readfd = cm_keyiread_get_fd(state->cm_keyiread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEWLY_ADDED_NEED_KEYINFO_READ_PIN: /* Revisit this later. */ *when = cm_time_no_time; break; case CM_NEWLY_ADDED_START_READING_CERT: /* Try to read the certificate. */ state->cm_certread_state = cm_certread_start(entry); if (state->cm_certread_state != NULL) { entry->cm_state = CM_NEWLY_ADDED_READING_CERT; /* Note that we're reading information about * the certificate. */ *readfd = cm_certread_get_fd(state->cm_certread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start reading info about the certificate; * try again soon. */ *when = cm_time_soonish; } break; case CM_NEWLY_ADDED_READING_CERT: /* If we finished reading info about the cert, move on to try * to figure out what we should do next. */ if (cm_certread_ready(state->cm_certread_state) == 0) { cm_certread_done(state->cm_certread_state); state->cm_certread_state = NULL; entry->cm_state = CM_NEWLY_ADDED_DECIDING; *when = cm_time_now; } else { /* Wait for status update, or poll. */ *readfd = cm_certread_get_fd(state->cm_certread_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_NEWLY_ADDED_DECIDING: if (!cm_writing_unlock_by_entry(entry)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s') failed to release reading lock, " "probably a bug\n", entry->cm_busname, entry->cm_nickname); break; } /* Decide what to do next. Assign a CA if it doesn't have one * assigned to it already. */ if ((entry->cm_ca_nickname == NULL) && (entry->cm_cert_issuer != NULL)) { /* Walk the list of known names of known CAs and try to * match one with the issuer of the certificate we * already have. */ for (i = 0; i < (*get_n_cas)(context); i++) { tmp_ca = (*get_ca_by_index)(context, i); for (j = 0; (tmp_ca->cm_ca_known_issuer_names != NULL) && (tmp_ca->cm_ca_known_issuer_names[j] != NULL); j++) { if (strcmp(tmp_ca->cm_ca_known_issuer_names[j], entry->cm_cert_issuer) == 0) { entry->cm_ca_nickname = talloc_strdup(entry, tmp_ca->cm_nickname); } } } } /* No match -> assign the default. */ if (entry->cm_ca_nickname == NULL) { for (i = 0; i < (*get_n_cas)(context); i++) { tmp_ca = (*get_ca_by_index)(context, i); if (tmp_ca->cm_ca_is_default) { entry->cm_ca_nickname = talloc_strdup(entry, tmp_ca->cm_nickname); } } } /* No default in our data store -> use the config file's. */ if (entry->cm_ca_nickname == NULL) { tmp_ca_name = cm_prefs_default_ca(); if (tmp_ca_name != NULL) { entry->cm_ca_nickname = talloc_strdup(entry, tmp_ca_name); } } /* If we have a certificate in the expected location, we go * straight to monitoring it. If we didn't get any explicit * requests for names, SAN, KU and EKU values, then try to pull * them from the certificate, too. */ if (entry->cm_cert != NULL) { cm_store_set_if_not_set_s(entry, &entry->cm_template_subject_der, entry->cm_cert_subject_der); cm_store_set_if_not_set_s(entry, &entry->cm_template_subject, entry->cm_cert_subject); cm_store_set_if_not_set_as(entry, &entry->cm_template_hostname, entry->cm_cert_hostname); cm_store_set_if_not_set_as(entry, &entry->cm_template_email, entry->cm_cert_email); cm_store_set_if_not_set_as(entry, &entry->cm_template_principal, entry->cm_cert_principal); cm_store_set_if_not_set_as(entry, &entry->cm_template_ipaddress, entry->cm_cert_ipaddress); cm_store_set_if_not_set_s(entry, &entry->cm_template_ku, entry->cm_cert_ku); cm_store_set_if_not_set_s(entry, &entry->cm_template_eku, entry->cm_cert_eku); cm_store_set_if_not_set_s(entry, &entry->cm_template_ns_comment, entry->cm_cert_ns_comment); cm_store_set_if_not_set_s(entry, &entry->cm_template_profile, entry->cm_cert_profile); cm_store_set_if_not_set_s(entry, &entry->cm_template_ns_certtype, entry->cm_cert_ns_certtype); /* Walk the list of known names of known CAs and try to * find the entry's CA. */ tmp_ca = NULL; for (i = 0; i < (*get_n_cas)(context); i++) { tmp_ca = (*get_ca_by_index)(context, i); if ((tmp_ca->cm_nickname != NULL) && (entry->cm_ca_nickname != NULL) && (strcmp(entry->cm_ca_nickname, tmp_ca->cm_nickname) == 0)) { break; } tmp_ca = NULL; } /* If there's an associated CA, and we know of * certificates for it, and we need them to be stored * somewhere, we need to make sure they'll show up in * the expected locations. */ if ((tmp_ca != NULL) && (((tmp_ca->cm_ca_root_certs != NULL) && ((entry->cm_root_cert_store_files != NULL) || (entry->cm_root_cert_store_nssdbs != NULL))) || ((tmp_ca->cm_ca_other_root_certs != NULL) && ((entry->cm_other_root_cert_store_files != NULL) || (entry->cm_other_root_cert_store_nssdbs != NULL))) || ((tmp_ca->cm_ca_other_certs != NULL) && ((entry->cm_other_cert_store_files != NULL) || (entry->cm_other_cert_store_nssdbs != NULL))))) { cm_log(3, "%s('%s') already had a " "certificate, making sure CA " "certificates will be there\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_NEED_TO_SAVE_ONLY_CA_CERTS; } else { cm_log(3, "%s('%s') has a certificate, " "monitoring it\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_MONITORING; } *when = cm_time_now; } else /* If we don't have a certificate, but we know where the key * should be, we have some options. */ if (entry->cm_key_storage_type != cm_key_storage_none) { /* If we don't have a certificate, but we have a key, * the next step is to generate a CSR. */ if (entry->cm_key_type.cm_key_size > 0) { cm_log(3, "%s('%s') has no certificate, will " "attempt enrollment using " "already-present key\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_NEED_CSR; *when = cm_time_now; } else { /* No certificate, no key, start with * generating the key. */ cm_log(3, "%s('%s') has no key or certificate, " "will generate keys and attempt " "enrollment\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_NEED_KEY_PAIR; *when = cm_time_now; } } else { /* And if we don't have a place for the key, we're * screwed. Hopefully this didn't happen normally. */ cm_log(3, "%s('%s') has no key or certificate location," " don't know what to do about that\n", entry->cm_busname, entry->cm_nickname); entry->cm_state = CM_NEED_GUIDANCE; *when = cm_time_now; } break; case CM_INVALID: /* not reached */ abort(); break; } if (old_entry->cm_state != entry->cm_state) { cm_log(3, "%s('%s') moved to state '%s'\n", entry->cm_busname, entry->cm_nickname ? entry->cm_nickname : "(unnamed entry)", cm_store_state_as_string(entry->cm_state)); cm_store_entry_save(entry); } if (emit_entry_changes != NULL) { (*emit_entry_changes)(context, old_entry, entry); } talloc_free(old_entry); return 0; } /* Cancel and clean up any in-progress work and then free the working state. */ int cm_iterate_entry_done(struct cm_store_entry *entry, void *cm_iterate_state) { struct cm_entry_state *state; state = cm_iterate_state; if (state != NULL) { if (state->cm_submit_state != NULL) { cm_submit_done(state->cm_submit_state); state->cm_submit_state = NULL; } if (state->cm_csrgen_state != NULL) { cm_csrgen_done(state->cm_csrgen_state); state->cm_csrgen_state = NULL; } if (state->cm_scepgen_state != NULL) { cm_scepgen_done(state->cm_scepgen_state); state->cm_scepgen_state = NULL; } if (state->cm_keyiread_state != NULL) { cm_keyiread_done(state->cm_keyiread_state); state->cm_keyiread_state = NULL; } if (state->cm_keygen_state != NULL) { cm_keygen_done(state->cm_keygen_state); state->cm_keygen_state = NULL; } if (state->cm_notify_state != NULL) { cm_notify_done(state->cm_notify_state); state->cm_notify_state = NULL; } if (state->cm_casave_state != NULL) { cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; } talloc_free(state); } cm_entry_reset_state(entry); cm_log(3, "%s('%s') ends in state '%s'\n", entry->cm_busname, entry->cm_nickname, cm_store_state_as_string(entry->cm_state)); if (cm_writing_has_lock(entry, cm_ca_phase_invalid)) { cm_writing_unlock_by_entry(entry); } return 0; } /* Set up run-time data associated with the CA. */ int cm_iterate_ca_init(struct cm_store_ca *ca, enum cm_ca_phase phase, void **cm_iterate_state) { struct cm_ca_state *state; state = talloc_ptrtype(ca, state); if (state == NULL) { return ENOMEM; } memset(state, 0, sizeof(*state)); state->cm_phase = phase; ca->cm_ca_state[phase] = CM_CA_NEED_TO_REFRESH; *cm_iterate_state = state; if (cm_writing_has_lock(ca, phase)) { cm_writing_unlock_by_ca(ca, phase); } cm_store_ca_save(ca); cm_log(3, "%s('%s').%s starts (%s)\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase), cm_store_ca_state_as_string(ca->cm_ca_state[phase])); return 0; } int cm_iterate_ca(struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *), void (*emit_ca_changes)(struct cm_context *, struct cm_store_ca *, struct cm_store_ca *), void *cm_iterate_state, enum cm_time *when, int *delay, int *readfd) { struct cm_store_ca *old_ca; struct cm_ca_state *state = cm_iterate_state; *readfd = -1; old_ca = cm_store_ca_dup(ca, ca); switch (ca->cm_ca_state[state->cm_phase]) { case CM_CA_NEED_TO_REFRESH: switch (state->cm_phase) { case cm_ca_phase_identify: state->cm_task_state = cm_cadata_start_identify(ca); break; case cm_ca_phase_certs: state->cm_task_state = cm_cadata_start_certs(ca); break; case cm_ca_phase_profiles: state->cm_task_state = cm_cadata_start_profiles(ca); break; case cm_ca_phase_default_profile: state->cm_task_state = cm_cadata_start_default_profile(ca); break; case cm_ca_phase_enroll_reqs: state->cm_task_state = cm_cadata_start_enroll_reqs(ca); break; case cm_ca_phase_renew_reqs: state->cm_task_state = cm_cadata_start_renew_reqs(ca); break; case cm_ca_phase_capabilities: state->cm_task_state = cm_cadata_start_capabilities(ca); break; case cm_ca_phase_encryption_certs: state->cm_task_state = cm_cadata_start_encryption_certs(ca); break; case cm_ca_phase_invalid: abort(); break; } if (state->cm_task_state == NULL) { ca->cm_ca_state[state->cm_phase] = CM_CA_DISABLED; *when = cm_time_now; } else { ca->cm_ca_state[state->cm_phase] = CM_CA_REFRESHING; *readfd = cm_cadata_get_fd(state->cm_task_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_CA_REFRESHING: if (cm_cadata_ready(state->cm_task_state) == 0) { if (cm_cadata_modified(state->cm_task_state) == 0) { cm_log(3, "%s('%s').%s data updated\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); cm_cadata_done(state->cm_task_state); state->cm_task_state = NULL; switch (state->cm_phase) { case cm_ca_phase_certs: ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_SAVE_DATA; break; case cm_ca_phase_identify: case cm_ca_phase_profiles: case cm_ca_phase_default_profile: case cm_ca_phase_enroll_reqs: case cm_ca_phase_renew_reqs: case cm_ca_phase_capabilities: if (emit_ca_changes != NULL) { cm_restart_entries_by_ca(context, ca->cm_nickname); } ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_ANALYZE; break; case cm_ca_phase_encryption_certs: if (emit_ca_changes != NULL) { cm_restart_entries_by_ca(context, ca->cm_nickname); } ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_ANALYZE; break; case cm_ca_phase_invalid: abort(); break; } *when = cm_time_now; } else if (cm_cadata_needs_retry(state->cm_task_state) == 0) { *when = cm_time_delay; *delay = cm_cadata_specified_delay(state->cm_task_state); if (*delay < 0) { *delay = cm_decide_cadata_delay(); } cm_cadata_done(state->cm_task_state); state->cm_task_state = NULL; cm_log(3, "%s('%s').%s server needs retry\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_REFRESH; } else if (cm_cadata_rejected(state->cm_task_state) == 0) { cm_cadata_done(state->cm_task_state); state->cm_task_state = NULL; cm_log(3, "%s('%s').%s server doesn't support that\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); ca->cm_ca_state[state->cm_phase] = CM_CA_IDLE; *when = cm_time_delay; *delay = CM_DELAY_CA_POLL_MAXIMUM; } else if (cm_cadata_unreachable(state->cm_task_state) == 0) { cm_cadata_done(state->cm_task_state); state->cm_task_state = NULL; cm_log(3, "%s('%s').%s server unreachable\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); ca->cm_ca_state[state->cm_phase] = CM_CA_DATA_UNREACHABLE; *when = cm_time_delay; *delay = cm_decide_cadata_delay(); } else if (cm_cadata_unsupported(state->cm_task_state) == 0) { cm_cadata_done(state->cm_task_state); switch (state->cm_phase) { case cm_ca_phase_certs: ca->cm_ca_root_certs = NULL; ca->cm_ca_other_root_certs = NULL; ca->cm_ca_other_certs = NULL; break; case cm_ca_phase_identify: break; case cm_ca_phase_profiles: break; case cm_ca_phase_default_profile: break; case cm_ca_phase_enroll_reqs: break; case cm_ca_phase_renew_reqs: break; case cm_ca_phase_capabilities: ca->cm_ca_capabilities = NULL; break; case cm_ca_phase_encryption_certs: ca->cm_ca_encryption_cert = NULL; ca->cm_ca_encryption_issuer_cert = NULL; ca->cm_ca_encryption_cert_pool = NULL; break; case cm_ca_phase_invalid: abort(); break; } state->cm_task_state = NULL; cm_log(3, "%s('%s').%s retrieval unsupported\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); ca->cm_ca_state[state->cm_phase] = CM_CA_DISABLED; *when = cm_time_now; } else if (cm_cadata_unconfigured(state->cm_task_state) == 0) { cm_cadata_done(state->cm_task_state); state->cm_task_state = NULL; cm_log(3, "%s('%s').%s missing configuration\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); ca->cm_ca_state[state->cm_phase] = CM_CA_DATA_UNREACHABLE; *when = cm_time_delay; *delay = cm_decide_cadata_delay(); } else { cm_cadata_done(state->cm_task_state); state->cm_task_state = NULL; cm_log(3, "%s('%s').%s data is unchanged\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_ANALYZE; *when = cm_time_now; } } else { /* Wait for status update, or poll. */ *readfd = cm_cadata_get_fd(state->cm_task_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_CA_NEED_TO_SAVE_DATA: if (!cm_writing_lock_by_ca(ca, state->cm_phase)) { /* Just hang out in this state while we're messing * around with the outside world for another CA. */ cm_log(3, "%s('%s').%s waiting for saving lock\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); *when = cm_time_soon; break; } state->cm_hook_state = cm_hook_start_ca_presave(ca, context, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); if (state->cm_hook_state != NULL) { /* Note that we're doing the pre-save. */ ca->cm_ca_state[state->cm_phase] = CM_CA_PRE_SAVE_DATA; /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start the pre-save; skip it. */ ca->cm_ca_state[state->cm_phase] = CM_CA_START_SAVING_DATA; *when = cm_time_now; } break; case CM_CA_PRE_SAVE_DATA: if (cm_hook_ready(state->cm_hook_state) == 0) { cm_hook_done(state->cm_hook_state); state->cm_hook_state = NULL; ca->cm_ca_state[state->cm_phase] = CM_CA_START_SAVING_DATA; *when = cm_time_now; } else { /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_CA_START_SAVING_DATA: state->cm_casave_state = cm_casave_start(NULL, ca, context, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); if (state->cm_casave_state != NULL) { ca->cm_ca_state[state->cm_phase] = CM_CA_SAVING_DATA; /* Wait for status update, or poll. */ *readfd = cm_casave_get_fd(state->cm_casave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_CA_SAVING_DATA: if (cm_casave_ready(state->cm_casave_state) == 0) { if (cm_casave_saved(state->cm_casave_state) == 0) { /* Saved certificates. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_POST_SAVE_DATA; *when = cm_time_now; } else if (cm_casave_permissions_error(state->cm_casave_state) == 0) { /* Whoops, we need help. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_POST_SAVE_DATA; *when = cm_time_now; } else { /* Failed to save certs. */ cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_POST_SAVE_DATA; *when = cm_time_soonish; } } else { /* Wait for status update, or poll. */ *readfd = cm_casave_get_fd(state->cm_casave_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_CA_NEED_POST_SAVE_DATA: state->cm_hook_state = cm_hook_start_ca_postsave(ca, context, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries); if (state->cm_hook_state != NULL) { /* Note that we're doing the post-save. */ ca->cm_ca_state[state->cm_phase] = CM_CA_POST_SAVE_DATA; /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } else { /* Failed to start the post-save, or nothing to do; * skip it. */ ca->cm_ca_state[state->cm_phase] = CM_CA_SAVED_DATA; *when = cm_time_now; } break; case CM_CA_POST_SAVE_DATA: if (cm_hook_ready(state->cm_hook_state) == 0) { cm_hook_done(state->cm_hook_state); state->cm_hook_state = NULL; ca->cm_ca_state[state->cm_phase] = CM_CA_SAVED_DATA; *when = cm_time_now; } else { /* Wait for status update, or poll. */ *readfd = cm_hook_get_fd(state->cm_hook_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case CM_CA_SAVED_DATA: if (!cm_writing_unlock_by_ca(ca, state->cm_phase)) { /* If for some reason we fail to release the lock that * we have, try to release it again soon. */ *when = cm_time_soon; cm_log(1, "%s('%s').%s failed to release saving " "lock, probably a bug\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase)); break; } ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_ANALYZE; *when = cm_time_now; break; case CM_CA_NEED_TO_ANALYZE: switch (state->cm_phase) { case cm_ca_phase_certs: state->cm_ca_cert_analyze_state = cm_ca_analyze_start_certs(ca); if (state->cm_ca_cert_analyze_state == NULL) { ca->cm_ca_state[state->cm_phase] = CM_CA_DISABLED; *when = cm_time_now; } else { *readfd = cm_ca_analyze_get_fd(state->cm_ca_cert_analyze_state); if (*readfd == -1) { cm_ca_analyze_done(state->cm_ca_cert_analyze_state); ca->cm_ca_state[state->cm_phase] = CM_CA_DISABLED; } else { ca->cm_ca_state[state->cm_phase] = CM_CA_ANALYZING; *when = cm_time_no_time; } } break; case cm_ca_phase_identify: case cm_ca_phase_profiles: case cm_ca_phase_default_profile: case cm_ca_phase_enroll_reqs: case cm_ca_phase_renew_reqs: case cm_ca_phase_capabilities: ca->cm_ca_state[state->cm_phase] = CM_CA_IDLE; *when = cm_time_now; break; case cm_ca_phase_encryption_certs: state->cm_ca_ecert_analyze_state = cm_ca_analyze_start_encryption_certs(ca); if (state->cm_ca_ecert_analyze_state == NULL) { ca->cm_ca_state[state->cm_phase] = CM_CA_DISABLED; *when = cm_time_now; } else { *readfd = cm_ca_analyze_get_fd(state->cm_ca_ecert_analyze_state); if (*readfd == -1) { cm_ca_analyze_done(state->cm_ca_ecert_analyze_state); ca->cm_ca_state[state->cm_phase] = CM_CA_DISABLED; } else { ca->cm_ca_state[state->cm_phase] = CM_CA_ANALYZING; *when = cm_time_no_time; } } break; case cm_ca_phase_invalid: abort(); break; } break; case CM_CA_ANALYZING: switch (state->cm_phase) { case cm_ca_phase_certs: if (cm_ca_analyze_ready(state->cm_ca_cert_analyze_state) == 0) { state->cm_cert_refresh_delay = cm_ca_analyze_get_delay(state->cm_ca_cert_analyze_state); cm_ca_analyze_done(state->cm_ca_cert_analyze_state); state->cm_ca_cert_analyze_state = NULL; if (state->cm_cert_refresh_delay != 0) { ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_REFRESH; *delay = state->cm_cert_refresh_delay; if (*delay < CM_DELAY_CA_POLL_MINIMUM) { *delay = CM_DELAY_CA_POLL_MINIMUM; } if (*delay > CM_DELAY_CA_POLL_MAXIMUM) { *delay = CM_DELAY_CA_POLL_MAXIMUM; } *when = cm_time_delay; } else { ca->cm_ca_state[state->cm_phase] = CM_CA_IDLE; *when = cm_time_now; } } else { /* Wait for status update, or poll. */ *readfd = cm_ca_analyze_get_fd(state->cm_ca_cert_analyze_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case cm_ca_phase_encryption_certs: if (cm_ca_analyze_ready(state->cm_ca_ecert_analyze_state) == 0) { state->cm_ecert_refresh_delay = cm_ca_analyze_get_delay(state->cm_ca_ecert_analyze_state); cm_ca_analyze_done(state->cm_ca_ecert_analyze_state); state->cm_ca_ecert_analyze_state = NULL; if (state->cm_ecert_refresh_delay != 0) { ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_REFRESH; *delay = state->cm_ecert_refresh_delay; if (*delay < CM_DELAY_CA_POLL_MINIMUM) { *delay = CM_DELAY_CA_POLL_MINIMUM; } if (*delay > CM_DELAY_CA_POLL_MAXIMUM) { *delay = CM_DELAY_CA_POLL_MAXIMUM; } *when = cm_time_delay; } else { ca->cm_ca_state[state->cm_phase] = CM_CA_IDLE; *when = cm_time_now; } } else { /* Wait for status update, or poll. */ *readfd = cm_ca_analyze_get_fd(state->cm_ca_ecert_analyze_state); if (*readfd == -1) { *when = cm_time_soon; } else { *when = cm_time_no_time; } } break; case cm_ca_phase_identify: case cm_ca_phase_profiles: case cm_ca_phase_default_profile: case cm_ca_phase_enroll_reqs: case cm_ca_phase_renew_reqs: case cm_ca_phase_capabilities: case cm_ca_phase_invalid: abort(); break; } break; case CM_CA_DATA_UNREACHABLE: ca->cm_ca_state[state->cm_phase] = CM_CA_NEED_TO_REFRESH; *when = cm_time_soonish; break; case CM_CA_IDLE: case CM_CA_DISABLED: *when = cm_time_no_time; break; } if (ca->cm_ca_state[state->cm_phase] != old_ca->cm_ca_state[state->cm_phase]) { cm_log(3, "%s('%s').%s moved to state '%s'\n", ca->cm_busname, ca->cm_nickname, cm_store_ca_phase_as_string(state->cm_phase), cm_store_ca_state_as_string(ca->cm_ca_state[state->cm_phase])); cm_store_ca_save(ca); } if (emit_ca_changes != NULL) { (*emit_ca_changes)(context, old_ca, ca); } talloc_free(old_ca); return 0; } /* Cancel and clean up any in-progress work and then free the working state. */ int cm_iterate_ca_done(struct cm_store_ca *ca, void *cm_iterate_state) { struct cm_ca_state *state; enum cm_ca_phase phase = cm_ca_phase_invalid; const char *phases, *states; state = cm_iterate_state; phases = cm_store_ca_phase_as_string(phase); states = cm_store_ca_state_as_string(CM_CA_DISABLED); if (state != NULL) { phase = state->cm_phase, phases = cm_store_ca_phase_as_string(phase), states = cm_store_ca_state_as_string(ca->cm_ca_state[phase]); if (state->cm_ca_cert_analyze_state != NULL) { cm_ca_analyze_done(state->cm_ca_cert_analyze_state); state->cm_ca_cert_analyze_state = NULL; } if (state->cm_ca_ecert_analyze_state != NULL) { cm_ca_analyze_done(state->cm_ca_ecert_analyze_state); state->cm_ca_ecert_analyze_state = NULL; } if (state->cm_task_state != NULL) { cm_cadata_done(state->cm_task_state); state->cm_task_state = NULL; } if (state->cm_hook_state != NULL) { cm_hook_done(state->cm_hook_state); state->cm_hook_state = NULL; } if (state->cm_casave_state != NULL) { cm_casave_done(state->cm_casave_state); state->cm_casave_state = NULL; } talloc_free(state); } cm_log(3, "%s('%s').%s ends (%s)\n", ca->cm_busname, ca->cm_nickname, phases, states); if (cm_writing_has_lock(ca, phase)) { cm_writing_unlock_by_ca(ca, phase); } return 0; } certmonger-0.78.6/src/hook.h0000664000175000017500000000550612645513264012622 00000000000000/* * Copyright (C) 2012,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmhook_h #define cmhook_h struct cm_hook_state; struct cm_store_entry; struct cm_store_ca; struct cm_context; /* Start doing whatever we need to before saving the certificate to the * configured location. */ struct cm_hook_state *cm_hook_start_presave(struct cm_store_entry *entry, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)); struct cm_hook_state *cm_hook_start_ca_presave(struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)); /* Start doing whatever we need to after saving the certificate to the * configured location. */ struct cm_hook_state *cm_hook_start_postsave(struct cm_store_entry *entry, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)); struct cm_hook_state *cm_hook_start_ca_postsave(struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)); /* Check if something changed, for example we finished doing whatever it is * that we're doing. */ int cm_hook_ready(struct cm_hook_state *state); /* Get a selectable-for-read descriptor which will either have data or be * closed when status changes. */ int cm_hook_get_fd(struct cm_hook_state *state); /* Clean up after ourselves. */ void cm_hook_done(struct cm_hook_state *state); #endif certmonger-0.78.6/src/hook.c0000664000175000017500000004002112645513264012604 00000000000000/* * Copyright (C) 2009,2011,2012,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "hook.h" #include "prefs.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "tm.h" enum cm_hook_type { cm_hook_pre_save, cm_hook_post_save, cm_hook_ca_pre_save, cm_hook_ca_post_save, }; struct cm_hook_state { struct cm_store_ca *ca; struct cm_store_entry *entry; struct cm_subproc_state *subproc; struct cm_hook_list { char *command; uid_t uid; struct cm_hook_list *next; } *hooks; }; /* Fire off a single subprocess. */ static int cm_hook_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { char **argv; const char *error; struct passwd *pwd; struct cm_hook_state *state = userdata; argv = cm_subproc_parse_args(userdata, state->hooks->command, &error); if (error != NULL) { cm_log(-2, "Error parsing \"%s\": %s; not running it.\n", state->hooks->command, error); return -1; } pwd = getpwuid(state->hooks->uid); if (pwd == NULL) { cm_log(-2, "Error on getpwuid(%lu): %s, not running \"%s\".\n", (unsigned long) state->hooks->uid, strerror(errno), state->hooks->command); return -1; } if (initgroups(pwd->pw_name, pwd->pw_gid) == -1) { if (getuid() != 0) { cm_log(0, "Error on initgroups(%s,%lu): %s, " "continuing and running \"%s\" anyway.\n", pwd->pw_name, (unsigned long) state->hooks->uid, strerror(errno), state->hooks->command); } else { cm_log(-2, "Error on initgroups(%s,%lu): %s, " "not running \"%s\".\n", pwd->pw_name, (unsigned long) state->hooks->uid, strerror(errno), state->hooks->command); return -1; } } if (setregid(pwd->pw_gid, pwd->pw_gid) == -1) { cm_log(-2, "Error on setregid(%lu,%lu,%lu): %s, " "not running \"%s\".\n", (unsigned long) pwd->pw_gid, (unsigned long) pwd->pw_gid, (unsigned long) pwd->pw_gid, strerror(errno), state->hooks->command); return -1; } if (setreuid(pwd->pw_uid, pwd->pw_uid) == -1) { cm_log(0, "Error on setreuid(%lu,%lu,%lu): %s, " "not running \"%s\".\n", (unsigned long) pwd->pw_uid, (unsigned long) pwd->pw_uid, (unsigned long) pwd->pw_uid, strerror(errno), state->hooks->command); return -1; } cm_subproc_mark_most_cloexec(fd, -1, -1); if (execvp(argv[0], argv) == -1) { cm_log(0, "Error execvp()ing command \"%s\" (\"%s\"): %s.\n", argv[0], state->hooks->command, strerror(errno)); return -1; } return -1; } /* Start the command at the head of the hooks list. */ static struct cm_hook_state * cm_hook_start(struct cm_store_ca *ca, struct cm_store_entry *entry, void *parent, const char *hook_type, struct cm_hook_list *hooks) { struct cm_hook_state *state; if (hooks == NULL) { cm_log(1, "No hooks set for %s command.\n", hook_type); return NULL; } state = talloc_ptrtype(parent, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->hooks = hooks; talloc_steal(state, hooks); state->subproc = cm_subproc_start(cm_hook_main, state, ca, entry, state); if (state->subproc == NULL) { cm_log(0, "Error starting command \"%s\".\n", state->hooks->command); talloc_free(state); state = NULL; } } else { talloc_free(hooks); } return state; } /* Add a single hook to the list of hooks if it's not already there. */ static struct cm_hook_list * add_hook(struct cm_hook_list *hooks, const char *hook, const char *hook_uid) { struct cm_hook_list *tmp = NULL, *cur = NULL, *tail = NULL; char *p; long l; if ((hook == NULL) || (hook_uid == NULL)) { return hooks; } p = NULL; l = strtol(hook_uid, &p, 10); if ((p == NULL) || (*p != '\0')) { cm_log(1, "Error parsing \"%s\" as a numeric UID.\n", hook_uid); return hooks; } if (hooks != NULL) { cur = hooks; tail = cur; while (cur != NULL) { cm_log(3, "Checking old hook \"%s\" (%lu) \"%s\" (%s).\n", cur->command, (unsigned long) cur->uid, hook, hook_uid); if ((cur->uid == l) && (strcmp(cur->command, hook) == 0)) { cm_log(3, "... already in list.\n"); return hooks; } cm_log(3, "... not in list.\n"); tail = cur; cur = cur->next; } tmp = talloc_ptrtype(tail, tmp); } else { tmp = talloc_ptrtype(NULL, tmp); } if (tmp == NULL) { cm_log(1, "Out of memory parsing hook \"%s\".\n", hook); return hooks; } memset(tmp, 0, sizeof(*tmp)); tmp->command = talloc_strdup(tmp, hook); if (tmp->command == NULL) { cm_log(1, "Out of memory parsing hook \"%s\".\n", hook); talloc_free(tmp); return hooks; } tmp->uid = l; cm_log(3, "Adding hook \"%s\" (%lu).\n", tmp->command, (unsigned long) tmp->uid); if (hooks == NULL) { return tmp; } else { tail->next = tmp; return hooks; } } /* Add the right hook if we have a matching save location. */ static struct cm_hook_list * add_hook_if_match(struct cm_hook_list *hooks, const char *hook, const char *hook_uid, char **list1, char **list2) { int i, j; if ((list1 != NULL) && (list2 != NULL)) { for (i = 0; list1[i] != NULL; i++) { for (j = 0; list2[j] != NULL; j++) { if (strcmp(list1[i], list2[j]) == 0) { hooks = add_hook(hooks, hook, hook_uid); } } } } return hooks; } /* Walk the list of entries and CAs, and if an entry or CA defines a hook of * the specified type, and the locations where that entry or CA will be storing * certificates is in one of the passed-in lists of files or databases, add the * hook to the list. */ static struct cm_hook_list * collect_hooks(struct cm_context *context, struct cm_hook_list *hooks, enum cm_hook_type hook_type, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *), char **files, char **nssdbs) { struct cm_store_entry *entry; struct cm_store_ca *ca; const char *hook = NULL, *hook_uid = NULL; int i; for (i = 0; (get_n_cas != NULL) && (i < get_n_cas(context)); i++) { ca = get_ca_by_index(context, i); hook = NULL; hook_uid = NULL; switch (hook_type) { case cm_hook_pre_save: case cm_hook_ca_pre_save: hook = ca->cm_ca_pre_save_command; hook_uid = ca->cm_ca_pre_save_uid; break; case cm_hook_post_save: case cm_hook_ca_post_save: hook = ca->cm_ca_post_save_command; hook_uid = ca->cm_ca_post_save_uid; break; } if ((hook == NULL) || (hook_uid == NULL)) { continue; } hooks = add_hook_if_match(hooks, hook, hook_uid, files, ca->cm_ca_root_cert_store_files); hooks = add_hook_if_match(hooks, hook, hook_uid, files, ca->cm_ca_other_root_cert_store_files); hooks = add_hook_if_match(hooks, hook, hook_uid, files, ca->cm_ca_other_cert_store_files); hooks = add_hook_if_match(hooks, hook, hook_uid, nssdbs, ca->cm_ca_root_cert_store_nssdbs); hooks = add_hook_if_match(hooks, hook, hook_uid, nssdbs, ca->cm_ca_other_root_cert_store_nssdbs); hooks = add_hook_if_match(hooks, hook, hook_uid, nssdbs, ca->cm_ca_other_cert_store_nssdbs); } for (i = 0; (get_n_entries != NULL) && (i < get_n_entries(context)); i++) { entry = get_entry_by_index(context, i); hook = NULL; hook_uid = NULL; switch (hook_type) { case cm_hook_pre_save: case cm_hook_ca_pre_save: hook = entry->cm_pre_certsave_command; hook_uid = entry->cm_pre_certsave_uid; break; case cm_hook_post_save: case cm_hook_ca_post_save: hook = entry->cm_post_certsave_command; hook_uid = entry->cm_post_certsave_uid; break; } if ((hook == NULL) || (hook_uid == NULL)) { continue; } hooks = add_hook_if_match(hooks, hook, hook_uid, files, entry->cm_root_cert_store_files); hooks = add_hook_if_match(hooks, hook, hook_uid, files, entry->cm_other_root_cert_store_files); hooks = add_hook_if_match(hooks, hook, hook_uid, files, entry->cm_other_cert_store_files); hooks = add_hook_if_match(hooks, hook, hook_uid, nssdbs, entry->cm_root_cert_store_nssdbs); hooks = add_hook_if_match(hooks, hook, hook_uid, nssdbs, entry->cm_other_root_cert_store_nssdbs); hooks = add_hook_if_match(hooks, hook, hook_uid, nssdbs, entry->cm_other_cert_store_nssdbs); } return hooks; } /* Start the pre-save hook. */ struct cm_hook_state * cm_hook_start_presave(struct cm_store_entry *entry, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)) { struct cm_hook_list *hooks = NULL; /* Make a list of the presave hooks from all of the entries and CAs * which reference the storage locations for the certificates that are * referenced by this entry. */ hooks = collect_hooks(context, hooks, cm_hook_pre_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, entry->cm_root_cert_store_files, entry->cm_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_pre_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, entry->cm_other_root_cert_store_files, entry->cm_other_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_pre_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, entry->cm_other_cert_store_files, entry->cm_other_cert_store_nssdbs); /* Add the entry's own presave hook. */ hooks = add_hook(hooks, entry->cm_pre_certsave_command, entry->cm_pre_certsave_uid); return cm_hook_start(NULL, entry, context, "pre-save", hooks); } /* Start the post-save hook. */ struct cm_hook_state * cm_hook_start_postsave(struct cm_store_entry *entry, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)) { struct cm_hook_list *hooks = NULL; /* Make a list of the postsave hooks from all of the entries and CAs * which reference the storage locations for the certificates that are * referenced by this entry. */ hooks = collect_hooks(context, hooks, cm_hook_post_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, entry->cm_root_cert_store_files, entry->cm_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_post_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, entry->cm_other_root_cert_store_files, entry->cm_other_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_post_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, entry->cm_other_cert_store_files, entry->cm_other_cert_store_nssdbs); /* Add the entry's own postsave hook. */ hooks = add_hook(hooks, entry->cm_post_certsave_command, entry->cm_post_certsave_uid); return cm_hook_start(NULL, entry, context, "post-save", hooks); } /* Start the CA pre-save hook. */ struct cm_hook_state * cm_hook_start_ca_presave(struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)) { struct cm_hook_list *hooks = NULL; /* Make a list of the presave hooks from all of the entries and CAs * which reference the storage locations for the certificates that are * referenced by this CA. */ hooks = collect_hooks(context, hooks, cm_hook_ca_pre_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, ca->cm_ca_root_cert_store_files, ca->cm_ca_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_ca_pre_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, ca->cm_ca_other_root_cert_store_files, ca->cm_ca_other_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_ca_pre_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, ca->cm_ca_other_cert_store_files, ca->cm_ca_other_cert_store_nssdbs); return cm_hook_start(ca, NULL, context, "ca-pre-save", hooks); } /* Start the CA post-save hook. */ struct cm_hook_state * cm_hook_start_ca_postsave(struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)) { struct cm_hook_list *hooks = NULL; /* Make a list of the postsave hooks from all of the entries and CAs * which reference the storage locations for the certificates that are * referenced by this CA. */ hooks = collect_hooks(context, hooks, cm_hook_ca_post_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, ca->cm_ca_root_cert_store_files, ca->cm_ca_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_ca_post_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, ca->cm_ca_other_root_cert_store_files, ca->cm_ca_other_root_cert_store_nssdbs); hooks = collect_hooks(context, hooks, cm_hook_ca_post_save, get_ca_by_index, get_n_cas, get_entry_by_index, get_n_entries, ca->cm_ca_other_cert_store_files, ca->cm_ca_other_cert_store_nssdbs); return cm_hook_start(ca, NULL, context, "ca-post-save", hooks); } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_hook_get_fd(struct cm_hook_state *state) { if (state->subproc != NULL) { return cm_subproc_get_fd(state->subproc); } return -1; } /* Check if our child process has exited. */ int cm_hook_ready(struct cm_hook_state *state) { int result = -1; if (state->subproc != NULL) { result = cm_subproc_ready(state->subproc); } if (result == 0) { if (state->hooks->next != NULL) { /* Clean up this subprocess. */ if (state->subproc != NULL) { cm_subproc_done(state->subproc); } /* Start the next subprocess. */ state->hooks = state->hooks->next; state->subproc = cm_subproc_start(cm_hook_main, state, state->ca, state->entry, state); if (state->subproc == NULL) { cm_log(0, "Error starting command \"%s\".\n", state->hooks->command); } else { /* "Try again", though the caller will actually * be waiting on the new subprocess. */ return -1; } } } return result; } /* Clean up after... well, we don't really know. */ void cm_hook_done(struct cm_hook_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } certmonger-0.78.6/src/env-shared.c0000664000175000017500000000264112645513264013706 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include "env.h" char * cm_env_config(const char *subdir, const char *subfile) { const char *config; char *ret; int len; if ((subdir == NULL) && (subfile == NULL)) { return NULL; } config = cm_env_config_dir(); if (config != NULL) { len = strlen(config); if (subdir != NULL) { len += (strlen(subdir) + 1); } if (subfile != NULL) { len += (strlen(subfile) + 1); } ret = malloc(len + 1); if (ret != NULL) { strcpy(ret, config); if (subdir != NULL) { strcat(ret, "/"); strcat(ret, subdir); } if (subfile != NULL) { strcat(ret, "/"); strcat(ret, subfile); } } } else { ret = NULL; } return ret; } certmonger-0.78.6/src/env.h0000664000175000017500000000220412645513264012442 00000000000000/* * Copyright (C) 2011 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmenv_h #define cmenv_h char *cm_env_config_dir(void); char *cm_env_config(const char *subdir, const char *subfile); char *cm_env_lock_file(void); char *cm_env_request_dir(void); char *cm_env_local_ca_dir(void); char *cm_env_ca_dir(void); char *cm_env_tmp_dir(void); char *cm_env_home_dir(void); char *cm_env_whoami(void); enum cm_tdbus_type cm_env_default_bus(void); dbus_bool_t cm_env_default_fork(void); int cm_env_default_bus_timeout(void); #endif certmonger-0.78.6/src/csrgen-n.c0000664000175000017500000010126112645513264013364 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certext.h" #include "csrgen.h" #include "csrgen-int.h" #include "keygen.h" #include "keyiread-n.h" #include "log.h" #include "pin.h" #include "prefs-n.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-m.h" #include "util-n.h" struct cm_csrgen_state { struct cm_csrgen_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; /* Ad-hoc. */ static const SEC_ASN1Template cm_csrgen_n_cert_tmpattr_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(CERTAttribute), }, { .kind = SEC_ASN1_OBJECT_ID, .offset = offsetof(CERTAttribute, attrType), .sub = NULL, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_SET_OF, .offset = offsetof(CERTAttribute, attrValue), .sub = &SEC_OctetStringTemplate, .size = 0, }, {0, 0, NULL, 0}, }; static const SEC_ASN1Template cm_csrgen_n_set_of_cert_tmpattr_template[] = { { .kind = SEC_ASN1_SET_OF, .offset = 0, .sub = cm_csrgen_n_cert_tmpattr_template, .size = 0, }, }; static const SEC_ASN1Template cm_csrgen_n_cert_pkac_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(CERTPublicKeyAndChallenge), }, { .kind = SEC_ASN1_ANY, .offset = offsetof(CERTPublicKeyAndChallenge, spki), .sub = NULL, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_IA5_STRING, .offset = offsetof(CERTPublicKeyAndChallenge, challenge), .sub = &SEC_IA5StringTemplate, .size = sizeof(SECItem), }, {0, 0, NULL, 0}, }; static int compare_items(const void *a, const void *b) { return SECITEM_CompareItem(a, b); } static SECItem * cm_csrgen_n_attributes(struct cm_store_entry *entry, NSSInitContext *ctx, PLArenaPool *arena) { SECItem encoded_exts, *exts[2]; unsigned char *extensions; char *nickname; size_t extensions_length; CERTAttribute attr[3]; SECOidData *oid; SECItem *item, friendly, *friendlies[2], encoded, encattr[3], plain; SECItem *encattrs[4], **encattrs_ptr, password, *passwords[2], bmp; char *challenge_password; int i, n_attrs; i = 0; /* Build an attribute to hold the friendly name. */ oid = SECOID_FindOIDByTag(SEC_OID_PKCS9_FRIENDLY_NAME); if (oid != NULL) { if (entry->cm_cert_nickname != NULL) { nickname = entry->cm_cert_nickname; } else if (entry->cm_key_nickname != NULL) { nickname = entry->cm_key_nickname; } else { nickname = entry->cm_nickname; } if (nickname != NULL) { memset(&bmp, 0, sizeof(bmp)); if ((cm_store_utf8_to_bmp_string(nickname, &bmp.data, &bmp.len) == 0) && (SEC_ASN1EncodeItem(arena, &friendly, &bmp, SEC_BMPStringTemplate) == &friendly)) { friendlies[0] = &friendly; friendlies[1] = NULL; attr[i].attrType = oid->oid; attr[i].attrValue = friendlies; i++; } free(bmp.data); } } /* Build the extension list. */ extensions = NULL; cm_certext_build_csr_extensions(entry, ctx, &extensions, &extensions_length); /* Build an attribute to hold the extensions. */ if ((extensions != NULL) && (extensions_length > 0)) { encoded_exts.data = extensions; encoded_exts.len = extensions_length; exts[0] = &encoded_exts; exts[1] = NULL; oid = SECOID_FindOIDByTag(SEC_OID_PKCS9_EXTENSION_REQUEST); if (oid != NULL) { attr[i].attrType = oid->oid; attr[i].attrValue = exts; i++; } } /* Build an attribute to hold the challenge password. */ cm_csrgen_read_challenge_password(entry, &challenge_password); oid = SECOID_FindOIDByTag(SEC_OID_PKCS9_CHALLENGE_PASSWORD); if (oid != NULL) { memset(&plain, 0, sizeof(plain)); plain.data = (unsigned char *) challenge_password; if (plain.data != NULL) { plain.len = strlen(challenge_password); if (SEC_ASN1EncodeItem(arena, &password, &plain, SEC_PrintableStringTemplate) == &password) { passwords[0] = &password; passwords[1] = NULL; attr[i].attrType = oid->oid; attr[i].attrValue = passwords; i++; } else if (SEC_ASN1EncodeItem(arena, &password, &plain, SEC_UTF8StringTemplate) == &password) { passwords[0] = &password; passwords[1] = NULL; attr[i].attrType = oid->oid; attr[i].attrValue = passwords; i++; } } } n_attrs = i; for (i = 0; i < n_attrs; i++) { memset(&encattr[i], 0, sizeof(encattr[i])); if (SEC_ASN1EncodeItem(arena, &encattr[i], &attr[i], cm_csrgen_n_cert_tmpattr_template) != &encattr[i]) { break; } } if (i == n_attrs) { qsort(&encattr[0], n_attrs, sizeof(encattr[0]), compare_items); for (i = 0; i < n_attrs; i++) { encattrs[i] = &encattr[i]; } encattrs[i] = NULL; encattrs_ptr = &encattrs[0]; if (SEC_ASN1EncodeItem(arena, &encoded, &encattrs_ptr, SEC_SetOfAnyTemplate) == &encoded) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { cm_log(1, "Error encoding set of request attributes.\n"); item = NULL; } } else { item = NULL; } return item; } static int cm_csrgen_n_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { FILE *status; SECStatus error; struct cm_keyiread_n_ctx_and_keys *keys; SECKEYPrivateKey *privkey; SECKEYPublicKey *pubkey; CERTSubjectPublicKeyInfo *spki; CERTPublicKeyAndChallenge pkac; CERTCertificateRequest *req; CERTCertificate *minicert; CERTValidity *validity; CERTSignedData sreq, spkac, sminicert; CERTName *name; PLArenaPool *arena; PRExplodedTime exploded; PRTime vstart, vend; SECItem ereq, esreq, epkac, espkac, eminicert, esminicert; SECItem *attrs, item, utf8, nowe; int ec; char *b64, *b642, *b643, *now, *p, *q, *challenge_password; const char *es, *spkihex, *spkidec; unsigned char spkidigest[CM_DIGEST_MAX + 1]; SECOidData *sigoid; /* Allocate an arena pool and a place to write status updates. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(1, "Out of memory?.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } status = fdopen(fd, "w"); if (status == NULL) { cm_log(1, "Internal error: %s.\n", strerror(errno)); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Start up NSS and find the key pair. */ keys = cm_keyiread_n_get_keys(entry, 0); if (keys == NULL) { cm_log(1, "Error finding key pair for %s('%s').\n", entry->cm_busname, entry->cm_nickname); PORT_FreeArena(arena, PR_TRUE); _exit(CM_SUB_STATUS_ERROR_NO_TOKEN); } /* Select the right key pair. */ if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { privkey = keys->privkey_next; pubkey = keys->pubkey_next; } else { privkey = keys->privkey; pubkey = keys->pubkey; } /* Select a subject name. */ name = NULL; if ((entry->cm_template_subject_der != NULL) && (strlen(entry->cm_template_subject_der) != 0)) { memset(&item, 0, sizeof(item)); item.len = strlen(entry->cm_template_subject_der) / 2; item.data = malloc(item.len); if (item.data != NULL) { item.len = cm_store_hex_to_bin(entry->cm_template_subject_der, item.data, item.len); name = PORT_ArenaZNew(arena, CERTName); if (name != NULL) { if (SEC_ASN1DecodeItem(arena, name, CERT_NameTemplate, &item) != SECSuccess) { name = NULL; } } } if (name == NULL) { cm_log(1, "Error parsing requested subject \"%s\".\n", entry->cm_template_subject_der); } } if ((name == NULL) && (entry->cm_template_subject != NULL) && (strlen(entry->cm_template_subject) != 0)) { name = CERT_AsciiToName(entry->cm_template_subject); if (name == NULL) { /* Force it. */ memset(&item, 0, sizeof(item)); item.data = (unsigned char *) entry->cm_template_subject; item.len = strlen(entry->cm_template_subject); memset(&utf8, 0, sizeof(utf8)); if (SEC_ASN1EncodeItem(arena, &utf8, &item, SEC_PrintableStringTemplate) == &utf8) { q = cm_store_hex_from_bin(entry, utf8.data, utf8.len); if (q != NULL) { p = talloc_asprintf(q, "CN=#%s", q); if (p != NULL) { name = CERT_AsciiToName(p); } talloc_free(q); } } } if (name == NULL) { cm_log(1, "Error parsing requested subject name \"%s\".\n", entry->cm_template_subject); } } if (name == NULL) { name = CERT_AsciiToName("CN=" CM_DEFAULT_CERT_SUBJECT_CN); if (name == NULL) { cm_log(1, "Error parsing requested subject name \"%s\".\n", "CN=" CM_DEFAULT_CERT_SUBJECT_CN); } } if (name == NULL) { if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Find the public key. */ if (pubkey == NULL) { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error retrieving public key: %s.\n", es); } else { cm_log(1, "Error retrieving public key: %d.\n", ec); } if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Generate a subjectPublicKeyInfo. */ spki = SECKEY_CreateSubjectPublicKeyInfo(pubkey); if (spki == NULL) { ec = PORT_GetError(); if (ec == 0) { cm_log(1, "Error building spki value.\n"); } else { cm_log(1, "Error building spki value: %s.\n", PR_ErrorToName(ec)); } if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Build the request. */ req = CERT_CreateCertificateRequest(name, spki, NULL); if (req == NULL) { ec = PORT_GetError(); if (ec == 0) { cm_log(1, "Error building certificate request.\n"); } else { cm_log(1, "Error building certificate request: %s.\n", PR_ErrorToName(ec)); } if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Generate requested values for various extensions and a friendly * name. */ attrs = cm_csrgen_n_attributes(entry, keys->ctx, arena); if ((attrs == NULL) || (SEC_ASN1DecodeItem(arena, &req->attributes, cm_csrgen_n_set_of_cert_tmpattr_template, attrs) != SECSuccess)) { req->attributes = NULL; } /* req->arena = arena; req->subjectPublicKeyInfo = *spki; redundant? */ if (SEC_ASN1EncodeInteger(arena, &req->version, SEC_CERTIFICATE_REQUEST_VERSION) != &req->version) { cm_log(1, "Error encoding certificate request version.\n"); } /* Encode the request. */ if (SEC_ASN1EncodeItem(arena, &ereq, req, CERT_CertificateRequestTemplate) != &ereq) { cm_log(1, "Error encoding certificate request.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Build the PublicKeyAndChallenge. */ memset(&pkac, 0, sizeof(pkac)); if (SEC_ASN1EncodeItem(arena, &pkac.spki, spki, CERT_SubjectPublicKeyInfoTemplate) != &pkac.spki) { cm_log(1, "Error encoding subject public key info.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (cm_csrgen_read_challenge_password(entry, &challenge_password) != 0) { cm_log(1, "Error reading challenge password file.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_ERROR_AUTH); } pkac.challenge.data = (unsigned char *) challenge_password; pkac.challenge.len = challenge_password ? strlen(challenge_password) : 0; /* Encode the PublicKeyAndChallenge. */ if (SEC_ASN1EncodeItem(arena, &epkac, &pkac, cm_csrgen_n_cert_pkac_template) != &epkac) { cm_log(1, "Error encoding public key and challenge.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Sign the request using the private key. */ sigoid = SECOID_FindOIDByTag(cm_prefs_nss_sig_alg(privkey)); memset(&sreq, 0, sizeof(sreq)); sreq.data = ereq; if (SECOID_SetAlgorithmID(arena, &sreq.signatureAlgorithm, sigoid->offset, NULL) != SECSuccess) { cm_log(1, "Error setting up algorithm ID for signing the " "certificate request.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (SEC_SignData(&sreq.signature, sreq.data.data, sreq.data.len, privkey, sigoid->offset) != SECSuccess) { cm_log(1, "Error signing certificate request with the client's " "key using \"%s\": %s.\n", sigoid->desc, PR_ErrorToName(PORT_GetError())); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Sign the PublicKeyAndChallenge using the private key. */ memset(&spkac, 0, sizeof(spkac)); spkac.data = epkac; if (SECOID_SetAlgorithmID(arena, &spkac.signatureAlgorithm, sigoid->offset, NULL) != SECSuccess) { cm_log(1, "Error setting up algorithm ID for signing the " "certificate request.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (SEC_SignData(&spkac.signature, spkac.data.data, spkac.data.len, privkey, sigoid->offset) != SECSuccess) { cm_log(1, "Error signing public-key-and-challenge with " "the client's key using \"%s\": %s.\n", sigoid->desc, PR_ErrorToName(PORT_GetError())); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Encode the signed request. */ sreq.signature.len *= 8; if (SEC_ASN1EncodeItem(arena, &esreq, &sreq, CERT_SignedDataTemplate) != &esreq) { cm_log(1, "Error encoding signed certificate request.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Encode the signed public key and challenge. */ spkac.signature.len *= 8; if (SEC_ASN1EncodeItem(arena, &espkac, &spkac, CERT_SignedDataTemplate) != &espkac) { cm_log(1, "Error encoding signed public key and challenge.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Generate the SCEP transaction ID. */ spkidec = ""; memset(spkidigest, 0, sizeof(spkidigest)); if (PK11_HashBuf(cm_prefs_nss_dig_alg(), spkidigest + 1, pkac.spki.data, pkac.spki.len) == SECSuccess) { spkihex = cm_store_hex_from_bin(NULL, spkidigest + 1, cm_prefs_nss_dig_alg_len()); if (spkihex != NULL) { spkidec = util_dec_from_hex(spkihex); } } /* Generate a "mini" certificate. */ memset(&exploded, 0, sizeof(exploded)); PR_ExplodeTime(PR_Now(), PR_GMTParameters, &exploded); exploded.tm_usec = 0; exploded.tm_sec = 0; exploded.tm_min = 0; exploded.tm_hour = 0; vstart = PR_ImplodeTime(&exploded); exploded.tm_year += 100; vend = PR_ImplodeTime(&exploded); validity = CERT_CreateValidity(vstart, vend); now = talloc_asprintf(entry, "%04d%02d%02d000000Z", exploded.tm_year - 100, exploded.tm_month + 1, exploded.tm_mday); memset(&nowe, 0, sizeof(nowe)); nowe.type = siGeneralizedTime; nowe.data = (unsigned char *) now; nowe.len = strlen(now); validity->notBefore = nowe; now = talloc_asprintf(entry, "%04d%02d%02d000000Z", exploded.tm_year, exploded.tm_month + 1, exploded.tm_mday); memset(&nowe, 0, sizeof(nowe)); nowe.type = siGeneralizedTime; nowe.data = (unsigned char *) now; nowe.len = strlen(now); validity->notAfter = nowe; minicert = CERT_CreateCertificate(1, name, validity, req); SEC_ASN1EncodeInteger(arena, &minicert->version, 0); if ((spkidigest[1] & 0x80) != 0) { minicert->serialNumber.data = spkidigest; minicert->serialNumber.len = cm_prefs_nss_dig_alg_len() + 1; } else { minicert->serialNumber.data = spkidigest + 1; minicert->serialNumber.len = cm_prefs_nss_dig_alg_len(); } if (SECOID_SetAlgorithmID(arena, &minicert->signature, sigoid->offset, NULL) != SECSuccess) { cm_log(1, "Unable to set signature algorithm ID.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } minicert->issuer = req->subject; minicert->subject = req->subject; minicert->subjectPublicKeyInfo = req->subjectPublicKeyInfo; minicert->extensions = NULL; memset(&eminicert, 0, sizeof(eminicert)); if (SEC_ASN1EncodeItem(arena, &eminicert, minicert, CERT_CertificateTemplate) != &eminicert) { cm_log(1, "Error encoding mini TBS certificate.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Sign the mini certificate using the private key. */ memset(&sminicert, 0, sizeof(sminicert)); sminicert.data = eminicert; if (SECOID_SetAlgorithmID(arena, &sminicert.signatureAlgorithm, sigoid->offset, NULL) != SECSuccess) { cm_log(1, "Error setting up algorithm ID for signing the " "mini certificate.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Sign the mini certificate using the private key. */ if (SEC_SignData(&sminicert.signature, sminicert.data.data, sminicert.data.len, privkey, sigoid->offset) != SECSuccess) { cm_log(1, "Error signing mini certificate with " "the client's key using \"%s\": %s.\n", sigoid->desc, PR_ErrorToName(PORT_GetError())); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } sminicert.signature.len *= 8; /* Encode the signed mini certificate. */ if (SEC_ASN1EncodeItem(arena, &esminicert, &sminicert, CERT_SignedDataTemplate) != &esminicert) { cm_log(1, "Error encoding signed mini certificate.\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Encode the request into base-64 and pass it to our caller. */ b64 = NSSBase64_EncodeItem(arena, NULL, -1, &esreq); b642 = NSSBase64_EncodeItem(arena, NULL, -1, &espkac); b643 = NSSBase64_EncodeItem(arena, NULL, -1, &esminicert); if ((b64 != NULL) && (b642 != NULL)) { fprintf(status, "-----BEGIN NEW CERTIFICATE REQUEST-----\n"); p = b64; while (*p != '\0') { q = p + strcspn(p, "\r\n"); fprintf(status, "%.*s\n", (int) (q - p), p); p = q + strspn(q, "\r\n"); } fprintf(status, "-----END NEW CERTIFICATE REQUEST-----\n"); p = b642; while (*p != '\0') { q = p + strcspn(p, "\r\n"); fprintf(status, "%.*s", (int) (q - p), p); p = q + strspn(q, "\r\n"); } fprintf(status, "\n%s\n", spkidec); p = b643; while (*p != '\0') { q = p + strcspn(p, "\r\n"); fprintf(status, "%.*s", (int) (q - p), p); p = q + strspn(q, "\r\n"); } fprintf(status, "\n"); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); util_set_db_entry_key_owner(entry->cm_key_storage_location, entry); _exit(0); } /* Clean up. */ CERT_DestroyValidity(validity); if (keys->pubkey != NULL) { SECKEY_DestroyPublicKey(keys->pubkey); } if (keys->privkey != NULL) { SECKEY_DestroyPrivateKey(keys->privkey); } if (keys->pubkey_next != NULL) { SECKEY_DestroyPublicKey(keys->pubkey_next); } if (keys->privkey_next != NULL) { SECKEY_DestroyPrivateKey(keys->privkey_next); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(keys->ctx); PORT_FreeArena(keys->arena, PR_TRUE); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } fclose(status); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } /* Check if a CSR is ready. */ static int cm_csrgen_n_ready(struct cm_csrgen_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_csrgen_n_get_fd(struct cm_csrgen_state *state) { return cm_subproc_get_fd(state->subproc); } /* Save the CSR to the entry. */ static int cm_csrgen_n_save_csr(struct cm_csrgen_state *state) { int status; char *p, *q; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != 0)) { return -1; } talloc_free(state->entry->cm_csr); state->entry->cm_csr = talloc_strdup(state->entry, cm_subproc_get_msg(state->subproc, NULL)); if (state->entry->cm_csr == NULL) { return ENOMEM; } p = strstr(state->entry->cm_csr, "-----END"); if (p != NULL) { p = strstr(p, "REQUEST-----"); if (p != NULL) { p += strcspn(p, "\r\n"); q = p + strspn(p, "\r\n"); p = q + strcspn(q, "\r\n"); state->entry->cm_spkac = talloc_strndup(state->entry, q, p - q); if (state->entry->cm_spkac == NULL) { return ENOMEM; } *q = '\0'; q = p + strspn(p, "\r\n"); p = q + strcspn(q, "\r\n"); if (p > q) { state->entry->cm_scep_tx = talloc_strndup(state->entry, q, p - q); if (state->entry->cm_scep_tx == NULL) { return ENOMEM; } } q = p + strspn(p, "\r\n"); p = q + strcspn(q, "\r\n"); if (p > q) { state->entry->cm_minicert = talloc_strndup(state->entry, q, p - q); if (state->entry->cm_minicert == NULL) { return ENOMEM; } } state->entry->cm_scep_nonce = NULL; state->entry->cm_scep_last_nonce = NULL; state->entry->cm_scep_req = NULL; state->entry->cm_scep_req_next = NULL; state->entry->cm_scep_gic = NULL; state->entry->cm_scep_gic_next = NULL; } } return 0; } /* Check if we need a PIN (or a new PIN) to access the key information. */ static int cm_csrgen_n_need_pin(struct cm_csrgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to access the key information. */ static int cm_csrgen_n_need_token(struct cm_csrgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Clean up after CSR generation. */ static void cm_csrgen_n_done(struct cm_csrgen_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start CSR generation using template information in the entry. */ struct cm_csrgen_state * cm_csrgen_n_start(struct cm_store_entry *entry) { struct cm_csrgen_state *state; state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = &cm_csrgen_n_ready; state->pvt.get_fd = &cm_csrgen_n_get_fd; state->pvt.save_csr = &cm_csrgen_n_save_csr; state->pvt.need_pin = &cm_csrgen_n_need_pin; state->pvt.need_token = &cm_csrgen_n_need_token; state->pvt.done = &cm_csrgen_n_done; state->entry = entry; state->subproc = cm_subproc_start(cm_csrgen_n_main, state, NULL, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/csrgen-int.h0000664000175000017500000000300112645513264013717 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcsrgenint_h #define cmcsrgenint_h struct cm_csrgen_state_pvt { /* Check if a CSR is ready. */ int (*ready)(struct cm_csrgen_state *state); /* Get a selectable-for-read descriptor which will either have data or * be closed when status changes. */ int (*get_fd)(struct cm_csrgen_state *state); /* Save the CSR to the entry. */ int (*save_csr)(struct cm_csrgen_state *state); /* Check if we need a PIN (or a new PIN) to get at the key material. */ int (*need_pin)(struct cm_csrgen_state *state); /* Check if we need the token to be inserted to get at the key * material. */ int (*need_token)(struct cm_csrgen_state *state); /* Clean up after CSR generation. */ void (*done)(struct cm_csrgen_state *state); }; int cm_csrgen_read_challenge_password(struct cm_store_entry *entry, char **password); #endif certmonger-0.78.6/src/csrgen.h0000664000175000017500000000327012645513264013137 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcsrgen_h #define cmcsrgen_h struct cm_csrgen_state; struct cm_store_entry; /* Start CSR generation using template information in the entry. */ struct cm_csrgen_state *cm_csrgen_start(struct cm_store_entry *entry); struct cm_csrgen_state *cm_csrgen_n_start(struct cm_store_entry *entry); struct cm_csrgen_state *cm_csrgen_o_start(struct cm_store_entry *entry); /* Check if a CSR is ready. */ int cm_csrgen_ready(struct cm_csrgen_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_csrgen_get_fd(struct cm_csrgen_state *state); /* Check if we need a PIN (or a new PIN) to generate a CSR. */ int cm_csrgen_need_pin(struct cm_csrgen_state *state); /* Check if we need the right token to be present to generate a CSR. */ int cm_csrgen_need_token(struct cm_csrgen_state *state); /* Save the CSR to the entry. */ int cm_csrgen_save_csr(struct cm_csrgen_state *state); /* Clean up after CSR generation. */ void cm_csrgen_done(struct cm_csrgen_state *state); #endif certmonger-0.78.6/src/csrgen.c0000664000175000017500000000750712645513264013141 00000000000000/* * Copyright (C) 2009,2011,2012,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include "csrgen.h" #include "csrgen-int.h" #include "log.h" #include "store-int.h" int cm_csrgen_read_challenge_password(struct cm_store_entry *entry, char **password) { const char *filename, *value; struct stat st; int fd, l, err; if (password == NULL) { return EINVAL; } *password = NULL; err = 0; filename = entry->cm_template_challenge_password_file; value = entry->cm_template_challenge_password; if ((filename != NULL) && (strlen(filename) > 0)) { fd = open(filename, O_RDONLY); if (fd != -1) { if ((fstat(fd, &st) == 0) && (st.st_size > 0)) { *password = talloc_zero_size(entry, st.st_size + 1); if (*password != NULL) { if (read(fd, *password, st.st_size) != -1) { l = strcspn(*password, "\r\n"); if (l == 0) { talloc_free(*password); *password = NULL; } else { (*password)[l] = '\0'; } } else { err = errno; cm_log(-1, "Error reading \"%s\": " "%s.\n", filename, strerror(err)); talloc_free(*password); *password = NULL; } } } else { err = errno; cm_log(-1, "Error determining size of \"%s\": " "%s.\n", filename, strerror(err)); } close(fd); } else { err = errno; cm_log(-1, "Error reading challenge password from " "\"%s\": %s.\n", filename, strerror(err)); } } if ((password != NULL) && (*password == NULL) && (err == 0)) { if (value != NULL) { *password = talloc_strdup(entry, value); } } return err; } struct cm_csrgen_state * cm_csrgen_start(struct cm_store_entry *entry) { switch (entry->cm_key_storage_type) { case cm_key_storage_none: cm_log(1, "Can't generate new CSR for %s('%s') without the " "key, and we don't know where that is or should be.\n", entry->cm_busname, entry->cm_nickname); break; #ifdef HAVE_OPENSSL case cm_key_storage_file: return cm_csrgen_o_start(entry); break; #endif #ifdef HAVE_NSS case cm_key_storage_nssdb: return cm_csrgen_n_start(entry); break; #endif } return NULL; } int cm_csrgen_ready(struct cm_csrgen_state *state) { struct cm_csrgen_state_pvt *pvt = (struct cm_csrgen_state_pvt *) state; return pvt->ready(state); } int cm_csrgen_get_fd(struct cm_csrgen_state *state) { struct cm_csrgen_state_pvt *pvt = (struct cm_csrgen_state_pvt *) state; return pvt->get_fd(state); } int cm_csrgen_save_csr(struct cm_csrgen_state *state) { struct cm_csrgen_state_pvt *pvt = (struct cm_csrgen_state_pvt *) state; return pvt->save_csr(state); } int cm_csrgen_need_pin(struct cm_csrgen_state *state) { struct cm_csrgen_state_pvt *pvt = (struct cm_csrgen_state_pvt *) state; return pvt->need_pin(state); } int cm_csrgen_need_token(struct cm_csrgen_state *state) { struct cm_csrgen_state_pvt *pvt = (struct cm_csrgen_state_pvt *) state; return pvt->need_token(state); } void cm_csrgen_done(struct cm_csrgen_state *state) { struct cm_csrgen_state_pvt *pvt = (struct cm_csrgen_state_pvt *) state; pvt->done(state); } certmonger-0.78.6/src/cm.h0000664000175000017500000000557712645513264012271 00000000000000/* * Copyright (C) 2009,2011,2012,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcm_h #define cmcm_h struct cm_context; struct cm_store_entry; struct cm_store_ca; struct tevent_context; enum cm_ca_phase; int cm_init(struct tevent_context *parent, struct cm_context **context, int idle_timeout, const char *gate_command); int cm_start_all(struct cm_context *context); void cm_reset_timeout(struct cm_context *context); int cm_keep_going(struct cm_context *context); void cm_stop_all(struct cm_context *context); int cm_get_n_entries(struct cm_context *context); struct cm_store_entry *cm_get_entry_by_index(struct cm_context *c, int i); struct cm_store_entry *cm_get_entry_by_nickname(struct cm_context *c, const char *nickname); struct cm_store_entry *cm_get_entry_by_busname(struct cm_context *c, const char *busname); int cm_add_entry(struct cm_context *context, struct cm_store_entry *new_entry); int cm_remove_entry(struct cm_context *context, const char *nickname); int cm_get_n_cas(struct cm_context *context); struct cm_store_ca *cm_get_ca_by_index(struct cm_context *c, int i); struct cm_store_ca *cm_get_ca_by_nickname(struct cm_context *c, const char *nickname); struct cm_store_ca *cm_get_ca_by_busname(struct cm_context *c, const char *busname); int cm_add_ca(struct cm_context *context, struct cm_store_ca *new_ca); int cm_remove_ca(struct cm_context *context, const char *nickname); dbus_bool_t cm_restart_entry(struct cm_context *c, const char *nickname); dbus_bool_t cm_restart_entries_by_ca(struct cm_context *c, const char *nickname); dbus_bool_t cm_stop_entry(struct cm_context *c, const char *nickname); dbus_bool_t cm_start_entry(struct cm_context *c, const char *nickname); dbus_bool_t cm_restart_ca(struct cm_context *c, const char *nickname, enum cm_ca_phase); dbus_bool_t cm_stop_ca(struct cm_context *c, const char *nickname, enum cm_ca_phase); dbus_bool_t cm_start_ca(struct cm_context *c, const char *nickname, enum cm_ca_phase); void *cm_get_conn_ptr(struct cm_context *context); void cm_set_conn_ptr(struct cm_context *context, void *ptr); const char *cm_get_server_address(struct cm_context *context); void cm_set_server_address(struct cm_context *context, const char *address); #endif certmonger-0.78.6/src/cm.c0000664000175000017500000010145112645513264012250 00000000000000/* * Copyright (C) 2009,2010,2011,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include "cm.h" #include "log.h" #include "iterate.h" #include "netlink.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "tdbus.h" #include "tdbush.h" #include "tm.h" struct cm_context { int should_quit; int n_entries; struct cm_store_entry **entries; int n_cas; struct cm_store_ca **cas; struct cm_event { void *iterate_state; void *next_event; } *entry_events; struct cm_ca_event { void *iterate_state[cm_ca_phase_invalid]; void *next_event[cm_ca_phase_invalid]; } *ca_events; int netlink; void *netlink_tfd, *netlink_delayed_event; int idle_timeout; void *idle_event, *conn_ptr; char *server_address; struct { void *tfd; char *command; int fd; struct cm_subproc_state *state; } gate; }; static void *cm_service_entry(struct cm_context *context, struct timeval *now, int i); static void *cm_service_ca(struct cm_context *context, struct timeval *now, int i, enum cm_ca_phase phase); static void cm_fd_h(struct tevent_context *ec, struct tevent_fd *fde, uint16_t flags, void *pvt); static void cm_timer_h(struct tevent_context *ec, struct tevent_timer *te, struct timeval current_time, void *pvt); static void cm_break_h(struct tevent_context *ec, struct tevent_signal *se, int signum, int count, void *siginfo, void *ctx); static void cm_netlink_fd_h(struct tevent_context *ec, struct tevent_fd *fde, uint16_t flags, void *pvt); static void cm_timeout_h(struct tevent_context *ec, struct tevent_timer *te, struct timeval current_time, void *pvt); int cm_init(struct tevent_context *parent, struct cm_context **context, int idle_timeout, const char *gate_command) { struct cm_context *ctx; int i, j; enum cm_ca_phase phase; *context = NULL; ctx = talloc_ptrtype(parent, ctx); if (ctx == NULL) { return ENOMEM; } memset(ctx, 0, sizeof(*ctx)); /* Read the entries from the data store. */ ctx->entries = cm_store_get_all_entries(ctx); for (i = 0; (ctx->entries != NULL) && (ctx->entries[i] != NULL); i++) { continue; } ctx->n_entries = i; /* Allocate space for the tevents for each entry. */ ctx->entry_events = talloc_array_ptrtype(ctx, ctx->entry_events, ctx->n_entries); if (ctx->entry_events == NULL) { talloc_free(ctx); return ENOMEM; } memset(ctx->entry_events, 0, sizeof(ctx->entry_events[0]) * ctx->n_entries); /* Read the list of known CAs. */ ctx->cas = cm_store_get_all_cas(ctx); for (i = 0; (ctx->cas != NULL) && (ctx->cas[i] != NULL); i++) { continue; } ctx->n_cas = i; /* Allocate space for the tevents for each CA. */ ctx->ca_events = talloc_array_ptrtype(ctx, ctx->ca_events, ctx->n_cas); if (ctx->ca_events == NULL) { talloc_free(ctx); return ENOMEM; } memset(ctx->ca_events, 0, sizeof(ctx->ca_events[0]) * ctx->n_cas); /* Handle things which should get us to quit. */ tevent_add_signal(parent, ctx, SIGHUP, 0, cm_break_h, ctx); tevent_add_signal(parent, ctx, SIGINT, 0, cm_break_h, ctx); tevent_add_signal(parent, ctx, SIGTERM, 0, cm_break_h, ctx); /* Be ready for an idle timeout. */ ctx->idle_timeout = idle_timeout; ctx->idle_event = NULL; /* Be ready to launch a gating command. */ if (gate_command != NULL) { ctx->gate.command = talloc_strdup(ctx, gate_command); } /* Initialize state tracking, but don't set things in motion yet. */ for (i = 0; i < ctx->n_entries; i++) { memset(&ctx->entry_events[i], 0, sizeof(ctx->entry_events[i])); if (cm_iterate_entry_init(ctx->entries[i], &ctx->entry_events[i].iterate_state) != 0) { for (j = 0; j < i; j++) { cm_iterate_entry_done(ctx->entries[j], ctx->entry_events[j].iterate_state); ctx->entry_events[j].iterate_state = NULL; } talloc_free(ctx); return ENOMEM; } } for (i = 0; i < ctx->n_cas; i++) { memset(&ctx->ca_events[i], 0, sizeof(ctx->ca_events[i])); for (phase = 0; phase < cm_ca_phase_invalid; phase++) { if (cm_iterate_ca_init(ctx->cas[i], phase, &ctx->ca_events[i].iterate_state[phase]) != 0) { do { phase--; cm_iterate_ca_done(ctx->cas[i], ctx->ca_events[i].iterate_state[phase]); ctx->ca_events[i].iterate_state[phase] = NULL; } while (phase > 0); for (j = 0; j < i; j++) { phase = cm_ca_phase_invalid; do { phase--; cm_iterate_ca_done(ctx->cas[j], ctx->ca_events[j].iterate_state[phase]); ctx->ca_events[j].iterate_state[phase] = NULL; } while (phase > 0); } talloc_free(ctx); return ENOMEM; } } } /* Start draining the netlink socket so that it doesn't get backed up * waiting for us to read notifications. */ ctx->netlink = cm_netlink_socket(); if (ctx->netlink != -1) { ctx->netlink_tfd = tevent_add_fd(parent, ctx, ctx->netlink, TEVENT_FD_READ, cm_netlink_fd_h, ctx); } /* Start out without a DBus connection. */ ctx->conn_ptr = NULL; *context = ctx; return 0; } static void cm_timer_h(struct tevent_context *ec, struct tevent_timer *te, struct timeval current_time, void *pvt) { struct cm_context *context = pvt; int i, j; enum cm_ca_phase phase; for (i = 0; i < context->n_entries; i++) { if (context->entry_events[i].next_event == te) { talloc_free(te); context->entry_events[i].next_event = cm_service_entry(context, NULL, i); break; } } for (j = 0; j < context->n_cas; j++) { for (phase = 0; phase < cm_ca_phase_invalid; phase++) { if (context->ca_events[j].next_event[phase] == te) { talloc_free(te); context->ca_events[j].next_event[phase] = cm_service_ca(context, NULL, j, phase); break; } } if (phase < cm_ca_phase_invalid) { break; } } if ((i >= context->n_entries) && (j >= context->n_cas)) { cm_log(3, "Bug: unowned timer fired.\n"); } } static void cm_timeout_h(struct tevent_context *ec, struct tevent_timer *te, struct timeval current_time, void *pvt) { struct cm_context *context = pvt; if (context->idle_event != NULL) { talloc_free(context->idle_event); context->idle_event = NULL; } if (context->n_entries == 0) { cm_log(3, "Hit idle timer (%ds).\n", context->idle_timeout); context->should_quit++; } } void cm_reset_timeout(struct cm_context *context) { struct timeval now, then; if (context->idle_event != NULL) { cm_log(3, "Clearing previously-set idle timer.\n"); talloc_free(context->idle_event); context->idle_event = NULL; } if ((context->idle_timeout > 0) && (context->n_entries == 0)) { now = tevent_timeval_current(); then = tevent_timeval_add(&now, context->idle_timeout, 0); cm_log(3, "Setting idle timer (%ds).\n", context->idle_timeout); context->idle_event = tevent_add_timer(talloc_parent(context), context, then, cm_timeout_h, context); } else if (context->idle_timeout > 0) { cm_log(1, "There are active certificates and requests, " "ignoring idle timeout.\n"); context->idle_timeout = 0; } } static void cm_fd_h(struct tevent_context *ec, struct tevent_fd *fde, uint16_t flags, void *pvt) { struct cm_context *context = pvt; int i, j; enum cm_ca_phase phase; for (i = 0; i < context->n_entries; i++) { if (context->entry_events[i].next_event == fde) { talloc_free(fde); context->entry_events[i].next_event = cm_service_entry(context, NULL, i); break; } } for (j = 0; j < context->n_cas; j++) { for (phase = 0; phase < cm_ca_phase_invalid; phase++) { if (context->ca_events[j].next_event[phase] == fde) { talloc_free(fde); context->ca_events[j].next_event[phase] = cm_service_ca(context, NULL, j, phase); break; } } if (phase < cm_ca_phase_invalid) { break; } } if ((i >= context->n_entries) && (j >= context->n_cas)) { cm_log(3, "Bug: unowned FD watch fired.\n"); } } static void cm_break_h(struct tevent_context *ec, struct tevent_signal *se, int signum, int count, void *siginfo, void *pvt) { struct cm_context *ctx = pvt; cm_log(3, "Got signal %d.\n", signum); ctx->should_quit++; } static void cm_netlink_delayed_h(struct tevent_context *ec, struct tevent_timer *te, struct timeval current_time, void *pvt) { struct cm_context *ctx = pvt; int i; enum cm_ca_phase phase; for (i = 0; i < ctx->n_entries; i++) { if (ctx->entry_events[i].next_event != NULL) { switch (ctx->entries[i]->cm_state) { case CM_CA_UNREACHABLE: cm_restart_entry(ctx, ctx->entries[i]->cm_nickname); break; default: break; } } } for (i = 0; i < ctx->n_cas; i++) { for (phase = 0; phase < cm_ca_phase_invalid; phase++) { if (ctx->ca_events[i].iterate_state[phase] != NULL) { switch (ctx->cas[i]->cm_ca_state[phase]) { case CM_CA_DATA_UNREACHABLE: cm_restart_ca(ctx, ctx->cas[i]->cm_nickname, phase); break; default: break; } } } } if (te == ctx->netlink_delayed_event) { talloc_free(ctx->netlink_delayed_event); ctx->netlink_delayed_event = NULL; } } static void cm_netlink_fd_h(struct tevent_context *ec, struct tevent_fd *fde, uint16_t flags, void *pvt) { struct cm_context *ctx = pvt; char buf[0x10000]; int len; struct timeval later; struct sockaddr_storage nlsrc; socklen_t nlsrclen; /* Shouldn't happen. */ if ((ctx == NULL) || (ctx->netlink < 0)) { return; } /* Drain the buffer. */ cm_log(3, "Got netlink traffic.\n"); memset(&nlsrc, 0, sizeof(nlsrc)); nlsrclen = sizeof(nlsrc); while ((len = recvfrom(ctx->netlink, buf, sizeof(buf), 0, (struct sockaddr *) &nlsrc, &nlsrclen)) != -1) { switch (len) { case 0: cm_log(3, "Got EOF from netlink socket.\n"); talloc_free(fde); close(ctx->netlink); ctx->netlink = -1; break; default: cm_log(3, "Got %d bytes from netlink socket.\n", len); break; } memset(&nlsrc, 0, sizeof(nlsrc)); nlsrclen = 0; if (ctx->netlink == -1) { break; } } /* Queue delayed processing. */ if (cm_netlink_pkt_is_route_change(buf, len, (struct sockaddr *) &nlsrc, nlsrclen) == 0) { talloc_free(ctx->netlink_delayed_event); later = tevent_timeval_current_ofs(CM_DELAY_NETLINK, 0); ctx->netlink_delayed_event = tevent_add_timer(talloc_parent(ctx), ctx, later, cm_netlink_delayed_h, ctx); } /* Sign off. */ if (len != 0) { cm_log(3, "No more netlink traffic (for now).\n"); } } struct cm_store_ca * cm_find_ca_by_entry(struct cm_context *c, struct cm_store_entry *entry) { return entry->cm_ca_nickname ? cm_get_ca_by_nickname(c, entry->cm_ca_nickname) : NULL; } static void * cm_service_entry(struct cm_context *context, struct timeval *current_time, int i) { int ret, delay, fd; struct timeval now, then; enum cm_time when; void *t; if (current_time != NULL) { now = *current_time; } else { now = tevent_timeval_current(); } fd = -1; ret = cm_iterate_entry(context->entries[i], cm_find_ca_by_entry(context, context->entries[i]), context, &cm_get_ca_by_index, &cm_get_n_cas, &cm_get_entry_by_index, &cm_get_n_entries, &cm_tdbush_property_emit_entry_saved_cert, &cm_tdbush_property_emit_entry_changes, context->entry_events[i].iterate_state, &when, &delay, &fd); t = NULL; if (ret == 0) { switch (when) { case cm_time_now: t = tevent_add_timer(talloc_parent(context), context, now, cm_timer_h, context); cm_log(3, "Will revisit %s('%s') now.\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname); break; case cm_time_soon: then = tevent_timeval_add(&now, CM_DELAY_SOON, 0); t = tevent_add_timer(talloc_parent(context), context, then, cm_timer_h, context); cm_log(3, "Will revisit %s('%s') soon.\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname); break; case cm_time_soonish: then = tevent_timeval_add(&now, CM_DELAY_SOONISH, 0); t = tevent_add_timer(talloc_parent(context), context, then, cm_timer_h, context); cm_log(3, "Will revisit %s('%s') soonish.\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname); break; case cm_time_delay: then = tevent_timeval_add(&now, delay, 0); t = tevent_add_timer(talloc_parent(context), context, then, cm_timer_h, context); cm_log(3, "Will revisit %s('%s') in %d seconds.\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname, delay); break; case cm_time_no_time: if (fd != -1) { t = tevent_add_fd(talloc_parent(context), context, fd, TEVENT_FD_READ, cm_fd_h, context); cm_log(3, "Will revisit %s('%s') on " "traffic from %d.\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname, fd); } else { cm_log(3, "Waiting for instructions for " "%s('%s').\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname); t = NULL; } break; } } return t; } static void * cm_service_ca(struct cm_context *context, struct timeval *current_time, int i, enum cm_ca_phase phase) { int ret, delay, fd; struct timeval now, then; enum cm_time when; void *t; if (current_time != NULL) { now = *current_time; } else { now = tevent_timeval_current(); } fd = -1; ret = cm_iterate_ca(context->cas[i], context, &cm_get_ca_by_index, &cm_get_n_cas, &cm_get_entry_by_index, &cm_get_n_entries, &cm_tdbush_property_emit_ca_changes, context->ca_events[i].iterate_state[phase], &when, &delay, &fd); t = NULL; if (ret == 0) { switch (when) { case cm_time_now: t = tevent_add_timer(talloc_parent(context), context, now, cm_timer_h, context); cm_log(3, "Will revisit %s('%s').%s now.\n", context->cas[i]->cm_busname, context->cas[i]->cm_nickname, cm_store_ca_phase_as_string(phase)); break; case cm_time_soon: then = tevent_timeval_add(&now, CM_DELAY_SOON, 0); t = tevent_add_timer(talloc_parent(context), context, then, cm_timer_h, context); cm_log(3, "Will revisit %s('%s').%s soon.\n", context->cas[i]->cm_busname, context->cas[i]->cm_nickname, cm_store_ca_phase_as_string(phase)); break; case cm_time_soonish: then = tevent_timeval_add(&now, CM_DELAY_SOONISH, 0); t = tevent_add_timer(talloc_parent(context), context, then, cm_timer_h, context); cm_log(3, "Will revisit %s('%s').%s soonish.\n", context->cas[i]->cm_busname, context->cas[i]->cm_nickname, cm_store_ca_phase_as_string(phase)); break; case cm_time_delay: then = tevent_timeval_add(&now, delay, 0); t = tevent_add_timer(talloc_parent(context), context, then, cm_timer_h, context); cm_log(3, "Will revisit %s('%s').%s in %d seconds.\n", context->cas[i]->cm_busname, context->cas[i]->cm_nickname, cm_store_ca_phase_as_string(phase), delay); break; case cm_time_no_time: if (fd != -1) { t = tevent_add_fd(talloc_parent(context), context, fd, TEVENT_FD_READ, cm_fd_h, context); cm_log(3, "Will revisit %s('%s').%s on " "traffic from %d.\n", context->cas[i]->cm_busname, context->cas[i]->cm_nickname, cm_store_ca_phase_as_string(phase), fd); } else { cm_log(3, "Waiting for instructions for " "%s('%s').%s.\n", context->cas[i]->cm_busname, context->cas[i]->cm_nickname, cm_store_ca_phase_as_string(phase)); t = NULL; } break; } } return t; } int cm_keep_going(struct cm_context *context) { return context->should_quit; } int cm_add_entry(struct cm_context *context, struct cm_store_entry *new_entry) { struct cm_store_entry **entries; struct cm_event *events; int i; time_t now; char timestamp[15]; /* Check for duplicates and count the number of entries we're already * managing. */ if (new_entry->cm_nickname != NULL) { for (i = 0; i < context->n_entries; i++) { if (strcmp(context->entries[i]->cm_nickname, new_entry->cm_nickname) == 0) { return -1; } } } else { do { /* Try to assign a new ID. */ now = cm_time(NULL); new_entry->cm_nickname = cm_store_timestamp_from_time(now, timestamp); /* Check for duplicates. */ for (i = 0; i < context->n_entries; i++) { if (strcmp(context->entries[i]->cm_nickname, new_entry->cm_nickname) == 0) { /* Busy wait 0.1s. Ugh. */ usleep(100000); break; } } } while (i < context->n_entries); new_entry->cm_nickname = talloc_strdup(new_entry, new_entry->cm_nickname); } /* Resize the entry array. */ events = NULL; entries = talloc_realloc(context, context->entries, struct cm_store_entry *, context->n_entries + 1); if (entries != NULL) { /* Resize the entry state array. */ events = talloc_realloc(context, context->entry_events, struct cm_event, context->n_entries + 1); if (events != NULL) { /* Add the new entry to the array. */ talloc_steal(entries, new_entry); entries[context->n_entries] = new_entry; /* Clear the new entry event. */ memset(&events[context->n_entries], 0, sizeof(events[context->n_entries])); /* Update the pointers. */ context->entries = entries; context->entry_events = events; /* Update the recorded count of entries. */ context->n_entries++; } else { /* At least don't sabotage things. */ context->entries = entries; entries = NULL; } } cm_reset_timeout(context); if ((entries != NULL) && (events != NULL)) { /* Prepare to set this entry in motion. */ i = context->n_entries - 1; if (cm_start_entry(context, context->entries[i]->cm_nickname) == FALSE) { cm_log(3, "Error starting %s('%s'), please retry.\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname); } /* Save this entry to the store, too. */ cm_store_entry_save(new_entry); return 0; } return -1; } static int cm_find_entry_by_nickname(struct cm_context *context, const char *nickname) { int i; for (i = 0; i < context->n_entries; i++) { if (strcmp(context->entries[i]->cm_nickname, nickname) == 0) { return i; } } return -1; } static int cm_find_ca_by_nickname(struct cm_context *context, const char *nickname) { int i; for (i = 0; i < context->n_cas; i++) { if (strcmp(context->cas[i]->cm_nickname, nickname) == 0) { return i; } } return -1; } static void cm_gate_fd_h(struct tevent_context *ec, struct tevent_fd *fde, uint16_t flags, void *pvt) { struct cm_context *ctx = pvt; int length, status; const char *msg; talloc_free(ctx->gate.tfd); if (cm_subproc_ready(ctx->gate.state) == 0) { msg = cm_subproc_get_msg(ctx->gate.state, &length); if (length > 0) { cm_log(0, "Failed to start command '%s': %s.\n", ctx->gate.command, strerror((unsigned int) msg[0])); } else { status = cm_subproc_get_exitstatus(ctx->gate.state); if (WIFEXITED(status)) { cm_log(1, "Command '%s' exited, status %d.\n", ctx->gate.command, WEXITSTATUS(status)); } else { cm_log(0, "Command '%s' exited abnormally.\n", ctx->gate.command); } } ctx->should_quit++; ctx->gate.tfd = NULL; } else { cm_log(1, "Command '%s' output error data, but is still " "running.\n", ctx->gate.command); ctx->gate.tfd = tevent_add_fd(ec, ctx, ctx->gate.fd, TEVENT_FD_READ, cm_gate_fd_h, ctx); } } static int cm_gate_run(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data) { struct cm_context *ctx = data; char **argv; const char *error = NULL; unsigned char u; cm_subproc_mark_most_cloexec(fd, STDOUT_FILENO, STDERR_FILENO); argv = cm_subproc_parse_args(NULL, ctx->gate.command, &error); if (argv == NULL) { cm_log(1, "Error parsing '%s'.\n", ctx->gate.command); return -1; } cm_log(1, "Running gate command \"%s\" (\"%s\").\n", argv[0], ctx->gate.command); if (ctx->server_address != NULL) { setenv(CERTMONGER_PVT_ADDRESS_ENV, ctx->server_address, 1); } signal(SIGHUP, SIG_DFL); signal(SIGINT, SIG_DFL); signal(SIGTERM, SIG_DFL); execvp(argv[0], argv); u = errno; if (write(fd, &u, 1) != 1) { cm_log(1, "Error sending exec() error to parent.\n"); } return u; } int cm_start_all(struct cm_context *context) { int i; enum cm_ca_phase phase; if (context->gate.command != NULL) { context->gate.state = cm_subproc_start(cm_gate_run, context, NULL, NULL, context); if (context->gate.state == NULL) { cm_log(1, "Error starting '%s', please try again.\n", context->gate.command); return -1; } i = cm_subproc_get_fd(context->gate.state); if (i == -1) { cm_log(1, "Error starting '%s', please try again.\n", context->gate.command); return -1; } context->gate.fd = i; context->gate.tfd = tevent_add_fd(talloc_parent(context), context, i, TEVENT_FD_READ, cm_gate_fd_h, context); cm_log(3, "Command '%s' on FD %d.\n", context->gate.command, i); } for (i = 0; i < context->n_entries; i++) { if ((context->entry_events[i].iterate_state == NULL) && (cm_iterate_entry_init(context->entries[i], &context->entry_events[i].iterate_state)) != 0) { cm_log(1, "Error starting %s('%s'), " "please try again.\n", context->entries[i]->cm_busname, context->entries[i]->cm_nickname); } else { context->entry_events[i].next_event = cm_service_entry(context, NULL, i); } } for (i = 0; i < context->n_cas; i++) { for (phase = 0; phase < cm_ca_phase_invalid; phase++) { if ((context->ca_events[i].iterate_state[phase] == NULL) && (cm_iterate_ca_init(context->cas[i], phase, &context->ca_events[i].iterate_state[phase])) != 0) { cm_log(1, "Error starting %s('%s')-%s, " "please try again.\n", context->cas[i]->cm_busname, context->cas[i]->cm_nickname, cm_store_ca_phase_as_string(phase)); } else { context->ca_events[i].next_event[phase] = cm_service_ca(context, NULL, i, phase); } } } cm_reset_timeout(context); return 0; } void cm_stop_all(struct cm_context *context) { int i; enum cm_ca_phase phase; for (i = 0; i < context->n_entries; i++) { talloc_free(context->entry_events[i].next_event); context->entry_events[i].next_event = NULL; cm_iterate_entry_done(context->entries[i], context->entry_events[i].iterate_state); context->entry_events[i].iterate_state = NULL; cm_store_entry_save(context->entries[i]); } for (i = 0; i < context->n_cas; i++) { for (phase = 0; phase < cm_ca_phase_invalid; phase++) { talloc_free(context->ca_events[i].next_event[phase]); context->ca_events[i].next_event[phase] = NULL; cm_iterate_ca_done(context->cas[i], context->ca_events[i].iterate_state[phase]); context->ca_events[i].iterate_state[phase] = NULL; } cm_store_ca_save(context->cas[i]); } if (context->gate.state != NULL) { cm_subproc_done(context->gate.state); } } dbus_bool_t cm_start_entry(struct cm_context *context, const char *nickname) { int i; i = cm_find_entry_by_nickname(context, nickname); if (i != -1) { if (cm_iterate_entry_init(context->entries[i], &context->entry_events[i].iterate_state) == 0) { context->entry_events[i].next_event = cm_service_entry(context, NULL, i); cm_log(3, "Started %s('%s').\n", context->entries[i]->cm_busname, nickname); return TRUE; } else { cm_log(3, "Error starting %s('%s'), please retry.\n", context->entries[i]->cm_busname, nickname); return FALSE; } } else { cm_log(3, "No entry matching nickname '%s'.\n", nickname); return FALSE; } } dbus_bool_t cm_stop_entry(struct cm_context *context, const char *nickname) { int i; i = cm_find_entry_by_nickname(context, nickname); if (i != -1) { talloc_free(context->entry_events[i].next_event); context->entry_events[i].next_event = NULL; cm_iterate_entry_done(context->entries[i], context->entry_events[i].iterate_state); context->entry_events[i].iterate_state = NULL; cm_store_entry_save(context->entries[i]); cm_log(3, "Stopped %s('%s').\n", context->entries[i]->cm_busname, nickname); return TRUE; } else { cm_log(3, "No entry matching nickname '%s'.\n", nickname); return FALSE; } } int cm_remove_entry(struct cm_context *context, const char *nickname) { int i, rv = -1; if (cm_stop_entry(context, nickname)) { i = cm_find_entry_by_nickname(context, nickname); if (i != -1) { if (cm_store_entry_delete(context->entries[i]) == 0) { /* Free the entry. */ talloc_free(context->entries[i]); /* Shorten up the arrays of entries and event * information. */ memmove(context->entries + i, context->entries + i + 1, (context->n_entries - i - 1) * sizeof(context->entries[i])); memmove(context->entry_events + i, context->entry_events + i + 1, (context->n_entries - i - 1) * sizeof(context->entry_events[i])); context->n_entries--; rv = 0; } else { rv = -1; } } } cm_reset_timeout(context); return rv; } dbus_bool_t cm_restart_entry(struct cm_context *context, const char *nickname) { return cm_stop_entry(context, nickname) && cm_start_entry(context, nickname); } dbus_bool_t cm_restart_entries_by_ca(struct cm_context *context, const char *nickname) { struct cm_store_entry *entry; dbus_bool_t status = FALSE, this; int i, n = 0; for (i = 0; i < context->n_entries; i++) { entry = context->entries[i]; if ((entry->cm_ca_nickname != NULL) && (strcmp(entry->cm_ca_nickname, nickname) == 0)) { this = cm_restart_entry(context, entry->cm_nickname); status = n++ ? this && status : this; } } return status; } struct cm_store_entry * cm_get_entry_by_busname(struct cm_context *context, const char *name) { int i; for (i = 0; i < context->n_entries; i++) { if (strcmp(context->entries[i]->cm_busname, name) == 0) { return context->entries[i]; } } return NULL; } struct cm_store_entry * cm_get_entry_by_nickname(struct cm_context *context, const char *nickname) { int i; for (i = 0; i < context->n_entries; i++) { if (strcmp(context->entries[i]->cm_nickname, nickname) == 0) { return context->entries[i]; } } return NULL; } struct cm_store_entry * cm_get_entry_by_index(struct cm_context *context, int i) { if (i < context->n_entries) { return context->entries[i]; } return NULL; } int cm_get_n_entries(struct cm_context *context) { return context->n_entries; } int cm_add_ca(struct cm_context *context, struct cm_store_ca *new_ca) { struct cm_store_ca **cas; struct cm_ca_event *events; int i; time_t now; char timestamp[15]; enum cm_ca_phase phase; /* Check for duplicates and count the number of CAs we're already * managing. */ if (new_ca->cm_nickname != NULL) { for (i = 0; i < context->n_cas; i++) { if (strcmp(context->cas[i]->cm_nickname, new_ca->cm_nickname) == 0) { return -1; } } } else { do { /* Try to assign a new nickname. */ now = cm_time(NULL); new_ca->cm_nickname = cm_store_timestamp_from_time(now, timestamp); /* Check for duplicates. */ for (i = 0; i < context->n_cas; i++) { if (strcmp(context->cas[i]->cm_nickname, new_ca->cm_nickname) == 0) { /* Busy wait 0.1s. Ugh. */ usleep(100000); break; } } } while (i < context->n_cas); new_ca->cm_nickname = talloc_strdup(new_ca, new_ca->cm_nickname); } /* Allocate storage for a new CA array. */ cas = talloc_realloc(context, context->cas, struct cm_store_ca *, context->n_cas + 1); events = talloc_realloc(context, context->ca_events, struct cm_ca_event, context->n_cas + 1); if ((cas != NULL) && (events != NULL)) { /* Save this entry to the store. */ cm_store_ca_save(new_ca); cas[context->n_cas] = new_ca; talloc_steal(cas, new_ca); context->cas = cas; memset(&events[context->n_cas], 0, sizeof(events[context->n_cas])); context->ca_events = events; /* Update the recorded count of CAs. */ context->n_cas++; /* Start the CA's data fetchers. */ for (phase = 0; phase < cm_ca_phase_invalid; phase++) { cm_start_ca(context, new_ca->cm_nickname, phase); } return 0; } if (cas != NULL) { context->cas = cas; } if (events != NULL) { context->ca_events = events; } return -1; } dbus_bool_t cm_start_ca(struct cm_context *context, const char *nickname, enum cm_ca_phase phase) { int i; i = cm_find_ca_by_nickname(context, nickname); if (i != -1) { if (cm_iterate_ca_init(context->cas[i], phase, &context->ca_events[i].iterate_state[phase]) == 0) { context->ca_events[i].next_event[phase] = cm_service_ca(context, NULL, i, phase); cm_log(3, "Started CA %s('%s')-%s.\n", context->cas[i]->cm_busname, nickname, cm_store_ca_phase_as_string(phase)); return TRUE; } else { cm_log(3, "Error starting CA %s('%s')-%s, please retry.\n", context->cas[i]->cm_busname, nickname, cm_store_ca_phase_as_string(phase)); return FALSE; } } else { cm_log(3, "No CA matching nickname '%s'.\n", nickname); return FALSE; } } dbus_bool_t cm_stop_ca(struct cm_context *context, const char *nickname, enum cm_ca_phase phase) { int i; i = cm_find_ca_by_nickname(context, nickname); if (i != -1) { talloc_free(context->ca_events[i].next_event[phase]); context->ca_events[i].next_event[phase] = NULL; cm_iterate_ca_done(context->cas[i], context->ca_events[i].iterate_state[phase]); context->ca_events[i].iterate_state[phase] = NULL; cm_store_ca_save(context->cas[i]); cm_log(3, "Stopped CA %s('%s')-%s.\n", context->cas[i]->cm_busname, nickname, cm_store_ca_phase_as_string(phase)); return TRUE; } else { cm_log(3, "No CA matching nickname '%s'.\n", nickname); return FALSE; } } dbus_bool_t cm_restart_ca(struct cm_context *context, const char *nickname, enum cm_ca_phase phase) { return cm_stop_ca(context, nickname, phase) && cm_start_ca(context, nickname, phase); } struct cm_store_ca * cm_get_ca_by_busname(struct cm_context *context, const char *name) { int i; for (i = 0; i < context->n_cas; i++) { if (strcmp(context->cas[i]->cm_busname, name) == 0) { return context->cas[i]; } } return NULL; } struct cm_store_ca * cm_get_ca_by_nickname(struct cm_context *context, const char *nickname) { int i; for (i = 0; i < context->n_cas; i++) { if (strcmp(context->cas[i]->cm_nickname, nickname) == 0) { return context->cas[i]; } } return NULL; } struct cm_store_ca * cm_get_ca_by_index(struct cm_context *context, int i) { if (i < context->n_cas) { return context->cas[i]; } return NULL; } int cm_get_n_cas(struct cm_context *context) { return context->n_cas; } int cm_remove_ca(struct cm_context *context, const char *nickname) { int i; enum cm_ca_phase phase; i = cm_find_ca_by_nickname(context, nickname); if (i != -1) { for (phase = 0; phase < cm_ca_phase_invalid; phase++) { if (!cm_stop_ca(context, nickname, phase)) { break; } } if (phase != cm_ca_phase_invalid) { cm_log(3, "Error stopping CA '%s'-%s, please retry.\n", nickname, cm_store_ca_phase_as_string(phase)); return -1; } if (cm_store_ca_delete(context->cas[i]) == 0) { /* Free the entry. */ talloc_free(context->cas[i]); /* Shorten up the arrays of CAs and event * information. */ memmove(context->cas + i, context->cas + i + 1, (context->n_cas - i - 1) * sizeof(context->cas[i])); memmove(context->ca_events + i, context->ca_events + i + 1, (context->n_cas - i - 1) * sizeof(context->ca_events[i])); context->n_cas--; return 0; } else { return -1; } } return -1; } void * cm_get_conn_ptr(struct cm_context *context) { return context->conn_ptr; } void cm_set_conn_ptr(struct cm_context *context, void *ptr) { context->conn_ptr = ptr; } const char * cm_get_server_address(struct cm_context *context) { return context->server_address; } void cm_set_server_address(struct cm_context *context, const char *address) { context->server_address = talloc_strdup(context, address); } certmonger-0.78.6/src/certsave-n.c0000664000175000017500000006103612645513264013724 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certsave.h" #include "certsave-int.h" #include "log.h" #include "pin.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-n.h" #define PRIVKEY_LIST_EMPTY(l) PRIVKEY_LIST_END(PRIVKEY_LIST_HEAD(l), l) struct cm_certsave_state { struct cm_certsave_state_pvt pvt; struct cm_subproc_state *subproc; struct cm_store_entry *entry; }; struct cm_certsave_n_settings { unsigned int readwrite:1; }; static SECKEYPrivateKey ** add_privkey_to_list(SECKEYPrivateKey **list, SECKEYPrivateKey *key) { SECKEYPrivateKey **newlist; int i; if (key != NULL) { for (i = 0; (list != NULL) && (list[i] != NULL); i++) { if (list[i] == key) { SECKEY_DestroyPrivateKey(key); break; } } if ((list == NULL) || (list[i] == NULL)) { newlist = malloc(sizeof(newlist[0]) * (i + 2)); if (newlist != NULL) { memcpy(newlist, list, sizeof(newlist[0]) * i); newlist[i] = key; newlist[i + 1] = NULL; list = newlist; } } } return list; } static int cm_certsave_n_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { int status = CM_CERTSAVE_STATUS_INTERNAL_ERROR, readwrite, i, ec; PRBool have_trust; PLArenaPool *arena; SECStatus error; SECItem *item, subject; char *p, *q, *pin; const char *es; NSSInitContext *ctx; CERTCertDBHandle *certdb; CERTCertList *certlist; CERTCertificate **returned, *oldcert, cert; CERTCertTrust trust; CERTSignedData csdata; CERTCertListNode *node; SECKEYPrivateKey **privkeys = NULL, *privkey; SECKEYPrivateKeyList *privkeylist; SECKEYPrivateKeyListNode *knode; struct cm_certsave_n_settings *settings; struct cm_pin_cb_data cb_data; if (entry->cm_cert_storage_location == NULL) { cm_log(1, "Error saving certificate: no location " "specified.\n"); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } if (entry->cm_cert_nickname == NULL) { cm_log(1, "Error saving certificate: no nickname " "specified.\n"); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } /* Open the database. */ settings = userdata; readwrite = settings->readwrite; errno = 0; ctx = NSS_InitContext(entry->cm_cert_storage_location, NULL, NULL, NULL, NULL, (readwrite ? 0 : NSS_INIT_READONLY) | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); ec = PORT_GetError(); if (ctx == NULL) { if ((ec == SEC_ERROR_BAD_DATABASE) && readwrite) { switch (errno) { case EACCES: case EPERM: ec = PR_NO_ACCESS_RIGHTS_ERROR; break; default: /* Sigh. Not a lot of detail. Check if we * succeed in read-only mode, which we'll * interpret as lack of write permissions. */ ctx = NSS_InitContext(entry->cm_key_storage_location, NULL, NULL, NULL, NULL, NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (ctx != NULL) { error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down " "NSS.\n"); } ctx = NULL; ec = PR_NO_ACCESS_RIGHTS_ERROR; } break; } } if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Unable to open NSS database '%s': %s.\n", entry->cm_cert_storage_location, es); } else { cm_log(1, "Unable to open NSS database '%s'.\n", entry->cm_cert_storage_location); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ status = CM_CERTSAVE_STATUS_PERMS; break; default: status = CM_CERTSAVE_STATUS_INITIALIZING; break; } } else { /* We don't try to force FIPS mode here, as it seems to get in * the way of saving the certificate. */ /* Allocate a memory pool. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(1, "Error opening database '%s'.\n", entry->cm_cert_storage_location); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } /* Be ready to count our uses of a PIN. */ memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; pin = NULL; if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading PIN for key store, " "failing to save certificate.\n"); PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_AUTH); } /* Set a PIN if we're supposed to be using one and aren't using * one yet in this database. */ if (PK11_NeedUserInit(PK11_GetInternalKeySlot())) { PK11_InitPin(PK11_GetInternalKeySlot(), NULL, pin ? pin : ""); ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (PK11_NeedUserInit(PK11_GetInternalKeySlot())) { if (es != NULL) { cm_log(1, "Key storage slot still " "needs user PIN to be set: " "%s.\n", es); } else { cm_log(1, "Key storage slot still " "needs user PIN to be set.\n"); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ _exit(CM_CERTSAVE_STATUS_PERMS); break; default: _exit(CM_CERTSAVE_STATUS_AUTH); break; } } /* We're authenticated now, so count this as a use of * the PIN. */ if ((pin != NULL) && (strlen(pin) > 0)) { cb_data.n_attempts++; } } /* Log in, if case we need to muck around with the key * database. */ PK11_SetPasswordFunc(&cm_pin_read_for_key_nss_cb); error = PK11_Authenticate(PK11_GetInternalKeySlot(), PR_TRUE, &cb_data); ec = PORT_GetError(); if (error != SECSuccess) { if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error authenticating to key store: %s.\n", es); } else { cm_log(1, "Error authenticating to key store.\n"); } PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_AUTH); } if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to auth to key " "store, though one was provided. " "Treating this as an error.\n"); PORT_FreeArena(arena, PR_TRUE); error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_AUTH); } certdb = CERT_GetDefaultCertDB(); if (certdb != NULL) { /* Strip the header and footer. */ p = entry->cm_cert; q = NULL; if (p != NULL) { while (strncmp(p, "-----BEGIN ", 11) == 0) { p += strcspn(p, "\r\n"); p += strspn(p, "\r\n"); } q = strstr(p, "-----END"); } if ((q == NULL) || (*p == '\0')) { cm_log(1, "Unable to parse certificate.\n"); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } /* Handle the base64 decode. */ item = NSSBase64_DecodeBuffer(arena, NULL, p, q - p); if (item == NULL) { cm_log(1, "Unable to decode certificate " "into buffer.\n"); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } /* Do a "shallow" decode to pull out the subject name * so that we can check for a conflict. */ memset(&csdata, 0, sizeof(csdata)); if (SEC_ASN1DecodeItem(arena, &csdata, CERT_SignedDataTemplate, item) != SECSuccess) { cm_log(1, "Unable to decode certificate " "signed data into buffer.\n"); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } memset(&cert, 0, sizeof(cert)); if (SEC_ASN1DecodeItem(arena, &cert, CERT_CertificateTemplate, &csdata.data) != SECSuccess) { cm_log(1, "Unable to decode certificate " "data into buffer.\n"); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } subject = cert.derSubject; /* Ask NSS if there would be a conflict. */ have_trust = PR_FALSE; if (SEC_CertNicknameConflict(entry->cm_cert_nickname, &subject, certdb)) { /* Delete the certificate that's already there * with the nickname we want, otherwise our * cert with a different subject name will be * discarded. */ certlist = PK11_FindCertsFromNickname(entry->cm_cert_nickname, NULL); if (certlist != NULL) { /* Look for certs with different * subject names but the same nickname, * because they've got to go. */ for (node = CERT_LIST_HEAD(certlist); (node != NULL) && !CERT_LIST_EMPTY(certlist) && !CERT_LIST_END(node, certlist); node = CERT_LIST_NEXT(node)) { if (!SECITEM_ItemsAreEqual(&subject, &node->cert->derSubject)) { cm_log(3, "Found a " "certificate " "with the same " "nickname but " "different " "subject, " "removing " "certificate " "\"%s\" with " "subject " "\"%s\".\n", node->cert->nickname, node->cert->subjectName ? node->cert->subjectName : ""); /* Get a handle for * this certificate's * private key, in case * we need to remove * it. */ privkey = PK11_FindKeyByAnyCert(node->cert, NULL); privkeys = add_privkey_to_list(privkeys, privkey); SEC_DeletePermCertificate(node->cert); } } CERT_DestroyCertList(certlist); } } else { cm_log(3, "No duplicate nickname entries.\n"); } /* This certificate's subject may already be present * with a different nickname. Delete those, too. */ certlist = CERT_CreateSubjectCertList(NULL, certdb, &subject, PR_FALSE, PR_FALSE); if (certlist != NULL) { /* Look for certs with different nicknames but * the same subject name, because those have * got to go. */ i = 0; for (node = CERT_LIST_HEAD(certlist); (node != NULL) && !CERT_LIST_EMPTY(certlist) && !CERT_LIST_END(node, certlist); node = CERT_LIST_NEXT(node)) { if ((node->cert->nickname != NULL) && (strcmp(entry->cm_cert_nickname, node->cert->nickname) != 0)) { i++; cm_log(3, "Found a " "certificate with a " "different nickname but " "the same subject, " "removing certificate " "\"%s\" with subject " "\"%s\".\n", node->cert->nickname, node->cert->subjectName ? node->cert->subjectName : ""); /* Get a handle for this * certificate's private key, * in case we need to remove * it. */ privkey = PK11_FindKeyByAnyCert(node->cert, NULL); privkeys = add_privkey_to_list(privkeys, privkey); SEC_DeletePermCertificate(node->cert); } else { /* Same nickname, and we * already know it has the same * subject name. Save its * trust. */ if (!have_trust) { if (CERT_GetCertTrust(node->cert, &trust) == SECSuccess) { have_trust = PR_TRUE; } } } } if (i == 0) { cm_log(3, "No duplicate subject name entries.\n"); } CERT_DestroyCertList(certlist); } else { cm_log(3, "No duplicate subject name entries.\n"); } /* Make one more attempt at finding an existing trust * value. */ if (!have_trust) { oldcert = PK11_FindCertFromNickname(entry->cm_cert_nickname, NULL); if (oldcert != NULL) { if (CERT_GetCertTrust(oldcert, &trust) == SECSuccess) { have_trust = PR_TRUE; } CERT_DestroyCertificate(oldcert); } } /* Import the certificate. */ returned = NULL; error = CERT_ImportCerts(certdb, certUsageUserCertImport, 1, &item, &returned, PR_TRUE, PR_FALSE, entry->cm_cert_nickname); ec = PORT_GetError(); if (error == SECSuccess) { cm_log(1, "Imported certificate \"%s\", got " "nickname \"%s\".\n", entry->cm_cert_nickname, returned[0]->nickname); status = 0; /* Set the trust on the new certificate, * perhaps matching the trust on an * already-present certificate with the same * nickname. */ if (!have_trust) { memset(&trust, 0, sizeof(trust)); trust.sslFlags = CERTDB_USER; trust.emailFlags = CERTDB_USER; trust.objectSigningFlags = CERTDB_USER; } error = CERT_ChangeCertTrust(certdb, returned[0], &trust); ec = PORT_GetError(); if (error != SECSuccess) { if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(0, "Error setting trust " "on certificate \"%s\": " "%s.\n", entry->cm_cert_nickname, es); } else { cm_log(0, "Error setting trust " "on certificate \"%s\".\n", entry->cm_cert_nickname); } } /* Delete any other certificates that are there * with the same nickname. While NSS's * database allows duplicates so long as they * have the same subject name and nickname, * several APIs and many applications can't * dependably find the right one among more * than one. So bye-bye, old certificates. */ certlist = PK11_FindCertsFromNickname(entry->cm_cert_nickname, NULL); if (certlist != NULL) { /* Look for certs with contents. */ for (node = CERT_LIST_HEAD(certlist); (node != NULL) && !CERT_LIST_EMPTY(certlist) && !CERT_LIST_END(node, certlist); node = CERT_LIST_NEXT(node)) { if (!SECITEM_ItemsAreEqual(item, &node->cert->derCert)) { cm_log(3, "Found a " "certificate " "with the same " "nickname and " "subject, but " "different " "contents, " "removing it.\n"); /* Get a handle for * this certificate's * private key, in case * we need to remove * it. */ privkey = PK11_FindKeyByAnyCert(node->cert, NULL); privkeys = add_privkey_to_list(privkeys, privkey); SEC_DeletePermCertificate(node->cert); } } CERT_DestroyCertList(certlist); } } else { if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(0, "Error importing certificate " "into NSSDB \"%s\": %s.\n", entry->cm_cert_storage_location, es); } else { cm_log(0, "Error importing certificate " "into NSSDB \"%s\".\n", entry->cm_cert_storage_location); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* ACCES/PERM */ status = CM_CERTSAVE_STATUS_PERMS; break; default: status = CM_CERTSAVE_STATUS_INTERNAL_ERROR; break; } } /* If we managed to import the certificate, mark its * key for having its nickname removed. */ if ((returned != NULL) && (returned[0] != NULL)) { privkey = PK11_FindKeyByAnyCert(returned[0], NULL); privkeys = add_privkey_to_list(privkeys, privkey); CERT_DestroyCertArray(returned, 1); } /* In case we're rekeying, but failed, mark the * candidate key for name-clearing or removal, too. */ if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { p = util_build_next_nickname(entry->cm_key_nickname, entry->cm_key_next_marker); privkeylist = PK11_ListPrivKeysInSlot(PK11_GetInternalKeySlot(), p, NULL); if (privkeylist != NULL) { for (knode = PRIVKEY_LIST_HEAD(privkeylist); !PRIVKEY_LIST_EMPTY(privkeylist) && !PRIVKEY_LIST_END(knode, privkeylist); knode = PRIVKEY_LIST_NEXT(knode)) { q = PK11_GetPrivateKeyNickname(knode->key); if ((q != NULL) && (strcmp(p, q) == 0)) { privkey = SECKEY_CopyPrivateKey(knode->key); privkeys = add_privkey_to_list(privkeys, privkey); break; } } SECKEY_DestroyPrivateKeyList(privkeylist); } } if (privkeys != NULL) { /* Check if any certificates are still using * the keys that correspond to certificates * that we removed. */ for (i = 0; privkeys[i] != NULL; i++) { privkey = privkeys[i]; oldcert = PK11_GetCertFromPrivateKey(privkey); if (!entry->cm_key_preserve && (oldcert == NULL)) { /* We're not preserving * orphaned keys, so remove * this one. No need to mess * with its nickname first. */ PK11_DeleteTokenPrivateKey(privkey, PR_FALSE); if (error == SECSuccess) { cm_log(3, "Removed old key.\n"); } else { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(0, "Failed " "to remove " "old key: " "%s.\n", es); } else { cm_log(0, "Failed " "to remove " "old key.\n"); } } } else { /* Remove the explicit * nickname, so that the key * will have to be found using * the certificate's nickname, * and certutil will display * the matching certificate's * nickname when it's asked to * list the keys in the * database. */ error = PK11_SetPrivateKeyNickname(privkey, ""); if (error == SECSuccess) { cm_log(3, "Removed " "name from old " "key.\n"); } else { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(0, "Failed " "to unname " "old key: " "%s.\n", es); } else { cm_log(0, "Failed " "to unname " "old key.\n"); } } } SECKEY_DestroyPrivateKey(privkey); if (oldcert != NULL) { CERT_DestroyCertificate(oldcert); } } free(privkeys); } } else { cm_log(1, "Error getting handle to default NSS DB.\n"); } PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } /* Fixup the ownership and permissions on the key and * certificate databases. */ util_set_db_entry_key_owner(entry->cm_key_storage_location, entry); util_set_db_entry_cert_owner(entry->cm_cert_storage_location, entry); } if (status != 0) { _exit(status); } return 0; } /* Check if something changed, for example we finished saving the cert. */ static int cm_certsave_n_ready(struct cm_certsave_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_certsave_n_get_fd(struct cm_certsave_state *state) { return cm_subproc_get_fd(state->subproc); } /* Check if we saved the certificate -- the child exited with status 0. */ static int cm_certsave_n_saved(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_SAVED)) { return -1; } if ((state->entry->cm_key_next_marker != NULL) && (strlen(state->entry->cm_key_next_marker) > 0)) { state->entry->cm_key_requested_count = state->entry->cm_key_next_requested_count; state->entry->cm_key_next_requested_count = 0; state->entry->cm_key_generated_date = state->entry->cm_key_next_generated_date; state->entry->cm_key_next_generated_date = 0; state->entry->cm_key_issued_count = 1; } else { state->entry->cm_key_issued_count++; } state->entry->cm_key_next_marker = NULL; return 0; } /* Check if we failed because the subject was already there with a different * nickname. */ static int cm_certsave_n_conflict_subject(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_SUBJECT_CONFLICT)) { return -1; } return 0; } /* Check if we failed because the nickname was already taken by a different * subject . */ static int cm_certsave_n_conflict_nickname(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_NICKNAME_CONFLICT)) { return -1; } return 0; } /* Check if we failed because we couldn't read or write to the storage * location. */ static int cm_certsave_n_permissions_error(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_PERMS)) { return -1; } return 0; } /* Check if we failed because the right token wasn't present. */ static int cm_certsave_n_token_error(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_NO_TOKEN)) { return -1; } return 0; } /* Check if we failed because we didn't have the right PIN or password to * access the storage location. */ static int cm_certsave_n_pin_error(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_AUTH)) { return -1; } return 0; } /* Clean up after saving the certificate. */ static void cm_certsave_n_done(struct cm_certsave_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start writing the certificate from the entry to the configured location. */ struct cm_certsave_state * cm_certsave_n_start(struct cm_store_entry *entry) { struct cm_certsave_state *state; struct cm_certsave_n_settings settings = { .readwrite = 1, }; if (entry->cm_cert_storage_type != cm_cert_storage_nssdb) { cm_log(1, "Wrong save method: can only save certificates " "to an NSS database.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = cm_certsave_n_ready; state->pvt.get_fd = cm_certsave_n_get_fd; state->pvt.saved = cm_certsave_n_saved; state->pvt.conflict_subject = cm_certsave_n_conflict_subject; state->pvt.conflict_nickname = cm_certsave_n_conflict_nickname; state->pvt.permissions_error = cm_certsave_n_permissions_error; state->pvt.token_error = cm_certsave_n_token_error; state->pvt.pin_error = cm_certsave_n_pin_error; state->pvt.done= cm_certsave_n_done; state->entry = entry; state->subproc = cm_subproc_start(cm_certsave_n_main, state, NULL, entry, &settings); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/certsave-int.h0000664000175000017500000000424212645513264014262 00000000000000/* * Copyright (C) 2009,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcertsaveint_h #define cmcertsaveint_h enum cm_certsave_status { CM_CERTSAVE_STATUS_SAVED = 0, CM_CERTSAVE_STATUS_INTERNAL_ERROR = 1, CM_CERTSAVE_STATUS_SUBJECT_CONFLICT = 2, CM_CERTSAVE_STATUS_NICKNAME_CONFLICT = 3, CM_CERTSAVE_STATUS_INITIALIZING = 4, CM_CERTSAVE_STATUS_PERMS = 5, CM_CERTSAVE_STATUS_AUTH = 6, CM_CERTSAVE_STATUS_NO_TOKEN = 7, }; struct cm_certsave_state_pvt { /* Check if something changed, for example we finished saving the cert. */ int (*ready)(struct cm_certsave_state *state); /* Get a selectable-for-read descriptor that we can poll for status * changes. */ int (*get_fd)(struct cm_certsave_state *state); /* Check if we saved the certificate. */ int (*saved)(struct cm_certsave_state *state); /* Check if we failed due to filesystem permissions. */ int (*permissions_error)(struct cm_certsave_state *state); /* Tell us if we need a token to be inserted to access the storage * location. */ int (*token_error)(struct cm_certsave_state *state); /* Tell us if we need a PIN (or a new PIN) to access the storage * location. */ int (*pin_error)(struct cm_certsave_state *state); /* Check if we failed because the subject was already being used. */ int (*conflict_subject)(struct cm_certsave_state *state); /* Check if we failed because the nickname was already being used. */ int (*conflict_nickname)(struct cm_certsave_state *state); /* Clean up after saving the certificate. */ void (*done)(struct cm_certsave_state *state); }; #endif certmonger-0.78.6/src/certsave.h0000664000175000017500000000427412645513264013477 00000000000000/* * Copyright (C) 2009,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcertsave_h #define cmcertsave_h struct cm_certsave_state; struct cm_store_entry; /* Start writing the certificate from the entry to the configured location. */ struct cm_certsave_state *cm_certsave_start(struct cm_store_entry *entry); struct cm_certsave_state *cm_certsave_n_start(struct cm_store_entry *entry); struct cm_certsave_state *cm_certsave_o_start(struct cm_store_entry *entry); /* Check if something changed, for example we finished saving the cert. */ int cm_certsave_ready(struct cm_certsave_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_certsave_get_fd(struct cm_certsave_state *state); /* Check if we saved the certificate. */ int cm_certsave_saved(struct cm_certsave_state *state); /* Check if we failed due to a subject name conflict. */ int cm_certsave_conflict_subject(struct cm_certsave_state *state); /* Check if we failed due to a nickname conflict. */ int cm_certsave_conflict_nickname(struct cm_certsave_state *state); /* Check if we failed due to a permissions error. */ int cm_certsave_permissions_error(struct cm_certsave_state *state); /* Check if we failed due to the storage token not being present. */ int cm_certsave_token_error(struct cm_certsave_state *state); /* Check if we failed due to not having the right PIN for accessing the * storage location. */ int cm_certsave_pin_error(struct cm_certsave_state *state); /* Clean up after saving the certificate. */ void cm_certsave_done(struct cm_certsave_state *state); #endif certmonger-0.78.6/src/certsave.c0000664000175000017500000000651312645513264013470 00000000000000/* * Copyright (C) 2009,2013 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include "certsave.h" #include "certsave-int.h" #include "store-int.h" /* Start writing the certificate from the entry to the configured location. */ struct cm_certsave_state * cm_certsave_start(struct cm_store_entry *entry) { switch (entry->cm_cert_storage_type) { #ifdef HAVE_OPENSSL case cm_cert_storage_file: return cm_certsave_o_start(entry); break; #endif #ifdef HAVE_NSS case cm_cert_storage_nssdb: return cm_certsave_n_start(entry); break; #endif } return NULL; } /* Check if something changed, for example we finished saving the cert. */ int cm_certsave_ready(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->ready(state); } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_certsave_get_fd(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->get_fd(state); } /* Check if we saved the certificate. */ int cm_certsave_saved(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->saved(state); } /* Check if we failed due to a subject conflict. */ int cm_certsave_conflict_subject(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->conflict_subject(state); } /* Check if we failed due to a nickname conflict. */ int cm_certsave_conflict_nickname(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->conflict_nickname(state); } /* Check if we failed due to a permissions error. */ int cm_certsave_permissions_error(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->permissions_error(state); } /* Check if we failed because the storage token is not present. */ int cm_certsave_token_error(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->token_error(state); } /* Check if we failed because we're missing a PIN or password that's required * for accessing the data store. */ int cm_certsave_pin_error(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; return pvt->pin_error(state); } /* Clean up after saving the certificate. */ void cm_certsave_done(struct cm_certsave_state *state) { struct cm_certsave_state_pvt *pvt; pvt = (struct cm_certsave_state_pvt *) state; pvt->done(state); } certmonger-0.78.6/src/certread-n.c0000664000175000017500000003710312645513264013677 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certext.h" #include "certext-n.h" #include "certread.h" #include "certread-int.h" #include "log.h" #include "pin.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-n.h" struct cm_certread_state { struct cm_certread_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; struct cm_certread_n_settings { unsigned int readwrite:1; }; static int cm_certread_n_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { int status = CM_SUB_STATUS_INTERNAL_ERROR, readwrite, ec; const char *token; char *pin; PLArenaPool *arena; SECStatus error; NSSInitContext *ctx; PK11SlotList *slotlist; PK11SlotListElement *sle; CERTCertList *certs; CERTCertListNode *node; CERTCertificate *cert; CK_MECHANISM_TYPE mech; struct cm_certread_n_settings *settings; struct cm_pin_cb_data cb_data; PRTime before_a, after_a, before_b, after_b; FILE *fp; const char *es; if (entry->cm_cert_storage_location == NULL) { cm_log(1, "Error reading certificate: no location " "specified.\n"); _exit(1); } if (entry->cm_cert_nickname == NULL) { cm_log(1, "Error reading certificate: no nickname " "specified.\n"); _exit(1); } /* Open the status descriptor for stdio. */ fp = fdopen(fd, "w"); if (fp == NULL) { cm_log(1, "Unable to initialize I/O.\n"); _exit(1); } /* Open the database. */ settings = userdata; readwrite = settings->readwrite; ctx = NSS_InitContext(entry->cm_cert_storage_location, NULL, NULL, NULL, NULL, (readwrite ? 0 : NSS_INIT_READONLY) | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); ec = PORT_GetError(); if (ctx == NULL) { if ((ec == SEC_ERROR_BAD_DATABASE) && readwrite) { switch (errno) { case EACCES: case EPERM: ec = PR_NO_ACCESS_RIGHTS_ERROR; break; default: /* Sigh. Not a lot of detail. Check if we * succeed in read-only mode, which we'll * interpret as lack of write permissions. */ ctx = NSS_InitContext(entry->cm_key_storage_location, NULL, NULL, NULL, NULL, NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (ctx != NULL) { error = NSS_ShutdownContext(ctx); if (error != SECSuccess) { cm_log(1, "Error shutting down " "NSS.\n"); } ctx = NULL; ec = PR_NO_ACCESS_RIGHTS_ERROR; } break; } } if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Unable to open NSS database '%s': %s.\n", entry->cm_cert_storage_location, es); } else { cm_log(1, "Unable to open NSS database '%s'.\n", entry->cm_cert_storage_location); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ status = CM_SUB_STATUS_ERROR_PERMS; break; default: status = CM_SUB_STATUS_ERROR_INITIALIZING; break; } cm_log(1, "Unable to open NSS database.\n"); _exit(status); } es = util_n_fips_hook(); if (es != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", es); _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } /* Allocate a memory pool. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(1, "Error opening database '%s'.\n", entry->cm_cert_storage_location); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(ENOMEM); } /* Find the tokens that we might use for cert storage. */ mech = CKM_RSA_X_509; slotlist = PK11_GetAllTokens(mech, PR_FALSE, PR_FALSE, NULL); if (slotlist == NULL) { cm_log(1, "Error getting list of tokens.\n"); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(2); } /* Walk the list looking for the requested slot, or the first one if * none was requested. */ cert = NULL; if (cm_pin_read_for_cert(entry, &pin) != 0) { cm_log(1, "Error reading PIN for cert db.\n"); _exit(CM_SUB_STATUS_ERROR_AUTH); } PK11_SetPasswordFunc(&cm_pin_read_for_cert_nss_cb); for (sle = slotlist->head; ((sle != NULL) && (sle->slot != NULL)); sle = sle->next) { /* Log the slot's name. */ token = PK11_GetTokenName(sle->slot); if (token != NULL) { cm_log(3, "Found token '%s'.\n", token); } else { cm_log(3, "Found unnamed token.\n"); } /* If we're looking for a specific slot, and this isn't it, * keep going. */ if ((entry->cm_cert_token != NULL) && (strlen(entry->cm_cert_token) != 0) && ((token == NULL) || (strcmp(entry->cm_cert_token, token) != 0))) { if (token != NULL) { cm_log(1, "Token is named \"%s\", not \"%s\", " "skipping.\n", token, entry->cm_cert_token); } else { cm_log(1, "Token is unnamed, not \"%s\", " "skipping.\n", entry->cm_cert_token); } goto next_slot; } /* Be ready to count our uses of a PIN. */ memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; /* If we're supposed to be using a PIN, and we're offered a * chance to set one, do it now. */ if (readwrite) { if (PK11_NeedUserInit(sle->slot)) { if (cm_pin_read_for_cert(entry, &pin) != 0) { cm_log(1, "Error reading PIN to assign " "to storage slot, skipping.\n"); goto next_slot; } PK11_InitPin(sle->slot, NULL, pin); if (PK11_NeedUserInit(sle->slot)) { cm_log(1, "Cert storage slot still " "needs user PIN to be set.\n"); goto next_slot; } /* We're authenticated now, so count this as a * use of the PIN. */ cb_data.n_attempts++; } } /* If we need to log in in order to read certificates, do so. */ if (PK11_NeedLogin(sle->slot)) { if (cm_pin_read_for_cert(entry, &pin) != 0) { cm_log(1, "Error reading PIN for cert db, " "skipping.\n"); goto next_slot; } error = PK11_Authenticate(sle->slot, PR_TRUE, &cb_data); if (error != SECSuccess) { cm_log(1, "Error authenticating to cert db.\n"); goto next_slot; } if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to auth to cert " "db, though one was provided. " "Treating this as an error.\n"); goto next_slot; } } /* Walk the list of certificates in the slot, looking for one * which matches the specified nickname. */ certs = PK11_ListCertsInSlot(sle->slot); if (certs != NULL) { for (node = CERT_LIST_HEAD(certs); !CERT_LIST_EMPTY(certs) && !CERT_LIST_END(node, certs); node = CERT_LIST_NEXT(node)) { if (strcmp(node->cert->nickname, entry->cm_cert_nickname) == 0) { cm_log(3, "Located the certificate " "\"%s\".\n", entry->cm_cert_nickname); if (entry->cm_cert_token == NULL) { entry->cm_cert_token = talloc_strdup(entry, token); } if (cert == NULL) { cert = CERT_DupCertificate(node->cert); } else { if ((CERT_GetCertTimes(node->cert, &before_a, &after_a) == SECSuccess) && (CERT_GetCertTimes(cert, &before_b, &after_b) == SECSuccess) && (after_a > after_b)) { cm_log(3, "Located a newer certificate " "\"%s\".\n", entry->cm_cert_nickname); if (readwrite && (before_a > before_b)) { error = SEC_DeletePermCertificate(cert); if (error != SECSuccess) { cm_log(3, "Error deleting old certificate: %s.\n", PR_ErrorToName(error)); } } CERT_DestroyCertificate(cert); cert = CERT_DupCertificate(node->cert); } } } } CERT_DestroyCertList(certs); } next_slot: if (sle == slotlist->tail) { break; } } if (cert == NULL) { cm_log(1, "Error locating certificate.\n"); PK11_FreeSlotList(slotlist); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(2); } cm_certread_n_parse(entry, cert->derCert.data, cert->derCert.len); cm_certread_write_data_to_pipe(entry, fp); fclose(fp); CERT_DestroyCertificate(cert); PK11_FreeSlotList(slotlist); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(0); } /* Parse the certificate in the entry, and refresh the certificate-based * fields. */ void cm_certread_n_parse(struct cm_store_entry *entry, unsigned char *der_cert, unsigned int der_cert_len) { PLArenaPool *arena; SECItem item, *items; CERTCertificate *cert, **certs; NSSInitContext *ctx; char *p; const char *nl, *es; unsigned int i; /* Initialize the library. */ ctx = NSS_InitContext(CM_DEFAULT_CERT_STORAGE_LOCATION, NULL, NULL, NULL, NULL, NSS_INIT_NOCERTDB | NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB); if (ctx == NULL) { cm_log(1, "Unable to initialize NSS.\n"); _exit(1); } es = util_n_fips_hook(); if (es != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", es); _exit(1); } /* Allocate a memory pool. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(1, "Error opening database '%s'.\n", entry->cm_cert_storage_location); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(ENOMEM); } /* Decode the certificate. */ item.data = der_cert; item.len = der_cert_len; items = &item; certs = NULL; if ((CERT_ImportCerts(CERT_GetDefaultCertDB(), 0, 1, &items, &certs, PR_FALSE, PR_FALSE, "temp") != SECSuccess) || (certs == NULL) || (certs[0] == NULL)) { cm_log(1, "Error decoding certificate.\n"); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(1); } cert = certs[0]; /* Pick out the interesting bits. */ /* Issuer name */ talloc_free(entry->cm_cert_issuer_der); entry->cm_cert_issuer_der = cm_store_hex_from_bin(entry, cert->derIssuer.data, cert->derIssuer.len); talloc_free(entry->cm_cert_issuer); entry->cm_cert_issuer = talloc_strdup(entry, cert->issuerName); /* Serial number */ talloc_free(entry->cm_cert_serial); item = cert->serialNumber; entry->cm_cert_serial = cm_store_hex_from_bin(entry, item.data, item.len); /* Subject name */ talloc_free(entry->cm_cert_subject_der); item = cert->derSubject; entry->cm_cert_subject_der = cm_store_hex_from_bin(entry, item.data, item.len); talloc_free(entry->cm_cert_subject); entry->cm_cert_subject = talloc_strdup(entry, cert->subjectName); /* Subject Public Key Info, encoded into a blob. */ talloc_free(entry->cm_cert_spki); if (SEC_ASN1EncodeItem(arena, items, &cert->subjectPublicKeyInfo, CERT_SubjectPublicKeyInfoTemplate) != items) { cm_log(1, "Error encoding subjectPublicKeyInfo.\n"); CERT_DestroyCertArray(certs, 1); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } _exit(1); } entry->cm_cert_spki = cm_store_hex_from_bin(entry, items->data, items->len); /* Not-before date. */ p = talloc_strndup(entry, (char *) cert->validity.notBefore.data, cert->validity.notBefore.len); if (p != NULL) { entry->cm_cert_not_before = cm_store_time_from_timestamp(p); } else { entry->cm_cert_not_before = 0; } /* Not-after date. */ p = talloc_strndup(entry, (char *) cert->validity.notAfter.data, cert->validity.notAfter.len); if (p != NULL) { entry->cm_cert_not_after = cm_store_time_from_timestamp(p); } else { entry->cm_cert_not_after = 0; } /* Hostname from subjectAltName extension. */ talloc_free(entry->cm_cert_hostname); entry->cm_cert_hostname = NULL; /* Email address from subjectAltName extension. */ talloc_free(entry->cm_cert_email); entry->cm_cert_email = NULL; /* Principal name from subjectAltName extension. */ talloc_free(entry->cm_cert_principal); entry->cm_cert_principal = NULL; /* IP address from subjectAltName extension. */ talloc_free(entry->cm_cert_ipaddress); entry->cm_cert_ipaddress = NULL; /* Key usage from keyUsage extension. */ talloc_free(entry->cm_cert_ku); entry->cm_cert_ku = NULL; /* Extended key usage from extendedKeyUsage extension. */ talloc_free(entry->cm_cert_eku); entry->cm_cert_eku = NULL; /* Parse the extensions. */ cm_certext_read_extensions(entry, arena, cert->extensions); /* The certificate itself. */ p = NSSBase64_EncodeItem(arena, NULL, 0, &cert->derCert); if (p != NULL) { i = strlen(p); if ((i > 0) && (p[i - 1] != '\n')) { nl = "\n"; } else { nl = ""; } talloc_free(entry->cm_cert); p = talloc_asprintf(entry, "%s%s%s%s", "-----BEGIN CERTIFICATE-----\n", p, nl, "-----END CERTIFICATE-----\n"); entry->cm_cert = p; } /* Clean up. */ CERT_DestroyCertArray(certs, 1); PORT_FreeArena(arena, PR_TRUE); if (NSS_ShutdownContext(ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } } /* Check if something changed, for example we finished reading the data we need * from the cert. */ static int cm_certread_n_ready(struct cm_certread_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_certread_n_get_fd(struct cm_certread_state *state) { return cm_subproc_get_fd(state->subproc); } /* Clean up after reading the certificate. */ static void cm_certread_n_done(struct cm_certread_state *state) { const char *msg; if (state->subproc != NULL) { msg = cm_subproc_get_msg(state->subproc, NULL); cm_certread_read_data_from_buffer(state->entry, msg); cm_subproc_done(state->subproc); } talloc_free(state); } /* Start reading the certificate from the configured location. */ struct cm_certread_state * cm_certread_n_start(struct cm_store_entry *entry) { struct cm_certread_state *state; struct cm_certread_n_settings settings = { .readwrite = 1, }; if (entry->cm_cert_storage_type != cm_cert_storage_nssdb) { cm_log(1, "Wrong read method: can only read certificates " "from an NSS database.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = cm_certread_n_ready; state->pvt.get_fd= cm_certread_n_get_fd; state->pvt.done= cm_certread_n_done; state->entry = entry; state->subproc = cm_subproc_start(cm_certread_n_main, state, NULL, entry, &settings); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/certread-int.h0000664000175000017500000000262512645513264014242 00000000000000/* * Copyright (C) 2009,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcertreadint_h #define cmcertreadint_h struct cm_certread_state_pvt { /* Check if something changed, for example we finished reading the * cert. */ int (*ready)(struct cm_certread_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. * */ int (*get_fd)(struct cm_certread_state *state); /* Clean up after reading the certificate. */ void (*done)(struct cm_certread_state *state); }; void cm_certread_n_parse(struct cm_store_entry *entry, unsigned char *der_cert, unsigned int der_cert_len); void cm_certread_write_data_to_pipe(struct cm_store_entry *entry, FILE *fp); void cm_certread_read_data_from_buffer(struct cm_store_entry *entry, const char *p); #endif certmonger-0.78.6/src/certread.h0000664000175000017500000000273112645513264013450 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcertread_h #define cmcertread_h struct cm_certread_state; struct cm_store_entry; /* Start refreshing the certificate and associated data from the entry from the * configured location. */ struct cm_certread_state *cm_certread_start(struct cm_store_entry *entry); struct cm_certread_state *cm_certread_n_start(struct cm_store_entry *entry); struct cm_certread_state *cm_certread_o_start(struct cm_store_entry *entry); /* Check if something changed, for example we finished reading the cert. */ int cm_certread_ready(struct cm_certread_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_certread_get_fd(struct cm_certread_state *state); /* Clean up after reading the certificate. */ void cm_certread_done(struct cm_certread_state *state); #endif certmonger-0.78.6/src/certread.c0000664000175000017500000003031112645513264013436 00000000000000/* * Copyright (C) 2009,2010,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include "certread.h" #include "certread-int.h" #include "log.h" #include "store.h" #include "store-int.h" /* Start refreshing the certificate and associated data from the entry from the * configured location. */ struct cm_certread_state * cm_certread_start(struct cm_store_entry *entry) { switch (entry->cm_cert_storage_type) { #ifdef HAVE_OPENSSL case cm_cert_storage_file: if (entry->cm_cert_storage_location != NULL) { return cm_certread_o_start(entry); } else { return NULL; } break; #endif #ifdef HAVE_NSS case cm_cert_storage_nssdb: if ((entry->cm_cert_storage_location != NULL) && (entry->cm_cert_nickname != NULL)) { return cm_certread_n_start(entry); } else { return NULL; } break; #endif } return NULL; } /* Check if something changed, for example we finished reading the cert. */ int cm_certread_ready(struct cm_certread_state *state) { struct cm_certread_state_pvt *pvt; pvt = (struct cm_certread_state_pvt *) state; return pvt->ready(state); } /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_certread_get_fd(struct cm_certread_state *state) { struct cm_certread_state_pvt *pvt; pvt = (struct cm_certread_state_pvt *) state; return pvt->get_fd(state); } /* Clean up after reading the certificate. */ void cm_certread_done(struct cm_certread_state *state) { struct cm_certread_state_pvt *pvt; pvt = (struct cm_certread_state_pvt *) state; pvt->done(state); } /* Send what we know about this certificate down a pipe using stdio. */ void cm_certread_write_data_to_pipe(struct cm_store_entry *entry, FILE *fp) { int i; unsigned char *p; fprintf(fp, " %s\n", entry->cm_cert_issuer_der ?: ""); p = (unsigned char *) entry->cm_cert_issuer; fprintf(fp, " %s\n", p ? cm_store_base64_from_bin(NULL, p, -1) : ""); fprintf(fp, " %s\n", entry->cm_cert_serial ?: ""); fprintf(fp, " %s\n", entry->cm_cert_subject_der ?: ""); p = (unsigned char *) entry->cm_cert_subject; fprintf(fp, " %s\n", p ? cm_store_base64_from_bin(NULL, p, -1) : ""); fprintf(fp, " %s\n", entry->cm_cert_spki ?: ""); fprintf(fp, " %lu\n", entry->cm_cert_not_before ?: 0); fprintf(fp, " %lu\n", entry->cm_cert_not_after ?: 0); for (i = 0; (entry->cm_cert_hostname != NULL) && (entry->cm_cert_hostname[i] != NULL); i++) { p = (unsigned char *) entry->cm_cert_hostname[i]; fprintf(fp, "%s%s", (i > 0) ? "," : " ", cm_store_base64_from_bin(NULL, p, -1)); } fprintf(fp, "%s\n", i > 0 ? "" : " "); for (i = 0; (entry->cm_cert_email != NULL) && (entry->cm_cert_email[i] != NULL); i++) { p = (unsigned char *) entry->cm_cert_email[i]; fprintf(fp, "%s%s", (i > 0) ? "," : " ", cm_store_base64_from_bin(NULL, p, -1)); } fprintf(fp, "%s\n", i > 0 ? "" : " "); for (i = 0; (entry->cm_cert_principal != NULL) && (entry->cm_cert_principal[i] != NULL); i++) { p = (unsigned char *) entry->cm_cert_principal[i]; fprintf(fp, "%s%s", (i > 0) ? "," : " ", cm_store_base64_from_bin(NULL, p, -1)); } fprintf(fp, "%s\n", i > 0 ? "" : " "); for (i = 0; (entry->cm_cert_ipaddress != NULL) && (entry->cm_cert_ipaddress[i] != NULL); i++) { p = (unsigned char *) entry->cm_cert_ipaddress[i]; fprintf(fp, "%s%s", (i > 0) ? "," : " ", cm_store_base64_from_bin(NULL, p, -1)); } fprintf(fp, "%s\n", i > 0 ? "" : " "); fprintf(fp, " %s\n", entry->cm_cert_ku ?: ""); fprintf(fp, " %s\n", entry->cm_cert_eku ?: ""); p = (unsigned char *) entry->cm_cert_token; fprintf(fp, " %s\n", p ? cm_store_base64_from_bin(NULL, p, -1) : ""); fprintf(fp, " %d\n", entry->cm_cert_is_ca ? 1 : 0); fprintf(fp, " %d\n", entry->cm_cert_is_ca ? entry->cm_cert_ca_path_length : -1); for (i = 0; (entry->cm_cert_ocsp_location != NULL) && (entry->cm_cert_ocsp_location[i] != NULL); i++) { p = (unsigned char *) entry->cm_cert_ocsp_location[i]; fprintf(fp, "%s%s", (i > 0) ? "," : " ", cm_store_base64_from_bin(NULL, p, -1)); } fprintf(fp, "%s\n", i > 0 ? "" : " "); for (i = 0; (entry->cm_cert_crl_distribution_point != NULL) && (entry->cm_cert_crl_distribution_point[i] != NULL); i++) { p = (unsigned char *) entry->cm_cert_crl_distribution_point[i]; fprintf(fp, "%s%s", (i > 0) ? "," : " ", cm_store_base64_from_bin(NULL, p, -1)); } fprintf(fp, "%s\n", i > 0 ? "" : " "); for (i = 0; (entry->cm_cert_freshest_crl != NULL) && (entry->cm_cert_freshest_crl[i] != NULL); i++) { p = (unsigned char *) entry->cm_cert_freshest_crl[i]; fprintf(fp, "%s%s", (i > 0) ? "," : " ", cm_store_base64_from_bin(NULL, p, -1)); } fprintf(fp, "%s\n", i > 0 ? "" : " "); p = (unsigned char *) entry->cm_cert_ns_comment; fprintf(fp, " %s\n", p ? cm_store_base64_from_bin(NULL, p, -1) : ""); p = (unsigned char *) entry->cm_cert_profile; fprintf(fp, " %s\n", p ? cm_store_base64_from_bin(NULL, p, -1) : ""); fprintf(fp, " %d\n", entry->cm_cert_no_ocsp_check ? 1 : 0); p = (unsigned char *) entry->cm_cert_ns_certtype; fprintf(fp, " %s\n", p ? cm_store_base64_from_bin(NULL, p, -1) : ""); fprintf(fp, " %s\n", entry->cm_cert ?: ""); } /* Parse what we know about this certificate from a buffer. */ void cm_certread_read_data_from_buffer(struct cm_store_entry *entry, const char *p) { const char *q, *u, *v; char *s; void *vals; int i = 0, j; while (*p != '\0') { /* Skip over the first character. */ p++; /* Find the end of the line. */ q = p + strcspn(p, "\r\n"); /* Decide what to do with the data. */ switch (i++) { case 0: talloc_free(entry->cm_cert_issuer_der); entry->cm_cert_issuer_der = (p == q) ? NULL : talloc_strndup(entry, p, q - p); break; case 1: talloc_free(entry->cm_cert_issuer); entry->cm_cert_issuer = (p == q) ? NULL : cm_store_base64_as_bin(entry, p, q - p, NULL); break; case 2: talloc_free(entry->cm_cert_serial); entry->cm_cert_serial = (p == q) ? NULL : talloc_strndup(entry, p, q - p); break; case 3: talloc_free(entry->cm_cert_subject_der); entry->cm_cert_subject_der = (p == q) ? NULL : talloc_strndup(entry, p, q - p); break; case 4: talloc_free(entry->cm_cert_subject); entry->cm_cert_subject = (p == q) ? NULL : cm_store_base64_as_bin(entry, p, q - p, NULL); break; case 5: talloc_free(entry->cm_cert_spki); entry->cm_cert_spki = (p == q) ? NULL : talloc_strndup(entry, p, q - p); break; case 6: s = talloc_strndup(entry, p, q - p); entry->cm_cert_not_before = atol(s); talloc_free(s); break; case 7: s = talloc_strndup(entry, p, q - p); entry->cm_cert_not_after = atol(s); talloc_free(s); break; case 8: talloc_free(entry->cm_cert_hostname); entry->cm_cert_hostname = talloc_zero_array(entry, char *, q - p + 2); vals = entry->cm_cert_hostname; u = p; j = 0; while ((*u != '\0') && (u < q)) { v = u + strcspn(u, ",\r\n"); if (v > u) { entry->cm_cert_hostname[j] = cm_store_base64_as_bin(vals, u, v - u, NULL); j++; } u = v + strspn(u, ",\r\n"); } break; case 9: talloc_free(entry->cm_cert_email); entry->cm_cert_email = talloc_zero_array(entry, char *, q - p + 2); vals = entry->cm_cert_email; u = p; j = 0; while ((*u != '\0') && (u < q)) { v = u + strcspn(u, ",\r\n"); if (v > u) { entry->cm_cert_email[j] = cm_store_base64_as_bin(vals, u, v - u, NULL); j++; } u = v + strspn(u, ",\r\n"); } break; case 10: talloc_free(entry->cm_cert_principal); entry->cm_cert_principal = talloc_zero_array(entry, char *, q - p + 2); vals = entry->cm_cert_principal; u = p; j = 0; while ((*u != '\0') && (u < q)) { v = u + strcspn(u, ",\r\n"); if (v > u) { entry->cm_cert_principal[j] = cm_store_base64_as_bin(vals, u, v - u, NULL); j++; } u = v + strspn(u, ",\r\n"); } break; case 11: talloc_free(entry->cm_cert_ipaddress); entry->cm_cert_ipaddress = talloc_zero_array(entry, char *, q - p + 2); vals = entry->cm_cert_ipaddress; u = p; j = 0; while ((*u != '\0') && (u < q)) { v = u + strcspn(u, ",\r\n"); if (v > u) { entry->cm_cert_ipaddress[j] = talloc_strndup(vals, u, v - u); j++; } u = v + strspn(u, ",\r\n"); } break; case 12: talloc_free(entry->cm_cert_ku); entry->cm_cert_ku = (p == q) ? NULL : talloc_strndup(entry, p, q - p); break; case 13: talloc_free(entry->cm_cert_eku); entry->cm_cert_eku = (p == q) ? NULL : talloc_strndup(entry, p, q - p); break; case 14: if (p != q) { talloc_free(entry->cm_cert_token); entry->cm_cert_token = cm_store_base64_as_bin(entry, p, q - p, NULL); } break; case 15: entry->cm_cert_is_ca = (p != q) ? (atoi(p) != 0) : 0; break; case 16: entry->cm_cert_ca_path_length = (p != q) ? atoi(p) : -1; break; case 17: talloc_free(entry->cm_cert_ocsp_location); entry->cm_cert_ocsp_location = talloc_zero_array(entry, char *, q - p + 2); vals = entry->cm_cert_ocsp_location; u = p; j = 0; while ((*u != '\0') && (u < q)) { v = u + strcspn(u, ",\r\n"); if (v > u) { entry->cm_cert_ocsp_location[j] = cm_store_base64_as_bin(vals, u, v - u, NULL); j++; } u = v + strspn(u, ",\r\n"); } break; case 18: talloc_free(entry->cm_cert_crl_distribution_point); entry->cm_cert_crl_distribution_point = talloc_zero_array(entry, char *, q - p + 2); vals = entry->cm_cert_crl_distribution_point; u = p; j = 0; while ((*u != '\0') && (u < q)) { v = u + strcspn(u, ",\r\n"); if (v > u) { entry->cm_cert_crl_distribution_point[j] = cm_store_base64_as_bin(vals, u, v - u, NULL); j++; } u = v + strspn(u, ",\r\n"); } break; case 19: talloc_free(entry->cm_cert_freshest_crl); entry->cm_cert_freshest_crl = talloc_zero_array(entry, char *, q - p + 2); vals = entry->cm_cert_freshest_crl; u = p; j = 0; while ((*u != '\0') && (u < q)) { v = u + strcspn(u, ",\r\n"); if (v > u) { entry->cm_cert_freshest_crl[j] = cm_store_base64_as_bin(vals, u, v - u, NULL); j++; } u = v + strspn(u, ",\r\n"); } break; case 20: talloc_free(entry->cm_cert_ns_comment); entry->cm_cert_ns_comment = (p == q) ? NULL : cm_store_base64_as_bin(entry, p, q - p, NULL); break; case 21: talloc_free(entry->cm_cert_profile); entry->cm_cert_profile = (p == q) ? NULL : cm_store_base64_as_bin(entry, p, q - p, NULL); break; case 22: entry->cm_cert_no_ocsp_check = (p != q) ? (atoi(p) != 0) : 0; break; case 23: talloc_free(entry->cm_cert_ns_certtype); entry->cm_cert_ns_certtype = (p == q) ? NULL : cm_store_base64_as_bin(entry, p, q - p, NULL); break; case 24: talloc_free(entry->cm_cert); entry->cm_cert = (p[strspn(p, " \r\n")] == '\0') ? NULL : talloc_strdup(entry, p); break; } /* Find the beginning of the next line. */ p = q + strspn(q, "\r\n"); } } certmonger-0.78.6/src/certext-n.h0000664000175000017500000000202112645513264013560 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcertext_n_h #define cmcertext_n_h struct cm_store_entry; extern const SEC_ASN1Template cm_certext_cert_extension_template[]; extern const SEC_ASN1Template cm_certext_sequence_of_cert_extension_template[]; void cm_certext_read_extensions(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension **extensions); #endif certmonger-0.78.6/src/certext.h0000664000175000017500000000166712645513264013344 00000000000000/* * Copyright (C) 2009 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcertext_h #define cmcertext_h struct NSSInitContextStr; struct cm_store_entry; void cm_certext_build_csr_extensions(struct cm_store_entry *entry, struct NSSInitContextStr *ctx, unsigned char **encoded, size_t *length); #endif certmonger-0.78.6/src/certext.c0000664000175000017500000016603712645513264013342 00000000000000/* * Copyright (C) 2009,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #ifdef CM_USE_IDN #include #endif #include "certext.h" #include "certext-n.h" #include "log.h" #include "oiddict.h" #include "store.h" #include "store-int.h" #include "util-n.h" /* Structures and templates for creating and parsing principal name otherName * values. */ struct realm { SECItem name; }; struct principal_name { SECItem name_type; SECItem **name_string; }; struct kerberos_principal_name { struct realm realm; struct principal_name principal_name; }; struct ms_template { SECItem id; SECItem major; SECItem *minor; }; /* KerberosString: RFC 4120, 5.2.1 */ static const SEC_ASN1Template cm_kerberos_string_template[] = { { .kind = SEC_ASN1_GENERAL_STRING, .offset = 0, .sub = NULL, .size = sizeof(SECItem), }, }; /* Realm == KerberosString: RFC 4120, 5.2.2 */ static const SEC_ASN1Template cm_realm_template[] = { { .kind = SEC_ASN1_GENERAL_STRING, .offset = 0, .sub = NULL, .size = sizeof(SECItem), }, }; static const SEC_ASN1Template cm_sequence_of_kerberos_string_template[] = { { .kind = SEC_ASN1_SEQUENCE_OF, .offset = 0, .sub = &cm_kerberos_string_template, .size = 0, }, }; /* PrincipalName: RFC 4120, 5.2.2 */ static const SEC_ASN1Template cm_principal_name_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(struct principal_name), }, { .kind = SEC_ASN1_CONTEXT_SPECIFIC | 0 | SEC_ASN1_CONSTRUCTED | SEC_ASN1_EXPLICIT, .offset = offsetof(struct principal_name, name_type), .sub = &SEC_IntegerTemplate, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_CONTEXT_SPECIFIC | 1 | SEC_ASN1_CONSTRUCTED | SEC_ASN1_EXPLICIT, .offset = offsetof(struct principal_name, name_string), .sub = cm_sequence_of_kerberos_string_template, .size = sizeof(struct SECItem**), }, {0, 0, NULL, 0}, }; /* KRB5PrincipalName: RFC 4556, 3.2.2 */ const SEC_ASN1Template cm_kerberos_principal_name_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(struct kerberos_principal_name), }, { .kind = SEC_ASN1_CONTEXT_SPECIFIC | 0 | SEC_ASN1_CONSTRUCTED | SEC_ASN1_EXPLICIT, .offset = offsetof(struct kerberos_principal_name, realm), .sub = &cm_realm_template, .size = sizeof(struct realm), }, { .kind = SEC_ASN1_CONTEXT_SPECIFIC | 1 | SEC_ASN1_CONSTRUCTED | SEC_ASN1_EXPLICIT, .offset = offsetof(struct kerberos_principal_name, principal_name), .sub = &cm_principal_name_template, .size = sizeof(struct principal_name), }, {0, 0, NULL, 0}, }; /* V1 templates, identified by name. */ static SEC_ASN1Template cm_ms_upn_name_template[] = { { .kind = SEC_ASN1_CONTEXT_SPECIFIC | 0 | SEC_ASN1_EXPLICIT | SEC_ASN1_CONSTRUCTED, .offset = 0, .sub = SEC_UTF8StringTemplate, .size = sizeof(SECItem), }, }; /* A guess at what V2 template identifiers look like. */ const SEC_ASN1Template cm_ms_template_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(struct kerberos_principal_name), }, { .kind = SEC_ASN1_OBJECT_ID, .offset = offsetof(struct ms_template, id), .sub = SEC_ObjectIDTemplate, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_INTEGER, .offset = offsetof(struct ms_template, major), .sub = SEC_IntegerTemplate, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_INTEGER | SEC_ASN1_OPTIONAL, .offset = offsetof(struct ms_template, minor), .sub = SEC_IntegerTemplate, .size = sizeof(SECItem), }, {0, 0, NULL, 0}, }; /* RFC 5280, 4.1 */ const SEC_ASN1Template cm_certext_cert_extension_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(CERTCertExtension), }, { .kind = SEC_ASN1_OBJECT_ID, .offset = offsetof(CERTCertExtension, id), .sub = NULL, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_BOOLEAN, .offset = offsetof(CERTCertExtension, critical), .sub = NULL, .size = sizeof(SECItem), }, { .kind = SEC_ASN1_OCTET_STRING, .offset = offsetof(CERTCertExtension, value), .sub = NULL, .size = sizeof(SECItem), }, {0, 0, NULL, 0}, }; const SEC_ASN1Template cm_certext_sequence_of_cert_extension_template[] = { { .kind = SEC_ASN1_SEQUENCE_OF, .offset = 0, .sub = cm_certext_cert_extension_template, .size = sizeof(CERTCertExtension **), }, }; /* Windows 2000-style UPN */ static unsigned char oid_ms_upn_name_bytes[] = {0x2b, 0x06, 0x01, 0x04, 0x01, 0x82, 0x37, 0x14, 0x02, 0x03}; static const SECOidData oid_ms_upn_name = { .oid = { .data = oid_ms_upn_name_bytes, .len = 10, }, .offset = 0, .desc = "Microsoft Windows User Principal Name", .mechanism = 0, .supportedExtension = UNSUPPORTED_CERT_EXTENSION, }; /* pkinit-SAN 1.3.6.1.5.2.2 */ static unsigned char oid_pkinit_san_bytes[] = {0x2b, 0x06, 0x01, 0x05, 0x02, 0x02}; static const SECOidData oid_pkinit_san = { .oid = { .data = oid_pkinit_san_bytes, .len = 6, }, .offset = 0, .desc = "PKINIT Subject Alternate Name", .mechanism = 0, .supportedExtension = UNSUPPORTED_CERT_EXTENSION, }; /* XCN_OID_ENROLL_CERTTYPE_EXTENSION 1.3.6.1.4.1.311.20.2 */ static unsigned char oid_microsoft_certtype_bytes[] = {0x2b, 0x06, 0x01, 0x04, 0x01, 0x82, 0x37, 0x14, 0x02}; static const SECOidData oid_microsoft_certtype = { .oid = { .data = oid_microsoft_certtype_bytes, .len = 9, }, .offset = 0, .desc = "Microsoft Certificate Template Name", .mechanism = 0, .supportedExtension = UNSUPPORTED_CERT_EXTENSION, }; /* XCN_OID_CERTIFICATE_TEMPLATE 1.3.6.1.4.1.311.21.7 */ static unsigned char oid_microsoft_certificate_template_bytes[] = {0x2b, 0x06, 0x01, 0x04, 0x01, 0x82, 0x37, 0x15, 0x07}; static const SECOidData oid_microsoft_certificate_template = { .oid = { .data = oid_microsoft_certificate_template_bytes, .len = 9, }, .offset = 0, .desc = "Microsoft Certificate Template", .mechanism = 0, .supportedExtension = UNSUPPORTED_CERT_EXTENSION, }; /* Read the keyUsage extension and store it as a string in the entry, with each * bit being represented by either a "1" or a "0", most significant bit first. * */ static void cm_certext_read_ku(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ku_ext) { SECItem item; unsigned int i, bit; if (SEC_ASN1DecodeItem(arena, &item, SEC_BitStringTemplate, &ku_ext->value) == SECSuccess) { talloc_free(entry->cm_cert_ku); /* A bitString decodes with length == number of bits, not * bytes, which is what we want anyway. */ entry->cm_cert_ku = talloc_zero_size(entry, item.len + 1); for (i = 0; i < item.len; i++) { bit = (item.data[i / 8] & (0x80 >> (i % 8))) ? 1 : 0; sprintf(entry->cm_cert_ku + i, "%.*u", 1, bit); } } } /* Build a BitString extension value from a string, with each bit being * represented by either a "1" or a "0", most significant bit first. */ static SECItem * cm_certext_build_bitstring(struct cm_store_entry *entry, PLArenaPool *arena, const char *bitstring) { SECItem *ret, encoded, *bits; unsigned int i, used, val, len; if ((bitstring == NULL) || (strlen(bitstring) == 0)) { /* Nothing to encode, so don't include this extension. */ return NULL; } len = strlen(bitstring) + 1; bits = SECITEM_AllocItem(arena, NULL, len); memset(bits->data, '\0', len); for (i = 0, used = 0; (bitstring != NULL) && (bitstring[i] != '\0'); i++) { val = ((bitstring[i] == '1') ? 0x80 : 0x00) >> (i % 8); bits->data[i / 8] |= val; if (val != 0) { used = i + 1; } } /* A bitString encodes with length == number of bits, not bytes, but * luckily we have that information. */ bits->len = used; memset(&encoded, 0, sizeof(encoded)); if (SEC_ASN1EncodeItem(arena, &encoded, bits, SEC_BitStringTemplate) != &encoded) { ret = NULL; } else { ret = SECITEM_ArenaDupItem(arena, &encoded); } return ret; } /* Build a keyUsage extension value from a string, with each bit being * represented by either a "1" or a "0", most significant bit first. */ static SECItem * cm_certext_build_ku(struct cm_store_entry *entry, PLArenaPool *arena, const char *ku_value) { return cm_certext_build_bitstring(entry, arena, ku_value); } /* Convert an OID to a printable string. For now, we're limited to components * that will fit into a "long". */ static char * oid_to_string(void *parent, SECItem *oid) { char *s, *t; unsigned char *p; unsigned long l; unsigned int n; s = NULL; l = 0; n = 0; for (p = oid->data; p < oid->data + oid->len; p++) { /* Add seven more bits. */ l <<= 7; l |= (*p & 0x7f); n++; /* Check for overflow. */ if ((n * 7) > sizeof(l) * 8) { return NULL; } /* If this is the last byte, save it. */ if ((*p & 0x80) == 0) { if (s != NULL) { /* Directly. */ t = talloc_asprintf(parent, "%s.%lu", s, l); talloc_free(s); s = t; } else { /* The first two items are in the first byte. */ s = talloc_asprintf(parent, "%lu.%lu", l / 40, l % 40); } l = 0; n = 0; } } return s; } /* Convert an OID from a printable string into binary form. For now, we're * limited to components that will fit into a "long". */ SECItem * oid_from_string(const char *oid, int n, PLArenaPool *arena) { unsigned long *l, val; int i, more; char *p, *endptr; unsigned char *up, u; SECItem *ret; if (n == -1) { n = strlen(oid); } p = PORT_ArenaZAlloc(arena, n + 1); l = PORT_ArenaZAlloc(arena, (n + 1) * sizeof(*l)); if ((p == NULL) || (l == NULL)) { return NULL; } /* Make sure we've got a NUL-terminator. */ memcpy(p, oid, n); p[n] = '\0'; n = 0; endptr = p; /* Parse the values as longs into an array. */ while ((*endptr != '\0') && (*p != '.')) { l[n] = strtoul(p, &endptr, 10); if (endptr == NULL) { return NULL; } switch (*endptr) { case '.': n++; p = endptr + 1; break; case '\0': n++; break; default: return NULL; break; } } /* Merge the first two values, if we have at least two. */ if (n >= 2) { l[0] = l[0] * 40 + l[1]; memmove(l + 1, l + 2, sizeof(unsigned long) * (n - 2)); n--; } ret = SECITEM_AllocItem(arena, NULL, (n + 1) * howmany(sizeof(unsigned long) * 8, 7)); if (ret == NULL) { return NULL; } /* Spool the list of values out, last section last, in LSB * order. */ up = ret->data; for (i = n - 1; i >= 0; i--) { val = l[i]; more = 0; do { *up = val & 0x7f; if (more) { *up |= 0x80; } val >>= 7; more = 1; up++; } while (val != 0); } /* Reverse the order of bytes in the buffer. */ ret->len = (up - ret->data); for (i = 0; i < (int) (ret->len / 2); i++) { u = ret->data[i]; ret->data[i] = ret->data[ret->len - 1 - i]; ret->data[ret->len - 1 - i] = u; } return ret; } /* Read an extendedKeyUsage value, convert it into a comma-separated list of * string-formatted OIDs, and store it in the entry. */ static void cm_certext_read_eku(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *eku_ext) { SECItem **oids; unsigned int i; char *s, *p; if (SEC_ASN1DecodeItem(arena, &oids, SEC_SequenceOfObjectIDTemplate, &eku_ext->value) == SECSuccess) { talloc_free(entry->cm_cert_eku); entry->cm_cert_eku = NULL; for (i = 0; oids[i] != NULL; i++) { if (entry->cm_cert_eku != NULL) { p = oid_to_string(entry, oids[i]); #if 1 /* Yeah, gotta sanity-check myself here. XXX */ if (strcmp(oid_to_string(entry, oid_from_string(p, -1, arena)), p) != 0) { cm_log(1, "Internal error: converting " "string to binary OID to string " "didn't produce the expected " "result.\n"); } #endif s = talloc_asprintf(entry, "%s,%s", entry->cm_cert_eku, p); talloc_free(entry->cm_cert_eku); entry->cm_cert_eku = s; } else { s = oid_to_string(entry, oids[i]); talloc_free(entry->cm_cert_eku); entry->cm_cert_eku = s; } } } } /* Build an extendedKeyUsage value from the comma-separated list stored in the * entry. */ static SECItem * cm_certext_build_eku(struct cm_store_entry *entry, PLArenaPool *arena, const char *eku_value) { int i; const char *p, *q; char *numeric, *symbolic; void *tctx; SECItem **oids = NULL, **tmp, encoded, *ret; if ((eku_value == NULL) || (strlen(eku_value) == 0)) { return NULL; } p = eku_value; i = 0; tctx = talloc_new(NULL); while ((p != NULL) && (*p != '\0')) { /* Find the first (or next) value. */ q = p + strcspn(p, ","); /* Make a copy and convert it to binary form. */ tmp = PORT_ArenaZAlloc(arena, sizeof(SECItem *) * (i + 2)); if (tmp != NULL) { if (i > 0) { memcpy(tmp, oids, sizeof(SECItem *) * i); } symbolic = talloc_strndup(tctx, p, q - p); numeric = cm_oid_from_name(tctx, symbolic); if (numeric != NULL) { tmp[i] = oid_from_string(numeric, -1, arena); i++; } else { cm_log(1, "Couldn't parse OID \"%.*s\", " "ignoring.\n", (int) (q - p), p); } oids = tmp; } /* Do we have any more? */ if (*q == ',') { p = q + 1; } else { p = q; } } talloc_free(tctx); /* Encode the sequence of OIDs. */ memset(&encoded, 0, sizeof(encoded)); if (SEC_ASN1EncodeItem(arena, &encoded, &oids, SEC_SequenceOfObjectIDTemplate) != &encoded) { ret = NULL; } else { ret = SECITEM_ArenaDupItem(arena, &encoded); } return ret; } /* Pull the nth component out of a principal name structure. Treat numbers * less than zero as a request for the realm name. */ static unsigned char * cm_certext_princ_data(krb5_context ctx, krb5_principal princ, int i) { if (i < 0) { #if HAVE_DECL_KRB5_PRINC_COMPONENT return (unsigned char *) (krb5_princ_realm(ctx, princ))->data; #else return (unsigned char *) princ->realm; #endif } else { #if HAVE_DECL_KRB5_PRINC_COMPONENT return (unsigned char *) (krb5_princ_component(ctx, princ, i))->data; #else return (unsigned char *) princ->name.name_string.val[i]; #endif } } /* Return the length of the data that cm_certext_princ_data() will return for a * given index. */ static int cm_certext_princ_len(krb5_context ctx, krb5_principal princ, int i) { if (i < 0) { #if HAVE_DECL_KRB5_PRINC_COMPONENT return (krb5_princ_realm(ctx, princ))->length; #else return strlen(princ->realm); #endif } else { #if HAVE_DECL_KRB5_PRINC_COMPONENT return (krb5_princ_component(ctx, princ, i))->length; #else return strlen(princ->name.name_string.val[i]); #endif } } /* Return a the name-type from a principal name structure. */ static int cm_certext_princ_get_type(krb5_context ctx, krb5_principal princ) { #if HAVE_DECL_KRB5_PRINC_TYPE return krb5_princ_type(ctx, princ); #else return princ->name.name_type; #endif } /* Set the name-type in a principal name structure. */ static void cm_certext_princ_set_type(krb5_context ctx, krb5_principal princ, int nt) { #if HAVE_DECL_KRB5_PRINC_TYPE krb5_princ_type(ctx, princ) = nt; #else princ->name.name_type = nt; #endif } /* Free an unparsed principal name. */ static void cm_certext_free_unparsed_name(krb5_context ctx, char *name) { #ifdef HAVE_KRB5_FREE_UNPARSED_NAME krb5_free_unparsed_name(ctx, name); #else free(name); #endif } /* Check how many components are in a principal name. */ static int cm_certext_princ_get_length(krb5_context ctx, krb5_principal princ) { #if HAVE_DECL_KRB5_PRINC_SIZE return krb5_princ_size(ctx, princ); #else return princ->name.name_string.len; #endif } /* Set how many components are in a principal name. */ static void cm_certext_princ_set_length(krb5_context ctx, krb5_principal princ, int length) { #if HAVE_DECL_KRB5_PRINC_SIZE krb5_princ_size(ctx, princ) = length; #else princ->name.name_string.len = length; #endif } /* Set a realm name in a principal name to point to a copy of the passed-in * name owned by "parent". */ static void cm_certext_princ_set_realm(krb5_context ctx, void *parent, krb5_principal princ, int length, char *name) { #if HAVE_DECL_KRB5_PRINC_SET_REALM_LENGTH char *p; p = talloc_zero_size(parent, length); if (p != NULL) { krb5_princ_set_realm_length(ctx, princ, length); krb5_princ_set_realm_data(ctx, princ, p); memcpy(p, name, length); } #else princ->realm = talloc_strndup(parent, name, length); #endif } /* Append a component to a principal name, using storage owned by "parent" to * hold a copy of the passed-in component value. */ static void cm_certext_princ_append_comp(krb5_context ctx, void *parent, krb5_principal princ, char *name, int length) { #if HAVE_DECL_KRB5_PRINC_NAME krb5_data *comps; int i; i = cm_certext_princ_get_length(ctx, princ); comps = talloc_zero_array(parent, krb5_data, i + 1); if (i > 0) { memcpy(comps, krb5_princ_name(ctx, princ), sizeof(krb5_data) * i); } comps[i].data = talloc_zero_size(parent, length); if (comps[i].data != NULL) { memcpy(comps[i].data, name, length); comps[i].length = length; krb5_princ_name(ctx, princ) = comps; cm_certext_princ_set_length(ctx, princ, i + 1); } #else int i; char **comps; i = cm_certext_princ_get_length(ctx, princ); comps = talloc_zero_array(parent, char *, i + 1); if (comps != NULL) { memcpy(comps, princ->name.name_string.val, sizeof(char *) * i); comps[i] = talloc_strndup(parent, name, length); if (comps[i] != NULL) { princ->name.name_string.val = comps; cm_certext_princ_set_length(ctx, princ, i + 1); } } #endif } /* Convert a principal name structure into a string. */ static char * cm_certext_parse_principal(void *parent, struct kerberos_principal_name *p) { SECItem **comps; krb5_error_code err; krb5_context ctx; krb5_principal_data princ; char *unparsed, *ret; int i, j; unsigned long name_type; void *tctx; ret = NULL; ctx = NULL; tctx = talloc_new(parent); if ((err = krb5_init_context(&ctx)) == 0) { memset(&princ, 0, sizeof(princ)); /* Copy the realm over. */ cm_certext_princ_set_realm(ctx, tctx, &princ, (int) p->realm.name.len, (char *) p->realm.name.data); /* Count the number of name components. */ comps = p->principal_name.name_string; for (i = 0; (comps != NULL) && (comps[i] != NULL); i++) { continue; } /* Set the number of name components. */ cm_certext_princ_set_length(ctx, &princ, 0); /* Allocate and populate the name components. */ for (j = 0; j < i; j++) { cm_certext_princ_append_comp(ctx, tctx, &princ, (char *) comps[j]->data, (int) comps[j]->len); } /* Try to decode the name type. */ if (SEC_ASN1DecodeInteger(&p->principal_name.name_type, &name_type) != SECSuccess) { /* Try to decode the name type. */ name_type = KRB5_NT_UNKNOWN; } cm_certext_princ_set_type(ctx, &princ, name_type); /* Convert that into a string. Use the library function so * that it can take care of escaping. */ if (krb5_unparse_name(ctx, &princ, &unparsed) == 0) { ret = talloc_strdup(parent, unparsed); cm_certext_free_unparsed_name(ctx, unparsed); } talloc_free(tctx); krb5_free_context(ctx); } else { cm_log(1, "Error %ld initializing Kerberos.\n", (long) err); } return ret; } static void cm_certext_remove_duplicates(char **p) { int n, i, j; for (n = 0; (p != NULL) && (p[n] != NULL); n++) { continue; } i = 0; while (i < n) { j = i + 1; while (j < n) { if (strcmp(p[i], p[j]) == 0) { memmove(&p[j], &p[j + 1], sizeof(p[j]) * (n - j)); n--; } else { j++; } } i++; } } /* Read an otherName, which might be either a Kerberos principal name or just * an NT principal name. */ static void cm_certext_read_other_name(struct cm_store_entry *entry, PLArenaPool *arena, CERTGeneralName *name) { SECItem *item, upn; struct kerberos_principal_name p; char **names; int i; item = &name->name.OthName.name; /* The Kerberos principal name case. */ if (SECITEM_ItemsAreEqual(&name->name.OthName.oid, &oid_pkinit_san.oid)) { memset(&p, 0, sizeof(p)); if (SEC_ASN1DecodeItem(arena, &p, cm_kerberos_principal_name_template, item) == SECSuccess) { /* Add it to the array. */ for (i = 0; (entry->cm_cert_principal != NULL) && (entry->cm_cert_principal[i] != NULL); i++) { continue; } names = talloc_zero_array(entry, char *, i + 2); if (i > 0) { memcpy(names, entry->cm_cert_principal, sizeof(char *) * i); } names[i] = cm_certext_parse_principal(entry, &p); entry->cm_cert_principal = names; } } /* The NT principal name case. */ if (SECITEM_ItemsAreEqual(&name->name.OthName.oid, &oid_ms_upn_name.oid)) { memset(&upn, 0, sizeof(upn)); if (SEC_ASN1DecodeItem(arena, &upn, cm_ms_upn_name_template, item) == SECSuccess) { /* Add it to the array. */ for (i = 0; (entry->cm_cert_principal != NULL) && (entry->cm_cert_principal[i] != NULL); i++) { continue; } names = talloc_zero_array(entry, char *, i + 2); if (i > 0) { memcpy(names, entry->cm_cert_principal, sizeof(char *) * i); } names[i] = talloc_strndup(entry, (char *) upn.data, upn.len); entry->cm_cert_principal = names; } else if (SEC_ASN1DecodeItem(arena, &upn, SEC_UTF8StringTemplate, item) == SECSuccess) { /* Add it to the array. */ for (i = 0; (entry->cm_cert_principal != NULL) && (entry->cm_cert_principal[i] != NULL); i++) { continue; } names = talloc_zero_array(entry, char *, i + 2); if (i > 0) { memcpy(names, entry->cm_cert_principal, sizeof(char *) * i); } names[i] = talloc_strndup(entry, (char *) upn.data, upn.len); entry->cm_cert_principal = names; } } /* Prune duplicates. We don't distinguish between the two cases, and * we throw the name_type away, so there's no point in listing any * value more than once. */ cm_certext_remove_duplicates(entry->cm_cert_principal); } /* Extract applicable subjectAltName values. */ static void cm_certext_read_san(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *san_ext) { CERTGeneralName *name, *san; unsigned int i, j; char **s, abuf[64]; name = CERT_DecodeAltNameExtension(arena, &san_ext->value); san = name; i = 0; talloc_free(entry->cm_cert_hostname); entry->cm_cert_hostname = NULL; talloc_free(entry->cm_cert_email); entry->cm_cert_email = NULL; talloc_free(entry->cm_cert_principal); entry->cm_cert_principal = NULL; while (san != NULL) { switch (san->type) { case certDNSName: /* A dnsName is just a string. */ for (j = 0; (entry->cm_cert_hostname != NULL) && (entry->cm_cert_hostname[j] != NULL); j++) { continue; } s = talloc_zero_array(entry, char *, j + 2); if (j > 0) { memcpy(s, entry->cm_cert_hostname, sizeof(char *) * j); } s[j] = talloc_strndup(entry, (char *) san->name.other.data, san->name.other.len); entry->cm_cert_hostname = s; cm_certext_remove_duplicates(entry->cm_cert_hostname); break; case certIPAddress: /* An IPv4 or IPv6 address. */ if (!((san->name.other.len == 16) && (inet_ntop(AF_INET6, san->name.other.data, abuf, sizeof(abuf)) != NULL)) && !((san->name.other.len == 4) && (inet_ntop(AF_INET, san->name.other.data, abuf, sizeof(abuf)) != NULL))) { continue; } for (j = 0; (entry->cm_cert_ipaddress != NULL) && (entry->cm_cert_ipaddress[j] != NULL); j++) { continue; } s = talloc_zero_array(entry, char *, j + 2); if (j > 0) { memcpy(s, entry->cm_cert_ipaddress, sizeof(char *) * j); } s[j] = talloc_strdup(entry, abuf); entry->cm_cert_ipaddress = s; cm_certext_remove_duplicates(entry->cm_cert_ipaddress); break; case certRFC822Name: /* An email address is just a string. */ for (j = 0; (entry->cm_cert_email != NULL) && (entry->cm_cert_email[j] != NULL); j++) { continue; } s = talloc_zero_array(entry, char *, j + 2); if (j > 0) { memcpy(s, entry->cm_cert_email, sizeof(char *) * j); } s[j] = talloc_strndup(entry, (char *) san->name.other.data, san->name.other.len); entry->cm_cert_email = s; cm_certext_remove_duplicates(entry->cm_cert_email); break; case certOtherName: /* need to parse these to recover principal names */ cm_certext_read_other_name(entry, arena, san); break; case certURI: case certDirectoryName: case certRegisterID: case certEDIPartyName: case certX400Address: /* we currently don't support these */ break; } san = CERT_GetNextGeneralName(san); if (san == name) { break; } i++; } } /* Build an NT principal name binary value. */ static SECItem * cm_certext_build_upn(struct cm_store_entry *entry, PLArenaPool *arena, const char *principal) { SECItem upn, princ; if ((principal == NULL) || (strlen(principal) == 0)) { return NULL; } memset(&upn, 0, sizeof(upn)); memset(&princ, 0, sizeof(princ)); princ.len = strlen(principal); princ.data = (unsigned char *) principal; if (SEC_ASN1EncodeItem(arena, &upn, &princ, SEC_UTF8StringTemplate /* cm_ms_upn_name_template */) != &upn) { return NULL; } return SECITEM_ArenaDupItem(arena, &upn); } /* Build a Kerberos principal name binary value. */ static SECItem * cm_certext_build_principal(struct cm_store_entry *entry, PLArenaPool *arena, const char *principal) { SECItem *comp, **comps, encoded; struct kerberos_principal_name p; krb5_error_code err; krb5_context ctx; krb5_principal princ; int i; if ((principal == NULL) || (strlen(principal) == 0)) { return NULL; } ctx = NULL; if ((err = krb5_init_context(&ctx)) != 0) { cm_log(1, "Error %ld initializing Kerberos.\n", (long) err); return NULL; } princ = NULL; /* Use the library routine to let it handle escaping for us. */ if (krb5_parse_name(ctx, principal, &princ) != 0) { krb5_free_context(ctx); return NULL; } /* Now stuff the values into a structure we can encode. */ memset(&p, 0, sizeof(p)); /* realm */ p.realm.name.data = cm_certext_princ_data(ctx, princ, -1); p.realm.name.len = cm_certext_princ_len(ctx, princ, -1); /* name type */ if (SEC_ASN1EncodeInteger(arena, &p.principal_name.name_type, cm_certext_princ_get_type(ctx, princ)) != &p.principal_name.name_type) { memset(&p.principal_name.name_type, 0, sizeof(p.principal_name.name_type)); } /* the component names */ i = cm_certext_princ_get_length(ctx, princ); comp = PORT_ArenaZAlloc(arena, sizeof(SECItem) * (i + 1)); comps = PORT_ArenaZAlloc(arena, sizeof(SECItem *) * (i + 1)); if (comp != NULL) { for (i = 0; i < cm_certext_princ_get_length(ctx, princ); i++) { comp[i].len = cm_certext_princ_len(ctx, princ, i); comp[i].data = cm_certext_princ_data(ctx, princ, i); comps[i] = &comp[i]; } p.principal_name.name_string = comps; } else { p.principal_name.name_string = NULL; } /* encode */ if (SEC_ASN1EncodeItem(arena, &encoded, &p, cm_kerberos_principal_name_template) != &encoded) { krb5_free_principal(ctx, princ); krb5_free_context(ctx); return NULL; } krb5_free_principal(ctx, princ); krb5_free_context(ctx); return SECITEM_ArenaDupItem(arena, &encoded); } /* Build up a subjectAltName extension value using information for the entry. */ static SECItem * cm_certext_build_san(struct cm_store_entry *entry, PLArenaPool *arena, char **hostname, char **email, char **principal, char **ipaddress) { CERTGeneralName *name, *next; SECItem encoded, *item; int i, j; struct in_addr ip; struct in6_addr ip6; char *p; /* Anything to do? */ if ((hostname == NULL) && (email == NULL) && (principal == NULL) && (ipaddress == NULL)) { return NULL; } name = NULL; /* Build a list of dnsName values. */ for (i = 0; (hostname != NULL) && (hostname[i] != NULL); i++) { if (strlen(hostname[i]) == 0) { continue; } next = PORT_ArenaZAlloc(arena, sizeof(*next)); if (next != NULL) { next->type = certDNSName; p = hostname[i]; #ifdef CM_USE_IDN if (idna_to_ascii_lz(p, &p, 0) != IDNA_SUCCESS) { cm_log(1, "Unable to convert hostname \"%s\" " "to an ASCII-compatible name.\n", hostname[i]); continue; } #endif next->name.other.data = (unsigned char *) PORT_ArenaStrdup(arena, p); next->name.other.len = strlen(p); if (p != hostname[i]) { free(p); } if (name == NULL) { name = next; PR_INIT_CLIST(&name->l); } else { PR_APPEND_LINK(&next->l, &name->l); } } } /* Build a list of email address values. */ for (i = 0; (email != NULL) && (email[i] != NULL); i++) { if (strlen(email[i]) == 0) { continue; } next = PORT_ArenaZAlloc(arena, sizeof(*next)); if (next != NULL) { next->type = certRFC822Name; next->name.other.len = strlen(email[i]); next->name.other.data = (unsigned char *) email[i]; if (name == NULL) { name = next; PR_INIT_CLIST(&name->l); } else { PR_APPEND_LINK(&next->l, &name->l); } } } /* Build a list of otherName values. Encode every principal name in two * forms. */ for (i = 0; (principal != NULL) && (principal[i] != NULL); i++) { if (strlen(principal[i]) == 0) { continue; } for (j = 0; (j < i) && (principal[j] != NULL); j++) { if (strcmp(principal[i], principal[j]) == 0) { /* We've already seen [i]; skip it. */ break; } } if (j != i) { continue; } item = cm_certext_build_upn(entry, arena, principal[i]); if (item != NULL) { next = PORT_ArenaZAlloc(arena, sizeof(*next)); if (next != NULL) { next->type = certOtherName; next->name.OthName.name = *item; next->name.OthName.oid = oid_ms_upn_name.oid; if (name == NULL) { name = next; PR_INIT_CLIST(&name->l); } else { PR_APPEND_LINK(&next->l, &name->l); } } } item = cm_certext_build_principal(entry, arena, principal[i]); if (item != NULL) { next = PORT_ArenaZAlloc(arena, sizeof(*next)); if (next != NULL) { next->type = certOtherName; next->name.OthName.name = *item; next->name.OthName.oid = oid_pkinit_san.oid; if (name == NULL) { name = next; PR_INIT_CLIST(&name->l); } else { PR_APPEND_LINK(&next->l, &name->l); } } } } /* Build a list of IP address values. */ for (i = 0; (ipaddress != NULL) && (ipaddress[i] != NULL); i++) { if (strlen(ipaddress[i]) == 0) { continue; } next = PORT_ArenaZAlloc(arena, sizeof(*next)); if (next != NULL) { next->type = certIPAddress; memset(&encoded, 0, sizeof(encoded)); if (inet_pton(AF_INET6, ipaddress[i], &ip6) == 1) { encoded.len = 16; encoded.data = (unsigned char *) &ip6; } else if (inet_pton(AF_INET, ipaddress[i], &ip) == 1) { encoded.len = 4; encoded.data = (unsigned char *) &ip; } else { cm_log(1, "Internal error: unable to parse " "\"%s\" as an IP address, ignoring.\n", ipaddress[i]); continue; } item = SECITEM_ArenaDupItem(arena, &encoded); if (item == NULL) { continue; } next->name.other = *item; if (name == NULL) { name = next; PR_INIT_CLIST(&name->l); } else { PR_APPEND_LINK(&next->l, &name->l); } } } /* Encode all of the values. */ memset(&encoded, 0, sizeof(encoded)); if ((name != NULL) && (CERT_EncodeAltNameExtension(arena, name, &encoded) == SECSuccess)) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } /* Build a basicConstraints extension value. */ static SECItem * cm_certext_build_basic(struct cm_store_entry *entry, PLArenaPool *arena, int is_ca, int path_length) { CERTBasicConstraints value; SECItem encoded, *item; memset(&value, 0, sizeof(value)); value.isCA = (is_ca != 0); value.pathLenConstraint = value.isCA ? path_length : -1; memset(&encoded, 0, sizeof(encoded)); if (CERT_EncodeBasicConstraintValue(arena, &value, &encoded) == SECSuccess) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } /* Build an authorityKeyIdentifier extension value that points to our key. */ static SECItem * cm_certext_build_self_akid(struct cm_store_entry *entry, PLArenaPool *arena) { CERTAuthKeyID value; CERTSubjectPublicKeyInfo *spki; SECItem pubkeyinfo, pubkey, encoded, *item; unsigned char digest[CM_DIGEST_MAX]; const char *pubkey_info; size_t len; memset(&pubkey, 0, sizeof(pubkey)); if (entry->cm_key_pubkey != NULL) { pubkey.len = strlen(entry->cm_key_pubkey) / 2; pubkey.data = PORT_ArenaZAlloc(arena, pubkey.len); if (pubkey.data != NULL) { pubkey.len = cm_store_hex_to_bin(entry->cm_key_pubkey, pubkey.data, pubkey.len); } } if (pubkey.data == NULL) { if (entry->cm_key_pubkey_info != NULL) { pubkey_info = entry->cm_key_pubkey_info; } else { pubkey_info = entry->cm_cert_spki; } if (pubkey_info != NULL) { memset(&pubkeyinfo, 0, sizeof(pubkeyinfo)); pubkeyinfo.len = strlen(pubkey_info) / 2; pubkeyinfo.data = PORT_ArenaZAlloc(arena, pubkeyinfo.len); spki = NULL; if (pubkeyinfo.data != NULL) { len = cm_store_hex_to_bin(pubkey_info, pubkeyinfo.data, pubkeyinfo.len); pubkeyinfo.len = len; spki = SECKEY_DecodeDERSubjectPublicKeyInfo(&pubkeyinfo); } if (spki != NULL) { pubkey.len = spki->subjectPublicKey.len / 8; pubkey.data = PORT_ArenaZAlloc(arena, pubkey.len); if (pubkey.data != NULL) { memcpy(pubkey.data, spki->subjectPublicKey.data, pubkey.len); } SECKEY_DestroySubjectPublicKeyInfo(spki); } } } if (pubkey.data != NULL) { if (PK11_HashBuf(SEC_OID_SHA1, digest, pubkey.data, pubkey.len) != SECSuccess) { return NULL; } memset(&value, 0, sizeof(value)); value.keyID.data = digest; value.keyID.len = 20; memset(&encoded, 0, sizeof(encoded)); if (CERT_EncodeAuthKeyID(arena, &value, &encoded) == SECSuccess) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } return NULL; } /* Build a subjectKeyIdentifier extension value. */ static SECItem * cm_certext_build_skid(struct cm_store_entry *entry, PLArenaPool *arena) { CERTSubjectPublicKeyInfo *spki; SECItem pubkeyinfo, pubkey, value, encoded, *item; unsigned char digest[CM_DIGEST_MAX]; const char *pubkey_info; size_t len; memset(&pubkey, 0, sizeof(pubkey)); if (entry->cm_key_pubkey != NULL) { pubkey.len = strlen(entry->cm_key_pubkey) / 2; pubkey.data = PORT_ArenaZAlloc(arena, pubkey.len); if (pubkey.data != NULL) { len = cm_store_hex_to_bin(entry->cm_key_pubkey, pubkey.data, pubkey.len); pubkey.len = len; } } if (pubkey.data == NULL) { if (entry->cm_key_pubkey_info != NULL) { pubkey_info = entry->cm_key_pubkey_info; } else { pubkey_info = entry->cm_cert_spki; } if (pubkey_info != NULL) { memset(&pubkeyinfo, 0, sizeof(pubkeyinfo)); pubkeyinfo.len = strlen(pubkey_info) / 2; pubkeyinfo.data = PORT_ArenaZAlloc(arena, pubkeyinfo.len); spki = NULL; if (pubkeyinfo.data != NULL) { len = cm_store_hex_to_bin(pubkey_info, pubkeyinfo.data, pubkeyinfo.len); pubkeyinfo.len = len; spki = SECKEY_DecodeDERSubjectPublicKeyInfo(&pubkeyinfo); } if (spki != NULL) { pubkey.len = spki->subjectPublicKey.len / 8; pubkey.data = PORT_ArenaZAlloc(arena, pubkey.len); if (pubkey.data != NULL) { memcpy(pubkey.data, spki->subjectPublicKey.data, pubkey.len); } SECKEY_DestroySubjectPublicKeyInfo(spki); } } } if (pubkey.data != NULL) { if (PK11_HashBuf(SEC_OID_SHA1, digest, pubkey.data, pubkey.len) != SECSuccess) { return NULL; } memset(&value, 0, sizeof(value)); value.data = digest; value.len = 20; memset(&encoded, 0, sizeof(encoded)); if (CERT_EncodeSubjectKeyID(arena, &value, &encoded) == SECSuccess) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } return NULL; } /* Build an authorityInformationAccess extension value. */ static SECItem * cm_certext_build_aia(struct cm_store_entry *entry, PLArenaPool *arena, char **ocsp_location) { CERTAuthInfoAccess *value, **values; CERTGeneralName *location; SECItem encoded, *item; SECOidData *oid; unsigned char *tmp; unsigned int i, j, n; oid = SECOID_FindOIDByTag(SEC_OID_PKIX_OCSP); if (oid == NULL) { return NULL; } for (n = 0; (ocsp_location != NULL) && (ocsp_location[n] != NULL); n++) { continue; } if (n == 0) { return NULL; } location = PORT_ArenaZAlloc(arena, sizeof(*location) * n); if (location == NULL) { return NULL; } value = PORT_ArenaZAlloc(arena, sizeof(*value) * n); if (value == NULL) { return NULL; } values = PORT_ArenaZAlloc(arena, sizeof(*values) * (n + 1)); if (values == NULL) { return NULL; } for (i = 0, j = 0; i < n; i++) { if (strlen(ocsp_location[i]) == 0) { continue; } location[j].type = certURI; tmp = (unsigned char *) ocsp_location[i]; location[j].name.other.data = tmp; location[j].name.other.len = strlen(ocsp_location[i]); value[j].method = oid->oid; value[j].location = &location[j]; values[j] = &value[j]; j++; } memset(&encoded, 0, sizeof(encoded)); if (CERT_EncodeInfoAccessExtension(arena, values, &encoded) == SECSuccess) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } /* Build a CRL distribution points or freshest CRL extension value. */ static SECItem * cm_certext_build_crldp(struct cm_store_entry *entry, PLArenaPool *arena, char **crldp) { CERTCrlDistributionPoints decoded; CRLDistributionPoint *value, **values; CERTGeneralName *location; SECItem encoded, *item; unsigned int i, j, n; for (n = 0; (crldp != NULL) && (crldp[n] != NULL); n++) { continue; } if (n == 0) { return NULL; } location = PORT_ArenaZAlloc(arena, sizeof(*location) * n); if (location == NULL) { return NULL; } value = PORT_ArenaZAlloc(arena, sizeof(*value) * n); if (value == NULL) { return NULL; } values = PORT_ArenaZAlloc(arena, sizeof(*values) * (n + 1)); if (values == NULL) { return NULL; } for (i = 0, j = 0; i < n; i++) { if (strlen(crldp[i]) == 0) { continue; } location[j].type = certURI; location[j].name.other.data = (unsigned char *) crldp[i]; location[j].name.other.len = strlen(crldp[i]); location[j].l.next = &location[j].l; value[j].distPointType = generalName; value[j].distPoint.fullName = &location[j]; values[j] = &value[j]; j++; } decoded.distPoints = values; memset(&encoded, 0, sizeof(encoded)); if (CERT_EncodeCRLDistributionPoints(arena, &decoded, &encoded) == SECSuccess) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } /* Build a Netscape comment extension value. */ static SECItem * cm_certext_build_ns_comment(struct cm_store_entry *entry, PLArenaPool *arena, char *comment) { SECItem value, encoded, *item; if (strlen(comment) == 0) { return NULL; } memset(&value, 0, sizeof(value)); value.data = (unsigned char *) comment; value.len = strlen(comment); memset(&encoded, 0, sizeof(encoded)); if (SEC_ASN1EncodeItem(arena, &encoded, &value, SEC_IA5StringTemplate) == &encoded) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } /* Build a no-ocsp-checking extension value. */ static SECItem * cm_certext_build_ocsp_no_check(struct cm_store_entry *entry, PLArenaPool *arena) { SECItem value, encoded, *item; memset(&value, 0, sizeof(value)); value.data = NULL; value.len = 0; memset(&encoded, 0, sizeof(encoded)); if (SEC_ASN1EncodeItem(arena, &encoded, &value, SEC_NullTemplate) == &encoded) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } return item; } /* Build a Microsoft certtype extension value. */ static SECItem * cm_certext_build_profile(struct cm_store_entry *entry, PLArenaPool *arena, char *profile) { SECItem value, encoded, *item; unsigned int len = 0; if (strlen(profile) == 0) { return NULL; } memset(&value, 0, sizeof(value)); memset(&encoded, 0, sizeof(encoded)); if (cm_store_utf8_to_bmp_string(profile, &value.data, &len) != -1) { value.len = len; if (SEC_ASN1EncodeItem(arena, &encoded, &value, SEC_BMPStringTemplate) == &encoded) { item = SECITEM_ArenaDupItem(arena, &encoded); } else { item = NULL; } free(value.data); } else { item = NULL; } return item; } /* Build a Netscape certtype extension value. */ static SECItem * cm_certext_build_ns_certtype(struct cm_store_entry *entry, PLArenaPool *arena, char *certtype) { char bitstring[] = "00000000"; char *p, *q; int len = 0; if (strlen(certtype) == 0) { return NULL; } p = certtype; while (*p != '\0') { q = p + strcspn(p, ","); if (strncasecmp(p, "client", q - p) == 0) { bitstring[0] = '1'; } else if (strncasecmp(p, "server", q - p) == 0) { bitstring[1] = '1'; } else if (strncasecmp(p, "email", q - p) == 0) { bitstring[2] = '1'; } else if (strncasecmp(p, "objsign", q - p) == 0) { bitstring[3] = '1'; } else if (strncasecmp(p, "reserved", q - p) == 0) { bitstring[4] = '1'; } else if (strncasecmp(p, "sslca", q - p) == 0) { bitstring[5] = '1'; } else if (strncasecmp(p, "emailca", q - p) == 0) { bitstring[6] = '1'; } else if (strncasecmp(p, "objca", q - p) == 0) { bitstring[7] = '1'; } p = q + strspn(q, ","); } if (strchr(bitstring, '1') != NULL) { len = strrchr(bitstring, '1') - bitstring; p[len + 1] = '\0'; return cm_certext_build_bitstring(entry, arena, bitstring); } else { return NULL; } } /* Build a requestedExtensions attribute. */ void cm_certext_build_csr_extensions(struct cm_store_entry *entry, NSSInitContext *ctx, unsigned char **extensions, size_t *length) { PLArenaPool *arena; CERTCertExtension ext[13], *exts[14], **exts_ptr; SECOidData *oid; SECItem *item, encoded; SECItem der_false = { .len = 1, .data = (unsigned char *) "\000", }; SECItem der_true = { .len = 1, .data = (unsigned char *) "\377", }; int i; char **tmp, *comment; const char *reason; NSSInitContext *local_ctx = NULL; const SEC_ASN1Template *template; *extensions = NULL; *length = 0; arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { return; } memset(&ext, 0, sizeof(ext)); memset(&exts, 0, sizeof(exts)); if (ctx == NULL) { local_ctx = NSS_InitContext(entry->cm_key_storage_location, NULL, NULL, NULL, NULL, NSS_INIT_READONLY | NSS_INIT_NOCERTDB | NSS_INIT_NOROOTINIT); if (local_ctx == NULL) { cm_log(1, "Error initializing NSS.\n"); return; } reason = util_n_fips_hook(); if (reason != NULL) { cm_log(1, "Error putting NSS into FIPS mode: %s\n", reason); return; } } /* Build the extensions. */ i = 0; item = cm_certext_build_ku(entry, arena, entry->cm_template_ku); if (item != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_KEY_USAGE); if (oid != NULL) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } item = cm_certext_build_san(entry, arena, entry->cm_template_hostname, entry->cm_template_email, entry->cm_template_principal, entry->cm_template_ipaddress); if (item != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_SUBJECT_ALT_NAME); if (oid != NULL) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } item = cm_certext_build_eku(entry, arena, entry->cm_template_eku); if (item != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_EXT_KEY_USAGE); if (oid != NULL) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } item = cm_certext_build_basic(entry, arena, entry->cm_template_is_ca, entry->cm_template_ca_path_length); if (item != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_BASIC_CONSTRAINTS); if (oid != NULL) { ext[i].id = oid->oid; ext[i].critical = der_true; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_is_ca) { oid = SECOID_FindOIDByTag(SEC_OID_X509_AUTH_KEY_ID); item = cm_certext_build_self_akid(entry, arena); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } item = cm_certext_build_skid(entry, arena); if (item != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_SUBJECT_KEY_ID); if (oid != NULL) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_ocsp_location != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_AUTH_INFO_ACCESS); item = cm_certext_build_aia(entry, arena, entry->cm_template_ocsp_location); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_crl_distribution_point != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_CRL_DIST_POINTS); tmp = entry->cm_template_crl_distribution_point; item = cm_certext_build_crldp(entry, arena, tmp); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_freshest_crl != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_X509_FRESHEST_CRL); tmp = entry->cm_template_freshest_crl; item = cm_certext_build_crldp(entry, arena, tmp); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_ns_comment != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_NS_CERT_EXT_COMMENT); comment = entry->cm_template_ns_comment; item = cm_certext_build_ns_comment(entry, arena, comment); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_no_ocsp_check) { oid = SECOID_FindOIDByTag(SEC_OID_PKIX_OCSP_NO_CHECK); item = cm_certext_build_ocsp_no_check(entry, arena); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_profile != NULL) { oid = (SECOidData *) &oid_microsoft_certtype; item = cm_certext_build_profile(entry, arena, entry->cm_template_profile); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } if (entry->cm_template_ns_certtype != NULL) { oid = SECOID_FindOIDByTag(SEC_OID_NS_CERT_EXT_CERT_TYPE); item = cm_certext_build_ns_certtype(entry, arena, entry->cm_template_ns_certtype); if ((item != NULL) && (oid != NULL)) { ext[i].id = oid->oid; ext[i].critical = der_false; ext[i].value = *item; exts[i] = &ext[i]; i++; } } exts[i++] = NULL; exts_ptr = exts; /* Encode the sequence. */ memset(&encoded, 0, sizeof(encoded)); if (i > 1) { template = cm_certext_sequence_of_cert_extension_template; if (SEC_ASN1EncodeItem(arena, &encoded, &exts_ptr, template) == &encoded) { *extensions = talloc_memdup(entry, encoded.data, encoded.len); if (*extensions != NULL) { *length = encoded.len; } } } else { *extensions = NULL; *length = 0; } if (ctx == NULL) { if (NSS_ShutdownContext(local_ctx) != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); } } PORT_FreeArena(arena, PR_TRUE); } /* Read a basicConstraints extension. */ static void cm_certext_read_basic(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext) { CERTBasicConstraints basic; if (CERT_DecodeBasicConstraintValue(&basic, &ext->value) != SECSuccess) { return; } entry->cm_cert_is_ca = (basic.isCA != PR_FALSE); if (entry->cm_cert_is_ca) { entry->cm_cert_ca_path_length = basic.pathLenConstraint; } else { entry->cm_cert_ca_path_length = -1; } } /* Read a Netscape comment extension. */ static void cm_certext_read_nsc(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext) { SECItem comment; char *tmp; if (SEC_ASN1DecodeItem(arena, &comment, SEC_IA5StringTemplate, &ext->value) != SECSuccess) { return; } talloc_free(entry->cm_cert_ns_comment); if (comment.len > 0) { tmp = (char *) comment.data; entry->cm_cert_ns_comment = talloc_strndup(entry, tmp, comment.len); } else { entry->cm_cert_ns_comment = NULL; } } /* Read an authorityInformationAccess extension, and keep track of any OCSP * responders that we find in it. */ static void cm_certext_read_aia(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext) { CERTAuthInfoAccess **aia; SECOidData *oid; SECItem uri; char *tmp; unsigned i, n; aia = CERT_DecodeAuthInfoAccessExtension(arena, &ext->value); if ((aia == NULL) || (aia[0] == NULL)) { return; } oid = SECOID_FindOIDByTag(SEC_OID_PKIX_OCSP); if (oid == NULL) { return; } for (i = 0, n = 0; aia[i] != NULL; i++) { if (SECITEM_ItemsAreEqual(&aia[i]->method, &oid->oid) && (aia[i]->location != NULL) && (aia[i]->location->type == certURI) && (aia[i]->location->name.other.len > 0)) { n++; } } talloc_free(entry->cm_cert_ocsp_location); entry->cm_cert_ocsp_location = talloc_zero_array(entry, char *, n + 1); if (entry->cm_cert_ocsp_location == NULL) { return; } for (i = 0, n = 0; aia[i] != NULL; i++) { if (SECITEM_ItemsAreEqual(&aia[i]->method, &oid->oid) && (aia[i]->location != NULL) && (aia[i]->location->type == certURI) && (aia[i]->location->name.other.len > 0)) { uri = aia[i]->location->name.other; tmp = talloc_strndup(entry->cm_cert_ocsp_location, (char *) uri.data, uri.len); entry->cm_cert_ocsp_location[n++] = tmp; } } } /* Read a CRL distribution points or freshest CRL extension, and return any * locations that we find in it. */ static void cm_certext_read_crlext(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext, char ***dest) { CERTCrlDistributionPoints *crldp; CERTGeneralName *name; SECItem uri; void *parent; char *tmp, **list = *dest; unsigned i, n; crldp = CERT_DecodeCRLDistributionPoints(arena, &ext->value); if ((crldp == NULL) || (crldp->distPoints == NULL)) { return; } for (i = 0, n = 0; crldp->distPoints[i] != NULL; i++) { if ((crldp->distPoints[i]->distPointType == generalName) && (crldp->distPoints[i]->distPoint.fullName != NULL)) { name = crldp->distPoints[i]->distPoint.fullName; if (name->type == certURI) { n++; } } } talloc_free(list); list = talloc_zero_array(entry, char *, n + 1); if (list == NULL) { *dest = list; return; } for (i = 0, n = 0; crldp->distPoints[i] != NULL; i++) { if ((crldp->distPoints[i]->distPointType == generalName) && (crldp->distPoints[i]->distPoint.fullName != NULL)) { name = crldp->distPoints[i]->distPoint.fullName; if (name->type == certURI) { uri = name->name.other; parent = list; tmp = talloc_strndup(parent, (char *) uri.data, uri.len); list[n++] = tmp; } } } *dest = list; } /* Read the list of CRL distribution points. */ static void cm_certext_read_crldp(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext) { cm_certext_read_crlext(entry, arena, ext, &entry->cm_cert_crl_distribution_point); } /* Read the list of locations where we can find the freshest CRL. */ static void cm_certext_read_freshest_crl(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext) { cm_certext_read_crlext(entry, arena, ext, &entry->cm_cert_freshest_crl); } /* Parse the data from a Microsoft certificate type extension. */ static void cm_certext_read_profile(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext) { SECItem profile; char *tmp; memset(&profile, 0, sizeof(profile)); if (SEC_ASN1DecodeItem(arena, &profile, SEC_BMPStringTemplate, &ext->value) != SECSuccess) { return; } talloc_free(entry->cm_cert_profile); entry->cm_cert_profile = NULL; if (profile.len > 0) { tmp = cm_store_utf8_from_bmp_string(profile.data, profile.len); if (tmp != NULL) { entry->cm_cert_profile = talloc_strdup(entry, tmp); free(tmp); } } } /* Parse the data from a Netscape certificate type extension. */ static void cm_certext_read_ns_certtype(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension *ext) { SECItem item; unsigned int i, bit; char *tmp = NULL, *t = NULL; if (SEC_ASN1DecodeItem(arena, &item, SEC_BitStringTemplate, &ext->value) == SECSuccess) { /* A bitString decodes with length == number of bits, not * bytes, which is what we want anyway. */ tmp = talloc_zero_size(entry, item.len + 1); for (i = 0; i < item.len; i++) { bit = (item.data[i / 8] & (0x80 >> (i % 8))) ? 1 : 0; sprintf(tmp + i, "%.*u", 1, bit); } } talloc_free(entry->cm_cert_ns_certtype); entry->cm_cert_ns_certtype = NULL; if (tmp == NULL) { return; } t = talloc_strdup(entry, ""); if ((tmp != NULL) && (strlen(tmp) > 0)) { if (tmp[0] == '1') { t = talloc_strdup_append(t, ",client"); } } if ((tmp != NULL) && (strlen(tmp) > 1)) { if (tmp[1] == '1') { t = talloc_strdup_append(t, ",server"); } } if ((tmp != NULL) && (strlen(tmp) > 2)) { if (tmp[2] == '1') { t = talloc_strdup_append(t, ",email"); } } if ((tmp != NULL) && (strlen(tmp) > 3)) { if (tmp[3] == '1') { t = talloc_strdup_append(t, ",objsign"); } } if ((tmp != NULL) && (strlen(tmp) > 4)) { if (tmp[4] == '1') { t = talloc_strdup_append(t, ",reserved"); } } if ((tmp != NULL) && (strlen(tmp) > 5)) { if (tmp[5] == '1') { t = talloc_strdup_append(t, ",sslCA"); } } if ((tmp != NULL) && (strlen(tmp) > 6)) { if (tmp[6] == '1') { t = talloc_strdup_append(t, ",emailCA"); } } if ((tmp != NULL) && (strlen(tmp) > 7)) { if (tmp[7] == '1') { t = talloc_strdup_append(t, ",objCA"); } } if (strlen(t) > 0) { entry->cm_cert_ns_certtype = talloc_strdup(entry, t + 1); } talloc_free(t); } /* Read the extensions from a certificate. */ void cm_certext_read_extensions(struct cm_store_entry *entry, PLArenaPool *arena, CERTCertExtension **extensions) { int i; PLArenaPool *local_arena; SECOidData *ku_oid, *eku_oid, *san_oid, *freshest_crl_oid; SECOidData *basic_oid, *nsc_oid, *aia_oid, *crldp_oid, *profile_oid; SECOidData *no_ocsp_check_oid, *ns_certtype_oid; if (extensions == NULL) { return; } if (arena == NULL) { local_arena = PORT_NewArena(sizeof(double)); arena = local_arena; } else { local_arena = NULL; } ku_oid = SECOID_FindOIDByTag(SEC_OID_X509_KEY_USAGE); if (ku_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "certificate key usage extension.\n"); return; } eku_oid = SECOID_FindOIDByTag(SEC_OID_X509_EXT_KEY_USAGE); if (eku_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "certificate extended key usage extension.\n"); return; } san_oid = SECOID_FindOIDByTag(SEC_OID_X509_SUBJECT_ALT_NAME); if (san_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "certificate subject alternative name extension.\n"); return; } basic_oid = SECOID_FindOIDByTag(SEC_OID_X509_BASIC_CONSTRAINTS); if (basic_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "certificate basic constraints extension.\n"); return; } nsc_oid = SECOID_FindOIDByTag(SEC_OID_NS_CERT_EXT_COMMENT); if (nsc_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "certificate netscape comment extension.\n"); return; } aia_oid = SECOID_FindOIDByTag(SEC_OID_X509_AUTH_INFO_ACCESS); if (aia_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "certificate authority information access extension.\n"); return; } crldp_oid = SECOID_FindOIDByTag(SEC_OID_X509_CRL_DIST_POINTS); if (crldp_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "certificate revocation list distribution points " "extension.\n"); return; } freshest_crl_oid = SECOID_FindOIDByTag(SEC_OID_X509_FRESHEST_CRL); if (freshest_crl_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "freshest certificate revocation list extension.\n"); return; } no_ocsp_check_oid = SECOID_FindOIDByTag(SEC_OID_PKIX_OCSP_NO_CHECK); if (no_ocsp_check_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "no-OCSP-check extension.\n"); return; } profile_oid = (SECOidData *) &oid_microsoft_certtype; ns_certtype_oid = SECOID_FindOIDByTag(SEC_OID_NS_CERT_EXT_CERT_TYPE); if (ns_certtype_oid == NULL) { cm_log(1, "Internal library error: unable to look up OID for " "nsCertType extension.\n"); return; } entry->cm_cert_no_ocsp_check = FALSE; for (i = 0; extensions[i] != NULL; i++) { if (SECITEM_ItemsAreEqual(&ku_oid->oid, &extensions[i]->id)) { cm_certext_read_ku(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&eku_oid->oid, &extensions[i]->id)) { cm_certext_read_eku(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&san_oid->oid, &extensions[i]->id)) { cm_certext_read_san(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&basic_oid->oid, &extensions[i]->id)) { cm_certext_read_basic(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&nsc_oid->oid, &extensions[i]->id)) { cm_certext_read_nsc(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&aia_oid->oid, &extensions[i]->id)) { cm_certext_read_aia(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&crldp_oid->oid, &extensions[i]->id)) { cm_certext_read_crldp(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&freshest_crl_oid->oid, &extensions[i]->id)) { cm_certext_read_freshest_crl(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&profile_oid->oid, &extensions[i]->id)) { cm_certext_read_profile(entry, arena, extensions[i]); } if (SECITEM_ItemsAreEqual(&no_ocsp_check_oid->oid, &extensions[i]->id)) { entry->cm_cert_no_ocsp_check = TRUE; } if (SECITEM_ItemsAreEqual(&ns_certtype_oid->oid, &extensions[i]->id)) { cm_certext_read_ns_certtype(entry, arena, extensions[i]); } } if (arena == local_arena) { PORT_FreeArena(local_arena, PR_TRUE); } } certmonger-0.78.6/src/canalyze.h0000664000175000017500000000274512645513264013472 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcanalyze_h #define cmcanalyze_h struct cm_store_ca; struct cm_ca_analyze_state; /* Start computing information about the CA. */ struct cm_ca_analyze_state *cm_ca_analyze_start_certs(struct cm_store_ca *ca); /* Start computing information about the encryption certs. */ struct cm_ca_analyze_state *cm_ca_analyze_start_encryption_certs(struct cm_store_ca *ca); /* Check if the data has been retrieved. */ int cm_ca_analyze_ready(struct cm_ca_analyze_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_ca_analyze_get_fd(struct cm_ca_analyze_state *state); /* Clean up after retrieving data. */ void cm_ca_analyze_done(struct cm_ca_analyze_state *state); /* Get the refresh delay. */ long cm_ca_analyze_get_delay(struct cm_ca_analyze_state *state); #endif certmonger-0.78.6/src/canalyze.c0000664000175000017500000001665612645513264013473 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "canalyze.h" #include "log.h" #include "store-int.h" #include "store.h" #include "submit-e.h" #include "subproc.h" struct cm_ca_analyze_state { struct cm_subproc_state *subproc; long delay; }; static PRTime not_valid_after(PLArenaPool *arena, struct cm_nickcert *nc) { CERTCertificate cert; CERTSignedData sdata; PRTime nvb, nva; const char *p, *q; char *pem; int length; p = strstr(nc->cm_cert, "-----BEGIN"); if (p != NULL) { p += strcspn(p, "\r\n"); p += strspn(p, "\r\n"); q = strstr(p, "-----END"); } else { p = nc->cm_cert; q = p + strlen(p); } pem = cm_store_base64_as_bin(nc, p, q - p, &length); if (pem != NULL) { memset(&sdata, 0, sizeof(sdata)); memset(&cert, 0, sizeof(cert)); if ((SEC_ASN1Decode(arena, &sdata, SEC_ASN1_GET(CERT_SignedDataTemplate), pem, length) != SECSuccess) || (SEC_ASN1Decode(arena, &cert, SEC_ASN1_GET(CERT_CertificateTemplate), (const char *) sdata.data.data, sdata.data.len) != SECSuccess)) { cm_log(0, "Decoding error on \"%.*s\" " "(%d bytes)!\n", (int) (q - p), p, length); _exit(1); } if (CERT_GetCertTimes(&cert, &nvb, &nva) != SECSuccess) { cm_log(0, "Parsing error on \"%.*s\"!\n", (int) (q - p), p); _exit(1); } if (nva < PR_Now()) { cm_log(1, "Certificate \"%s\" no longer valid.\n", nc->cm_nickname); return 0; } else { cm_log(1, "Certificate \"%s\" valid for %llds.\n", nc->cm_nickname, (long long) ((nva - PR_Now()) / PR_USEC_PER_SEC)); return nva; } } return 0; } static int cm_ca_analyze_certs_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data) { PLArenaPool *arena; char *p; int i; PRTime result = 0, now, tmp; /* Walk the list of certificates we've retrieved, and print a number * approximating the midpoint of time between now and the first of * their not-valid-after dates. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(0, "Out of memory.\n"); return 1; } for (i = 0; (ca->cm_ca_root_certs != NULL) && (ca->cm_ca_root_certs[i] != NULL); i++) { tmp = not_valid_after(arena, ca->cm_ca_root_certs[i]); result = result ? (tmp ? ((result < tmp) ? result : tmp) : result) : tmp; cm_log(3, "Running result is %lld.\n", (long long) result); } for (i = 0; (ca->cm_ca_other_root_certs != NULL) && (ca->cm_ca_other_root_certs[i] != NULL); i++) { tmp = not_valid_after(arena, ca->cm_ca_other_root_certs[i]); result = result ? (tmp ? ((result < tmp) ? result : tmp) : result) : tmp; cm_log(3, "Running result is %lld.\n", (long long) result); } for (i = 0; (ca->cm_ca_other_certs != NULL) && (ca->cm_ca_other_certs[i] != NULL); i++) { tmp = not_valid_after(arena, ca->cm_ca_other_certs[i]); result = result ? (tmp ? ((result < tmp) ? result : tmp) : result) : tmp; cm_log(3, "Running result is %lld.\n", (long long) result); } cm_log(3, "Final result is %lld.\n", (long long) result); now = PR_Now(); if ((result != 0) && (result > now)) { result = (result - now) / PR_USEC_PER_SEC / 2; } p = talloc_asprintf(ca, "%lld", (long long) result); i = strlen(p); if (write(fd, p, strlen(p)) != i) { cm_log(0, "Error writing \"%s\" to pipe: %s.\n", p, strerror(errno)); } cm_log(3, "Time until refresh: %s.\n", p); talloc_free(p); PORT_FreeArena(arena, PR_TRUE); _exit(0); } static int cm_ca_analyze_encryption_certs_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data) { PLArenaPool *arena; char *p; int i; PRTime result = 0, now, ratime, catime; struct cm_nickcert *racert, *cacert; if (ca->cm_ca_encryption_issuer_cert == NULL) { cacert = NULL; } else { cacert = talloc_ptrtype(ca, racert); cacert->cm_nickname = talloc_strdup(cacert, "CA certificate"); cacert->cm_cert = ca->cm_ca_encryption_issuer_cert; } if (ca->cm_ca_encryption_cert == NULL) { racert = NULL; } else { racert = talloc_ptrtype(ca, racert); racert->cm_nickname = talloc_strdup(racert, cacert ? "RA certificate" : "CA certificate"); racert->cm_cert = ca->cm_ca_encryption_cert; } /* Look at the RA and CA certificates, and print a number approximating * the midpoint of time between now and the first of their * not-valid-after dates. */ arena = PORT_NewArena(sizeof(double)); if (arena == NULL) { cm_log(0, "Out of memory.\n"); return 1; } now = PR_Now(); ratime = CM_DELAY_CA_POLL_MAXIMUM; ratime *= PR_USEC_PER_SEC; ratime += now; if (racert != NULL) { ratime = not_valid_after(arena, racert); } catime = ratime; if (cacert != NULL) { catime = not_valid_after(arena, cacert); } if (ratime < catime) { result = ratime; } else { result = catime; } cm_log(3, "Result is %lld.\n", (long long) result); if ((result != 0) && (result > now)) { result = (result - now) / PR_USEC_PER_SEC / 2; } p = talloc_asprintf(ca, "%lld", (long long) result); i = strlen(p); if (write(fd, p, strlen(p)) != i) { cm_log(0, "Error writing \"%s\" to pipe: %s.\n", p, strerror(errno)); } talloc_free(p); PORT_FreeArena(arena, PR_TRUE); _exit(0); } struct cm_ca_analyze_state * cm_ca_analyze_start_certs(struct cm_store_ca *ca) { struct cm_ca_analyze_state *ret; ret = talloc_ptrtype(ca, ret); if (ret != NULL) { memset(ret, 0, sizeof(*ret)); ret->subproc = cm_subproc_start(&cm_ca_analyze_certs_main, ret, ca, NULL, ret); } return ret; } struct cm_ca_analyze_state * cm_ca_analyze_start_encryption_certs(struct cm_store_ca *ca) { struct cm_ca_analyze_state *ret; ret = talloc_ptrtype(ca, ret); if (ret != NULL) { memset(ret, 0, sizeof(*ret)); ret->subproc = cm_subproc_start(&cm_ca_analyze_encryption_certs_main, ret, ca, NULL, ret); } return ret; } int cm_ca_analyze_ready(struct cm_ca_analyze_state *state) { int ready, length; const char *p; ready = cm_subproc_ready(state->subproc); if ((ready == 0) && (cm_subproc_get_exitstatus(state->subproc) == 0)) { p = cm_subproc_get_msg(state->subproc, &length); if (length > 0) { state->delay = atol(p); } } return ready; } long cm_ca_analyze_get_delay(struct cm_ca_analyze_state *state) { return state->delay; } int cm_ca_analyze_get_fd(struct cm_ca_analyze_state *state) { return cm_subproc_get_fd(state->subproc); } void cm_ca_analyze_done(struct cm_ca_analyze_state *state) { cm_subproc_done(state->subproc); talloc_free(state); } certmonger-0.78.6/src/casave.h0000664000175000017500000000400512645513264013115 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcasave_h #define cmcasave_h struct cm_context; struct cm_store_entry; struct cm_store_ca; struct cm_casave_state; /* Start saving the certificates of the entry's CA. */ struct cm_casave_state *cm_casave_start(struct cm_store_entry *entry, struct cm_store_ca *ca, struct cm_context *cm, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)); /* Check if something changed, for example we finished saving certs. */ int cm_casave_ready(struct cm_casave_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_casave_get_fd(struct cm_casave_state *state); /* Check if we saved the certificate. */ int cm_casave_saved(struct cm_casave_state *state); /* Check if we failed due to a subject name conflict. */ int cm_casave_conflict_subject(struct cm_casave_state *state); /* Check if we failed due to a nickname conflict. */ int cm_casave_conflict_nickname(struct cm_casave_state *state); /* Check if we failed due to a permissions error. */ int cm_casave_permissions_error(struct cm_casave_state *state); /* Clean up after saving the certificate. */ void cm_casave_done(struct cm_casave_state *state); #endif certmonger-0.78.6/src/casave.c0000664000175000017500000006474712645513264013133 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include struct cm_context; struct cm_certsave_state; #include "casave.h" #include "certsave-int.h" #include "cm.h" #include "iterate.h" #include "log.h" #include "prefs.h" #include "store-int.h" #include "submit-e.h" #include "subproc.h" #include "tdbus.h" #include "util.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif struct cm_casave_state { void *parent; struct cm_store_ca *ca; struct cm_subproc_state *subproc; struct cm_context *context; struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int); int (*get_n_cas)(struct cm_context *); struct cm_store_entry *(*get_entry_by_index)(struct cm_context *, int); int (*get_n_entries)(struct cm_context *); const char *file, *nssdb; struct cm_savecert { enum cert_level { root, other_root, other } level; char *nickname; char *cert; } **certs; }; /* Save the list of certificates to the database. */ static int cm_casave_main_n(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data) { struct cm_casave_state *state = data; FILE *fp; NSSInitContext *ctx; SECStatus err; CERTCertificate *decoded, *found, **imported = NULL; CERTCertTrust trust; CERTCertDBHandle *certdb; SECItem *items[2]; PRUint32 flags; const char *es, *ttrust; char *package, *p; int i, ec; fp = fdopen(fd, "w"); if (fp == NULL) { return CM_CERTSAVE_STATUS_INTERNAL_ERROR; } if (state->certs != NULL) { ctx = NSS_InitContext(state->nssdb, NULL, NULL, NULL, NULL, 0); ec = PORT_GetError(); if (ctx == NULL) { if (ec == SEC_ERROR_BAD_DATABASE) { switch (errno) { case EACCES: case EPERM: ec = PR_NO_ACCESS_RIGHTS_ERROR; break; default: flags = NSS_INIT_READONLY | NSS_INIT_NOROOTINIT | NSS_INIT_NOMODDB; /* Sigh. Not a lot of detail. Check * if we succeed in read-only mode, * which we'll interpret as lack of * write permissions. */ ctx = NSS_InitContext(state->nssdb, NULL, NULL, NULL, NULL, flags); if (ctx != NULL) { err = NSS_ShutdownContext(ctx); if (err != SECSuccess) { cm_log(1, "Error " "shutting down " "NSS.\n"); } ctx = NULL; ec = PR_NO_ACCESS_RIGHTS_ERROR; } break; } } if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Unable to open NSS database '%s': " "%s.\n", state->nssdb, es); } else { cm_log(1, "Unable to open NSS database '%s'.\n", state->nssdb); } switch (ec) { case PR_NO_ACCESS_RIGHTS_ERROR: /* EACCES or EPERM */ fclose(fp); return CM_CERTSAVE_STATUS_PERMS; break; default: fclose(fp); return CM_CERTSAVE_STATUS_INTERNAL_ERROR; break; } } certdb = CERT_GetDefaultCertDB(); for (i = 0; state->certs[i] != NULL; i++) { package = state->certs[i]->cert; decoded = CERT_DecodeCertFromPackage(package, strlen(package)); p = state->certs[i]->nickname; ttrust = ",,"; switch (state->certs[i]->level) { case root: case other_root: ttrust = cm_prefs_nss_ca_trust(); if (ttrust == NULL) { ttrust = "CT,C,C"; } break; case other: ttrust = cm_prefs_nss_other_trust(); if (ttrust == NULL) { ttrust = ",,"; } break; } memset(&trust, 0, sizeof(trust)); CERT_DecodeTrustString(&trust, ttrust); if (decoded != NULL) { found = CERT_FindCertByDERCert(certdb, &decoded->derCert); if (found != NULL) { items[0] = &found->derCert; items[1] = NULL; if ((CERT_ImportCerts(certdb, certUsageSSLCA, 1, items, &imported, PR_TRUE, PR_FALSE, p) != SECSuccess) || (imported == NULL) || (imported[0] == NULL)) { ec = PORT_GetError(); if (ec != 0) { es = PR_ErrorToName(ec); } else { es = NULL; } if (es != NULL) { cm_log(1, "Error " "importing '%s':" " %s.\n", p, es); } else { cm_log(1, "Error " "importing '%s'" ".\n", p); } break; } else { cm_log(3, "Wrote '%s' to " "database '%s'.\n", p, state->nssdb); CERT_ChangeCertTrust(certdb, imported[0], &trust); CERT_DestroyCertificate(imported[0]); } CERT_DestroyCertificate(found); } else{ cm_log(3, "Temporary certificate '%s' " "not found in '%s'.\n", p, state->nssdb); } CERT_DestroyCertificate(decoded); } else{ cm_log(3, "Error decoding certificate '%s'.\n", p); } } err = NSS_ShutdownContext(ctx); if (err != SECSuccess) { cm_log(1, "Error shutting down NSS.\n"); fclose(fp); return CM_CERTSAVE_STATUS_INTERNAL_ERROR; } } fclose(fp); return 0; } /* Save the list of certificates to the file. */ static int cm_casave_main_o(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data) { struct cm_casave_state *state = data; FILE *fp, *bundle; int i; fp = fdopen(fd, "w"); if (fp == NULL) { return CM_CERTSAVE_STATUS_INTERNAL_ERROR; } if (state->certs != NULL) { bundle = fopen(state->file, "w"); if (bundle == NULL) { switch (errno) { case EACCES: case EPERM: cm_log(1, "Permissions error opening \"%s\".\n", state->file); fclose(fp); return CM_CERTSAVE_STATUS_PERMS; break; default: cm_log(1, "Error opening \"%s\": %s.\n", state->file, strerror(errno)); fclose(fp); return CM_CERTSAVE_STATUS_INTERNAL_ERROR; break; } } for (i = 0; state->certs[i] != NULL; i++) { fprintf(bundle, "%s", state->certs[i]->cert); cm_log(3, "Wrote '%s' to file '%s'.\n", state->certs[i]->nickname, state->file); } fclose(bundle); } fclose(fp); return 0; } static struct cm_store_ca * ca_for_entry(struct cm_store_entry *e, struct cm_casave_state *state) { struct cm_store_ca *ca; int i; if (e->cm_ca_nickname != NULL) { for (i = 0; i < (*state->get_n_cas)(state->context); i++) { ca = (*state->get_ca_by_index)(state->context, i); if (strcmp(e->cm_ca_nickname, ca->cm_nickname) == 0) { return ca; } } } return NULL; } static void add_string(void *parent, char ***dest, const char *value) { char **tmp; int i; for (i = 0; ((*dest) != NULL) && ((*dest)[i] != NULL); i++) { if (strcmp((*dest)[i], value) == 0) { return; } } tmp = talloc_array_ptrtype(parent, tmp, i + 2); if (tmp == NULL) { printf(_("Out of memory.\n")); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } if (i > 0) { memcpy(tmp, *dest, sizeof(tmp[0]) * i); } tmp[i++] = talloc_strdup(tmp, value); tmp[i] = NULL; *dest = tmp; } static dbus_bool_t has_string(char **list, const char *value) { int i; for (i = 0; (list != NULL) && (list[i] != NULL); i++) { if (strcmp(list[i], value) == 0) { return TRUE; } } return FALSE; } static void add_cert(void *parent, struct cm_savecert ***dest, enum cert_level level, const char *nickname, const char *cert) { struct cm_savecert **tmp; int i; for (i = 0; ((*dest) != NULL) && ((*dest)[i] != NULL); i++) { if ((strcmp((*dest)[i]->nickname, nickname) == 0) && (strcmp((*dest)[i]->cert, cert) == 0)) { return; } } tmp = talloc_array_ptrtype(parent, tmp, i + 2); if (tmp == NULL) { printf(_("Out of memory.\n")); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } if (i > 0) { memcpy(tmp, *dest, sizeof(tmp[0]) * i); } tmp[i] = talloc_ptrtype(tmp, tmp[i]); if (tmp[i] != NULL) { memset(tmp[i], 0, sizeof(*(tmp[i]))); tmp[i]->level = level; tmp[i]->nickname = talloc_strdup(tmp, nickname); tmp[i]->cert = talloc_strdup(tmp, cert); i++; } tmp[i] = NULL; *dest = tmp; } static void add_nickcerts(void *parent, struct cm_savecert ***dest, enum cert_level level, struct cm_nickcert **certs) { int i; for (i = 0; ((certs != NULL) && (certs[i] != NULL)); i++) { add_cert(parent, dest, level, certs[i]->cm_nickname, certs[i]->cm_cert); } } /* Build the full list of locations where we'll be saving things. If we're * passed an entry, that's the locations in the entry and the entry's CA. If * we're passed a CA, that's the locations in the CA and the locations in all * of the entries which refer to the CA. */ static void build_locations_lists(void *parent, struct cm_casave_state *state, struct cm_store_ca *ca, struct cm_store_entry *e, char ***files, char ***dbs) { struct cm_store_entry *cae = NULL; struct cm_store_ca *eca = NULL; char *dest; int i, j; if (ca != NULL) { /* Collect the list of applicable locations from the CA. */ if (ca->cm_ca_root_cert_store_files != NULL) { for (i = 0; ca->cm_ca_root_cert_store_files[i] != NULL; i++) { dest = ca->cm_ca_root_cert_store_files[i]; add_string(state, files, dest); } } if (ca->cm_ca_other_root_cert_store_files != NULL) { for (i = 0; ca->cm_ca_other_root_cert_store_files[i] != NULL; i++) { dest = ca->cm_ca_other_root_cert_store_files[i]; add_string(state, files, dest); } } if (ca->cm_ca_other_cert_store_files != NULL) { for (i = 0; ca->cm_ca_other_cert_store_files[i] != NULL; i++) { dest = ca->cm_ca_other_cert_store_files[i]; add_string(state, files, dest); } } if (ca->cm_ca_root_cert_store_nssdbs != NULL) { for (i = 0; ca->cm_ca_root_cert_store_nssdbs[i] != NULL; i++) { dest = ca->cm_ca_root_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } if (ca->cm_ca_other_root_cert_store_nssdbs != NULL) { for (i = 0; ca->cm_ca_other_root_cert_store_nssdbs[i] != NULL; i++) { dest = ca->cm_ca_other_root_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } if (ca->cm_ca_other_cert_store_nssdbs != NULL) { for (i = 0; ca->cm_ca_other_cert_store_nssdbs[i] != NULL; i++) { dest = ca->cm_ca_other_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } } /* If we were passed a CA, look for entries that reference the CA. */ for (j = 0; (ca != NULL) && (j < (*state->get_n_entries)(state->context)); j++) { /* If this entry uses the passed-in CA, collect the list of * applicable locations from the entry. */ cae = (*state->get_entry_by_index)(state->context, j); if ((cae == NULL) || (cae == e)) { continue; } if (cae->cm_ca_nickname == NULL) { continue; } if (strcmp(cae->cm_ca_nickname, ca->cm_nickname) != 0) { continue; } /* Collect the list of applicable locations from the entry. */ if (cae->cm_root_cert_store_files != NULL) { for (i = 0; cae->cm_root_cert_store_files[i] != NULL; i++) { dest = cae->cm_root_cert_store_files[i]; add_string(state, files, dest); } } if (cae->cm_other_root_cert_store_files != NULL) { for (i = 0; cae->cm_other_root_cert_store_files[i] != NULL; i++) { dest = cae->cm_other_root_cert_store_files[i]; add_string(state, files, dest); } } if (cae->cm_other_cert_store_files != NULL) { for (i = 0; cae->cm_other_cert_store_files[i] != NULL; i++) { add_string(state, files, cae->cm_other_cert_store_files[i]); } } if (cae->cm_root_cert_store_nssdbs != NULL) { for (i = 0; cae->cm_root_cert_store_nssdbs[i] != NULL; i++) { add_string(state, dbs, cae->cm_root_cert_store_nssdbs[i]); } } if (cae->cm_other_root_cert_store_nssdbs != NULL) { for (i = 0; cae->cm_other_root_cert_store_nssdbs[i] != NULL; i++) { dest = cae->cm_other_root_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } if (cae->cm_other_cert_store_nssdbs != NULL) { for (i = 0; cae->cm_other_cert_store_nssdbs[i] != NULL; i++) { add_string(state, dbs, cae->cm_other_cert_store_nssdbs[i]); } } } if (e != NULL) { /* Collect the list of applicable locations from the entry. */ if (e->cm_root_cert_store_files != NULL) { for (i = 0; e->cm_root_cert_store_files[i] != NULL; i++) { dest = e->cm_root_cert_store_files[i]; add_string(state, files, dest); } } if (e->cm_other_root_cert_store_files != NULL) { for (i = 0; e->cm_other_root_cert_store_files[i] != NULL; i++) { dest = e->cm_other_root_cert_store_files[i]; add_string(state, files, dest); } } if (e->cm_other_cert_store_files != NULL) { for (i = 0; e->cm_other_cert_store_files[i] != NULL; i++) { add_string(state, files, e->cm_other_cert_store_files[i]); } } if (e->cm_root_cert_store_nssdbs != NULL) { for (i = 0; e->cm_root_cert_store_nssdbs[i] != NULL; i++) { add_string(state, dbs, e->cm_root_cert_store_nssdbs[i]); } } if (e->cm_other_root_cert_store_nssdbs != NULL) { for (i = 0; e->cm_other_root_cert_store_nssdbs[i] != NULL; i++) { dest = e->cm_other_root_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } if (e->cm_other_cert_store_nssdbs != NULL) { for (i = 0; e->cm_other_cert_store_nssdbs[i] != NULL; i++) { add_string(state, dbs, e->cm_other_cert_store_nssdbs[i]); } } } /* If we were passed a CA, look for entries that reference the CA. */ for (j = 0; (e != NULL) && (e->cm_ca_nickname != NULL) && (j < (*state->get_n_cas)(state->context)); j++) { /* If this CA is the entry's CA, collect the list of applicable * locations from the CA. */ eca = (*state->get_ca_by_index)(state->context, j); if ((eca == NULL) || (eca == ca)) { continue; } if (eca->cm_nickname == NULL) { continue; } if (strcmp(e->cm_ca_nickname, eca->cm_nickname) != 0) { continue; } /* Collect the list of applicable locations from the CA. */ if (eca->cm_ca_root_cert_store_files != NULL) { for (i = 0; eca->cm_ca_root_cert_store_files[i] != NULL; i++) { dest = eca->cm_ca_root_cert_store_files[i]; add_string(state, files, dest); } } if (eca->cm_ca_other_root_cert_store_files != NULL) { for (i = 0; eca->cm_ca_other_root_cert_store_files[i] != NULL; i++) { dest = eca->cm_ca_other_root_cert_store_files[i]; add_string(state, files, dest); } } if (eca->cm_ca_other_cert_store_files != NULL) { for (i = 0; eca->cm_ca_other_cert_store_files[i] != NULL; i++) { dest = eca->cm_ca_other_cert_store_files[i]; add_string(state, files, dest); } } if (eca->cm_ca_root_cert_store_nssdbs != NULL) { for (i = 0; eca->cm_ca_root_cert_store_nssdbs[i] != NULL; i++) { dest = eca->cm_ca_root_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } if (eca->cm_ca_other_root_cert_store_nssdbs != NULL) { for (i = 0; eca->cm_ca_other_root_cert_store_nssdbs[i] != NULL; i++) { dest = eca->cm_ca_other_root_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } if (eca->cm_ca_other_cert_store_nssdbs != NULL) { for (i = 0; eca->cm_ca_other_cert_store_nssdbs[i] != NULL; i++) { dest = eca->cm_ca_other_cert_store_nssdbs[i]; add_string(state, dbs, dest); } } } } /* Build the list of certificates that belong in this file. That's the * certificates of any CA which lists the file as a storage location, and of * any CA referenced by entries which list the file as a storage location, and * any certificates held directly in entries which list the file as a storage * location. */ static struct cm_savecert ** build_file_savecerts_list(struct cm_casave_state *state, const char *filename) { struct cm_savecert **ret = NULL; struct cm_store_ca *ca; struct cm_store_entry *entry; int i, j; dbus_bool_t have_root, have_other_root, have_other; for (i = 0; i < (*state->get_n_cas)(state->context); i++) { ca = (*state->get_ca_by_index)(state->context, i); have_root = FALSE; have_other_root = FALSE; have_other = FALSE; if (has_string(ca->cm_ca_root_cert_store_files, filename)) { add_nickcerts(state, &ret, root, ca->cm_ca_root_certs); have_root = TRUE; } if (has_string(ca->cm_ca_other_root_cert_store_files, filename)) { add_nickcerts(state, &ret, other_root, ca->cm_ca_other_root_certs); have_other_root = TRUE; } if (has_string(ca->cm_ca_other_cert_store_files, filename)) { add_nickcerts(state, &ret, other, ca->cm_ca_other_certs); have_other = TRUE; } for (j = 0; j < (*state->get_n_entries)(state->context); j++) { entry = (*state->get_entry_by_index)(state->context, j); if (entry->cm_ca_nickname == NULL) { continue; } if (strcmp(entry->cm_ca_nickname, ca->cm_nickname) != 0) { continue; } if (!have_root && has_string(entry->cm_root_cert_store_files, filename)) { add_nickcerts(state, &ret, root, ca->cm_ca_root_certs); have_root = TRUE; } if (!have_other_root && has_string(entry->cm_other_root_cert_store_files, filename)) { add_nickcerts(state, &ret, other_root, ca->cm_ca_other_root_certs); have_other_root = TRUE; } if (!have_other && has_string(entry->cm_other_cert_store_files, filename)) { add_nickcerts(state, &ret, other, ca->cm_ca_other_certs); have_other = TRUE; } if (have_root && have_other_root && have_other) { break; } } } for (j = 0; j < (*state->get_n_entries)(state->context); j++) { entry = (*state->get_entry_by_index)(state->context, j); if (has_string(entry->cm_root_cert_store_files, filename)) { add_nickcerts(state, &ret, root, entry->cm_cert_roots); } if (has_string(entry->cm_other_cert_store_files, filename)) { add_nickcerts(state, &ret, other, entry->cm_cert_chain); } } return ret; } /* Build the list of certificates which we need to store in this database. * That's the certificates of the CA, of the entry, and of the entry's CA. We * don't walk the list of CAs because we don't prune databases, and we're not * rewriting the database from scratch every time we write to it, so we don't * need to. */ static struct cm_savecert ** build_nssdb_savecerts_list(struct cm_casave_state *state, struct cm_store_ca *ca, struct cm_store_entry *entry, const char *nssdb) { struct cm_savecert **ret = NULL; if (ca != NULL) { if (has_string(ca->cm_ca_root_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, root, ca->cm_ca_root_certs); } if (has_string(ca->cm_ca_other_root_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, other_root, ca->cm_ca_other_root_certs); } if (has_string(ca->cm_ca_other_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, other, ca->cm_ca_other_certs); } } if (entry != NULL) { if (has_string(entry->cm_root_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, root, entry->cm_cert_roots); } if (has_string(entry->cm_other_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, other, entry->cm_cert_chain); } ca = ca_for_entry(entry, state); if (ca != NULL) { if (has_string(entry->cm_root_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, root, ca->cm_ca_root_certs); add_nickcerts(state, &ret, root, entry->cm_cert_roots); } else if (has_string(ca->cm_ca_root_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, root, ca->cm_ca_root_certs); add_nickcerts(state, &ret, root, entry->cm_cert_roots); } if (has_string(entry->cm_other_root_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, other_root, ca->cm_ca_other_root_certs); } else if (has_string(ca->cm_ca_other_root_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, other_root, ca->cm_ca_other_root_certs); } if (has_string(entry->cm_other_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, other, ca->cm_ca_other_certs); add_nickcerts(state, &ret, other, entry->cm_cert_chain); } else if (has_string(ca->cm_ca_other_cert_store_nssdbs, nssdb)) { add_nickcerts(state, &ret, other, ca->cm_ca_other_certs); add_nickcerts(state, &ret, other, entry->cm_cert_chain); } } } return ret; } static int cm_casave_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data) { struct cm_casave_state *state = data; struct cm_subproc_state *subproc; FILE *fp; int i, status, length; char **files = NULL, **dbs = NULL; const char *msg; fp = fdopen(fd, "w"); if (fp == NULL) { return CM_CERTSAVE_STATUS_INTERNAL_ERROR; } /* Build a list of the locations to which we're going to be writing. */ build_locations_lists(data, state, ca, e, &files, &dbs); /* For each file, work out all of the certificates that need to be * saved to it, and save them. */ for (i = 0; (files != NULL) && (files[i] != NULL); i++) { state->file = files[i]; state->nssdb = NULL; state->certs = build_file_savecerts_list(state, state->file); subproc = cm_subproc_start(cm_casave_main_o, state, ca, e, state); if (subproc == NULL) { fprintf(fp, "Error starting to save to file \"%s\".\n", state->file); fclose(fp); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } while (cm_subproc_ready(subproc) != 0) { fd = cm_subproc_get_fd(subproc); cm_waitfor_readable_fd(fd, CM_DELAY_SOON); } msg = cm_subproc_get_msg(subproc, &length); status = cm_subproc_get_exitstatus(subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) != 0)) { if (length > 0) { fprintf(fp, "%.*s", length, msg); } } cm_subproc_done(subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) != 0)) { fclose(fp); _exit(WEXITSTATUS(status)); } } /* For each database, work out all of the certificates that need to be * saved to it, and save them. */ for (i = 0; (dbs != NULL) && (dbs[i] != NULL); i++) { state->file = NULL; state->nssdb = dbs[i]; state->certs = build_nssdb_savecerts_list(state, ca, e, state->nssdb); subproc = cm_subproc_start(cm_casave_main_n, state, ca, e, state); if (subproc == NULL) { fprintf(fp, "Error starting to save to database \"%s\".\n", state->nssdb); fclose(fp); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } while (cm_subproc_ready(subproc) != 0) { fd = cm_subproc_get_fd(subproc); cm_waitfor_readable_fd(fd, CM_DELAY_SOON); } msg = cm_subproc_get_msg(subproc, &length); status = cm_subproc_get_exitstatus(subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) != 0)) { if (length > 0) { fprintf(fp, "%.*s", length, msg); } } cm_subproc_done(subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) != 0)) { fclose(fp); _exit(WEXITSTATUS(status)); } } fclose(fp); _exit(CM_CERTSAVE_STATUS_SAVED); } struct cm_casave_state * cm_casave_start(struct cm_store_entry *entry, struct cm_store_ca *ca, struct cm_context *context, struct cm_store_ca *(*get_ca_by_index)(struct cm_context *, int), int (*get_n_cas)(struct cm_context *), struct cm_store_entry *(*get_e_by_index)(struct cm_context *, int), int (*get_n_entries)(struct cm_context *)) { struct cm_casave_state *ret; void *parent; if (entry != NULL) { parent = entry; } else { parent = ca; } ret = talloc_ptrtype(parent, ret); if (ret != NULL) { memset(ret, 0, sizeof(*ret)); ret->parent = parent; ret->ca = ca; ret->context = context; ret->get_ca_by_index = get_ca_by_index; ret->get_n_cas = get_n_cas; ret->get_entry_by_index = get_e_by_index; ret->get_n_entries = get_n_entries; ret->subproc = cm_subproc_start(cm_casave_main, ret, ca, entry, ret); if (ret->subproc == NULL) { talloc_free(ret); return NULL; } } return ret; } int cm_casave_ready(struct cm_casave_state *state) { int ready, length; const char *msg; char *p; ready = cm_subproc_ready(state->subproc); if (ready == 0) { msg = cm_subproc_get_msg(state->subproc, &length); if (msg != NULL) { if (state->ca != NULL) { talloc_free(state->ca->cm_ca_error); p = talloc_strndup(state->ca, msg, length); state->ca->cm_ca_error = p; } } else { state->ca->cm_ca_error = NULL; } } return ready; } int cm_casave_get_fd(struct cm_casave_state *state) { return cm_subproc_get_fd(state->subproc); } int cm_casave_saved(struct cm_casave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_CERTSAVE_STATUS_SAVED)) { return 0; } return -1; } int cm_casave_conflict_subject(struct cm_casave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_CERTSAVE_STATUS_SUBJECT_CONFLICT)) { return 0; } return -1; } int cm_casave_conflict_nickname(struct cm_casave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_CERTSAVE_STATUS_NICKNAME_CONFLICT)) { return 0; } return -1; } int cm_casave_permissions_error(struct cm_casave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_CERTSAVE_STATUS_PERMS)) { return 0; } return -1; } void cm_casave_done(struct cm_casave_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } certmonger-0.78.6/src/cadata.h0000664000175000017500000000464012645513264013075 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmcadata_h #define cmcadata_h struct cm_cadata_state; struct cm_store_ca; /* Start fetching information from the CA. */ struct cm_cadata_state *cm_cadata_start_identify(struct cm_store_ca *ca); struct cm_cadata_state *cm_cadata_start_certs(struct cm_store_ca *ca); struct cm_cadata_state *cm_cadata_start_profiles(struct cm_store_ca *ca); struct cm_cadata_state *cm_cadata_start_default_profile(struct cm_store_ca *ca); struct cm_cadata_state *cm_cadata_start_enroll_reqs(struct cm_store_ca *ca); struct cm_cadata_state *cm_cadata_start_renew_reqs(struct cm_store_ca *ca); struct cm_cadata_state *cm_cadata_start_capabilities(struct cm_store_ca *ca); struct cm_cadata_state *cm_cadata_start_encryption_certs(struct cm_store_ca *ca); /* Check if the data has been retrieved. */ int cm_cadata_ready(struct cm_cadata_state *state); /* Get a selectable-for-read descriptor we can poll for status changes. */ int cm_cadata_get_fd(struct cm_cadata_state *state); /* Check if the CA data was modified. */ int cm_cadata_modified(struct cm_cadata_state *state); /* Check if we need to retry. */ int cm_cadata_needs_retry(struct cm_cadata_state *state); /* Check when we need to retry. */ int cm_cadata_specified_delay(struct cm_cadata_state *state); /* Check if the CA was unreachable. */ int cm_cadata_unreachable(struct cm_cadata_state *state); /* Check if we're missing some configuration. */ int cm_cadata_unconfigured(struct cm_cadata_state *state); /* Check if the server didn't support that. */ int cm_cadata_rejected(struct cm_cadata_state *state); /* Check if the helper didn't support that. */ int cm_cadata_unsupported(struct cm_cadata_state *state); /* Clean up after retrieving data. */ void cm_cadata_done(struct cm_cadata_state *state); #endif certmonger-0.78.6/src/cadata.c0000664000175000017500000006066712645513264013103 00000000000000/* * Copyright (C) 2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include "cadata.h" #include "env.h" #include "json.h" #include "log.h" #include "store-int.h" #include "submit-e.h" #include "subproc.h" #include "tdbus.h" #define CM_CADATA_ROOTS "roots" #define CM_CADATA_OTHER_ROOTS "other-roots" #define CM_CADATA_OTHERS "other" #define CM_CADATA_CERTIFICATE "certificate" #define CM_CADATA_NICKNAME "nickname" const char *attribute_map[] = { CM_SUBMIT_REQ_SUBJECT_ENV, CM_DBUS_PROP_TEMPLATE_SUBJECT, CM_SUBMIT_REQ_HOSTNAME_ENV, CM_DBUS_PROP_TEMPLATE_HOSTNAME, CM_SUBMIT_REQ_PRINCIPAL_ENV, CM_DBUS_PROP_TEMPLATE_PRINCIPAL, CM_SUBMIT_REQ_EMAIL_ENV, CM_DBUS_PROP_TEMPLATE_EMAIL, CM_SUBMIT_REQ_IP_ADDRESS_ENV, CM_DBUS_PROP_TEMPLATE_IP_ADDRESS, CM_SUBMIT_PROFILE_ENV, CM_DBUS_PROP_TEMPLATE_PROFILE, NULL, }; struct cm_cadata_state { enum cm_submit_external_phase { parsing, postprocessing, } phase; struct cm_store_ca *ca; struct cm_subproc_state *subproc; int (*parse)(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg); int (*second_sub)(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data); int (*postprocess)(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg); const char *op; char *intermediate; int error_fd, delay; unsigned int modified: 1; }; /* Callback that just runs the helper to gather the specified data. */ static int fetch(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *data) { struct cm_cadata_state *state = data; char **argv; const char *error; unsigned char u; setenv(CM_SUBMIT_OPERATION_ENV, state->op, 1); if ((ca->cm_nickname != NULL) && (strlen(ca->cm_nickname) > 0)) { setenv(CM_SUBMIT_CA_NICKNAME_ENV, ca->cm_nickname, 1); } if (dup2(fd, STDOUT_FILENO) == -1) { u = errno; cm_log(1, "Error redirecting standard out for " "enrollment helper: %s.\n", strerror(errno)); if (write(state->error_fd, &u, 1) != 1) { cm_log(1, "Error sending error result to parent.\n"); } return u; } error = NULL; argv = cm_subproc_parse_args(ca, ca->cm_ca_external_helper, &error); if (argv == NULL) { if (error != NULL) { cm_log(0, "Error parsing \"%s\": %s.\n", ca->cm_ca_external_helper, error); } else { cm_log(0, "Error parsing \"%s\".\n", ca->cm_ca_external_helper); } return -1; } cm_subproc_mark_most_cloexec(STDOUT_FILENO, -1, -1); cm_log(1, "Running enrollment/cadata helper \"%s\".\n", argv[0]); execvp(argv[0], argv); u = errno; if (write(state->error_fd, &u, 1) != 1) { cm_log(1, "Error sending error result to parent.\n"); } return u; } /* Parse IDENTIFY output. It's just an arbitrary string. */ static int parse_identification(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { const char *p, *q; char *old_aka; old_aka = ca->cm_ca_aka; p = msg; q = p + strcspn(p, "\r\n"); if (p != q) { ca->cm_ca_aka = talloc_strndup(ca, p, q - p); } else { ca->cm_ca_aka = NULL; } if (state != NULL) { if ((old_aka == NULL) && (ca->cm_ca_aka == NULL)) { state->modified = 0; } else if ((old_aka != NULL) && (ca->cm_ca_aka != NULL)) { state->modified = (strcmp(old_aka, ca->cm_ca_aka) != 0); } else { state->modified = 1; } } talloc_free(old_aka); return 0; } /* Compare two lists of nickname+certificate pairs. */ static int nickcertlistcmp(struct cm_nickcert **a, struct cm_nickcert **b) { int i, j; if ((a == NULL) && (b == NULL)) { return 0; } else if ((a == NULL) && (b != NULL)) { return 1; } else if ((a != NULL) && (b == NULL)) { return 1; } else { for (i = 0; a[i] != NULL; i++) { for (j = 0; b[j] != NULL; j++) { if ((strcmp(a[i]->cm_nickname, b[j]->cm_nickname) == 0) && (strcmp(a[i]->cm_cert, b[j]->cm_cert) == 0)) { break; } } if (b[j] == NULL) { return 1; } } for (i = 0; b[i] != NULL; i++) { for (j = 0; a[j] != NULL; j++) { if ((strcmp(b[i]->cm_nickname, a[j]->cm_nickname) == 0) && (strcmp(b[i]->cm_cert, a[j]->cm_cert) == 0)) { break; } } if (a[j] == NULL) { return 1; } } return 0; } } /* Parse a list of nickname+certificate pairs. */ static const char * parse_old_cert_list(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg, struct cm_nickcert ***list) { struct cm_nickcert **certs = NULL, **tmp, *nc; const char *p, *q; char *s; int i = 0; p = msg; q = p + strcspn(p, "\r\n"); while (p != q) { nc = talloc_ptrtype(NULL, nc); if (nc == NULL) { talloc_free(certs); return NULL; } memset(nc, 0, sizeof(*nc)); tmp = talloc_realloc(ca, certs, struct cm_nickcert *, i + 2); if (tmp == NULL) { talloc_free(certs); return NULL; } certs = tmp; certs[i++] = nc; certs[i] = NULL; talloc_steal(certs, nc); nc->cm_nickname = talloc_strndup(nc, p, q - p); p = q + strspn(q, "\r\n"); if (strncmp(p, "-----BEGIN", 10) != 0) { talloc_free(certs); return NULL; } q = strstr(p, "-----END"); if (q == NULL) { talloc_free(certs); return NULL; } q += strcspn(q, "\r\n"); nc->cm_cert = talloc_asprintf(nc, "%.*s\n", (int) (q - p), p); if ((nc->cm_nickname == NULL) || (nc->cm_cert == NULL)) { talloc_free(certs); return NULL; } while ((s = strstr(nc->cm_cert, "\r\n")) != NULL) { memmove(s, s + 1, strlen(s)); } if ((strncmp(q, "\n\n", 2) == 0) || (strncmp(q, "\r\n\r\n", 4) == 0)) { *list = certs; return q + strspn(q, "\r\n"); } else { p = q + strspn(q, "\r\n"); q = p + strcspn(p, "\r\n"); } } *list = certs; return p; } /* Build a nickcert list out of the keys and values in a JSON object. */ struct cm_nickcert ** parse_json_cert_list(void *parent, struct cm_json *nickcerts) { struct cm_nickcert **ret, *c; struct cm_json *cert, *val; int i, j; const char *nickname, *pem; i = cm_json_array_size(nickcerts); if (i > 0) { ret = talloc_array_ptrtype(parent, ret, i + 1); if (ret != NULL) { for (i = 0, j = 0; i < cm_json_array_size(nickcerts); i++) { c = talloc_ptrtype(ret, c); if (c != NULL) { cert = cm_json_n(nickcerts, i); if (cm_json_type(cert) != cm_json_type_object) { continue; } val = cm_json_get(cert, CM_CADATA_NICKNAME); if (cm_json_type(val) != cm_json_type_string) { continue; } nickname = cm_json_string(val, NULL); c->cm_nickname = talloc_strdup(c, nickname); val = cm_json_get(cert, CM_CADATA_CERTIFICATE); if (cm_json_type(val) != cm_json_type_string) { continue; } pem = cm_json_string(val, NULL); c->cm_cert = talloc_strdup(c, pem); if ((c->cm_nickname != NULL) && (c->cm_cert != NULL)) { ret[j++] = c; } } } ret[j] = NULL; if (j > 0) { return ret; } else { return NULL; } } } return NULL; } /* Parse three lists of nickname+certificate pairs, or a JSON document that * makes them all members of objects named "root", "other-roots", and "others", * members of an unnamed top-level object. */ static int parse_certs(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { struct cm_nickcert **certs; struct cm_json *json = NULL, *sub, *cert, *val; const char *p, *eom; int i; state->modified = 0; if (cm_json_decode(state, msg, -1, &json, &eom) != 0) { json = cm_json_new_object(state); /* Take the older-format data and build a JSON object out of * it. */ certs = NULL; p = parse_old_cert_list(ca, state, msg, &certs); if (p != NULL) { sub = cm_json_new_array(json); for (i = 0; (certs != NULL) && (certs[i] != NULL); i++) { cert = cm_json_new_object(sub); val = cm_json_new_string(cert, certs[i]->cm_nickname, -1); cm_json_set(cert, CM_CADATA_NICKNAME, val); val = cm_json_new_string(cert, certs[i]->cm_cert, -1); cm_json_set(cert, CM_CADATA_CERTIFICATE, val); cm_json_append(sub, cert); } if (cm_json_array_size(sub) > 0) { cm_json_set(json, CM_CADATA_ROOTS, sub); } certs = NULL; p = parse_old_cert_list(ca, state, p, &certs); if (p != NULL) { sub = cm_json_new_array(json); for (i = 0; (certs != NULL) && (certs[i] != NULL); i++) { cert = cm_json_new_object(sub); val = cm_json_new_string(cert, certs[i]->cm_nickname, -1); cm_json_set(cert, CM_CADATA_NICKNAME, val); val = cm_json_new_string(cert, certs[i]->cm_cert, -1); cm_json_set(cert, CM_CADATA_CERTIFICATE, val); cm_json_append(sub, cert); } if (cm_json_array_size(sub) > 0) { cm_json_set(json, CM_CADATA_OTHER_ROOTS, sub); } certs = NULL; p = parse_old_cert_list(ca, state, p, &certs); if (p != NULL) { sub = cm_json_new_array(json); for (i = 0; (certs != NULL) && (certs[i] != NULL); i++) { cert = cm_json_new_object(sub); val = cm_json_new_string(cert, certs[i]->cm_nickname, -1); cm_json_set(cert, CM_CADATA_NICKNAME, val); val = cm_json_new_string(cert, certs[i]->cm_cert, -1); cm_json_set(cert, CM_CADATA_CERTIFICATE, val); cm_json_append(sub, cert); } if (cm_json_array_size(sub) > 0) { cm_json_set(json, CM_CADATA_OTHERS, sub); } } } } } /* Save the JSON document for postprocessing. */ state->intermediate = cm_json_encode(state, json); return 0; } static int postprocess_certs_sub(int fd, struct cm_store_ca *ca, struct cm_store_entry *e, void *data) { struct cm_cadata_state *state = data; FILE *status; status = fdopen(fd, "w"); if (status == NULL) { cm_log(1, "Internal error.\n"); _exit(errno); } fprintf(status, "%s\n", state->intermediate); fflush(status); fclose(status); _exit(0); } static int postprocess_certs(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { struct cm_nickcert **roots, **other_roots, **others; struct cm_json *json; const char *eom; if (cm_json_decode(state, msg, -1, &json, &eom) != 0) { cm_log(1, "Error parsing JSON root certificate object.\n"); return 0; } roots = parse_json_cert_list(ca, cm_json_get(json, CM_CADATA_ROOTS)); other_roots = parse_json_cert_list(ca, cm_json_get(json, CM_CADATA_OTHER_ROOTS)); others = parse_json_cert_list(ca, cm_json_get(json, CM_CADATA_OTHERS)); if ((nickcertlistcmp(roots, ca->cm_ca_root_certs) != 0) || (nickcertlistcmp(other_roots, ca->cm_ca_other_root_certs) != 0) || (nickcertlistcmp(others, ca->cm_ca_other_certs) != 0)) { state->modified = 1; } talloc_free(ca->cm_ca_root_certs); talloc_free(ca->cm_ca_other_root_certs); talloc_free(ca->cm_ca_other_certs); ca->cm_ca_root_certs = roots; ca->cm_ca_other_root_certs = other_roots; ca->cm_ca_other_certs = others; return 0; } /* Parse a list of comma or newline-separated items. This handles both SCEP * capability lists and our lists of required attributes. */ static int parse_list(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg, const char **dict, char ***list) { const char *p, *q; char **reqs = NULL, **tmp; int i = 0, j = 0, len; p = msg; q = p + strcspn(p, ",\r\n"); while (p != q) { tmp = talloc_realloc(ca, reqs, char *, i + 2); if (tmp == NULL) { break; } reqs = tmp; if (dict == NULL) { /* Save every item. */ reqs[i] = talloc_strndup(reqs, p, q - p); if ((reqs[i] != NULL) && (strlen(reqs[i]) > 0)) { i++; } reqs[i] = NULL; } else { /* Save only dictionary items that can be mapped from * items in the list. */ for (j = 0; dict[j] != NULL; j += 2) { len = strlen(dict[j]); if ((q - p == len) && (strncasecmp(dict[j], p, len) == 0)) { reqs[i] = talloc_strdup(reqs, dict[j + 1]); if ((reqs[i] != NULL) && (strlen(reqs[i]) > 0)) { i++; } break; } } reqs[i] = NULL; } p = q + strspn(q, ",\r\n"); q = p + strcspn(p, ",\r\n"); } if (i == 0) { talloc_free(reqs); reqs = NULL; } if (state != NULL) { if ((*list == NULL) && (reqs == NULL)) { state->modified = 0; } else if ((*list == NULL) && (reqs != NULL)) { state->modified = 1; } else if ((*list != NULL) && (reqs == NULL)) { state->modified = 1; } else { state->modified = 0; for (i = 0; (*list)[i] != NULL; i++) { for (j = 0; reqs[j] != NULL; j++) { if (strcmp((*list)[i], reqs[j]) == 0) { break; } } if (reqs[j] == NULL) { state->modified = 1; break; } } for (i = 0; reqs[i] != NULL; i++) { for (j = 0; (*list)[j] != NULL; j++) { if (strcmp(reqs[i], (*list)[j]) == 0) { break; } } if ((*list)[j] == NULL) { state->modified = 1; break; } } } } talloc_free(*list); *list = reqs; return 0; } /* Parse a list of known profiles. */ static int parse_profiles(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { parse_list(ca, state, msg, NULL, &ca->cm_ca_profiles); return 0; } /* Parse a single profile name that we'll advertise as a default. */ static int parse_default_profile(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { const char *p, *q; char *old_dp; old_dp = ca->cm_ca_default_profile; p = msg; q = p + strcspn(p, "\r\n"); if (p != q) { ca->cm_ca_default_profile = talloc_strndup(ca, p, q - p); } else { ca->cm_ca_default_profile = NULL; } if (state != NULL) { if ((old_dp == NULL) && (ca->cm_ca_default_profile == NULL)) { state->modified = 0; } else if ((old_dp == NULL) && (ca->cm_ca_default_profile != NULL)) { state->modified = 1; } else if ((old_dp != NULL) && (ca->cm_ca_default_profile == NULL)) { state->modified = 1; } else { state->modified = (strcmp(old_dp, ca->cm_ca_default_profile) != 0); } } talloc_free(old_dp); return 0; } /* Parse a list of properties that the helper expects us to have set for new * enrollment requests. */ static int parse_enroll_reqs(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { parse_list(ca, state, msg, attribute_map, &ca->cm_ca_required_enroll_attributes); return 0; } /* Parse a list of properties that the helper expects us to have set for * renewal requests. */ static int parse_renew_reqs(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { parse_list(ca, state, msg, attribute_map, &ca->cm_ca_required_renewal_attributes); return 0; } /* Parse a list of SCEP capabilities. */ static int parse_capabilities(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { parse_list(ca, state, msg, NULL, &ca->cm_ca_capabilities); return 0; } /* Compare two strings, treating NULL and empty as the same. */ static dbus_bool_t strings_differ(const char *a, const char *b) { if (a == NULL) { a = ""; } if (b == NULL) { b = ""; } return (strcmp(a, b) != 0); } /* Parse SCEP encryption certificate data, which is a series of concatenated * X.509 certificates. The first is for the SCEP server. The second, if there * is one, is for the CA. Any additional certificates are assumed to be * intermediates. */ static int parse_encryption_certs(struct cm_store_ca *ca, struct cm_cadata_state *state, const char *msg) { const char *olde, *oldei, *oldep; char *p; olde = ca->cm_ca_encryption_cert; oldei = ca->cm_ca_encryption_issuer_cert; oldep = ca->cm_ca_encryption_cert_pool; ca->cm_ca_encryption_cert = talloc_strdup(ca, msg); ca->cm_ca_encryption_issuer_cert = NULL; ca->cm_ca_encryption_cert_pool = NULL; p = strstr(ca->cm_ca_encryption_cert, "-----END CERTIFICATE-----"); if (p != NULL) { p += strcspn(p, "\r\n"); p += strspn(p, "\r\n"); if (strstr(p, "-----END CERTIFICATE-----") != NULL) { ca->cm_ca_encryption_issuer_cert = talloc_strdup(ca, p); *p = '\0'; } } if (ca->cm_ca_encryption_issuer_cert != NULL) { p = strstr(ca->cm_ca_encryption_issuer_cert, "-----END CERTIFICATE-----"); if (p != NULL) { p += strcspn(p, "\r\n"); p += strspn(p, "\r\n"); if (strstr(p, "-----END CERTIFICATE-----") != NULL) { ca->cm_ca_encryption_cert_pool = talloc_strdup(ca, p); } *p = '\0'; } } if (ca->cm_ca_encryption_cert != NULL) { if (strspn(ca->cm_ca_encryption_cert, "\r\n \t") == strlen(ca->cm_ca_encryption_cert)) { ca->cm_ca_encryption_cert = NULL; } } if (ca->cm_ca_encryption_issuer_cert != NULL) { if (strspn(ca->cm_ca_encryption_issuer_cert, "\r\n \t") == strlen(ca->cm_ca_encryption_issuer_cert)) { ca->cm_ca_encryption_issuer_cert = NULL; } } if (ca->cm_ca_encryption_cert_pool != NULL) { if (strspn(ca->cm_ca_encryption_cert_pool, "\r\n \t") == strlen(ca->cm_ca_encryption_cert_pool)) { ca->cm_ca_encryption_cert_pool = NULL; } } state->modified = strings_differ(olde, ca->cm_ca_encryption_cert) || strings_differ(oldei, ca->cm_ca_encryption_issuer_cert) || strings_differ(oldep, ca->cm_ca_encryption_cert_pool); return 0; } /* Start the helper with the right $CERTMONGER_OPERATION, and feed the output * to the right parser callback. */ static struct cm_cadata_state * cm_cadata_start_generic(struct cm_store_ca *ca, const char *op, int (*parse)(struct cm_store_ca *, struct cm_cadata_state *, const char *), int (*second_sub)(int fd, struct cm_store_ca *, struct cm_store_entry *, void *), int (*postprocess)(struct cm_store_ca *, struct cm_cadata_state *, const char *)) { struct cm_cadata_state *ret; int error_fd[2]; unsigned char u; switch (ca->cm_ca_type) { case cm_ca_internal_self: if (strcasecmp(op, CM_OP_IDENTIFY) == 0) { ca->cm_ca_aka = talloc_asprintf(ca, CM_SELF_SIGN_CA_NAME " (%s %s)", PACKAGE_NAME, PACKAGE_VERSION); } else if (strcasecmp(op, CM_OP_FETCH_ROOTS) == 0) { } else if (strcasecmp(op, CM_OP_FETCH_PROFILES) == 0) { } else if (strcasecmp(op, CM_OP_FETCH_DEFAULT_PROFILE) == 0) { } else if (strcasecmp(op, CM_OP_FETCH_ENROLL_REQUIREMENTS) == 0) { parse_list(ca, NULL, CM_SUBMIT_REQ_SUBJECT_ENV, attribute_map, &ca->cm_ca_required_enroll_attributes); } else if (strcasecmp(op, CM_OP_FETCH_RENEWAL_REQUIREMENTS) == 0) { parse_list(ca, NULL, CM_SUBMIT_REQ_SUBJECT_ENV, attribute_map, &ca->cm_ca_required_renewal_attributes); } return NULL; break; case cm_ca_external: break; } if (pipe(error_fd) != 0) { cm_log(1, "Error creating pipe for reporting " "errors: %s.\n", strerror(errno)); return NULL; } ret = talloc_ptrtype(ca, ret); if (ret == NULL) { return NULL; } memset(ret, 0, sizeof(*ret)); ret->phase = parsing; ret->ca = ca; ret->error_fd = error_fd[1]; ret->delay = -1; ret->op = op; ret->modified = 0; ret->subproc = cm_subproc_start(fetch, ret, ca, NULL, ret); if (ret->subproc == NULL) { close(error_fd[0]); close(error_fd[1]); talloc_free(ret); return NULL; } close(error_fd[1]); ret->error_fd = -1; ret->parse = parse; ret->second_sub = second_sub; ret->postprocess = postprocess; if (read(error_fd[0], &u, 1) == 1) { cm_log(1, "Error running enrollment helper \"%s\": %s.\n", ca->cm_ca_external_helper, strerror(u)); talloc_free(ret); return NULL; } return ret; } struct cm_cadata_state * cm_cadata_start_identify(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_IDENTIFY, parse_identification, NULL, NULL); } struct cm_cadata_state * cm_cadata_start_certs(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_FETCH_ROOTS, parse_certs, postprocess_certs_sub, postprocess_certs); } struct cm_cadata_state * cm_cadata_start_profiles(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_FETCH_PROFILES, parse_profiles, NULL, NULL); } struct cm_cadata_state * cm_cadata_start_default_profile(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_FETCH_DEFAULT_PROFILE, parse_default_profile, NULL, NULL); } struct cm_cadata_state * cm_cadata_start_enroll_reqs(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_FETCH_ENROLL_REQUIREMENTS, parse_enroll_reqs, NULL, NULL); } struct cm_cadata_state * cm_cadata_start_renew_reqs(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_FETCH_RENEWAL_REQUIREMENTS, parse_renew_reqs, NULL, NULL); } struct cm_cadata_state * cm_cadata_start_capabilities(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_FETCH_SCEP_CA_CAPS, parse_capabilities, NULL, NULL); } struct cm_cadata_state * cm_cadata_start_encryption_certs(struct cm_store_ca *ca) { return cm_cadata_start_generic(ca, CM_OP_FETCH_SCEP_CA_CERTS, parse_encryption_certs, NULL, NULL); } int cm_cadata_ready(struct cm_cadata_state *state) { struct cm_subproc_state *subproc; int ready, status, length; const char *msg = NULL; char *p = NULL; long delay = -1; ready = cm_subproc_ready(state->subproc); if (ready == 0) { status = cm_subproc_get_exitstatus(state->subproc); msg = cm_subproc_get_msg(state->subproc, &length); if (WIFEXITED(status)) { switch (WEXITSTATUS(status)) { case CM_SUBMIT_STATUS_ISSUED: switch (state->phase) { case parsing: ready = (*(state->parse))(state->ca, state, msg); if ((ready == 0) && (state->second_sub != NULL) && (state->postprocess != NULL)) { subproc = cm_subproc_start(state->second_sub, state, state->ca, NULL, state); if (subproc != NULL) { cm_subproc_done(state->subproc); state->subproc = subproc; state->phase = postprocessing; ready = -1; } else { cm_log(1, "Error running second helper.\n"); } } break; case postprocessing: ready = (*(state->postprocess))(state->ca, state, msg); break; } break; case CM_SUBMIT_STATUS_WAIT_WITH_DELAY: if (length > 0) { delay = strtol(msg, &p, 10); if ((p != NULL) && ((*p == '\0') || (strchr("\r\n", *p) != NULL))) { state->delay = delay; } } break; default: break; } } } return ready; } int cm_cadata_get_fd(struct cm_cadata_state *state) { return cm_subproc_get_fd(state->subproc); } int cm_cadata_modified(struct cm_cadata_state *state) { return state->modified ? 0 : -1; } int cm_cadata_rejected(struct cm_cadata_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_REJECTED)) { return 0; } return -1; } int cm_cadata_unsupported(struct cm_cadata_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_OPERATION_NOT_SUPPORTED)) { return 0; } return -1; } int cm_cadata_needs_retry(struct cm_cadata_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && ((WEXITSTATUS(status) == CM_SUBMIT_STATUS_WAIT) || (WEXITSTATUS(status) == CM_SUBMIT_STATUS_WAIT_WITH_DELAY))) { return 0; } return -1; } int cm_cadata_specified_delay(struct cm_cadata_state *state) { return state->delay; } int cm_cadata_unreachable(struct cm_cadata_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_UNREACHABLE)) { return 0; } return -1; } int cm_cadata_unconfigured(struct cm_cadata_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUBMIT_STATUS_UNCONFIGURED)) { return 0; } return -1; } void cm_cadata_done(struct cm_cadata_state *state) { cm_subproc_done(state->subproc); talloc_free(state); } certmonger-0.78.6/src/util-o.h0000664000175000017500000000234112645513264013065 00000000000000/* * Copyright (C) 2010,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef utilo_h #define utilo_h struct cm_store_entry; void util_o_init(void); char *util_build_next_filename(const char *prefix, const char *marker); char *util_build_old_filename(const char *prefix, const char *serial); void util_set_fd_owner_perms(int fd, const char *filename, const char *owner, mode_t perms); void util_set_fd_entry_key_owner(int keyfd, const char *filename, struct cm_store_entry *entry); void util_set_fd_entry_cert_owner(int certfd, const char *filename, struct cm_store_entry *entry); #endif certmonger-0.78.6/src/util-o.c0000664000175000017500000000676512645513264013076 00000000000000/* * Copyright (C) 2010,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include "cm.h" #include "log.h" #include "store-int.h" #include "util-o.h" void util_o_init(void) { #if defined(HAVE_DECL_OPENSSL_ADD_ALL_ALGORITHMS) && HAVE_DECL_OPENSSL_ADD_ALL_ALGORITHMS OpenSSL_add_all_algorithms(); #elif defined(HAVE_DECL_OPENSSL_ADD_SSL_ALGORITHMS) && HAVE_DECL_OPENSSL_ADD_SSL_ALGORITHMS OpenSSL_add_ssl_algorithms(); #else SSL_library_init(); #endif } char * util_build_next_filename(const char *prefix, const char *marker) { size_t len; char *ret; len = strlen(prefix) + strlen(marker) + sizeof("%s.%s.key"); ret = malloc(len + 1); if (ret != NULL) { snprintf(ret, len, "%s.%s.key", prefix, marker); } return ret; } char * util_build_old_filename(const char *prefix, const char *serial) { size_t len; char *ret; len = strlen(prefix) + strlen(serial) + sizeof("%s.%s.key"); ret = malloc(len + 1); if (ret != NULL) { snprintf(ret, len, "%s.%s.key", prefix, serial); } return ret; } void util_set_fd_owner_perms(int fd, const char *filename, const char *owner, mode_t perms) { char *user, *group; struct passwd *pwd; struct group *grp; uid_t uid; gid_t gid; if (filename == NULL) { return; } if (owner != NULL) { user = strdup(owner); group = strchr(user, ':'); if (group != NULL) { *group++ = '\0'; if (strlen(group) == 0) { group = NULL; } } pwd = getpwnam(user); if (pwd == NULL) { cm_log(1, "Error looking up user \"%s\", " "not setting ownership of \"%s\".\n", user, filename); } else { uid = pwd->pw_uid; gid = pwd->pw_gid; if (group != NULL) { grp = getgrnam(group); if (grp != NULL) { gid = grp->gr_gid; } else { cm_log(1, "Error looking up group " "\"%s\", setting group of \"%s\"" " to primary group of \"%s\".\n", group, filename, user); } } if (fchown(fd, uid, gid) == -1) { cm_log(1, "Error setting ownership on " "file \"%s\": %s. Continuing\n", filename, strerror(errno)); } } free(user); } if (perms != 0) { if (fchmod(fd, perms) == -1) { cm_log(1, "Error setting permissions on " "file \"%s\": %s. Continuing\n", filename, strerror(errno)); } } } void util_set_fd_entry_key_owner(int keyfd, const char *filename, struct cm_store_entry *entry) { util_set_fd_owner_perms(keyfd, filename, entry->cm_key_owner, entry->cm_key_perms); } void util_set_fd_entry_cert_owner(int certfd, const char *filename, struct cm_store_entry *entry) { util_set_fd_owner_perms(certfd, filename, entry->cm_cert_owner, entry->cm_cert_perms); } certmonger-0.78.6/src/submit-o.h0000664000175000017500000000174412645513264013421 00000000000000/* * Copyright (C) 2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmsubmito_h #define cmsubmito_h SECOidTag cm_submit_n_tag_from_nid(int nid); int cm_submit_n_nid_from_tag(SECOidTag tag); int cm_submit_o_sign(void *parent, char *csr, X509 *signer, EVP_PKEY *signer_key, const char *hexserial, time_t now, long life, X509 **cert); #endif certmonger-0.78.6/src/submit-o.c0000664000175000017500000002006112645513264013405 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2014.2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "pin.h" #include "prefs.h" #include "prefs-o.h" #include "store.h" #include "store-int.h" #include "submit.h" #include "submit-e.h" #include "submit-int.h" #include "submit-o.h" #include "submit-u.h" #include "subproc.h" #include "util-o.h" int cm_submit_o_sign(void *parent, char *csr, X509 *signer, EVP_PKEY *signer_key, const char *hexserial, time_t now, long life, X509 **cert) { X509_REQ *req; BIO *bio; ASN1_INTEGER *seriali; BASIC_CONSTRAINTS *basic; ASN1_OCTET_STRING *skid; AUTHORITY_KEYID akid; unsigned char *seriald, *basicd, md[CM_DIGEST_MAX]; const unsigned char *serialtmp, *basictmp; char *serial; int status = CM_SUBMIT_STATUS_WAIT, seriall, basicl, crit, i; unsigned int mdlen; #ifdef HAVE_UUID unsigned char uuid[16]; #endif bio = BIO_new_mem_buf(csr, -1); if (bio != NULL) { req = PEM_read_bio_X509_REQ(bio, NULL, NULL, NULL); if (req != NULL) { *cert = X509_new(); if (*cert != NULL) { X509_set_subject_name(*cert, X509_REQ_get_subject_name(req)); if (signer != NULL) { X509_set_issuer_name(*cert, signer->cert_info->subject); } else { X509_set_issuer_name(*cert, X509_REQ_get_subject_name(req)); } X509_set_pubkey(*cert, X509_PUBKEY_get(req->req_info->pubkey)); ASN1_TIME_set((*cert)->cert_info->validity->notBefore, now); if ((life == 0) && (signer != NULL)) { (*cert)->cert_info->validity->notAfter = M_ASN1_TIME_dup(signer->cert_info->validity->notAfter); } else { ASN1_TIME_set((*cert)->cert_info->validity->notAfter, now + life); } X509_set_version(*cert, 2); /* set the serial number */ cm_log(3, "Setting certificate serial number \"%s\".\n", hexserial); serial = cm_store_serial_to_der(parent, hexserial); seriall = strlen(serial) / 2; seriald = talloc_size(parent, seriall); seriall = cm_store_hex_to_bin(serial, seriald, seriall); serialtmp = seriald; seriali = d2i_ASN1_INTEGER(NULL, &serialtmp, seriall); X509_set_serialNumber(*cert, seriali); #ifdef HAVE_UUID if (cm_prefs_populate_unique_id()) { if (cm_submit_uuid_new(uuid) == 0) { (*cert)->cert_info->subjectUID = M_ASN1_BIT_STRING_new(); if ((*cert)->cert_info->subjectUID != NULL) { ASN1_BIT_STRING_set((*cert)->cert_info->subjectUID, uuid, 16); } if (signer != NULL) { if (signer->cert_info->subjectUID != NULL) { (*cert)->cert_info->issuerUID = M_ASN1_BIT_STRING_dup(signer->cert_info->subjectUID); } } else { (*cert)->cert_info->issuerUID = M_ASN1_BIT_STRING_new(); if ((*cert)->cert_info->issuerUID != NULL) { ASN1_BIT_STRING_set((*cert)->cert_info->issuerUID, uuid, 16); } } } } #endif /* add basic constraints if needed */ (*cert)->cert_info->extensions = X509_REQ_get_extensions(req); i = X509_get_ext_by_NID(*cert, NID_basic_constraints, -1); if (i == -1) { basicl = strlen(CM_BASIC_CONSTRAINT_NOT_CA) / 2; basicd = talloc_size(parent, basicl); basicl = cm_store_hex_to_bin(CM_BASIC_CONSTRAINT_NOT_CA, basicd, basicl); basictmp = basicd; basic = d2i_BASIC_CONSTRAINTS(NULL, &basictmp, basicl); X509_add1_ext_i2d(*cert, NID_basic_constraints, basic, 1, 0); } /* copy the signer's subject key id to our authority key id */ if (signer != NULL) { skid = X509_get_ext_d2i(signer, NID_subject_key_identifier, &crit, NULL); memset(&akid, 0, sizeof(akid)); akid.keyid = skid; X509_add1_ext_i2d(*cert, NID_authority_key_identifier, &akid, crit, X509V3_ADD_REPLACE); /* make sure we have a subject key id */ i = X509_get_ext_by_NID(*cert, NID_subject_key_identifier, -1); if (i == -1) { if (X509_pubkey_digest(*cert, EVP_sha1(), md, &mdlen)) { skid = M_ASN1_OCTET_STRING_new(); M_ASN1_OCTET_STRING_set(skid, md, mdlen); X509_add1_ext_i2d(*cert, NID_subject_key_identifier, skid, 0, 0); } } } /* finish up */ if (signer_key != NULL) { X509_sign(*cert, signer_key, cm_prefs_ossl_hash()); status = CM_SUBMIT_STATUS_ISSUED; } else { status = CM_SUBMIT_STATUS_UNREACHABLE; } } else { cm_log(1, "Error building " "template certificate.\n"); status = CM_SUBMIT_STATUS_REJECTED; } } else { cm_log(1, "Error reading " "signing request.\n"); } BIO_free(bio); } else { cm_log(1, "Error parsing signing " "request.\n"); } return status; } void cm_submit_o_decrypt_envelope(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length) { struct cm_pin_cb_data cb_data; struct cm_submit_decrypt_envelope_args *args = decrypt_userdata; FILE *keyfp, *keyfp_next; BIO *out = NULL; EVP_PKEY *pkey = NULL, *pkey_next = NULL; PKCS7 *p7; char buf[LINE_MAX], *pin, *filename, *p; const unsigned char *u; long error, l; int result = 0; if ((args->entry->cm_key_next_marker != NULL) && (strlen(args->entry->cm_key_next_marker) > 0)) { filename = util_build_next_filename(args->entry->cm_key_storage_location, args->entry->cm_key_next_marker); keyfp_next = fopen(filename, "r"); free(filename); } else { keyfp_next = NULL; } keyfp = fopen(args->entry->cm_key_storage_location, "r"); util_o_init(); ERR_load_crypto_strings(); if (cm_pin_read_for_key(args->entry, &pin) != 0) { cm_log(1, "Error reading key encryption PIN.\n"); goto done; } memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = args->entry; cb_data.n_attempts = 0; if (keyfp != NULL) { pkey = PEM_read_PrivateKey(keyfp, NULL, cm_pin_read_for_key_ossl_cb, &cb_data); } if (keyfp_next != NULL) { pkey_next = PEM_read_PrivateKey(keyfp_next, NULL, cm_pin_read_for_key_ossl_cb, &cb_data); } if ((pkey == NULL) && (pkey_next == NULL)) { error = errno; cm_log(1, "Error reading private key '%s': %s.\n", args->entry->cm_key_storage_location, strerror(error)); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } goto done; } u = envelope; p7 = d2i_PKCS7(NULL, &u, length); if ((p7 == NULL) || !PKCS7_type_is_enveloped(p7)) { goto done; } out = BIO_new(BIO_s_mem()); if (out == NULL) { cm_log(1, "Out of memory.\n"); goto done; } if (pkey_next != NULL) { result = PKCS7_decrypt(p7, pkey_next, NULL, out, 0); if (result == 1) { goto done; } } result = PKCS7_decrypt(p7, pkey, NULL, out, 0); done: if (result == 1) { p = NULL; l = BIO_get_mem_data(out, &p); cm_log(1, "Succeeded in decrypting enveloped data.\n"); if (p != NULL) { *payload = malloc(l + 1); if (*payload != NULL) { memcpy(*payload, p, l + 1); (*payload)[l] = '\0'; *payload_length = l; } } } if (keyfp != NULL) { fclose(keyfp); } if (keyfp_next != NULL) { fclose(keyfp_next); } if (pkey != NULL) { EVP_PKEY_free(pkey); } if (pkey_next != NULL) { EVP_PKEY_free(pkey_next); } if (out != NULL) { BIO_free(out); } } certmonger-0.78.6/src/submit-so.c0000664000175000017500000001614112645513264013574 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "pin.h" #include "prefs.h" #include "prefs-o.h" #include "store.h" #include "store-int.h" #include "submit.h" #include "submit-int.h" #include "submit-o.h" #include "submit-u.h" #include "subproc.h" #include "tm.h" #include "util-o.h" static int cm_submit_so_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { FILE *keyfp, *pem; EVP_PKEY *pkey; X509 *cert; char *pin; int status; long error; char buf[LINE_MAX]; time_t lifedelta; long life; time_t now; char *filename; util_o_init(); ERR_load_crypto_strings(); status = 1; cert = NULL; if (ca->cm_ca_internal_force_issue_time) { now = ca->cm_ca_internal_issue_time; } else { now = cm_time(NULL); } if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { filename = util_build_next_filename(entry->cm_key_storage_location, entry->cm_key_next_marker); if (filename == NULL) { cm_log(1, "Error reading private key from " "\"%s\": %s.\n", filename, strerror(errno)); keyfp = NULL; } else { keyfp = fopen(filename, "r"); } } else { filename = entry->cm_key_storage_location; keyfp = fopen(filename, "r"); } if (cm_submit_u_delta_from_string(cm_prefs_selfsign_validity_period(), now, &lifedelta) == 0) { life = lifedelta; } else { if (cm_submit_u_delta_from_string(CM_DEFAULT_CERT_LIFETIME, now, &lifedelta) == 0) { life = lifedelta; } else { life = 365 * 24 * 60 * 60; } } if (keyfp != NULL) { pkey = EVP_PKEY_new(); if (pkey != NULL) { if (cm_pin_read_for_key(entry, &pin) == 0) { pkey = PEM_read_PrivateKey(keyfp, NULL, NULL, pin); if (pkey != NULL) { status = cm_submit_o_sign(ca, entry->cm_csr, NULL, pkey, ca->cm_ca_internal_serial, now, life, &cert); } else { cm_log(1, "Error reading private key from " "'%s': %s.\n", filename, strerror(errno)); } } else { cm_log(1, "Error reading PIN.\n"); } EVP_PKEY_free(pkey); } else { cm_log(1, "Internal error.\n"); } fclose(keyfp); } else { cm_log(1, "Error opening key file '%s' for reading: %s.\n", filename, strerror(errno)); } if (status == 0) { pem = fdopen(fd, "w"); if (pem != NULL) { if (PEM_write_X509(pem, cert) == 0) { cm_log(1, "Error serializing certificate.\n"); status = -1; } fclose(pem); } } while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } if (status != 0) { _exit(status); } return 0; } /* Save CA-specific identifier for our submitted request. */ static int cm_submit_so_save_ca_cookie(struct cm_submit_state *state) { talloc_free(state->entry->cm_ca_cookie); state->entry->cm_ca_cookie = talloc_strdup(state->entry, state->entry->cm_key_storage_location); if (state->entry->cm_ca_cookie == NULL) { cm_log(1, "Out of memory.\n"); return ENOMEM; } return 0; } /* Check if an attempt to submit has finished. */ static int cm_submit_so_ready(struct cm_submit_state *state) { return cm_subproc_ready(state->subproc); } /* Check if the certificate was issued. */ static int cm_submit_so_issued(struct cm_submit_state *state) { const char *msg; msg = cm_subproc_get_msg(state->subproc, NULL); if ((strstr(msg, "-----BEGIN CERTIFICATE-----") != NULL) && (strstr(msg, "-----END CERTIFICATE-----") != NULL)) { talloc_free(state->entry->cm_cert); state->entry->cm_cert = talloc_strdup(state->entry, msg); return 0; } return -1; } /* Check if the signing request was rejected. */ static int cm_submit_so_rejected(struct cm_submit_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != 2)) { return -1; /* it should never get rejected */ } return 0; } /* Check if we need SCEP messages. */ static int cm_submit_so_need_scep_messages(struct cm_submit_state *state) { return -1; /* nope */ } /* Check if we need to use a different key. */ static int cm_submit_so_need_rekey(struct cm_submit_state *state) { return -1; /* nope */ } /* Check if the CA was unreachable. */ static int cm_submit_so_unreachable(struct cm_submit_state *state) { return -1; /* uh, we're the CA */ } /* Check if the CA was unconfigured. */ static int cm_submit_so_unconfigured(struct cm_submit_state *state) { return -1; /* uh, we're the CA */ } /* Check if the CA is something we can ask for certificates. */ static int cm_submit_so_unsupported(struct cm_submit_state *state) { return -1; /* uh, we're the CA */ } /* Done talking to the CA. */ static void cm_submit_so_done(struct cm_submit_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start CSR submission using parameters stored in the entry. */ struct cm_submit_state * cm_submit_so_start(struct cm_store_ca *ca, struct cm_store_entry *entry) { struct cm_submit_state *state; if (entry->cm_key_storage_type != cm_key_storage_file) { cm_log(1, "Wrong submission method: only keys stored " "in files can be used.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->entry = entry; state->save_ca_cookie = cm_submit_so_save_ca_cookie; state->ready = cm_submit_so_ready; state->issued = cm_submit_so_issued; state->rejected = cm_submit_so_rejected; state->need_scep_messages = cm_submit_so_need_scep_messages; state->need_rekey = cm_submit_so_need_rekey; state->unreachable = cm_submit_so_unreachable; state->unconfigured = cm_submit_so_unconfigured; state->unsupported = cm_submit_so_unsupported; state->done = cm_submit_so_done; state->delay = -1; state->subproc = cm_subproc_start(cm_submit_so_main, state, ca, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { entry->cm_key_next_requested_count++; } else { entry->cm_key_requested_count++; } } return state; } certmonger-0.78.6/src/scepgen-o.c0000664000175000017500000005611712645513264013541 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certext.h" #include "keygen.h" #include "log.h" #include "pin.h" #include "pkcs7.h" #include "prefs-o.h" #include "scep.h" #include "scep-o.h" #include "scepgen.h" #include "scepgen-int.h" #include "store.h" #include "store-int.h" #include "submit-u.h" #include "subproc.h" #include "util-o.h" struct cm_scepgen_state { struct cm_scepgen_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; static EVP_PKEY * key_from_file(const char *filename, struct cm_store_entry *entry) { char buf[LINE_MAX]; struct cm_pin_cb_data cb_data; EVP_PKEY *pkey; FILE *keyfp; char *pin; long error; keyfp = fopen(filename, "r"); if (keyfp == NULL) { if (errno != ENOENT) { cm_log(1, "Error opening key file \"%s\" " "for reading: %s.\n", filename, strerror(errno)); } _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Internal error reading key encryption PIN.\n"); _exit(CM_SUB_STATUS_ERROR_AUTH); } memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; pkey = PEM_read_PrivateKey(keyfp, NULL, cm_pin_read_for_key_ossl_cb, &cb_data); if (pkey == NULL) { error = errno; cm_log(1, "Error reading private key '%s': %s.\n", filename, strerror(error)); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } _exit(CM_SUB_STATUS_ERROR_AUTH); /* XXX */ } else { if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to read private " "key '%s', though one was provided. " "Treating this as an error.\n", filename); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } _exit(CM_SUB_STATUS_ERROR_AUTH); /* XXX */ } } return pkey; } static X509 * cert_from_pem(char *pem, struct cm_store_entry *entry) { BIO *in; X509 *cert = NULL; if ((pem != NULL) && (strlen(pem) > 0)) { in = BIO_new_mem_buf(pem, -1); if (in == NULL) { cm_log(1, "Out of memory.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } cert = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (cert == NULL) { cm_log(1, "Error parsing certificate \"%s\".\n", pem); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } return cert; } return NULL; } static int cert_cmp(const void *a, const void *b) { X509 * const *x, * const *y; x = a; y = b; return X509_cmp(*x, *y); } static STACK_OF(X509) * certs_from_nickcerts(struct cm_nickcert **list) { BIO *in; X509 *cert = NULL; STACK_OF(X509) *sk = NULL; struct cm_nickcert *this; int i; for (i = 0; (list != NULL) && (list[i] != NULL); i++) { this = list[i]; if ((this->cm_cert != NULL) && (strlen(this->cm_cert) > 0)) { in = BIO_new_mem_buf(this->cm_cert, -1); if (in == NULL) { cm_log(1, "Out of memory.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } cert = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (cert == NULL) { cm_log(1, "Error parsing certificate.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (sk == NULL) { sk = sk_X509_new(cert_cmp); if (sk == NULL) { cm_log(1, "Out of memory.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } } sk_X509_push(sk, cert); } } return sk; } char * cm_scepgen_o_b64_from_p7(void *parent, PKCS7 *p7) { unsigned char *u, *p; char *ret; int len; len = i2d_PKCS7(p7, NULL); p = malloc(len); if (p == NULL) { return NULL; } u = p; if (i2d_PKCS7(p7, &u) != len) { free(p); return NULL; } ret = cm_store_base64_from_bin(parent, p, len); free(p); return ret; } static void set_pkimessage_attrs(PKCS7 *p7, const char *tx, const char *msgtype, const char *pkistatus, const char *failinfo, const unsigned char *sender_nonce, size_t sender_nonce_length, const unsigned char *recipient_nonce, size_t recipient_nonce_length) { PKCS7_SIGNER_INFO *sinfo; ASN1_OCTET_STRING *s, *r; ASN1_PRINTABLESTRING *t, *m, *p, *f; sinfo = sk_PKCS7_SIGNER_INFO_value(p7->d.sign->signer_info, 0); if (tx != NULL) { cm_log(1, "Setting transaction ID \"%s\".\n", tx); t = M_ASN1_PRINTABLE_new(); if (t == NULL) { return; } ASN1_STRING_set(t, tx, strlen(tx)); PKCS7_add_signed_attribute(sinfo, cm_scep_o_get_tx_nid(), V_ASN1_PRINTABLESTRING, t); } if (msgtype != NULL) { cm_log(1, "Setting message type \"%s\".\n", msgtype); m = M_ASN1_PRINTABLE_new(); if (m == NULL) { return; } ASN1_STRING_set(m, msgtype, strlen(msgtype)); PKCS7_add_signed_attribute(sinfo, cm_scep_o_get_msgtype_nid(), V_ASN1_PRINTABLESTRING, m); } if (pkistatus != NULL) { cm_log(1, "Setting pkiStatus \"%s\".\n", pkistatus); p = M_ASN1_PRINTABLE_new(); if (p == NULL) { return; } ASN1_STRING_set(p, pkistatus, strlen(pkistatus)); PKCS7_add_signed_attribute(sinfo, cm_scep_o_get_pkistatus_nid(), V_ASN1_PRINTABLESTRING, p); } if (failinfo != NULL) { cm_log(1, "Setting failInfo \"%s\".\n", failinfo); f = M_ASN1_PRINTABLE_new(); if (f == NULL) { return; } ASN1_STRING_set(f, failinfo, strlen(failinfo)); PKCS7_add_signed_attribute(sinfo, cm_scep_o_get_failinfo_nid(), V_ASN1_PRINTABLESTRING, f); } if (sender_nonce != NULL) { cm_log(1, "Setting sender nonce.\n"); s = ASN1_OCTET_STRING_new(); if (s == NULL) { return; } M_ASN1_OCTET_STRING_set(s, sender_nonce, sender_nonce_length); PKCS7_add_signed_attribute(sinfo, cm_scep_o_get_sender_nonce_nid(), V_ASN1_OCTET_STRING, s); } if (recipient_nonce != NULL) { cm_log(1, "Setting recipient nonce.\n"); r = ASN1_OCTET_STRING_new(); if (r == NULL) { return; } M_ASN1_OCTET_STRING_set(r, recipient_nonce, recipient_nonce_length); PKCS7_add_signed_attribute(sinfo, cm_scep_o_get_recipient_nonce_nid(), V_ASN1_OCTET_STRING, r); } PKCS7_add_signed_attribute(sinfo, NID_pkcs9_contentType, V_ASN1_OBJECT, OBJ_nid2obj(NID_pkcs7_data)); } static PKCS7 * build_pkimessage(EVP_PKEY *key, X509 *signer, STACK_OF(X509) *certs, enum cm_prefs_digest pref_digest, unsigned char *data, size_t data_length, const char *tx, const char *msgtype, const char *pkistatus, const char *failinfo, const unsigned char *sender_nonce, size_t sender_nonce_length, const unsigned char *recipient_nonce, size_t recipient_nonce_length) { BIO *in, *out; PKCS7 *ret; PKCS7_SIGNER_INFO *p7i; X509_ALGOR *digests; ASN1_OBJECT *digest; long error; char buf[LINE_MAX]; int flags = PKCS7_BINARY | PKCS7_NOSMIMECAP | PKCS7_NOVERIFY; in = BIO_new_mem_buf(data, data_length); if (in == NULL) { cm_log(1, "Out of memory.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } ret = PKCS7_sign(signer, key, certs, in, flags); if (ret == NULL) { cm_log(1, "Error signing data.\n"); goto errors; } BIO_free(in); /* Set the digest to use for signing. */ if (sk_PKCS7_SIGNER_INFO_num(ret->d.sign->signer_info) != 1) { cm_log(1, "Error signing data: %d signers.\n", sk_PKCS7_SIGNER_INFO_num(ret->d.sign->signer_info)); goto errors; } p7i = sk_PKCS7_SIGNER_INFO_value(ret->d.sign->signer_info, 0); digest = NULL; switch (pref_digest) { case cm_prefs_sha256: digest = OBJ_nid2obj(NID_sha256); break; case cm_prefs_sha384: digest = OBJ_nid2obj(NID_sha384); break; case cm_prefs_sha512: digest = OBJ_nid2obj(NID_sha512); break; case cm_prefs_sha1: digest = OBJ_nid2obj(NID_sha1); break; case cm_prefs_md5: digest = OBJ_nid2obj(NID_md5); break; } if ((digest != NULL) && (p7i->digest_alg != NULL)) { ASN1_OBJECT_free(p7i->digest_alg->algorithm); p7i->digest_alg->algorithm = OBJ_dup(digest); digests = sk_X509_ALGOR_pop(ret->d.sign->md_algs); if (digests != NULL) { X509_ALGOR_free(digests); } sk_X509_ALGOR_push(ret->d.sign->md_algs, X509_ALGOR_dup(p7i->digest_alg)); } /* Set the SCEP parameters. */ set_pkimessage_attrs(ret, tx, msgtype, pkistatus, failinfo, sender_nonce, sender_nonce_length, recipient_nonce, recipient_nonce_length); /* We'd use PKCS7_SIGNER_INFO_sign() here, but it's relatively new, and * we want to build on versions of OpenSSL that didn't have it. */ PKCS7_content_new(ret, NID_pkcs7_data); out = PKCS7_dataInit(ret, NULL); if (out == NULL) { cm_log(1, "Error signing data.\n"); goto errors; } BIO_write(out, data, data_length); PKCS7_dataFinal(ret, out); cm_log(1, "Signed data.\n"); return ret; errors: while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } _exit(CM_SUB_STATUS_INTERNAL_ERROR); } void cm_scepgen_o_cooked(struct cm_store_ca *ca, struct cm_store_entry *entry, unsigned char *nonce, size_t nonce_length, EVP_PKEY *old_pkey, EVP_PKEY *new_pkey, PKCS7 **csr_new, PKCS7 **csr_old, PKCS7 **ias_new, PKCS7 **ias_old) { char buf[LINE_MAX]; unsigned char *new_ias, *old_ias, *csr; size_t new_ias_length, old_ias_length, csr_length; X509 *old_cert, *new_cert = NULL; STACK_OF(X509) *chain = NULL; EVP_PKEY *pubkey; char *pem; const char *capability; int i; long error; enum cm_prefs_cipher cipher; enum cm_prefs_digest digest, pref_digest; util_o_init(); ERR_load_crypto_strings(); if (RAND_status() != 1) { cm_log(1, "PRNG not seeded for generating key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (RAND_pseudo_bytes(nonce, nonce_length) == -1) { cm_log(1, "PRNG unable to generate nonce.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (entry->cm_cert != NULL) { old_cert = cert_from_pem(entry->cm_cert, entry); } else { old_cert = NULL; } pem = cm_submit_u_pem_from_base64("CERTIFICATE", 0, entry->cm_minicert); if (pem == NULL) { cm_log(1, "Out of memory.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } new_cert = cert_from_pem(pem, entry); if (new_cert == NULL) { while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } free(pem); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } cipher = cm_prefs_des; for (i = 0; (ca->cm_ca_capabilities != NULL) && (ca->cm_ca_capabilities[i] != NULL); i++) { capability = ca->cm_ca_capabilities[i]; if (strcmp(capability, "DES3") == 0) { cm_log(1, "Server supports DES3, using that.\n"); cipher = cm_prefs_des3; break; } } if (cipher == cm_prefs_des) { cm_log(1, "Server does not support DES3, using DES.\n"); } pref_digest = cm_prefs_preferred_digest(); digest = cm_prefs_md5; for (i = 0; (ca->cm_ca_capabilities != NULL) && (ca->cm_ca_capabilities[i] != NULL); i++) { capability = ca->cm_ca_capabilities[i]; if ((pref_digest == cm_prefs_sha1) && (strcmp(capability, "SHA-1") == 0)) { cm_log(1, "Server supports SHA-1, using that.\n"); digest = cm_prefs_sha1; break; } if ((pref_digest == cm_prefs_sha256) && (strcmp(capability, "SHA-256") == 0)) { cm_log(1, "Server supports SHA-256, using that.\n"); digest = cm_prefs_sha256; break; } if ((pref_digest == cm_prefs_sha512) && (strcmp(capability, "SHA-512") == 0)) { cm_log(1, "Server supports SHA-512, using that.\n"); digest = cm_prefs_sha512; break; } } if (digest == cm_prefs_md5) { cm_log(1, "Server does not support better digests, using MD5.\n"); } if (old_cert != NULL) { if (cm_pkcs7_envelope_ias(ca->cm_ca_encryption_cert, cipher, ca->cm_ca_encryption_issuer_cert, entry->cm_cert, &old_ias, &old_ias_length) != 0) { cm_log(1, "Error generating enveloped issuer-and-subject.\n"); free(pem); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } } else { old_ias = NULL; old_ias_length = 0; } if (cm_pkcs7_envelope_ias(ca->cm_ca_encryption_cert, cipher, ca->cm_ca_encryption_issuer_cert, pem, &new_ias, &new_ias_length) != 0) { cm_log(1, "Error generating enveloped issuer-and-subject.\n"); free(pem); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } free(pem); if (cm_pkcs7_envelope_csr(ca->cm_ca_encryption_cert, cipher, entry->cm_csr, &csr, &csr_length) != 0) { cm_log(1, "Error generating enveloped CSR.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } chain = certs_from_nickcerts(entry->cm_cert_chain); if (old_cert != NULL) { /* Sign the data using the previously-issued certificate and * the matching key. */ pubkey = X509_PUBKEY_get(old_cert->cert_info->key); X509_PUBKEY_set(&old_cert->cert_info->key, old_pkey); cm_log(1, "Generating PKCSREQ pkiMessage.\n"); *csr_old = build_pkimessage(old_pkey, old_cert, chain, digest, csr, csr_length, entry->cm_scep_tx, SCEP_MSGTYPE_PKCSREQ, NULL, NULL, nonce, nonce_length, NULL, 0); cm_log(1, "Generating GetCertInitial pkiMessage.\n"); *ias_old = build_pkimessage(old_pkey, old_cert, chain, digest, old_ias, old_ias_length, entry->cm_scep_tx, SCEP_MSGTYPE_GETCERTINITIAL, NULL, NULL, nonce, nonce_length, NULL, 0); cm_log(1, "Signing using previously-issued key and cert.\n"); X509_PUBKEY_set(&old_cert->cert_info->key, pubkey); X509_free(old_cert); } else { if (new_pkey == NULL) { /* Sign the data using the old key and the mini certificate, * since we may not have a previously-issued certificate (and * if we do, we did that in another code path. */ pubkey = X509_PUBKEY_get(new_cert->cert_info->key); X509_PUBKEY_set(&new_cert->cert_info->key, old_pkey); cm_log(1, "Generating PKCSREQ pkiMessage.\n"); *csr_old = build_pkimessage(old_pkey, new_cert, chain, digest, csr, csr_length, entry->cm_scep_tx, SCEP_MSGTYPE_PKCSREQ, NULL, NULL, nonce, nonce_length, NULL, 0); cm_log(1, "Generating GetCertInitial pkiMessage.\n"); *ias_old = build_pkimessage(old_pkey, new_cert, chain, digest, new_ias, new_ias_length, entry->cm_scep_tx, SCEP_MSGTYPE_GETCERTINITIAL, NULL, NULL, nonce, nonce_length, NULL, 0); cm_log(1, "Signing using old key.\n"); X509_PUBKEY_set(&new_cert->cert_info->key, pubkey); } else { /* No cert, and the minicert matches the new key. */ *csr_old = NULL; *ias_old = NULL; } } if (new_pkey != NULL) { /* Sign the data using the new key and mini certificate, since * any previously-issued certificate won't match. */ pubkey = X509_PUBKEY_get(new_cert->cert_info->key); X509_PUBKEY_set(&new_cert->cert_info->key, new_pkey); cm_log(1, "Generating rekeying PKCSREQ pkiMessage.\n"); *csr_new = build_pkimessage(new_pkey, new_cert, chain, digest, csr, csr_length, entry->cm_scep_tx, SCEP_MSGTYPE_PKCSREQ, NULL, NULL, nonce, nonce_length, NULL, 0); cm_log(1, "Generating rekeying GetCertInitial pkiMessage.\n"); *ias_new = build_pkimessage(new_pkey, new_cert, chain, digest, new_ias, new_ias_length, entry->cm_scep_tx, SCEP_MSGTYPE_GETCERTINITIAL, NULL, NULL, nonce, nonce_length, NULL, 0); cm_log(1, "Signing using new key.\n"); X509_PUBKEY_set(&new_cert->cert_info->key, pubkey); } else { *csr_new = NULL; *ias_new = NULL; } X509_free(new_cert); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } } static int cm_scepgen_o_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { unsigned char nonce[16]; PKCS7 *csr_new, *csr_old, *ias_new, *ias_old; FILE *status; EVP_PKEY *old_pkey, *new_pkey = NULL; char *filename, *p; status = fdopen(fd, "w"); if (status == NULL) { _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (ca->cm_ca_encryption_cert == NULL) { cm_log(1, "Can't generate new SCEP request data without " "the RA/CA encryption certificate.\n"); _exit(CM_SUB_STATUS_NEED_SCEP_DATA); } old_pkey = key_from_file(entry->cm_key_storage_location, entry); if (old_pkey == NULL) { cm_log(1, "Error reading key from file \"%s\".\n", entry->cm_key_storage_location); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { filename = util_build_next_filename(entry->cm_key_storage_location, entry->cm_key_next_marker); if (filename == NULL) { cm_log(1, "Error opening key file \"%s\" " "for reading: %s.\n", filename, strerror(errno)); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } new_pkey = key_from_file(filename, entry); if (new_pkey == NULL) { cm_log(1, "Error reading key from file \"%s\".\n", filename); free(filename); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } free(filename); } else { new_pkey = NULL; } if ((EVP_PKEY_type(old_pkey->type) != EVP_PKEY_RSA) || ((new_pkey != NULL) && (EVP_PKEY_type(new_pkey->type) != EVP_PKEY_RSA))) { cm_log(1, "Keys aren't RSA. They won't work with SCEP.\n"); _exit(CM_SUB_STATUS_ERROR_KEY_TYPE); } cm_scepgen_o_cooked(ca, entry, nonce, sizeof(nonce), old_pkey, new_pkey, &csr_new, &csr_old, &ias_new, &ias_old); p = cm_store_base64_from_bin(NULL, nonce, sizeof(nonce)); fprintf(status, "%s:", p ? p : ""); p = csr_old ? cm_scepgen_o_b64_from_p7(NULL, csr_old) : NULL; fprintf(status, "%s:", p ? p : ""); p = ias_old ? cm_scepgen_o_b64_from_p7(NULL, ias_old) : NULL; fprintf(status, "%s:", p ? p : ""); p = csr_new ? cm_scepgen_o_b64_from_p7(NULL, csr_new) : NULL; fprintf(status, "%s:", p ? p : ""); p = ias_new ? cm_scepgen_o_b64_from_p7(NULL, ias_new) : NULL; fprintf(status, "%s:\n", p ? p : ""); fclose(status); if (new_pkey != NULL) { EVP_PKEY_free(new_pkey); } EVP_PKEY_free(old_pkey); _exit(0); } /* Check if a SCEP is ready. */ static int cm_scepgen_o_ready(struct cm_scepgen_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_scepgen_o_get_fd(struct cm_scepgen_state *state) { return cm_subproc_get_fd(state->subproc); } static char * make_pem(void *parent, const char *p, size_t len) { char *s, *t; s = talloc_strndup(parent, p, len); if (s != NULL) { t = cm_submit_u_pem_from_base64("PKCS7", 0, s); if (t != NULL) { talloc_free(s); s = talloc_strdup(parent, t); free(t); } } return s; } /* Save the SCEP data to the entry. */ static int cm_scepgen_o_save_scep(struct cm_scepgen_state *state) { int status; const char *p, *q; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != 0)) { return -1; } talloc_free(state->entry->cm_scep_nonce); talloc_free(state->entry->cm_scep_req); talloc_free(state->entry->cm_scep_gic); talloc_free(state->entry->cm_scep_req_next); talloc_free(state->entry->cm_scep_gic_next); p = cm_subproc_get_msg(state->subproc, NULL); q = p + strcspn(p, ":"); state->entry->cm_scep_nonce = talloc_strndup(state->entry, p, q - p); state->entry->cm_scep_req = NULL; state->entry->cm_scep_gic = NULL; state->entry->cm_scep_req_next = NULL; state->entry->cm_scep_gic_next = NULL; if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_req = make_pem(state->entry, p, q - p); } } if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_gic = make_pem(state->entry, p, q - p); } } if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_req_next = make_pem(state->entry, p, q - p); } } if (*q != '\0') { p = ++q; q = p + strcspn(p, ":"); if (q > p) { state->entry->cm_scep_gic_next = make_pem(state->entry, p, q - p); } } return 0; } /* Check if we need a PIN (or a new PIN) to access the key information. */ static int cm_scepgen_o_need_pin(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to access the key information. */ static int cm_scepgen_o_need_token(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Check if we need information about the CA in order to generate data. */ static int cm_scepgen_o_need_encryption_certs(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_NEED_SCEP_DATA)) { return 0; } return -1; } /* Check if we need a different key type (which is probably RSA). */ static int cm_scepgen_o_need_different_key_type(struct cm_scepgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_KEY_TYPE)) { return 0; } return -1; } /* Clean up after SCEP generation. */ static void cm_scepgen_o_done(struct cm_scepgen_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start SCEP request data generation using template information in the entry. * */ struct cm_scepgen_state * cm_scepgen_o_start(struct cm_store_ca *ca, struct cm_store_entry *entry) { struct cm_scepgen_state *state; state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = &cm_scepgen_o_ready; state->pvt.get_fd = &cm_scepgen_o_get_fd; state->pvt.save_scep = &cm_scepgen_o_save_scep; state->pvt.need_pin = &cm_scepgen_o_need_pin; state->pvt.need_token = &cm_scepgen_o_need_token; state->pvt.need_encryption_certs = &cm_scepgen_o_need_encryption_certs; state->pvt.need_different_key_type = &cm_scepgen_o_need_different_key_type; state->pvt.done = &cm_scepgen_o_done; state->entry = entry; state->subproc = cm_subproc_start(cm_scepgen_o_main, state, ca, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/scep-o.h0000664000175000017500000000171412645513264013045 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmscepo_h #define cmscepo_h int cm_scep_o_get_msgtype_nid(void); int cm_scep_o_get_pkistatus_nid(void); int cm_scep_o_get_failinfo_nid(void); int cm_scep_o_get_sender_nonce_nid(void); int cm_scep_o_get_recipient_nonce_nid(void); int cm_scep_o_get_tx_nid(void); #endif certmonger-0.78.6/src/scep-o.c0000664000175000017500000000353612645513264013044 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include "scep-o.h" int cm_scep_o_get_msgtype_nid(void) { static int nid = -1; if (nid == -1) { nid = OBJ_create("2.16.840.1.113733.1.9.2", "scep-messageType", "id-scep-messageType"); } return nid; } int cm_scep_o_get_pkistatus_nid(void) { static int nid = -1; if (nid == -1) { nid = OBJ_create("2.16.840.1.113733.1.9.3", "scep-pkiStatus", "id-scep-pkiStatus"); } return nid; } int cm_scep_o_get_failinfo_nid(void) { static int nid = -1; if (nid == -1) { nid = OBJ_create("2.16.840.1.113733.1.9.4", "scep-failInfo", "id-scep-failInfo"); } return nid; } int cm_scep_o_get_sender_nonce_nid(void) { static int nid = -1; if (nid == -1) { nid = OBJ_create("2.16.840.1.113733.1.9.5", "scep-senderNonce", "id-scep-senderNonce"); } return nid; } int cm_scep_o_get_recipient_nonce_nid(void) { static int nid = -1; if (nid == -1) { nid = OBJ_create("2.16.840.1.113733.1.9.6", "scep-recipientNonce", "id-scep-recipientNonce"); } return nid; } int cm_scep_o_get_tx_nid(void) { static int nid = -1; if (nid == -1) { nid = OBJ_create("2.16.840.1.113733.1.9.7", "scep-transId", "id-scep-transId"); } return nid; } certmonger-0.78.6/src/prefs-o.h0000664000175000017500000000171712645513264013235 00000000000000/* * Copyright (C) 2010 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmprefso_h #define cmprefso_h const EVP_CIPHER *cm_prefs_ossl_cipher(void); const EVP_CIPHER *cm_prefs_ossl_cipher_by_pref(enum cm_prefs_cipher cipher); const EVP_MD *cm_prefs_ossl_hash(void); const EVP_MD *cm_prefs_ossl_hash_by_pref(enum cm_prefs_digest digest); #endif certmonger-0.78.6/src/prefs-o.c0000664000175000017500000000343112645513264013223 00000000000000/* * Copyright (C) 2010 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include "prefs.h" #include "prefs.h" #include "prefs-o.h" #include "util-o.h" const EVP_MD * cm_prefs_ossl_hash_by_pref(enum cm_prefs_digest digest) { switch (digest) { case cm_prefs_md5: return EVP_md5(); break; case cm_prefs_sha1: return EVP_sha1(); break; case cm_prefs_sha256: return EVP_sha256(); break; case cm_prefs_sha384: return EVP_sha384(); break; case cm_prefs_sha512: return EVP_sha512(); break; } return EVP_sha256(); } const EVP_MD * cm_prefs_ossl_hash(void) { return cm_prefs_ossl_hash_by_pref(cm_prefs_preferred_digest()); } const EVP_CIPHER * cm_prefs_ossl_cipher_by_pref(enum cm_prefs_cipher cipher) { switch (cipher) { case cm_prefs_des: return EVP_des_cbc(); break; case cm_prefs_des3: return EVP_des_ede3_cbc(); break; case cm_prefs_aes128: return EVP_aes_128_cbc(); break; case cm_prefs_aes256: return EVP_aes_256_cbc(); break; } return EVP_aes_128_cbc(); } const EVP_CIPHER * cm_prefs_ossl_cipher(void) { return cm_prefs_ossl_cipher_by_pref(cm_prefs_preferred_cipher()); } certmonger-0.78.6/src/pkcs7.h0000664000175000017500000000510412645513264012703 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #ifndef cmpkcs7_h #define cmpkcs7_h #include "prefs.h" #define CM_PKCS7_LEAF_PREFER_ENCRYPT (1 << 0) int cm_pkcs7_parsev(unsigned int flags, void *parent, char **certleaf, char **certtop, char ***certothers, void (*decrypt_envelope)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length), void *decrypt_userdata, int n_buffers, const unsigned char **buffers, size_t *lengths); int cm_pkcs7_parse(unsigned int flags, void *parent, char **certleaf, char **certtop, char ***certothers, void (*decrypt_envelope)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length), void *decrypt_userdata, const unsigned char *buffer, size_t length, ...); int cm_pkcs7_envelope_data(char *encryption_cert, enum cm_prefs_cipher cipher, unsigned char *data, size_t dlength, unsigned char **enveloped, size_t *length); int cm_pkcs7_envelope_csr(char *encryption_cert, enum cm_prefs_cipher cipher, char *csr, unsigned char **enveloped, size_t *length); int cm_pkcs7_generate_ias(char *cacert, char *minicert, unsigned char **ias, size_t *length); int cm_pkcs7_envelope_ias(char *encryption_cert, enum cm_prefs_cipher cipher, char *cacert, char *minicert, unsigned char **enveloped, size_t *length); int cm_pkcs7_verify_signed(unsigned char *data, size_t length, const char **roots, const char **othercerts, int expected_content_type, void *parent, char **digest, char **tx, char **msgtype, char **pkistatus, char **failinfo, unsigned char **sender_nonce, size_t *sender_nonce_length, unsigned char **recipient_nonce, size_t *recipient_nonce_length, unsigned char **payload, size_t *payload_length); #endif certmonger-0.78.6/src/pkcs7.c0000664000175000017500000007102712645513264012705 00000000000000/* * Copyright (C) 2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "log.h" #include "pkcs7.h" #include "prefs.h" #include "prefs-o.h" #include "scep-o.h" #include "store.h" #include "submit-u.h" #ifdef ENABLE_NLS #include #define _(_text) dgettext(PACKAGE, _text) #else #define _(_text) (_text) #endif /* Return 0 if we think "issuer" could have issued "issued", which includes * self-signing. */ static int issuerissued(X509 *issuer, X509 *issued) { GENERAL_NAME *gn; int i; if ((issuer->skid != NULL) && (issued->akid != NULL) && (issued->akid->keyid != NULL)) { if (M_ASN1_OCTET_STRING_cmp(issuer->skid, issued->akid->keyid) == 0) { return 0; } } if ((issued->akid != NULL) && (issued->akid->issuer != NULL) && (issued->akid->serial != NULL)) { for (i = 0; i < sk_GENERAL_NAME_num(issued->akid->issuer); i++) { gn = sk_GENERAL_NAME_value(issued->akid->issuer, i); if ((gn->type == GEN_DIRNAME) && (X509_NAME_cmp(issuer->cert_info->issuer, gn->d.dirn) == 0) && (M_ASN1_INTEGER_cmp(issuer->cert_info->serialNumber, issued->akid->serial) == 0)) { return 0; } } } return X509_name_cmp(issuer->cert_info->subject, issued->cert_info->issuer); } /* Render the certificate as a PEM string. */ static char * pemx509(void *parent, X509 *x) { char *b64, *pem, *ret; unsigned char *der, *p; ssize_t length; length = i2d_X509(x, NULL); if (length < 0) { return NULL; } der = talloc_size(parent, length); if (der == NULL) { return NULL; } p = (unsigned char *) der; if (i2d_X509(x, &p) < 0) { return NULL; } b64 = cm_store_base64_from_bin(parent, der, length); if (b64 == NULL) { return NULL; } pem = cm_submit_u_pem_from_base64("CERTIFICATE", 0, b64); if (pem == NULL) { return NULL; } ret = talloc_strdup(parent, pem); free(pem); return ret; } /* Wrap the comparison function to handle the callback indirection. */ static int cert_cmp(const void *a, const void *b) { X509 * const *x, * const *y; x = a; y = b; return X509_cmp(*x, *y); } /* Return 0 if "candidate" is more like what we're looking for than "current". */ static int betterleaf(X509 *candidate, X509 *current, unsigned int flags) { if (flags & CM_PKCS7_LEAF_PREFER_ENCRYPT) { if (((candidate->ex_kusage & (KU_KEY_ENCIPHERMENT | KU_DATA_ENCIPHERMENT)) != 0) && ((current->ex_kusage & (KU_KEY_ENCIPHERMENT | KU_DATA_ENCIPHERMENT)) == 0)) { return 0; } } return -1; } static int bettertop(X509 *candidate, X509 *current, unsigned int flags) { return -1; } /* Given either a single certificate or a PKCS#7 signed-data message, pull out * the end-entity certificate and, if there is one, the top-level certificate, * and if there are any others, any others. */ static void cm_pkcs7_parse_buffer(const unsigned char *buffer, size_t length, void (*decrypt_envelope)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length), void *decrypt_userdata, STACK_OF(X509) *sk); static void cm_pkcs7_parse_pem(const char *pem, size_t length, void (*decrypt_envelope)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length), void *decrypt_userdata, STACK_OF(X509) *sk) { const char *p, *q; unsigned char *buf; size_t len; int decoded; if (strncmp(pem, "-----BEGIN", 10) == 0) { p = pem; p += strcspn(p, "\r\n"); p += strspn(p, "\r\n"); q = p; while (q < pem + length) { q = q + strcspn(q, "\r\n"); q += strspn(q, "\r\n"); if (strncmp(q, "-----END", 8) == 0) { len = q - p; buf = malloc(len); if (buf != NULL) { decoded = cm_store_base64_to_bin(p, q - p, buf, len); if (decoded > 0) { cm_pkcs7_parse_buffer(buf, decoded, decrypt_envelope, decrypt_userdata, sk); } free(buf); } } } } } static void cm_pkcs7_parse_buffer(const unsigned char *buffer, size_t length, void (*decrypt_envelope)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length), void *decrypt_userdata, STACK_OF(X509) *sk) { PKCS7 *p7; X509 *x; const unsigned char *p; char *s, *sp, *sq; unsigned char *enveloped = NULL; size_t enveloped_length = 0; int i; if (length == 0) { return; } if (length == (size_t) -1) { length = strlen((const char *) buffer); } /* First, try to parse as a PKCS#7 signed or enveloped data item. */ p = buffer; p7 = d2i_PKCS7(NULL, &p, length); if ((p7 != NULL) && (p == buffer + length)) { /* Is it a signed-data item? */ if (PKCS7_type_is_signed(p7)) { for (i = 0; i < sk_X509_num(p7->d.sign->cert); i++) { x = sk_X509_value(p7->d.sign->cert, i); if (sk_X509_find(sk, x) < 0) { sk_X509_push(sk, X509_dup(x)); } } } else /* Is it an enveloped-data item that we can try to decrypt? */ if (PKCS7_type_is_enveloped(p7) && (decrypt_envelope != NULL)) { decrypt_envelope(buffer, length, decrypt_userdata, &enveloped, &enveloped_length); if ((enveloped != NULL) && (enveloped_length > 0)) { /* Parse out the payload. */ cm_pkcs7_parse_buffer(enveloped, enveloped_length, decrypt_envelope, decrypt_userdata, sk); } } PKCS7_free(p7); } else { /* Not PKCS#7? Try to parse as a plain certificate. */ p = buffer; x = d2i_X509(NULL, &p, length); if ((x != NULL) && (p == buffer + length)) { if (sk_X509_find(sk, x) < 0) { sk_X509_push(sk, X509_dup(x)); } X509_free(x); } else { /* Not PKCS#7 binary data that we recognized, and not a * binary certificate. Maybe it's a PEM-formatted * version of one of those. Check if it's all ASCII. */ for (p = buffer; p < buffer + length; p++) { if ((*p & 0x80) != 0) { break; } } if (p == buffer + length) { s = malloc(length + 1); if (s == NULL) { return; } memcpy(s, buffer, length); s[length] = '\0'; sp = s; while ((sp = strstr(sp, "-----BEGIN")) != NULL) { sq = strstr(sp, "-----END"); if (sq != NULL) { sq += strcspn(sq, "\r\n"); sq += strspn(sq, "\r\n"); cm_pkcs7_parse_pem(sp, sq - sp, decrypt_envelope, decrypt_userdata, sk); sp = sq; } } free(s); } } } } int cm_pkcs7_parsev(unsigned int flags, void *parent, char **certleaf, char **certtop, char ***certothers, void (*decrypt_envelope)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length), void *decrypt_userdata, int n_buffers, const unsigned char **buffer, size_t *length) { X509 *x = NULL, *a, *b, **certs; STACK_OF(X509) *sk; char *cleaf = NULL, *ctop = NULL, **cothers = NULL; int leaf, top, n_certs, sorted, i, j; if (certleaf != NULL) { *certleaf = NULL; } if (certothers != NULL) { *certothers = NULL; } if (certtop != NULL) { *certtop = NULL; } sk = sk_X509_new(cert_cmp); if (sk == NULL) { return -1; } for (i = 0; i < n_buffers; i++) { cm_pkcs7_parse_buffer(buffer[i], length[i], decrypt_envelope, decrypt_userdata, sk); } /* Count the number of certificates. */ n_certs = sk_X509_num(sk); /* Find one that didn't issue any of the others. */ leaf = -1; for (i = 0; i < n_certs; i++) { /* Start with a candidate. */ a = sk_X509_value(sk, i); /* Look for any that it issued. */ for (j = 0; j < n_certs; j++) { if (j == i) { continue; } b = sk_X509_value(sk, j); if (issuerissued(a, b) == 0) { break; } } /* If it didn't issue any, then we found it. */ if (j == sk_X509_num(sk)) { if (leaf == -1) { leaf = i; } else { /* Or we may have found a better one. */ if (betterleaf(a, sk_X509_value(sk, leaf), flags) == 0) { leaf = i; } } } } /* Find one that isn't issued by any of the others. */ top = -1; for (i = 0; i < n_certs; i++) { if (i == leaf) { continue; } /* Start with a candidate. */ a = sk_X509_value(sk, i); /* Look for any that issued it. */ for (j = 0; j < n_certs; j++) { if (j == i) { continue; } b = sk_X509_value(sk, j); if (issuerissued(b, a) == 0) { break; } } /* If we found none, then it's the top. */ if (j == sk_X509_num(sk)) { if (top == -1) { top = i; } else { /* Or we may have found a better one. */ if (bettertop(a, sk_X509_value(sk, top), flags) == 0) { top = i; } } } } /* Set the output values. Leaf and top first. */ if (leaf != -1) { cleaf = pemx509(parent, sk_X509_value(sk, leaf)); n_certs--; } if ((top != -1) && (top != leaf)) { ctop = pemx509(parent, sk_X509_value(sk, top)); n_certs--; } /* Now the rest, which may be in between the top and leaf. */ if (n_certs > 0) { /* We need a plain array for sorting. */ certs = talloc_array_ptrtype(parent, certs, n_certs); for (i = 0, j = 0; i < sk_X509_num(sk); i++) { if ((i != top) && (i != leaf)) { certs[j++] = sk_X509_value(sk, i); } } sorted = 0; do { /* Find a leaf among the rest. */ leaf = -1; for (i = sorted; i < n_certs; i++) { for (j = sorted; j < n_certs; j++) {; if (j == i) { continue; } /* If it issued another, then it's not a leaf. */ if (issuerissued(certs[i], certs[j]) == 0) { break; } } /* If it didn't issue any others, then it goes first. */ if (j == n_certs) { leaf = i; break; } } if (leaf != -1) { /* Move the leaf to the front of the list. */ x = certs[leaf]; certs[leaf] = certs[sorted]; certs[sorted] = x; sorted++; } } while (leaf != -1); /* Dump them into an array of PEM data. */ cothers = talloc_array_ptrtype(parent, *certothers, n_certs + 1); if (cothers != NULL) { for (i = 0; i < n_certs; i++) { cothers[i] = pemx509(parent, certs[i]); } cothers[i] = NULL; } } /* Clean up. */ if (certleaf != NULL) { *certleaf = cleaf; } if (certothers != NULL) { *certothers = cothers; } if (certtop != NULL) { *certtop = ctop; } while ((x = sk_X509_pop(sk)) != NULL) { X509_free(x); } sk_X509_free(sk); return 0; } int cm_pkcs7_parse(unsigned int flags, void *parent, char **certleaf, char **certtop, char ***certothers, void (*decrypt_envelope)(const unsigned char *envelope, size_t length, void *decrypt_userdata, unsigned char **payload, size_t *payload_length), void *decrypt_userdata, const unsigned char *buffer, size_t length, ...) { va_list args; const unsigned char **buffers = NULL; size_t *lengths = NULL; int n_buffers = 0, ret; if (buffer != NULL) { buffers = talloc_realloc_size(parent, buffers, sizeof(buffers[0]) * (n_buffers + 1)); lengths = talloc_realloc_size(parent, lengths, sizeof(lengths[0]) * (n_buffers + 1)); if ((buffers == NULL) || (lengths == NULL)) { return -1; } buffers[n_buffers] = buffer; lengths[n_buffers] = length; n_buffers++; } va_start(args, length); while ((buffer = va_arg(args, const unsigned char *)) != NULL) { length = va_arg(args, size_t); buffers = talloc_realloc_size(parent, buffers, sizeof(buffers[0]) * (n_buffers + 1)); lengths = talloc_realloc_size(parent, lengths, sizeof(lengths[0]) * (n_buffers + 1)); if ((buffers == NULL) || (lengths == NULL)) { va_end(args); return -1; } buffers[n_buffers] = buffer; lengths[n_buffers] = length; n_buffers++; } va_end(args); ret = cm_pkcs7_parsev(flags, parent, certleaf, certtop, certothers, decrypt_envelope, decrypt_userdata, n_buffers, buffers, lengths); talloc_free(buffers); talloc_free(lengths); return ret; } /* Envelope some data for the recipient. */ int cm_pkcs7_envelope_data(char *encryption_cert, enum cm_prefs_cipher cipher, unsigned char *data, size_t dlength, unsigned char **enveloped, size_t *length) { STACK_OF(X509) *recipients = NULL; X509 *recipient = NULL; BIO *in = NULL; PKCS7 *p7 = NULL; unsigned char *dp7 = NULL, *u = NULL; int ret = -1, len; *enveloped = NULL; *length = 0; in = BIO_new_mem_buf(encryption_cert, -1); if (in == NULL) { cm_log(1, "Out of memory.\n"); goto done; } recipient = PEM_read_bio_X509(in, NULL, NULL, NULL); if (recipient == NULL) { cm_log(1, "Error parsing recipient certificate.\n"); goto done; } BIO_free(in); recipients = sk_X509_new(cert_cmp); if (recipients == NULL) { cm_log(1, "Out of memory.\n"); goto done; } sk_X509_push(recipients, recipient); in = BIO_new_mem_buf(data, dlength); if (in == NULL) { cm_log(1, "Out of memory.\n"); goto done; } p7 = PKCS7_encrypt(recipients, in, cm_prefs_ossl_cipher_by_pref(cipher), PKCS7_BINARY); BIO_free(in); if (p7 == NULL) { cm_log(1, "Error encrypting signing request.\n"); goto done; } len = i2d_PKCS7(p7, NULL); if (len < 0) { cm_log(1, "Error encoding encrypted signing request.\n"); goto done; } dp7 = malloc(len); if (dp7 == NULL) { cm_log(1, "Out of memory.\n"); goto done; } u = dp7; if (i2d_PKCS7(p7, &u) != len) { cm_log(1, "Error encoding encrypted signing request.\n"); goto done; } *enveloped = dp7; *length = len; ret = 0; done: if (recipients != NULL) { sk_X509_free(recipients); } if (recipient != NULL) { X509_free(recipient); } return ret; } int cm_pkcs7_envelope_csr(char *encryption_cert, enum cm_prefs_cipher cipher, char *csr, unsigned char **enveloped, size_t *length) { BIO *in; X509_REQ *req = NULL; int dlen, ret = -1; unsigned char *dreq = NULL, *u; *enveloped = NULL; *length = 0; in = BIO_new_mem_buf(csr, -1); if (in == NULL) { cm_log(1, "Out of memory.\n"); goto done; } req = PEM_read_bio_X509_REQ(in, NULL, NULL, NULL); BIO_free(in); if (req == NULL) { cm_log(1, "Error parsing certificate signing request.\n"); goto done; } dlen = i2d_X509_REQ(req, NULL); if (dlen < 0) { cm_log(1, "Error encoding certificate signing request.\n"); goto done; } dreq = malloc(dlen); if (dreq == NULL) { cm_log(1, "Out of memory.\n"); goto done; } u = dreq; if (i2d_X509_REQ(req, &u) != dlen) { cm_log(1, "Error encoding certificate signing request.\n"); goto done; } ret = cm_pkcs7_envelope_data(encryption_cert, cipher, dreq, dlen, enveloped, length); done: if (req != NULL) { X509_REQ_free(req); } free(dreq); return ret; } struct cm_pkcs7_ias { SECItem issuer, subject; }; static const SEC_ASN1Template cm_pkcs7_ias_template[] = { { .kind = SEC_ASN1_SEQUENCE, .offset = 0, .sub = NULL, .size = sizeof(struct cm_pkcs7_ias), }, { .kind = SEC_ASN1_ANY, .offset = offsetof(struct cm_pkcs7_ias, issuer), .sub = &SEC_ASN1_GET(SEC_AnyTemplate), .size = sizeof(SECItem), }, { .kind = SEC_ASN1_ANY, .offset = offsetof(struct cm_pkcs7_ias, subject), .sub = &SEC_ASN1_GET(SEC_AnyTemplate), .size = sizeof(SECItem), }, { 0, 0, NULL, 0 }, }; int cm_pkcs7_generate_ias(char *cacert, char *minicert, unsigned char **ias, size_t *length) { BIO *in; X509 *ca = NULL, *mini = NULL; int subjectlen, issuerlen, ret = -1; unsigned char *issuer = NULL, *subject = NULL, *u; struct cm_pkcs7_ias issuerandsubject; SECItem encoded; *ias = NULL; *length = 0; memset(&encoded, 0, sizeof(encoded)); in = BIO_new_mem_buf(cacert, -1); if (in == NULL) { cm_log(1, "Out of memory.\n"); goto done; } ca = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (ca == NULL) { cm_log(1, "Error parsing CA certificate.\n"); goto done; } in = BIO_new_mem_buf(minicert, -1); if (in == NULL) { cm_log(1, "Out of memory.\n"); goto done; } mini = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (mini == NULL) { cm_log(1, "Error parsing client certificate.\n"); goto done; } issuerlen = i2d_X509_NAME(ca->cert_info->issuer, NULL); if (issuerlen < 0) { cm_log(1, "Error encoding CA certificate issuer name.\n"); goto done; } issuer = malloc(issuerlen); if (issuer == NULL) { cm_log(1, "Out of memory.\n"); goto done; } u = issuer; if (i2d_X509_NAME(ca->cert_info->issuer, &u) != issuerlen) { cm_log(1, "Error encoding CA certificate issuer name.\n"); goto done; } subjectlen = i2d_X509_NAME(mini->cert_info->subject, NULL); if (subjectlen < 0) { cm_log(1, "Error encoding client certificate subject name.\n"); goto done; } subject = malloc(subjectlen); if (subject == NULL) { cm_log(1, "Out of memory.\n"); goto done; } u = subject; if (i2d_X509_NAME(mini->cert_info->subject, &u) != subjectlen) { cm_log(1, "Error encoding client certificate subject name.\n"); goto done; } memset(&issuerandsubject, 0, sizeof(issuerandsubject)); issuerandsubject.issuer.data = issuer; issuerandsubject.issuer.len = issuerlen; issuerandsubject.subject.data = subject; issuerandsubject.subject.len = subjectlen; if (SEC_ASN1EncodeItem(NULL, &encoded, &issuerandsubject, cm_pkcs7_ias_template) != &encoded) { cm_log(1, "Error encoding issuer and subject names.\n"); goto done; } *ias = malloc(encoded.len); if (*ias != NULL) { memcpy(*ias, encoded.data, encoded.len); *length = encoded.len; ret = 0; } done: if (encoded.data != NULL) { SECITEM_FreeItem(&encoded, PR_FALSE); } if (mini != NULL) { X509_free(mini); } if (ca != NULL) { X509_free(ca); } free(issuer); free(subject); return ret; } int cm_pkcs7_envelope_ias(char *encryption_cert, enum cm_prefs_cipher cipher, char *cacert, char *minicert, unsigned char **enveloped, size_t *length) { int ret = -1; unsigned char *dias = NULL; size_t dlen; *enveloped = NULL; *length = 0; if ((cacert == NULL) || (strlen(cacert) == 0)) { cacert = encryption_cert; } ret = cm_pkcs7_generate_ias(cacert, minicert, &dias, &dlen); if (ret != 0) { goto done; } ret = cm_pkcs7_envelope_data(encryption_cert, cipher, dias, dlen, enveloped, length); done: free(dias); return ret; } static char * get_pstring_attribute(void *parent, STACK_OF(X509_ATTRIBUTE) *attrs, int nid) { X509_ATTRIBUTE *a; ASN1_TYPE *value; ASN1_PRINTABLESTRING *p; int i, len; const char *s; char *ret; if (attrs == NULL) { return NULL; } for (i = 0; i < sk_X509_ATTRIBUTE_num(attrs); i++) { a = sk_X509_ATTRIBUTE_value(attrs, i); if (OBJ_obj2nid(a->object) != nid) { continue; } if (a->single) { value = a->value.single; } else { if (sk_ASN1_TYPE_num(a->value.set) == 1) { value = sk_ASN1_TYPE_value(a->value.set, 0); } else { value = NULL; } } if ((value != NULL) && (value->type == V_ASN1_PRINTABLESTRING)) { p = value->value.printablestring; if (p != NULL) { len = ASN1_STRING_length(p); s = (const char *) ASN1_STRING_data(p); ret = talloc_size(parent, len + 1); if (ret != NULL) { memcpy(ret, s, len); ret[len] = '\0'; return ret; } } } } return NULL; } static void get_ostring_attribute(void *parent, STACK_OF(X509_ATTRIBUTE) *attrs, int nid, unsigned char **ret, size_t *length) { X509_ATTRIBUTE *a; ASN1_TYPE *value; ASN1_OCTET_STRING *p; const unsigned char *s; int i; *ret = NULL; *length = 0; if (attrs == NULL) { return; } for (i = 0; i < sk_X509_ATTRIBUTE_num(attrs); i++) { a = sk_X509_ATTRIBUTE_value(attrs, i); if (OBJ_obj2nid(a->object) != nid) { continue; } if (a->single) { value = a->value.single; } else { if (sk_ASN1_TYPE_num(a->value.set) == 1) { value = sk_ASN1_TYPE_value(a->value.set, 0); } else { value = NULL; } } if ((value != NULL) && (value->type == V_ASN1_OCTET_STRING)) { p = value->value.octet_string; if (p != NULL) { i = ASN1_STRING_length(p); s = ASN1_STRING_data(p); *ret = talloc_size(parent, i + 1); if (*ret != NULL) { memcpy(*ret, s, i); *length = i; return; } } } } return; } static int ignore_purpose_errors(int ok, X509_STORE_CTX *ctx) { switch (X509_STORE_CTX_get_error(ctx)) { case X509_V_ERR_INVALID_PURPOSE: case X509_V_ERR_KEYUSAGE_NO_DIGITAL_SIGNATURE: /* Ignore purpose and usage checks. */ return 1; break; default: /* Otherwise go with the library's default behavior. */ return ok; break; } } int cm_pkcs7_verify_signed(unsigned char *data, size_t length, const char **roots, const char **othercerts, int expected_content_type, void *parent, char **digest, char **tx, char **msgtype, char **pkistatus, char **failinfo, unsigned char **sender_nonce, size_t *sender_nonce_length, unsigned char **recipient_nonce, size_t *recipient_nonce_length, unsigned char **payload, size_t *payload_length) { PKCS7 *p7 = NULL, *encapsulated; X509 *x; STACK_OF(X509) *certs = NULL; STACK_OF(X509_ATTRIBUTE) *attrs; X509_STORE *store = NULL; X509_ALGOR *algor = NULL; PKCS7_SIGNED *p7s; PKCS7_SIGNER_INFO *si; BIO *in, *out = NULL; const unsigned char *u; char *s, buf[LINE_MAX], *p, *q; int ret = -1, i; long error; if (digest != NULL) { *digest = NULL; } if (tx != NULL) { *tx = NULL; } if (msgtype != NULL) { *msgtype = NULL; } if (pkistatus != NULL) { *pkistatus = NULL; } if (failinfo != NULL) { *failinfo = NULL; } if (sender_nonce != NULL) { *sender_nonce = NULL; } if (sender_nonce_length != NULL) { *sender_nonce_length = 0; } if (recipient_nonce != NULL) { *recipient_nonce = NULL; } if (recipient_nonce_length != NULL) { *recipient_nonce_length = 0; } if (payload != NULL) { *payload = NULL; } if (payload_length != NULL) { *payload_length = 0; } u = data; p7 = d2i_PKCS7(NULL, &u, length); if ((p7 == NULL) || (u != data + length)) { cm_log(1, "Error parsing what should be PKCS#7 signed-data.\n"); goto done; } if ((p7->type == NULL) || (OBJ_obj2nid(p7->type) != NID_pkcs7_signed)) { cm_log(1, "PKCS#7 data is not signed-data.\n"); goto done; } store = X509_STORE_new(); if (store == NULL) { cm_log(1, "Out of memory.\n"); goto done; } X509_STORE_set_verify_cb_func(store, &ignore_purpose_errors); certs = sk_X509_new(cert_cmp); if (certs == NULL) { cm_log(1, "Out of memory.\n"); goto done; } for (i = 0; (roots != NULL) && (roots[i] != NULL); i++) { s = talloc_strdup(parent, roots[i]); if (s == NULL) { cm_log(1, "Out of memory.\n"); goto done; } /* In case one of these is multiple PEM certificates * concatenated, always break them up. */ p = s; while ((p != NULL) && (*p != '\0')) { if (strncmp(p, "-----BEGIN", 10) != 0) { break; } q = strstr(p, "----END"); if (q == NULL) { break; } q += strcspn(q, "\n"); if (*q == '\n') { q++; } in = BIO_new_mem_buf(p, q - p); if (in == NULL) { cm_log(1, "Out of memory.\n"); goto done; } x = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (x == NULL) { cm_log(1, "Error parsing chain certificate.\n"); goto done; } X509_STORE_add_cert(store, x); X509_free(x); p = q; } talloc_free(s); } for (i = 0; (othercerts != NULL) && (othercerts[i] != NULL); i++) { s = talloc_strdup(parent, othercerts[i]); if (s == NULL) { cm_log(1, "Out of memory.\n"); goto done; } /* In case one of these is multiple PEM certificates * concatenated, always break them up. */ p = s; while ((p != NULL) && (*p != '\0')) { if (strncmp(p, "-----BEGIN", 10) != 0) { break; } q = strstr(p, "----END"); if (q == NULL) { break; } q += strcspn(q, "\n"); if (*q == '\n') { q++; } in = BIO_new_mem_buf(p, q - p); if (in == NULL) { cm_log(1, "Out of memory.\n"); goto done; } x = PEM_read_bio_X509(in, NULL, NULL, NULL); BIO_free(in); if (x == NULL) { cm_log(1, "Error parsing chain certificate.\n"); goto done; } sk_X509_push(certs, x); p = q; } talloc_free(s); } out = BIO_new(BIO_s_mem()); if (out == NULL) { cm_log(1, "Out of memory.\n"); goto done; } if (roots != NULL) { /* When PKCS7_verify() goes to verify the signer certificate, * it uses the trust store we pass in, but it only searches the * list of certificates in the signed-data for intermediates, * ignoring the list of non-trusted certificates we passed in. * Merge our list into the one in the signed-data, to ensure * that they can be found. */ for (i = 0; i < sk_X509_num(certs); i++) { x = X509_dup(sk_X509_value(certs, i)); if (x == NULL) { cm_log(1, "Out of memory.\n"); goto done; } PKCS7_add_certificate(p7, x); } if (PKCS7_verify(p7, certs, store, NULL, out, 0) != 1) { cm_log(1, "Message failed verification.\n"); goto done; } } p7s = p7->d.sign; if (sk_PKCS7_SIGNER_INFO_num(p7s->signer_info) != 1) { cm_log(1, "Number of PKCS#7 signed-data signers != 1.\n"); goto done; } si = sk_PKCS7_SIGNER_INFO_value(p7s->signer_info, 0); attrs = si->auth_attr; encapsulated = p7s->contents; if (expected_content_type != NID_undef) { if (encapsulated == NULL) { cm_log(1, "Error parsing PKCS#7 encapsulated content.\n"); goto done; } if ((encapsulated->type == NULL) || (OBJ_obj2nid(encapsulated->type) != expected_content_type)) { cm_log(1, "PKCS#7 encapsulated data is not %s (%s).\n", OBJ_nid2ln(expected_content_type), encapsulated->type ? OBJ_nid2ln(OBJ_obj2nid(encapsulated->type)) : "type not set"); goto done; } } if (attrs == NULL) { cm_log(1, "PKCS#7 signed-data contains no signed attributes.\n"); goto done; } ret = 0; if (digest != NULL) { algor = si->digest_alg; switch (OBJ_obj2nid(algor->algorithm)) { case NID_md5: *digest = talloc_strdup(parent, "md5"); break; case NID_sha512: *digest = talloc_strdup(parent, "sha512"); break; case NID_sha384: *digest = talloc_strdup(parent, "sha384"); break; case NID_sha256: *digest = talloc_strdup(parent, "sha256"); break; case NID_sha1: *digest = talloc_strdup(parent, "sha1"); break; } } if (tx != NULL) { *tx = get_pstring_attribute(parent, attrs, cm_scep_o_get_tx_nid()); } if (msgtype != NULL) { *msgtype = get_pstring_attribute(parent, attrs, cm_scep_o_get_msgtype_nid()); } if (pkistatus != NULL) { *pkistatus = get_pstring_attribute(parent, attrs, cm_scep_o_get_pkistatus_nid()); } if (failinfo != NULL) { *failinfo = get_pstring_attribute(parent, attrs, cm_scep_o_get_failinfo_nid()); } if ((sender_nonce != NULL) && (sender_nonce_length != NULL)) { get_ostring_attribute(parent, attrs, cm_scep_o_get_sender_nonce_nid(), sender_nonce, sender_nonce_length); } if ((recipient_nonce != NULL) && (recipient_nonce_length != NULL)) { get_ostring_attribute(parent, attrs, cm_scep_o_get_recipient_nonce_nid(), recipient_nonce, recipient_nonce_length); } if ((payload != NULL) && (payload_length != NULL)) { *payload_length = BIO_get_mem_data(out, &s); if (*payload_length > 0) { *payload = talloc_size(parent, *payload_length + 1); if (*payload == NULL) { cm_log(1, "Out of memory.\n"); goto done; } memcpy(*payload, s, *payload_length); (*payload)[*payload_length] = '\0'; } } done: if (ret != 0) { while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } } if (p7 != NULL) { PKCS7_free(p7); } if (certs != NULL) { sk_X509_pop_free(certs, X509_free); } if (store != NULL) { X509_STORE_free(store); } if (out != NULL) { BIO_free(out); } return ret; } certmonger-0.78.6/src/keyiread-o.c0000664000175000017500000002137212645513264013705 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "keyiread.h" #include "keyiread-int.h" #include "log.h" #include "pin.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-o.h" struct cm_keyiread_state { struct cm_keyiread_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; static int cm_keyiread_o_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { struct cm_pin_cb_data cb_data; FILE *pem, *fp; EVP_PKEY *pkey, *nextpkey = NULL; int status; char buf[LINE_MAX]; const char *alg; int bits, length; long error; char *pin, *pubkey, *pubikey, *nextfile; unsigned char *tmp; util_o_init(); ERR_load_crypto_strings(); status = CM_SUB_STATUS_INTERNAL_ERROR; fp = fdopen(fd, "w"); if (fp == NULL) { cm_log(1, "Unable to initialize I/O.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } pem = fopen(entry->cm_key_storage_location, "r"); if (pem != NULL) { if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading key encryption PIN.\n"); _exit(CM_SUB_STATUS_ERROR_AUTH); } memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; pkey = PEM_read_PrivateKey(pem, NULL, cm_pin_read_for_key_ossl_cb, &cb_data); if (pkey == NULL) { cm_log(1, "Internal error reading key from \"%s\".\n", entry->cm_key_storage_location); status = CM_SUB_STATUS_ERROR_AUTH; /* XXX */ } else { if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to read private " "key '%s', though one was provided. " "Treating this as an error.\n", entry->cm_key_storage_location); status = CM_SUB_STATUS_ERROR_AUTH; /* XXX */ } else { status = 0; } } fclose(pem); if ((status == 0) && (entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { nextfile = util_build_next_filename(entry->cm_key_storage_location, entry->cm_key_next_marker); pem = fopen(nextfile, "r"); if (pem != NULL) { nextpkey = PEM_read_PrivateKey(pem, NULL, cm_pin_read_for_key_ossl_cb, &cb_data); if (nextpkey == NULL) { cm_log(1, "Internal error reading key from \"%s\".\n", nextfile); status = CM_SUB_STATUS_ERROR_AUTH; /* XXX */ } else { if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to read private " "key '%s', though one was provided. " "Treating this as an error.\n", nextfile); status = CM_SUB_STATUS_ERROR_AUTH; /* XXX */ } } fclose(pem); } else { cm_log(1, "Error opening key file '%s' " "for reading: %s.\n", nextfile, strerror(errno)); nextpkey = NULL; } free(nextfile); } } else { if (errno != ENOENT) { cm_log(1, "Error opening key file '%s' " "for reading: %s.\n", entry->cm_key_storage_location, strerror(errno)); } pkey = NULL; } if (status == 0) { alg = ""; bits = 0; pubkey = ""; pubikey = ""; if (pkey != NULL) { switch (EVP_PKEY_type(pkey->type)) { case EVP_PKEY_RSA: cm_log(3, "Key is an RSA key.\n"); alg = "RSA"; break; #ifdef CM_ENABLE_DSA case EVP_PKEY_DSA: cm_log(3, "Key is a DSA key.\n"); alg = "DSA"; break; #endif #ifdef CM_ENABLE_EC case EVP_PKEY_EC: cm_log(3, "Key is an EC key.\n"); alg = "EC"; break; #endif default: cm_log(3, "Key is for an unknown algorithm.\n"); alg = ""; break; } bits = EVP_PKEY_bits(pkey); cm_log(3, "Key size is %d.\n", bits); tmp = NULL; length = i2d_PUBKEY(pkey, (unsigned char **) &tmp); if (length > 0) { pubikey = cm_store_hex_from_bin(NULL, tmp, length); } tmp = NULL; length = i2d_PublicKey(pkey, (unsigned char **) &tmp); if (length > 0) { pubkey = cm_store_hex_from_bin(NULL, tmp, length); } } fprintf(fp, "%s/%d/%s/%s\n", alg, bits, pubikey, pubkey); if (nextpkey != NULL) { switch (EVP_PKEY_type(nextpkey->type)) { case EVP_PKEY_RSA: cm_log(3, "Next key is an RSA key.\n"); alg = "RSA"; break; #ifdef CM_ENABLE_DSA case EVP_PKEY_DSA: cm_log(3, "Next key is a DSA key.\n"); alg = "DSA"; break; #endif #ifdef CM_ENABLE_EC case EVP_PKEY_EC: cm_log(3, "Next key is an EC key.\n"); alg = "EC"; break; #endif default: cm_log(3, "Next key is for an unknown algorithm.\n"); alg = ""; break; } bits = EVP_PKEY_bits(nextpkey); cm_log(3, "Next key size is %d.\n", bits); tmp = NULL; length = i2d_PUBKEY(nextpkey, (unsigned char **) &tmp); if (length > 0) { pubikey = cm_store_hex_from_bin(NULL, tmp, length); } tmp = NULL; length = i2d_PublicKey(nextpkey, (unsigned char **) &tmp); if (length > 0) { pubkey = cm_store_hex_from_bin(NULL, tmp, length); } fprintf(fp, "%s/%d/%s/%s\n", alg, bits, pubikey, pubkey); } else { fprintf(fp, "\n"); } status = 0; } else { while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } } fclose(fp); if (status != 0) { _exit(status); } return 0; } /* Check if we were able to successfully read the key information. */ static int cm_keyiread_o_finished_reading(struct cm_keyiread_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == 0)) { return 0; } return -1; } /* Check if we need a PIN (or a new PIN) to access the key information. */ static int cm_keyiread_o_need_pin(struct cm_keyiread_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to access the key information. */ static int cm_keyiread_o_need_token(struct cm_keyiread_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Check if something changed, for example we finished reading the data we need * from the key file. */ static int cm_keyiread_o_ready(struct cm_keyiread_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_keyiread_o_get_fd(struct cm_keyiread_state *state) { return cm_subproc_get_fd(state->subproc); } /* Clean up after reading the key. */ static void cm_keyiread_o_done(struct cm_keyiread_state *state) { if (state->subproc != NULL) { cm_keyiread_read_data_from_buffer(state->entry, cm_subproc_get_msg(state->subproc, NULL)); cm_subproc_done(state->subproc); } talloc_free(state); } /* Start reading the key from the configured location. */ struct cm_keyiread_state * cm_keyiread_o_start(struct cm_store_entry *entry) { struct cm_keyiread_state *state; if (entry->cm_key_storage_type != cm_key_storage_file) { cm_log(1, "Wrong read method: can only read keys " "from a file.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.finished_reading = cm_keyiread_o_finished_reading; state->pvt.need_pin = cm_keyiread_o_need_pin; state->pvt.need_token = cm_keyiread_o_need_token; state->pvt.ready = cm_keyiread_o_ready; state->pvt.get_fd= cm_keyiread_o_get_fd; state->pvt.done= cm_keyiread_o_done; state->entry = entry; state->subproc = cm_subproc_start(cm_keyiread_o_main, state, NULL, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/keygen-o.c0000664000175000017500000003275612645513264013402 00000000000000/* * Copyright (C) 2009,2010,2011,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #ifdef CM_ENABLE_DSA #include #endif #ifdef CM_ENABLE_EC #include #endif #include #include #include #include #include #include "keygen.h" #include "keygen-int.h" #include "log.h" #include "pin.h" #include "prefs.h" #include "prefs-o.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-o.h" struct cm_keygen_state { struct cm_keygen_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; static char * make_filename(const char *prefix, char **marker) { unsigned char suffix[6]; char *ret; size_t l; if (!RAND_pseudo_bytes(suffix, sizeof(suffix))) { /* Try again sometime later. */ cm_log(1, "Error generating suffix.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } *marker = cm_store_base64_from_bin(NULL, suffix, sizeof(suffix)); if (*marker == NULL) { /* Try again sometime later. */ cm_log(1, "Error generating suffix.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } while ((l = strcspn(*marker, "+/")) != strlen(*marker)) { switch ((*marker)[l]) { case '+': (*marker)[l] = '='; break; case '/': (*marker)[l] = '_'; break; } } ret = util_build_next_filename(prefix, *marker); return ret; } static int cm_keygen_o_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { struct cm_pin_cb_data cb_data; FILE *fp, *status; EVP_PKEY *pkey; char buf[LINE_MAX], *pin, *pubhex, *pubihex, *oldfile; unsigned char *p, *q; long error, errno_save; enum cm_key_algorithm cm_key_algorithm; int cm_key_size; int len; int keyfd; char *filename; char *marker; BIGNUM *exponent; RSA *rsa; #ifdef CM_ENABLE_DSA DSA *dsa; #endif #ifdef CM_ENABLE_EC EC_KEY *ec; int ecurve; #endif status = fdopen(fd, "w"); if (status == NULL) { _exit(CM_SUB_STATUS_INTERNAL_ERROR); } cm_key_algorithm = entry->cm_key_type.cm_key_gen_algorithm; if (cm_key_algorithm == cm_key_unspecified) { cm_key_algorithm = CM_DEFAULT_PUBKEY_TYPE; } cm_key_size = entry->cm_key_type.cm_key_gen_size; if (cm_key_size <= 0) { cm_key_size = CM_DEFAULT_PUBKEY_SIZE; } util_o_init(); ERR_load_crypto_strings(); if (RAND_status() != 1) { cm_log(1, "PRNG not seeded for generating key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } retry_gen: pkey = EVP_PKEY_new(); if (pkey == NULL) { cm_log(1, "Error allocating new key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } switch (cm_key_algorithm) { case cm_key_rsa: exponent = BN_new(); if (exponent == NULL) { cm_log(1, "Error setting up exponent.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } BN_set_word(exponent, CM_DEFAULT_RSA_EXPONENT); rsa = RSA_new(); if (rsa == NULL) { cm_log(1, "Error allocating new RSA key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (RSA_generate_key_ex(rsa, cm_key_size, exponent, NULL) != 1) { if (cm_key_size != CM_DEFAULT_PUBKEY_SIZE) { cm_log(1, "Error generating %d-bit key, " "attempting %d bits.\n", cm_key_size, CM_DEFAULT_PUBKEY_SIZE); cm_key_size = CM_DEFAULT_PUBKEY_SIZE; goto retry_gen; } cm_log(1, "Error generating key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (RSA_check_key(rsa) != 1) { /* should be unnecessary */ cm_log(1, "Key fails checks. Retrying.\n"); goto retry_gen; } EVP_PKEY_set1_RSA(pkey, rsa); break; #ifdef CM_ENABLE_DSA case cm_key_dsa: dsa = DSA_new(); if (dsa == NULL) { cm_log(1, "Error allocating new DSA key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (DSA_generate_parameters_ex(dsa, cm_key_size, NULL, 0, NULL, NULL, NULL) != 1) { if (cm_key_size != CM_DEFAULT_PUBKEY_SIZE) { cm_log(1, "Error generating %d-bit key, " "attempting %d bits.\n", cm_key_size, CM_DEFAULT_PUBKEY_SIZE); cm_key_size = CM_DEFAULT_PUBKEY_SIZE; goto retry_gen; } cm_log(1, "Error generating parameters.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (DSA_generate_key(dsa) != 1) { cm_log(1, "Error generating key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } EVP_PKEY_set1_DSA(pkey, dsa); break; #endif #ifdef CM_ENABLE_EC case cm_key_ecdsa: if (cm_key_size <= 256) ecurve = NID_X9_62_prime256v1; else if (cm_key_size <= 384) ecurve = NID_secp384r1; else ecurve = NID_secp521r1; ec = EC_KEY_new_by_curve_name(ecurve); while ((ec == NULL) && (ecurve != NID_X9_62_prime256v1)) { cm_log(1, "Error allocating new EC key.\n"); switch (ecurve) { case NID_secp521r1: cm_log(1, "Trying with a smaller key.\n"); ecurve = NID_secp384r1; ec = EC_KEY_new_by_curve_name(ecurve); break; case NID_secp384r1: cm_log(1, "Trying with a smaller key.\n"); ecurve = NID_X9_62_prime256v1; ec = EC_KEY_new_by_curve_name(ecurve); break; } } if (ec == NULL) { cm_log(1, "Error allocating new EC key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (EC_KEY_generate_key(ec) != 1) { cm_log(1, "Error generating key.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } EC_KEY_set_asn1_flag(ec, OPENSSL_EC_NAMED_CURVE); EVP_PKEY_set1_EC_KEY(pkey, ec); break; #endif default: cm_log(1, "Unknown or unsupported key type.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); break; } filename = strdup(entry->cm_key_storage_location); marker = ""; keyfd = open(filename, O_RDWR | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); if (keyfd != -1) { fp = fdopen(keyfd, "w"); } else { while ((keyfd == -1) && (errno == EEXIST)) { /* Check if there's also a permissions problem, which * we care about more than getting the naming right. */ keyfd = open(filename, O_RDWR, S_IRUSR | S_IWUSR); if (keyfd == -1) { switch (errno) { case EACCES: case EPERM: _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: break; } } else { errno_save = errno; close(keyfd); errno = errno_save; } cm_log(1, "Error opening key file \"%s\" " "for writing: %s.\n", filename, strerror(errno)); free(filename); filename = make_filename(entry->cm_key_storage_location, &marker); cm_log(1, "Attempting to open key file \"%s\" " "for writing.\n", filename); keyfd = open(filename, O_RDWR | O_CREAT | O_EXCL, S_IRUSR | S_IWUSR); } if (keyfd == -1) { switch (errno) { case EACCES: case EPERM: _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: cm_log(1, "Error opening key file \"%s\" " "for writing: %s.\n", filename, strerror(errno)); _exit(CM_SUB_STATUS_INTERNAL_ERROR); break; } } fp = fdopen(keyfd, "w"); } if (fp == NULL) { if (errno != ENOENT) { error = errno; cm_log(1, "Error opening key file \"%s\" " "for writing: %s.\n", filename, strerror(errno)); switch (error) { case EACCES: case EPERM: _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: break; } } _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } util_set_fd_entry_key_owner(keyfd, filename, entry); free(filename); if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading key encryption PIN.\n"); _exit(CM_SUB_STATUS_ERROR_AUTH); } memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; if (PEM_write_PKCS8PrivateKey(fp, pkey, pin ? cm_prefs_ossl_cipher() : NULL, NULL, 0, cm_pin_read_for_key_ossl_cb, &cb_data) == 0) { errno_save = errno; cm_log(1, "Error storing key.\n"); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } switch (errno_save) { case EACCES: case EPERM: _exit(CM_SUB_STATUS_ERROR_PERMS); break; default: break; } _exit(CM_SUB_STATUS_ERROR_INITIALIZING); } pubihex = ""; len = i2d_PUBKEY(pkey, NULL); if (len > 0) { p = malloc(len); if (p != NULL) { q = p; if (i2d_PUBKEY(pkey, &q) == len) { pubihex = cm_store_hex_from_bin(NULL, p, q - p); } free(p); } } pubhex = ""; len = i2d_PublicKey(pkey, NULL); if (len > 0) { p = malloc(len); if (p != NULL) { q = p; if (i2d_PublicKey(pkey, &q) == len) { pubhex = cm_store_hex_from_bin(NULL, p, q - p); } free(p); } } fprintf(status, "%s\n%s\n%s\n", pubihex, pubhex, marker); fclose(fp); fclose(status); /* Try to remove any keys with old candidate names. */ if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { oldfile = util_build_next_filename(entry->cm_key_storage_location, entry->cm_key_next_marker); if (oldfile != NULL) { if (remove(oldfile) != 0) { cm_log(1, "Error removing \"%s\": %s.\n", oldfile, strerror(errno)); } free(oldfile); } } return 0; } /* Check if the keypair is ready. */ static int cm_keygen_o_ready(struct cm_keygen_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_keygen_o_get_fd(struct cm_keygen_state *state) { return cm_subproc_get_fd(state->subproc); } /* Tell us if the keypair was saved to the location specified in the entry. */ static int cm_keygen_o_saved_keypair(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == 0)) { return 0; } return -1; } /* Tell us if we don't have permissions. */ static int cm_keygen_o_need_perms(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_PERMS)) { return 0; } return -1; } /* Tell us if we need a new/correct PIN to use the key store. */ static int cm_keygen_o_need_pin(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to generate the key. */ static int cm_keygen_o_need_token(struct cm_keygen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Clean up after key generation. */ static void cm_keygen_o_done(struct cm_keygen_state *state) { const char *output, *p, *q; char *pubkey_info, *pubkey, *marker = NULL; int len; if (state->subproc != NULL) { output = cm_subproc_get_msg(state->subproc, NULL); if (output != NULL) { p = output; len = strcspn(output, "\r\n"); pubkey_info = talloc_strndup(state->entry, p, len); q = p + len; p = q + strspn(q, "\r\n"); len = strcspn(p, "\r\n"); pubkey = talloc_strndup(state->entry, p, len); q = p + len; p = q + strspn(q, "\r\n"); len = strcspn(p, "\r\n"); if (len > 0) { marker = talloc_strndup(state->entry, p, len); } if ((marker != NULL) && (strlen(marker) > 0)) { state->entry->cm_key_next_pubkey_info = pubkey_info; state->entry->cm_key_next_pubkey = pubkey; state->entry->cm_key_next_marker = marker; state->entry->cm_key_next_generated_date = time(NULL); state->entry->cm_key_next_requested_count = 0; } else { state->entry->cm_key_next_pubkey_info = NULL; state->entry->cm_key_next_pubkey = NULL; state->entry->cm_key_next_marker = NULL; state->entry->cm_key_next_generated_date = 0; state->entry->cm_key_pubkey_info = pubkey_info; state->entry->cm_key_pubkey = pubkey; state->entry->cm_key_generated_date = time(NULL); state->entry->cm_key_requested_count = 0; state->entry->cm_key_issued_count = 0; } } cm_subproc_done(state->subproc); } talloc_free(state); } /* Start keypair generation using parameters stored in the entry. */ struct cm_keygen_state * cm_keygen_o_start(struct cm_store_entry *entry) { struct cm_keygen_state *state; if (entry->cm_key_storage_type != cm_key_storage_file) { return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = cm_keygen_o_ready; state->pvt.get_fd = cm_keygen_o_get_fd; state->pvt.saved_keypair = cm_keygen_o_saved_keypair; state->pvt.need_perms = cm_keygen_o_need_perms; state->pvt.need_pin = cm_keygen_o_need_pin; state->pvt.need_token = cm_keygen_o_need_token; state->pvt.done = cm_keygen_o_done; state->entry = entry; state->subproc = cm_subproc_start(cm_keygen_o_main, state, NULL, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/csrgen-o.c0000664000175000017500000003603412645513264013372 00000000000000/* * Copyright (C) 2009,2010,2011,2012,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certext.h" #include "csrgen.h" #include "csrgen-int.h" #include "keygen.h" #include "log.h" #include "pin.h" #include "prefs.h" #include "prefs-o.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-m.h" #include "util-o.h" struct cm_csrgen_state { struct cm_csrgen_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; static int astring_type(const char *attr, const char *p, ssize_t n) { unsigned int i; if ((strcasecmp(attr, "CN") != 0) && (strcasecmp(attr, "commonName") != 0)) { return MBSTRING_UTF8; } if (n < 0) { n = strlen(p); } for (i = 0; i < n; i++) { if ((p[i] & 0x80) != 0) { return MBSTRING_UTF8; } } return V_ASN1_PRINTABLESTRING; } static int cm_csrgen_o_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { struct cm_pin_cb_data cb_data; FILE *keyfp, *status; X509_REQ *req; X509_NAME *subject; X509 *minicert; ASN1_INTEGER *serial, *version; NETSCAPE_SPKI spki; NETSCAPE_SPKAC spkac; EVP_PKEY *pkey; BIGNUM *serialbn; char buf[LINE_MAX], *p, *q, *s, *nickname, *pin, *password, *filename; unsigned char *extensions, *upassword, *bmp, *name, *up, *uq, md[CM_DIGEST_MAX]; char *spkidec, *mcb64, *nows; const char *default_cn = CM_DEFAULT_CERT_SUBJECT_CN, *spkihex = NULL; const unsigned char *nametmp; struct tm *now; time_t nowt; size_t extensions_len; ssize_t len; unsigned int bmpcount, mdlen; long error; int i; status = fdopen(fd, "w"); if (status == NULL) { _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if ((entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { filename = util_build_next_filename(entry->cm_key_storage_location, entry->cm_key_next_marker); if (filename == NULL) { cm_log(1, "Error opening key file \"%s\" " "for reading: %s.\n", filename, strerror(errno)); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } } else { filename = entry->cm_key_storage_location; } keyfp = fopen(filename, "r"); if (keyfp == NULL) { if (errno != ENOENT) { cm_log(1, "Error opening key file \"%s\" " "for reading: %s.\n", filename, strerror(errno)); } _exit(CM_SUB_STATUS_INTERNAL_ERROR); } util_set_fd_entry_key_owner(fileno(keyfp), filename, entry); if (filename != entry->cm_key_storage_location) { free(filename); } filename = NULL; util_o_init(); ERR_load_crypto_strings(); pkey = EVP_PKEY_new(); if (pkey == NULL) { cm_log(1, "Internal error generating CSR.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Internal error reading key encryption PIN.\n"); _exit(CM_SUB_STATUS_ERROR_AUTH); } memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; pkey = PEM_read_PrivateKey(keyfp, NULL, cm_pin_read_for_key_ossl_cb, &cb_data); if (pkey == NULL) { error = errno; cm_log(1, "Error reading private key '%s': %s.\n", entry->cm_key_storage_location, strerror(error)); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } _exit(CM_SUB_STATUS_ERROR_AUTH); /* XXX */ } else { if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to read private " "key '%s', though one was provided. " "Treating this as an error.\n", entry->cm_key_storage_location); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } _exit(CM_SUB_STATUS_ERROR_AUTH); /* XXX */ } } if (pkey != NULL) { req = X509_REQ_new(); if (req != NULL) { subject = NULL; if ((entry->cm_template_subject_der != NULL) && (strlen(entry->cm_template_subject_der) != 0)) { i = strlen(entry->cm_template_subject_der); name = malloc(i); if (name != NULL) { i = cm_store_hex_to_bin(entry->cm_template_subject_der, name, i); nametmp = name; subject = d2i_X509_NAME(NULL, &nametmp, i); } } if ((subject == NULL) && (entry->cm_template_subject != NULL) && (strlen(entry->cm_template_subject) != 0)) { /* This isn't really correct, but it will * probably do for now. */ p = entry->cm_template_subject; q = p + strcspn(p, ","); subject = X509_NAME_new(); if (subject != NULL) { while (*p != '\0') { if ((s = memchr(p, '=', q - p)) != NULL) { *s = '\0'; for (i = 0; p[i] != '\0'; i++) { p[i] = toupper(p[i]); } X509_NAME_add_entry_by_txt(subject, p, astring_type(p, s + 1, q - s - 1), (unsigned char *) (s + 1), q - s - 1, -1, 0); *s = '='; } else { X509_NAME_add_entry_by_txt(subject, "CN", astring_type("CN", p, q - p), (unsigned char *) p, q - p, -1, 0); } p = q + strspn(q, ","); q = p + strcspn(p, ","); } } } if (subject == NULL) { subject = X509_NAME_new(); if (subject != NULL) { X509_NAME_add_entry_by_txt(subject, "CN", astring_type("CN", default_cn, -1), (const unsigned char *) default_cn, -1, -1, 0); } } if (subject != NULL) { X509_NAME_set(&req->req_info->subject, subject); } X509_REQ_set_pubkey(req, pkey); X509_REQ_set_version(req, SEC_CERTIFICATE_REQUEST_VERSION); /* Add attributes. */ extensions = NULL; cm_certext_build_csr_extensions(entry, NULL, &extensions, &extensions_len); if ((extensions != NULL) && (extensions_len> 0)) { X509_REQ_add1_attr_by_NID(req, NID_ext_req, V_ASN1_SEQUENCE, extensions, extensions_len); talloc_free(extensions); } if (entry->cm_cert_nickname != NULL) { nickname = entry->cm_cert_nickname; } else if (entry->cm_key_nickname != NULL) { nickname = entry->cm_key_nickname; } else { nickname = entry->cm_nickname; } if ((nickname != NULL) && (cm_store_utf8_to_bmp_string(nickname, &bmp, &bmpcount) == 0)) { X509_REQ_add1_attr_by_NID(req, NID_friendlyName, V_ASN1_BMPSTRING, bmp, bmpcount); free(bmp); } error = cm_csrgen_read_challenge_password(entry, &password); if (error != 0) { cm_log(1, "Error reading challenge password: %s.\n", strerror(error)); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } _exit(CM_SUB_STATUS_ERROR_AUTH); /* XXX */ } upassword = (unsigned char *) password; if (password != NULL) { X509_REQ_add1_attr_by_NID(req, NID_pkcs9_challengePassword, V_ASN1_PRINTABLESTRING, upassword, strlen(password)); } X509_REQ_sign(req, pkey, cm_prefs_ossl_hash()); PEM_write_X509_REQ_NEW(status, req); /* Generate the SPKAC. */ memset(&spkac, 0, sizeof(spkac)); spkac.challenge = M_ASN1_IA5STRING_new(); if (password != NULL) { ASN1_STRING_set(spkac.challenge, password, strlen(password)); } else { ASN1_STRING_set(spkac.challenge, "", 0); } memset(&spki, 0, sizeof(spki)); spki.spkac = &spkac; spki.sig_algor = req->sig_alg; spki.signature = M_ASN1_BIT_STRING_new(); NETSCAPE_SPKI_set_pubkey(&spki, pkey); NETSCAPE_SPKI_sign(&spki, pkey, cm_prefs_ossl_hash()); s = NETSCAPE_SPKI_b64_encode(&spki); if (s != NULL) { fprintf(status, "%s", s); } /* Generate the SCEP transaction identifier. */ spkidec = NULL; len = i2d_PUBKEY(pkey, NULL); if (len > 0) { up = malloc(len); if (up != NULL) { uq = up; if (i2d_PUBKEY(pkey, &uq) == len) { if (EVP_Digest(up, uq - up, md, &mdlen, cm_prefs_ossl_hash(), NULL)) { spkihex = cm_store_hex_from_bin(NULL, md, mdlen); if (spkihex != NULL) { spkidec = util_dec_from_hex(spkihex); } } } free(up); } } fprintf(status, "\n%s\n", spkidec ? spkidec : ""); /* Generate a "mini" certificate. */ minicert = X509_new(); if (minicert == NULL) { cm_log(1, "Out of memory creating mini certificate.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } nowt = time(NULL); now = gmtime(&nowt); nows = talloc_asprintf(entry, "%04d%02d%02d000000Z", now->tm_year + 1900, now->tm_mon + 1, now->tm_mday); minicert->cert_info->validity->notBefore = M_ASN1_GENERALIZEDTIME_new(); ASN1_GENERALIZEDTIME_set_string(minicert->cert_info->validity->notBefore, nows); nows = talloc_asprintf(entry, "%04d%02d%02d000000Z", now->tm_year + 1900 + 100, now->tm_mon + 1, now->tm_mday); minicert->cert_info->validity->notAfter = M_ASN1_GENERALIZEDTIME_new(); ASN1_GENERALIZEDTIME_set_string(minicert->cert_info->validity->notAfter, nows); X509_NAME_set(&minicert->cert_info->issuer, subject); X509_NAME_set(&minicert->cert_info->subject, subject); /* This used to just be X509_set_version(), but * starting in 1.0.2, OpenSSL began setting it to NULL * for v1, which breaks tests which expect identical * output from both NSS and OpenSSL. */ version = M_ASN1_INTEGER_new(); if (version == NULL) { cm_log(1, "Out of memory creating mini certificate.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } ASN1_INTEGER_set(version, 0); minicert->cert_info->version = version; serial = M_ASN1_INTEGER_new(); if (serial == NULL) { cm_log(1, "Out of memory creating mini certificate.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } serialbn = NULL; if ((spkidec != NULL) && (BN_dec2bn(&serialbn, spkidec) != 0)) { if (BN_to_ASN1_INTEGER(serialbn, serial) != serial) { cm_log(1, "Error setting serial number.\n"); _exit(CM_SUB_STATUS_INTERNAL_ERROR); } } else { ASN1_INTEGER_set(serial, 1); } X509_set_serialNumber(minicert, serial); X509_set_pubkey(minicert, pkey); X509_sign(minicert, pkey, cm_prefs_ossl_hash()); len = i2d_X509(minicert, NULL); mcb64 = NULL; if (len > 0) { up = malloc(len); if (up != NULL) { uq = up; if (i2d_X509(minicert, &uq) == len) { mcb64 = cm_store_base64_from_bin(entry, up, uq - up); } } } fprintf(status, "%s\n", mcb64 ? mcb64 : ""); } else { cm_log(1, "Error creating template certificate.\n"); while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } _exit(CM_SUB_STATUS_INTERNAL_ERROR); } } while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } free(spkidec); fclose(status); fclose(keyfp); _exit(0); } /* Check if a CSR is ready. */ static int cm_csrgen_o_ready(struct cm_csrgen_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_csrgen_o_get_fd(struct cm_csrgen_state *state) { return cm_subproc_get_fd(state->subproc); } /* Save the CSR to the entry. */ static int cm_csrgen_o_save_csr(struct cm_csrgen_state *state) { int status; char *p, *q; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != 0)) { return -1; } talloc_free(state->entry->cm_csr); state->entry->cm_csr = talloc_strdup(state->entry, cm_subproc_get_msg(state->subproc, NULL)); if (state->entry->cm_csr == NULL) { return ENOMEM; } p = strstr(state->entry->cm_csr, "-----END"); if (p != NULL) { p = strstr(p, "REQUEST-----"); if (p != NULL) { p += strcspn(p, "\r\n"); q = p + strspn(p, "\r\n"); p = q + strcspn(q, "\r\n"); state->entry->cm_spkac = talloc_strndup(state->entry, q, p - q); if (state->entry->cm_spkac == NULL) { return ENOMEM; } *q = '\0'; q = p + strspn(p, "\r\n"); p = q + strcspn(q, "\r\n"); if (p > q) { state->entry->cm_scep_tx = talloc_strndup(state->entry, q, p - q); if (state->entry->cm_scep_tx == NULL) { return ENOMEM; } } *q = '\0'; q = p + strspn(p, "\r\n"); p = q + strcspn(q, "\r\n"); if (p > q) { state->entry->cm_minicert = talloc_strndup(state->entry, q, p - q); if (state->entry->cm_minicert == NULL) { return ENOMEM; } } state->entry->cm_scep_nonce = NULL; state->entry->cm_scep_last_nonce = NULL; state->entry->cm_scep_req = NULL; state->entry->cm_scep_req_next = NULL; state->entry->cm_scep_gic = NULL; state->entry->cm_scep_gic_next = NULL; } } return 0; } /* Check if we need a PIN (or a new PIN) to access the key information. */ static int cm_csrgen_o_need_pin(struct cm_csrgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_AUTH)) { return 0; } return -1; } /* Check if we need a token to be inserted to access the key information. */ static int cm_csrgen_o_need_token(struct cm_csrgen_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (WIFEXITED(status) && (WEXITSTATUS(status) == CM_SUB_STATUS_ERROR_NO_TOKEN)) { return 0; } return -1; } /* Clean up after CSR generation. */ static void cm_csrgen_o_done(struct cm_csrgen_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start CSR generation using template information in the entry. */ struct cm_csrgen_state * cm_csrgen_o_start(struct cm_store_entry *entry) { struct cm_csrgen_state *state; state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = &cm_csrgen_o_ready; state->pvt.get_fd = &cm_csrgen_o_get_fd; state->pvt.save_csr = &cm_csrgen_o_save_csr; state->pvt.need_pin = &cm_csrgen_o_need_pin; state->pvt.need_token = &cm_csrgen_o_need_token; state->pvt.done = &cm_csrgen_o_done; state->entry = entry; state->subproc = cm_subproc_start(cm_csrgen_o_main, state, NULL, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/certsave-o.c0000664000175000017500000003662612645513264013734 00000000000000/* * Copyright (C) 2009,2010,2011,2013,2014,2015 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certsave.h" #include "certsave-int.h" #include "log.h" #include "pin.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-o.h" struct cm_certsave_state { struct cm_certsave_state_pvt pvt; struct cm_subproc_state *subproc; struct cm_store_entry *entry; }; static char * read_file_contents(const char *filename, char *what, PRBool critical) { FILE *fp; struct stat st; char *content = NULL; int i; unsigned int n; fp = fopen(filename, "r"); if (fp == NULL) { if ((errno == ENOENT) && !critical) { return NULL; } cm_log(1, "Error opening %s \"%s\" " "for reading: %s.\n", what, filename, strerror(errno)); switch (errno) { case EACCES: case EPERM: _exit(CM_CERTSAVE_STATUS_PERMS); break; default: _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); break; } } if (fstat(fileno(fp), &st) == -1) { cm_log(1, "Error opening %s \"%s\" " "for reading: %s.\n", what, filename, strerror(errno)); switch (errno) { case EACCES: case EPERM: _exit(CM_CERTSAVE_STATUS_PERMS); break; default: _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); break; } } content = malloc(st.st_size + 1); if (content == NULL) { cm_log(1, "Error allocating memory for %s \"%s\".\n", what, filename); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } n = 0; while (n < st.st_size) { i = fread(content + n, 1, st.st_size - n, fp); if (i <= 0) { cm_log(1, "Error reading %s \"%s\": %s.\n", what, filename, strerror(errno)); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } n += i; } fclose(fp); content[st.st_size] = '\0'; if (st.st_size == 0) { return NULL; } return content; } static void write_file_contents(const char *filename, const char *contents, const char *what, PRBool is_key, struct cm_store_entry *entry) { FILE *fp; int i; unsigned int n, len; fp = fopen(filename, "w"); if (fp == NULL) { cm_log(1, "Error opening %s \"%s\" " "for writing: %s.\n", what, filename, strerror(errno)); switch (errno) { case EACCES: case EPERM: _exit(CM_CERTSAVE_STATUS_PERMS); break; default: _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); break; } } if (is_key) { util_set_fd_entry_key_owner(fileno(fp), filename, entry); } else { util_set_fd_entry_cert_owner(fileno(fp), filename, entry); } n = 0; len = strlen(contents); while (n < len) { i = fwrite(contents + n, 1, len - n, fp); if (i <= 0) { cm_log(1, "Error writing %s \"%s\": %s.\n", what, filename, strerror(errno)); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } n += i; } fclose(fp); } static int cm_certsave_o_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { int status = -1; BIO *bio = NULL; FILE *pem; X509 *cert; char *next_keyfile = NULL, *old_keyfile = NULL, *serial = NULL; char *old_key = NULL, *next_key = NULL, *old_cert = NULL, *pin; unsigned char *bin; BIGNUM *bn; struct cm_pin_cb_data cb_data; EVP_PKEY *old_pkey = NULL; if (entry->cm_cert_storage_location == NULL) { cm_log(1, "Error saving certificate: no location " "specified.\n"); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } util_o_init(); /* If we're about to switch out the private key, because we're * rekeying, ... */ if ((entry->cm_key_storage_location != NULL) && (entry->cm_cert_storage_location != NULL) && (entry->cm_key_next_marker != NULL) && (strlen(entry->cm_key_next_marker) > 0)) { /* ... read the candidate key file's contents and the old * certificate, along with the old key file's contents. */ next_keyfile = util_build_next_filename(entry->cm_key_storage_location, entry->cm_key_next_marker); if (next_keyfile == NULL) { cm_log(1, "Error building key file name " "for reading: %s.\n", strerror(errno)); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } next_key = read_file_contents(next_keyfile, "next key file", PR_TRUE); old_key = read_file_contents(entry->cm_key_storage_location, "key file", PR_TRUE); old_cert = read_file_contents(entry->cm_cert_storage_location, "certificate file", PR_FALSE); } else if (entry->cm_key_storage_location != NULL) { /* Or just read the old file's contents. */ old_key = read_file_contents(entry->cm_key_storage_location, "key file", PR_TRUE); } /* Decrypt the old key. */ if (old_key != NULL) { bio = BIO_new_mem_buf(old_key, -1); } if (bio != NULL) { if (cm_pin_read_for_key(entry, &pin) != 0) { cm_log(1, "Error reading key encryption PIN.\n"); _exit(CM_CERTSAVE_STATUS_AUTH); } memset(&cb_data, 0, sizeof(cb_data)); cb_data.entry = entry; cb_data.n_attempts = 0; old_pkey = PEM_read_bio_PrivateKey(bio, NULL, cm_pin_read_for_key_ossl_cb, &cb_data); if (old_pkey == NULL) { cm_log(1, "Internal error reading key from \"%s\".\n", entry->cm_key_storage_location); _exit(CM_CERTSAVE_STATUS_AUTH); /* XXX */ } else { if ((pin != NULL) && (strlen(pin) > 0) && (cb_data.n_attempts == 0)) { cm_log(1, "PIN was not needed to read private " "key '%s', though one was provided. " "Treating this as an error.\n", entry->cm_key_storage_location); _exit(CM_CERTSAVE_STATUS_AUTH); /* XXX */ } } } /* If we're meant to preserve keys that are no longer going to be used, * then we should have an old key and certificate. Use the * certificate's serial number to construct the file name to use for * storing the old key. */ if (entry->cm_key_preserve && (old_cert != NULL) && (old_key != NULL)) { bio = BIO_new_mem_buf(old_cert, -1); if (bio != NULL) { cert = PEM_read_bio_X509(bio, NULL, NULL, NULL); if (cert != NULL) { bn = ASN1_INTEGER_to_BN(cert->cert_info->serialNumber, NULL); if (bn != NULL) { bin = malloc(BN_num_bytes(bn)); if (bin != NULL) { BN_bn2bin(bn, bin); serial = cm_store_hex_from_bin(NULL, bin, BN_num_bytes(bn)); } } if (serial != NULL) { old_keyfile = util_build_old_filename(entry->cm_key_storage_location, serial); if (old_keyfile == NULL) { cm_log(1, "Error building key file name " "for writing: %s.\n", strerror(errno)); _exit(CM_CERTSAVE_STATUS_INTERNAL_ERROR); } } X509_free(cert); } BIO_free(bio); } } /* Save the certificate itself. */ bio = BIO_new_mem_buf(entry->cm_cert, -1); if (bio != NULL) { cert = PEM_read_bio_X509(bio, NULL, NULL, NULL); if (cert != NULL) { /* Double-check that we're not trying to rotate in a * key that we won't actually be using. */ if ((old_pkey != NULL) && (EVP_PKEY_cmp(old_pkey, X509_get_pubkey(cert)) == 1)) { entry->cm_key_next_marker = NULL; if (next_key != NULL) { cm_log(1, "Public key was not changed.\n"); free(next_key); next_key = NULL; } if (next_keyfile != NULL) { cm_log(1, "Removing candidate private key.\n"); if (remove(next_keyfile) != 0) { cm_log(1, "Error removing \"%s\": %s.\n", next_keyfile, strerror(errno)); } free(next_keyfile); next_keyfile = NULL; } } /* Now move on to the saving. */ pem = fopen(entry->cm_cert_storage_location, "w"); if (pem != NULL) { if (PEM_write_X509(pem, cert) == 0) { switch (errno) { case EACCES: case EPERM: status = CM_CERTSAVE_STATUS_PERMS; break; default: status = CM_CERTSAVE_STATUS_INTERNAL_ERROR; break; } cm_log(1, "Error saving certificate " "to '%s': %s.\n", entry->cm_cert_storage_location, strerror(errno)); } else { /* If we're replacing the private key * too, handle that. */ if ((entry->cm_key_storage_location != NULL) && (next_key != NULL)) { /* If we're saving a copy of * the old key, take care of * that first. */ if ((old_keyfile != NULL) && (old_key != NULL)) { /* Remove anything by * the name we want * to use for storing * the old key. */ if (remove(old_keyfile) != 0) { cm_log(1, "Error removing \"%s\": %s.\n", old_keyfile, strerror(errno)); } /* Store the old key to * the file whose name * we constructed * earlier. */ write_file_contents(old_keyfile, old_key, "old key file", PR_TRUE, entry); } /* Overwrite the key file with * the new key. */ write_file_contents(entry->cm_key_storage_location, next_key, "key file", PR_TRUE, entry); if (remove(next_keyfile) != 0) { cm_log(1, "Error removing \"%s\": %s.\n", next_keyfile, strerror(errno)); } } else if ((entry->cm_key_storage_location != NULL) && (old_key != NULL)) { /* Overwrite the key file with * its own contents, to reuse * the logic that fixes up its * ownership and permissions. */ write_file_contents(entry->cm_key_storage_location, old_key, "key file", PR_TRUE, entry); } status = CM_CERTSAVE_STATUS_SAVED; } /* Fixup the ownership and permissions on the * certificate file. */ util_set_fd_entry_cert_owner(fileno(pem), entry->cm_cert_storage_location, entry); fclose(pem); } else { switch (errno) { case EACCES: case EPERM: status = CM_CERTSAVE_STATUS_PERMS; break; default: status = CM_CERTSAVE_STATUS_INTERNAL_ERROR; break; } cm_log(1, "Error saving certificate " "to '%s': %s.\n", entry->cm_cert_storage_location, strerror(errno)); } X509_free(cert); } else { cm_log(1, "Error parsing certificate for saving.\n"); status = CM_CERTSAVE_STATUS_INTERNAL_ERROR; } BIO_free(bio); } else { cm_log(1, "Error setting up to parse certificate.\n"); status = CM_CERTSAVE_STATUS_INTERNAL_ERROR; } if (old_pkey != NULL) { EVP_PKEY_free(old_pkey); } free(next_key); free(old_key); free(old_cert); free(next_keyfile); if (status != 0) { _exit(status); } return 0; } /* Check if something changed, for example we finished saving the cert. */ static int cm_certsave_o_ready(struct cm_certsave_state *state) { return cm_subproc_ready(state->subproc); } /* Check if we saved the certificate -- the child exited with status 0. */ static int cm_certsave_o_saved(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_SAVED)) { return -1; } if ((state->entry->cm_key_next_marker != NULL) && (strlen(state->entry->cm_key_next_marker) > 0)) { state->entry->cm_key_requested_count = state->entry->cm_key_next_requested_count; state->entry->cm_key_next_requested_count = 0; state->entry->cm_key_generated_date = state->entry->cm_key_next_generated_date; state->entry->cm_key_next_generated_date = 0; state->entry->cm_key_issued_count = 1; } else { state->entry->cm_key_issued_count++; } state->entry->cm_key_next_marker = NULL; return 0; } /* Check if we failed because the subject was already there with a different * nickname. */ static int cm_certsave_o_conflict_subject(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_SUBJECT_CONFLICT)) { return -1; } return 0; } /* Check if we failed because the nickname was already taken by a different * subject. */ static int cm_certsave_o_conflict_nickname(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_NICKNAME_CONFLICT)) { return -1; } return 0; } /* Check if we failed because we couldn't read or write to the storage * location. */ static int cm_certsave_o_permissions_error(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_PERMS)) { return -1; } return 0; } /* Check if we failed because the right token wasn't present. */ static int cm_certsave_o_token_error(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_NO_TOKEN)) { return -1; } return 0; } /* Check if we failed because we didn't have the right PIN or password to * access the storage location. */ static int cm_certsave_o_pin_error(struct cm_certsave_state *state) { int status; status = cm_subproc_get_exitstatus(state->subproc); if (!WIFEXITED(status) || (WEXITSTATUS(status) != CM_CERTSAVE_STATUS_AUTH)) { return -1; } return 0; } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_certsave_o_get_fd(struct cm_certsave_state *state) { return cm_subproc_get_fd(state->subproc); } /* Clean up after saving the certificate. */ static void cm_certsave_o_done(struct cm_certsave_state *state) { if (state->subproc != NULL) { cm_subproc_done(state->subproc); } talloc_free(state); } /* Start writing the certificate from the entry to the configured location. */ struct cm_certsave_state * cm_certsave_o_start(struct cm_store_entry *entry) { struct cm_certsave_state *state; if (entry->cm_cert_storage_type != cm_cert_storage_file) { cm_log(1, "Wrong save method: can only save certificates " "to files.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = cm_certsave_o_ready; state->pvt.get_fd = cm_certsave_o_get_fd; state->pvt.saved = cm_certsave_o_saved; state->pvt.done = cm_certsave_o_done; state->pvt.conflict_subject = cm_certsave_o_conflict_subject; state->pvt.conflict_nickname = cm_certsave_o_conflict_nickname; state->pvt.permissions_error = cm_certsave_o_permissions_error; state->pvt.token_error = cm_certsave_o_token_error; state->pvt.pin_error = cm_certsave_o_pin_error; state->entry = entry; state->subproc = cm_subproc_start(cm_certsave_o_main, state, NULL, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/certread-o.c0000664000175000017500000001014012645513264013670 00000000000000/* * Copyright (C) 2009,2010,2011,2014 Red Hat, Inc. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "config.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include "certread.h" #include "certread-int.h" #include "log.h" #include "store.h" #include "store-int.h" #include "subproc.h" #include "util-o.h" struct cm_certread_state { struct cm_certread_state_pvt pvt; struct cm_store_entry *entry; struct cm_subproc_state *subproc; }; static int cm_certread_o_main(int fd, struct cm_store_ca *ca, struct cm_store_entry *entry, void *userdata) { FILE *pem, *fp; X509 *cert; int status, len; char buf[LINE_MAX]; unsigned char *der; long error; if (entry->cm_cert_storage_location == NULL) { cm_log(1, "Error reading certificate: no location " "specified.\n"); _exit(1); } util_o_init(); ERR_load_crypto_strings(); status = CM_SUB_STATUS_INTERNAL_ERROR; fp = fdopen(fd, "w"); if (fp == NULL) { cm_log(1, "Unable to initialize I/O.\n"); _exit(1); } pem = fopen(entry->cm_cert_storage_location, "r"); if (pem != NULL) { cert = PEM_read_X509(pem, NULL, NULL, NULL); if (cert != NULL) { status = 0; } else { cm_log(1, "Internal error reading cert from \"%s\".\n", entry->cm_cert_storage_location); } fclose(pem); } else { if (errno != ENOENT) { cm_log(1, "Error opening cert file '%s' " "for reading: %s.\n", entry->cm_cert_storage_location, strerror(errno)); } cert = NULL; } if (status == 0) { der = NULL; len = i2d_X509(cert, &der); cm_certread_n_parse(entry, der, len); cm_certread_write_data_to_pipe(entry, fp); } else { while ((error = ERR_get_error()) != 0) { ERR_error_string_n(error, buf, sizeof(buf)); cm_log(1, "%s\n", buf); } } fclose(fp); _exit(0); } /* Check if something changed, for example we finished reading the data we need * from the cert. */ static int cm_certread_o_ready(struct cm_certread_state *state) { return cm_subproc_ready(state->subproc); } /* Get a selectable-for-read descriptor we can poll for status changes. */ static int cm_certread_o_get_fd(struct cm_certread_state *state) { return cm_subproc_get_fd(state->subproc); } /* Clean up after reading the certificate. */ static void cm_certread_o_done(struct cm_certread_state *state) { if (state->subproc != NULL) { cm_certread_read_data_from_buffer(state->entry, cm_subproc_get_msg(state->subproc, NULL)); cm_subproc_done(state->subproc); } talloc_free(state); } /* Start reading the certificate from the configured location. */ struct cm_certread_state * cm_certread_o_start(struct cm_store_entry *entry) { struct cm_certread_state *state; if (entry->cm_cert_storage_type != cm_cert_storage_file) { cm_log(1, "Wrong read method: can only read certificates " "from a file.\n"); return NULL; } state = talloc_ptrtype(entry, state); if (state != NULL) { memset(state, 0, sizeof(*state)); state->pvt.ready = cm_certread_o_ready; state->pvt.get_fd= cm_certread_o_get_fd; state->pvt.done= cm_certread_o_done; state->entry = entry; state->subproc = cm_subproc_start(cm_certread_o_main, state, NULL, entry, NULL); if (state->subproc == NULL) { talloc_free(state); state = NULL; } } return state; } certmonger-0.78.6/src/selfsign-getcert.1.in0000664000175000017500000000406612645513264015445 00000000000000.TH certmonger 1 "3 November 2009" "certmonger Manual" .SH NAME selfsign-getcert .SH SYNOPSIS selfsign-getcert request [options] selfsign-getcert resubmit [options] selfsign-getcert start-tracking [options] selfsign-getcert status [options] selfsign-getcert stop-tracking [options] selfsign-getcert list [options] selfsign-getcert list-cas [options] selfsign-getcert refresh-cas [options] .SH DESCRIPTION The \fIselfsign-getcert\fR tool issues requests to a @CM_DBUS_NAME@ service on behalf of the invoking user. It can ask the service to begin enrollment, optionally generating a key pair to use, it can ask the service to begin monitoring a certificate in a specified location for expiration, and optionally to refresh it when expiration nears, it can list the set of certificates that the service is already monitoring, or it can list the set of CAs that the service is capable of using. If no command is given as the first command-line argument, \fIselfsign-getcert\fR will print short usage information for each of its functions. The \fIselfsign-getcert\fR tool behaves identically to the generic \fIgetcert\fR tool when it is used with the \fB-c \fI@CM_SELF_SIGN_CA_NAME@\fR option. \fBcertmonger\fR's self-signer doesn't use root certificates. While the \fB-F\fR and \fB-a\fR options will still be recognized, they will effectively be ignored. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/local-getcert.1.in0000664000175000017500000000415612645513264014725 00000000000000.TH certmonger 1 "7 June 2014" "certmonger Manual" .SH NAME local-getcert .SH SYNOPSIS local-getcert request [options] local-getcert resubmit [options] local-getcert start-tracking [options] local-getcert status [options] local-getcert stop-tracking [options] local-getcert list [options] local-getcert list-cas [options] local-getcert refresh-cas [options] .SH DESCRIPTION The \fIlocal-getcert\fR tool issues requests to a @CM_DBUS_NAME@ service on behalf of the invoking user. It can ask the service to begin enrollment, optionally generating a key pair to use, it can ask the service to begin monitoring a certificate in a specified location for expiration, and optionally to refresh it when expiration nears, it can list the set of certificates that the service is already monitoring, or it can list the set of CAs that the service is capable of using. If no command is given as the first command-line argument, \fIlocal-getcert\fR will print short usage information for each of its functions. The \fIlocal-getcert\fR tool behaves identically to the generic \fIgetcert\fR tool when it is used with the \fB-c \fIlocal\fR option. \fBcertmonger\fR supports retrieving the list of current and previously-used local CA certificates. See \fBgetcert-request\fR(1) and \fBgetcert-resubmit\fR(1) for information about using the \fB-F\fR and \fB-a\fR options to specify where those certificates should be stored. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/ipa-getcert.1.in0000664000175000017500000000411112645513264014373 00000000000000.TH certmonger 1 "3 November 2009" "certmonger Manual" .SH NAME ipa-getcert .SH SYNOPSIS ipa-getcert request [options] ipa-getcert resubmit [options] ipa-getcert start-tracking [options] ipa-getcert status [options] ipa-getcert stop-tracking [options] ipa-getcert list [options] ipa-getcert list-cas [options] ipa-getcert refresh-cas [options] .SH DESCRIPTION The \fIipa-getcert\fR tool issues requests to a @CM_DBUS_NAME@ service on behalf of the invoking user. It can ask the service to begin enrollment, optionally generating a key pair to use, it can ask the service to begin monitoring a certificate in a specified location for expiration, and optionally to refresh it when expiration nears, it can list the set of certificates that the service is already monitoring, or it can list the set of CAs that the service is capable of using. If no command is given as the first command-line argument, \fIipa-getcert\fR will print short usage information for each of its functions. The \fIipa-getcert\fR tool behaves identically to the generic \fIgetcert\fR tool when it is used with the \fB-c \fI@CM_IPA_CA_NAME@\fR option. \fBcertmonger\fR supports retrieving trusted certificates from IPA CAs. See \fBgetcert-request\fR(1) and \fBgetcert-resubmit\fR(1) for information about using the \fB-F\fR and \fB-a\fR options to specify where those certificates should be stored. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/introspect.sh.in0000664000175000017500000000055512645513264014643 00000000000000#!/bin/sh -x if test -n "$@CERTMONGER_PVT_ADDRESS_ENV@" ; then address=--address="$@CERTMONGER_PVT_ADDRESS_ENV@" else address="--system --dest=@CM_DBUS_NAME@" fi for object in "$@" ; do case "$object" in --*) address="$object" object= ;; *) dbus-send $address --print-reply "${object:-/}" org.freedesktop.DBus.Introspectable.Introspect ;; esac done certmonger-0.78.6/src/getcert.1.in0000664000175000017500000000437012645513264013633 00000000000000.TH certmonger 1 "3 November 2009" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert request [options] getcert resubmit [options] getcert start-tracking [options] getcert status [options] getcert stop-tracking [options] getcert list [options] getcert list-cas [options] getcert refresh-cas [options] .SH DESCRIPTION The \fIgetcert\fR tool issues requests to a @CM_DBUS_NAME@ service on behalf of the invoking user. It can ask the service to begin enrollment, optionally generating a key pair to use, it can ask the service to begin monitoring a certificate in a specified location for expiration, and optionally to refresh it when expiration nears, it can list the set of certificates that the service is already monitoring, or it can list the set of CAs that the service is capable of using. If no command is given as the first command-line argument, \fIgetcert\fR will print short usage information for each of its functions. If \fIgetcert\fR is invoked by a user with UID 0, and there is no system bus available, \fIgetcert\fR will attempt to launch a temporary copy of the \fIcertmonger\fR daemon to handle its requests. .SH COMMON ARGUMENTS If \fI@CERTMONGER_PVT_ADDRESS_ENV@\fR is set in the environment, \fIgetcert\fR contacts the service directly at the specified location. All commands can take either the \fB-s\fR or \fB-S\fR arguments, which instruct \fIgetcert\fR to contact the @CM_DBUS_NAME@ service on the session or system bus, if no value is set. By default, \fIgetcert\fR consults the @CM_DBUS_NAME@ service attached to the system bus. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-stop-tracking.1.in0000664000175000017500000000367712645513264016427 00000000000000.TH certmonger 1 "3 November 2009" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert stop-tracking [options] .SH DESCRIPTION Tells \fIcertmonger\fR to stop monitoring or attempting to obtain or refresh a certificate. .SH TRACKING OPTIONS .TP \fB\-i\fR NAME The certificate was tracked using the request with the specified nickname. If this option is not specified, some combination of \fB\-d\fR and \fB\-n\fR or \fB\-f\fR can be used to specify which certificate should henceforth be forgotten. .SH KEY AND CERTIFICATE STORAGE OPTIONS .TP \fB\-d\fR DIR The certificate is the one stored in the specified NSS database. .TP \fB\-n\fR NAME The certificate is the one which has this nickname. Only valid with \fB\-d\fR. .TP \fB\-t\fR TOKEN If the NSS database has more than one token available, the certificate is stored in this token. This argument only rarely needs to be specified. Only valid with \fB\-d\fR. .TP \fB\-f\fR FILE The certificate is or was to be stored in this file. .TP \fB\-k\fR FILE The private key is or was to be stored in this file. Only valid with \fB\-f\fR. .SH OTHER OPTIONS .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-status.1.in0000664000175000017500000000350212645513264015150 00000000000000.TH certmonger 1 "13 June 2014" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert status [options] .SH DESCRIPTION Queries \fIcertmonger\fR for a status of a particular certificate request and sets an exit status to reflect that status. .SH SELECTION OPTIONS .TP \fB\-d\fR DIR Check that status of a certificate in the named NSS database. Must be specified with the \fB-n\fR option. .TP \fB\-n\fR NAME Check that status of a certificate in with the specified nickname. Must be specified with the \fB-d\fR option. .TP \fB\-f\fR FILE Check that status of a certificate stored in the specified PEM file. .TP \fB\-i\fR NAME Check that status of a certificate with the specified request nickname. .SH EXIT STATUS .TP 0 Certificate is issued and valid. .TP 1 There was an error communicating with the \fBcertmonger\fR(8) daemon, or there is no such certificate known to it. .TP 2. Certificate signing request was rejected by the CA. .TP 3. CA could not be reached, but attempts to communicate with it will be retried. .TP 4. Configuration error. .TP 5. Client is working on the request, or waiting for the server. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-start-tracking.1.in0000664000175000017500000001552712645513264016574 00000000000000.TH certmonger 1 "9 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert start-tracking [options] .SH DESCRIPTION Tells \fIcertmonger\fR to monitor an already-issued certificate. Optionally, when the certificate nears expiration, use an existing key pair (or to generate one if one is not already found in the specified location), to generate a signing request using the key pair and to submit them for signing to a CA. .SH SPECIFYING EXISTING REQUESTS .TP \fB\-i\fR NAME Modify the request which has this nickname. If this option is not specified, and a tracking entry which matches the key and certificate storage options which are specified already exists, that entry will be modified. Otherwise, a new tracking entry will be added. .SH KEY AND CERTIFICATE STORAGE OPTIONS .TP \fB\-d\fR DIR Use an NSS database in the specified directory for reading this certificate and, if possible, the corresponding key. .TP \fB\-n\fR NAME Use the certificate with this nickname, and if a private key with the same nickname or which corresponds to the certificate is available, to use it, too. Only valid with \fB\-d\fR. .TP \fB\-t\fR TOKEN If the NSS database has more than one token available, use the token with this name for accessing the certificate and key. This argument only rarely needs to be specified. Only valid with \fB\-d\fR. .TP \fB\-f\fR FILE Read the certificate from this file. For safety's sake, do not use the same file specified with the \fB\-k\fR option. .TP \fB\-k\fR FILE Use the key stored in this file to generate a signing request for refreshing the certificate. If no such file is found when needed, generate a new key pair and store them in the file. Only valid with \fB\-f\fR. .SH KEY ENCRYPTION OPTIONS .TP \fB\-p\fR FILE The private key files or databases are encrypted using the PIN stored in the named file as the passphrase. .TP \fB\-P\fR PIN The private key files or databases are encrypted using the specified PIN as the passphrase. Because command-line arguments to running processes are trivially discoverable, use of this option is not recommended except for testing. .SH TRACKING OPTIONS .TP \fB\-I\fR NAME Assign the specified nickname to this task. If this option is not specified, a name will be assigned automatically. .TP \fB\-r\fR Attempt to obtain a new certificate from the CA when the expiration date of a certificate nears. This is the default setting. .TP \fB\-R\fR Don't attempt to obtain a new certificate from the CA when the expiration date of a certificate nears. If this option is specified, an expired certificate will simply stay expired. .SH ENROLLMENT OPTIONS .TP \fB\-c\fR NAME Enroll with the specified CA rather than a possible default. The name of the CA should correspond to one listed by \fIgetcert list-cas\fR. Only useful in combination with \fB\-r\fR. .TP \fB\-T\fR NAME Request a certificate using the named profile, template, or certtype, from the specified CA. .SH SIGNING REQUEST OPTIONS If and when \fIcertmonger\fR attempts to obtain a new certificate to replace the one being monitored, the values to be added to the signing request will be taken from the current certificate, unless preferred values are set using one or more of \fB-u\R, \fB\-U\fR, \fB\-K\fR, \fB\-E\fR, and \fB\-D\fR. .TP \fB\-u\fR keyUsage Add an extensionRequest for the specified keyUsage to the signing request. The keyUsage value is expected to be one of these names: digitalSignature nonRepudiation keyEncipherment dataEncipherment keyAgreement keyCertSign cRLSign encipherOnly decipherOnly .TP \fB\-U\fR EKU Add an extensionRequest for the specified extendedKeyUsage to the signing request. The EKU value is expected to be an object identifier (OID). .TP \fB\-K\fR NAME Add an extensionRequest for a subjectAltName, with the specified Kerberos principal name as its value, to the signing request. .TP \fB\-E\fR EMAIL Add an extensionRequest for a subjectAltName, with the specified email address as its value, to the signing request. .TP \fB\-D\fR DNSNAME Add an extensionRequest for a subjectAltName, with the specified DNS name as its value, to the signing request. \fB\-A\fR ADDRESS Add an extensionRequest for a subjectAltName, with the specified IP address as its value, to the signing request. .TP \fB\-l\fR FILE Add an optional ChallengePassword value, read from the file, to the signing request. A ChallengePassword is often required when the CA is accessed using SCEP. .TP \fB\-L\fR PIN Add the argument value to the signing request as a ChallengePassword attribute. A ChallengePassword is often required when the CA is accessed using SCEP. .SH OTHER OPTIONS .TP \fB\-B\fR COMMAND When ever the certificate or the CA's certificates are saved to the specified locations, run the specified command as the client user before saving the certificates. .TP \fB\-C\fR COMMAND When ever the certificate or the CA's certificates are saved to the specified locations, run the specified command as the client user after saving the certificates. .TP \fB\-a\fR DIR When ever the certificate is saved to the specified location, if root certificates for the CA are available, save them to the specified NSS database. .TP \fB\-F\fR FILE When ever the certificate is saved to the specified location, if root certificates for the CA are available, and when the local copies of the CA's root certificates are updated, save them to the specified file. .TP \fB\-w\fR Wait for the certificate to become valid or to be reissued and saved, or for the attempt to obtain a new one to fail. .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH NOTES Locations specified for key and certificate storage need to be accessible to the \fIcertmonger\fR daemon process. When run as a system daemon on a system which uses a mandatory access control mechanism such as SELinux, the system policy must ensure that the daemon is allowed to access the locations where certificates and keys that it will manage will be stored (these locations are typically labeled as \fIcert_t\fR or an equivalent). More SELinux-specific information can be found in the \fIselinux.txt\fR documentation file for this package. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-resubmit.1.in0000664000175000017500000001173312645513264015464 00000000000000.TH certmonger 1 "9 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert resubmit [options] .SH DESCRIPTION Tells \fIcertmonger\fR to generate (or regenerate) a signing request and submit (or resubmit) the signing request to a CA for signing. .SH SPECIFYING REQUESTS BY NICKNAME .TP \fB\-i\fR NAME Resubmit a signing request for the tracking request which has this nickname. If this option is not specified, and a tracking entry which matches the key and certificate storage options which are specified already exists, that entry will be used. If not specified, the location of the certificate should be specified with either a combination of the \fB\-d\fR and \fB\-n\fR options, or with the \fB\-f\fR option. .SH SPECIFYING REQUESTS BY CERTIFICATE LOCATION .TP \fB\-d\fR DIR The certificate is in the NSS database in the specified directory. .TP \fB\-n\fR NAME The certificate in the NSS database named with \fB\-d\fR has the specified nickname. Only valid with \fB\-d\fR. .TP \fB\-t\fR TOKEN If the NSS database has more than one token available, the certificate is stored in this token. This argument only rarely needs to be specified. Only valid with \fB\-d\fR. .TP \fB\-f\fR FILE The certificate is stored in the named file. .SH ENROLLMENT OPTIONS .TP \fB\-c\fR NAME Submit the new signing request to the specified CA rather than the one which was previously associated with this certificate. The name of the CA should correspond to one listed by \fIgetcert list-cas\fR. .TP \fB\-T\fR NAME Request a certificate using the named profile, template, or certtype, from the specified CA. .TP \fB\-I\fR NAME Assign the specified nickname to this task, replacing the previous nickname. .SH SIGNING REQUEST OPTIONS .TP \fB\-N\fR NAME Change the subject name to include in the signing request. .TP \fB\-u\fR keyUsage Add an extensionRequest for the specified keyUsage to the signing request. The keyUsage value is expected to be one of these names: digitalSignature nonRepudiation keyEncipherment dataEncipherment keyAgreement keyCertSign cRLSign encipherOnly decipherOnly .TP \fB\-U\fR EKU Change the extendedKeyUsage value specified in an extendedKeyUsage extension part of the extensionRequest attribute in the signing request. The EKU value is expected to be an object identifier (OID). .TP \fB\-K\fR NAME Change the Kerberos principal name specified as part of a subjectAltName extension part of the extensionRequest attribute in the signing request. .TP \fB\-E\fR EMAIL Change the email address specified as part of a subjectAltName extension part of the extensionRequest attribute in the signing request. .TP \fB\-D\fR DNSNAME Change the DNS name specified as part of a subjectAltName extension part of the extensionRequest attribute in the signing request. .TP \fB\-A\fR ADDRESS Change the IP address specified as part of a subjectAltName extension part of the extensionRequest attribute in the signing request. .TP \fB\-l\fR FILE Add an optional ChallengePassword value, read from the file, to the signing request. A ChallengePassword is often required when the CA is accessed using SCEP. .TP \fB\-L\fR PIN Add the argument value to the signing request as a ChallengePassword attribute. A ChallengePassword is often required when the CA is accessed using SCEP. .SH OTHER OPTIONS .TP \fB\-B\fR COMMAND When ever the certificate or the CA's certificates are saved to the specified locations, run the specified command as the client user before saving the certificates. .TP \fB\-C\fR COMMAND When ever the certificate or the CA's certificates are saved to the specified locations, run the specified command as the client user after saving the certificates. .TP \fB\-a\fR DIR When ever the certificate is saved to the specified location, if root certificates for the CA are available, save them to the specified NSS database. .TP \fB\-F\fR FILE When ever the certificate is saved to the specified location, if root certificates for the CA are available, and when the local copies of the CA's root certificates are updated, save them to the specified file. .TP \fB\-w\fR Wait for the certificate to be reissued and saved, or for the attempt to obtain one to fail. .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-request.1.in0000664000175000017500000001640112645513264015317 00000000000000.TH certmonger 1 "9 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert request [options] .SH DESCRIPTION Tells \fIcertmonger\fR to use an existing key pair (or to generate one if one is not already found in the specified location), to generate a signing request using the key pair, and to submit them for signing to a CA. .SH KEY AND CERTIFICATE STORAGE OPTIONS .TP \fB\-d\fR DIR Use an NSS database in the specified directory for storing this certificate and key. .TP \fB\-n\fR NAME Use the key with this nickname to generate the signing request. If no such key is found, generate one. Give the enrolled certificate this nickname, too. Only valid with \fB\-d\fR. .TP \fB\-t\fR TOKEN If the NSS database has more than one token available, use the token with this name for storing and accessing the certificate and key. This argument only rarely needs to be specified. Only valid with \fB\-d\fR. .TP \fB\-f\fR FILE Store the issued certificate in this file. For safety's sake, do not use the same file specified with the \fB\-k\fR option. .TP \fB\-k\fR FILE Use the key stored in this file to generate the signing request. If no such file is found, generate a new key pair and store them in the file. Only valid with \fB\-f\fR. .SH KEY ENCRYPTION OPTIONS .TP \fB\-p\fR FILE Encrypt private key files or databases using the PIN stored in the named file as the passphrase. .TP \fB\-P\fR PIN Encrypt private key files or databases using the specified PIN as the passphrase. Because command-line arguments to running processes are trivially discoverable, use of this option is not recommended except for testing. .SH KEY GENERATION OPTIONS .TP \fB\-G\fR TYPE In case a new key pair needs to be generated, this option specifies the type of the keys to be generated. If not specified, a reasonable default (currently \fIRSA\fR) will be used. .TP \fB\-g\fR BITS In case a new key pair needs to be generated, this option specifies the size of the key. If not specified, a reasonable default (currently @CM_DEFAULT_PUBKEY_SIZE@ bits) will be used. .SH TRACKING OPTIONS .TP \fB\-r\fR Attempt to obtain a new certificate from the CA when the expiration date of a certificate nears. This is the default setting. .TP \fB\-R\fR Don't attempt to obtain a new certificate from the CA when the expiration date of a certificate nears. If this option is specified, an expired certificate will simply stay expired. .TP \fB\-I\fR NAME Assign the specified nickname to this task. If this option is not specified, a name will be assigned automatically. .SH ENROLLMENT OPTIONS .TP \fB\-c\fR NAME Enroll with the specified CA rather than a possible default. The name of the CA should correspond to one listed by \fIgetcert list-cas\fR. .TP \fB\-T\fR NAME Request a certificate using the named profile, template, or certtype, from the specified CA. .SH SIGNING REQUEST OPTIONS If none of \fB\-N\fR, \fB\-U\fR, \fB\-K\fR, \fB\-E\fR, and \fB\-D\fR are specified, a default group of settings will be used to request an SSL server certificate for the current host, with the \fIhost\fR Kerberos service as an additional name. .TP \fB\-N\fR NAME Set the subject name to include in the signing request. The default used is CN=\fIhostname\fR, where \fIhostname\fR is the local hostname. .TP \fB\-u\fR keyUsage Add an extensionRequest for the specified keyUsage to the signing request. The keyUsage value is expected to be one of these names: digitalSignature nonRepudiation keyEncipherment dataEncipherment keyAgreement keyCertSign cRLSign encipherOnly decipherOnly .TP \fB\-U\fR EKU Add an extensionRequest for the specified extendedKeyUsage to the signing request. The EKU value is expected to be an object identifier (OID), but some specific names are also recognized. These are some names and their associated OID values: id-kp-serverAuth 1.3.6.1.5.5.7.3.1 id-kp-clientAuth 1.3.6.1.5.5.7.3.2 id-kp-codeSigning 1.3.6.1.5.5.7.3.3 id-kp-emailProtection 1.3.6.1.5.5.7.3.4 id-kp-timeStamping 1.3.6.1.5.5.7.3.8 id-kp-OCSPSigning 1.3.6.1.5.5.7.3.9 id-pkinit-KPClientAuth 1.3.6.1.5.2.3.4 id-pkinit-KPKdc 1.3.6.1.5.2.3.5 id-ms-kp-sc-logon 1.3.6.1.4.1.311.20.2.2 .TP \fB\-K\fR NAME Add an extensionRequest for a subjectAltName, with the specified Kerberos principal name as its value, to the signing request. .TP \fB\-E\fR EMAIL Add an extensionRequest for a subjectAltName, with the specified email address as its value, to the signing request. .TP \fB\-D\fR DNSNAME Add an extensionRequest for a subjectAltName, with the specified DNS name as its value, to the signing request. .TP \fB\-A\fR ADDRESS Add an extensionRequest for a subjectAltName, with the specified IP address as its value, to the signing request. .TP \fB\-l\fR FILE Add an optional ChallengePassword value, read from the file, to the signing request. A ChallengePassword is often required when the CA is accessed using SCEP. .TP \fB\-L\fR PIN Add the argument value to the signing request as a ChallengePassword attribute. A ChallengePassword is often required when the CA is accessed using SCEP. .SH OTHER OPTIONS .TP \fB\-B\fR COMMAND When ever the certificate or the CA's certificates are saved to the specified locations, run the specified command as the client user before saving the certificates. .TP \fB\-C\fR COMMAND When ever the certificate or the CA's certificates are saved to the specified locations, run the specified command as the client user after saving the certificates. .TP \fB\-a\fR DIR When ever the certificate is saved to the specified location, if root certificates for the CA are available, save them to the specified NSS database. .TP \fB\-F\fR FILE When ever the certificate is saved to the specified location, if root certificates for the CA are available, and when the local copies of the CA's root certificates are updated, save them to the specified file. .TP \fB\-w\fR Wait for the certificate to be issued and saved, or for the attempt to obtain one to fail. .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH NOTES Locations specified for key and certificate storage need to be accessible to the \fIcertmonger\fR daemon process. When run as a system daemon on a system which uses a mandatory access control mechanism such as SELinux, the system policy must ensure that the daemon is allowed to access the locations where certificates and keys that it will manage will be stored (these locations are typically labeled as \fIcert_t\fR or an equivalent). More SELinux-specific information can be found in the \fIselinux.txt\fR documentation file for this package. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-remove-ca.1.in0000664000175000017500000000225412645513264015506 00000000000000.TH certmonger 1 "24 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert remove-ca [options] .SH DESCRIPTION Remove a CA configuration from \fIcertmonger\fR. Enrollment requests which reference the CA will behave as though they have no assigned CA. .SH OPTIONS .TP \fB\-c\fR NAME The nickname of the CA configuration to remove. .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-refresh.1.in0000664000175000017500000000410412645513264015262 00000000000000.TH certmonger 1 "21 July 2014" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert refresh [options] .SH DESCRIPTION Forces \fIcertmonger\fR to immediately check on the status of an enrollment request for which it was either unable to contact a CA or for which it is waiting for the CA. .SH SPECIFYING REQUESTS BY NICKNAME .TP \fB\-i\fR NAME Check on the status of the signing request which has this nickname. If this option is not specified, and a tracking entry which matches the certificate storage options which are specified already exists, that entry will be used. If not specified, the location of the certificate should be specified with either a combination of the \fB\-d\fR and \fB\-n\fR options, or with the \fB\-f\fR option. .SH SPECIFYING REQUESTS BY CERTIFICATE LOCATION .TP \fB\-d\fR DIR The certificate is in the NSS database in the specified directory. .TP \fB\-n\fR NAME The certificate in the NSS database named with \fB\-d\fR has the specified nickname. Only valid with \fB\-d\fR. .TP \fB\-t\fR TOKEN If the NSS database has more than one token available, the certificate is stored in this token. This argument only rarely needs to be specified. Only valid with \fB\-d\fR. .TP \fB\-f\fR FILE The certificate is stored in the named file. .SH OPTIONS .TP \fB\-a\fR Refresh information about all requests for which the service will need to attempt to contact the CA again. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-refresh-ca.1.in0000664000175000017500000000212212645513264015641 00000000000000.TH certmonger 1 "29 May 2014" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert refresh-ca [options] .SH DESCRIPTION Forces \fIcertmonger\fR to refresh information specific to a CA, such as locally-stored copies of its certificates. .SH OPTIONS .TP \fB\-c\fR NAME Refresh information about the CA which has the specified nickname. .TP \fB\-a\fR Refresh information about all known CAs. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-modify-ca.1.in0000664000175000017500000000226612645513264015503 00000000000000.TH certmonger 1 "24 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert modify-ca [options] .SH DESCRIPTION Modifies the helper command in a \fIcertmonger\fR CA configuration. .SH OPTIONS .TP \fB\-c\fR NAME The nickname of the CA configuration to modify. .TP \fB\-e\fR COMMAND The new helper command to run for communicating with the CA. .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-list.1.in0000664000175000017500000003044412645513264014605 00000000000000.TH certmonger 1 "25 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert list [options] .SH DESCRIPTION Queries \fIcertmonger\fR for a list of certificates which it is monitoring or attempting to obtain. .SH ENROLLMENT OPTIONS .TP \fB\-c\fR NAME List only entries which use the specified CA. The name of the CA should correspond to one listed by \fIgetcert list-cas\fR. .SH LISTING OPTIONS .TP \fB\-r\fR List only entries which are either currently being enrolled or refreshed. .TP \fB\-t\fR List only entries which are not currently being enrolled or refreshed. .TP \fB\-d\fR DIR List only entries which use an NSS database in the specified directory for storing the certificate. .TP \fB\-n\fR NAME List only tracking requests which use an NSS database and the specified nickname for storing the certificate. .TP \fB\-f\fR FILE List only tracking requests which specify that the certificate should be stored in the specified file. .TP \fB\-i\fR NAME List only tracking requests which use this request nickname. .SH STATES .TP NEED_KEY_PAIR The service is about to generate a new key pair. .TP GENERATING_KEY_PAIR The service is currently generating a new key pair. .TP NEED_KEY_GEN_PERMS The service encountered a filesystem permission error while attempting to save the newly-generated key pair. .TP NEED_KEY_GEN_PIN The service is missing the PIN which is required to access an NSS database in order to save the newly-generated key pair, or it has an incorrect PIN for a database. .TP NEED_KEY_GEN_TOKEN The service was unable to find a suitable token to use for generating the new key pair. .TP HAVE_KEY_PAIR The service has successfully generated a new key pair. .TP NEED_KEYINFO The service needs to read information about the key pair. .TP READING_KEYINFO The service is currently reading information about the key pair. .TP NEED_KEYINFO_READ_PIN The service is missing the PIN which is required to access an NSS database in order to read information about the newly-generated key pair, or it has an incorrect PIN for a database, or has an incorrect password for accessing a key stored in encrypted PEM format. .TP NEED_KEYINFO_READ_TOKEN The service was unable to find the token in which the key pair is supposed to be stored. .TP HAVE_KEYINFO The service has successfully read information about the key pair. .TP NEED_CSR The service is about to generate a new signing request. .TP GENERATING_CSR The service is generating a signing request. .TP NEED_CSR_GEN_PIN The service is missing the PIN which is required to access an NSS database in order to use the key pair, or it has an incorrect PIN for a database, or has an incorrect password for reading a key stored in encrypted PEM format. .TP NEED_CSR_GEN_TOKEN The service was unable to find the token in which the key pair is supposed to be stored. .TP HAVE_CSR The service has successfully generated a signing request. .TP NEED_SCEP_DATA The service is about to generate data specifically needed for connecting to a CA using SCEP. .TP GENERATING_SCEP_DATA The service is generating data specifically needed for connecting to a CA using SCEP. .TP NEED_SCEP_GEN_PIN The service is missing the PIN which is required to access an NSS database in order to use the key pair, or it has an incorrect PIN for a database, or has an incorrect password for reading a key stored in encrypted PEM format. .TP NEED_SCEP_GEN_TOKEN The service was unable to find the token in which the key pair is supposed to be stored. .TP NEED_SCEP_ENCRYPTION_CERT The service is waiting until it can retrieve a copy of the CA's certificate before it can generate data required for connecting to the CA using SCEP. .TP NEED_SCEP_RSA_CLIENT_KEY The CA should be contacted using SCEP, but SCEP requires the client key pair to be an RSA key pair, and it is not. .TP HAVE_SCEP_DATA The service has successfully generated data for use in SCEP. .TP NEED_TO_SUBMIT The service is about to submit a signing request to a CA for signing. .TP SUBMITTING The service is currently submitting a signing request to a CA for signing. .TP NEED_CA The service can't submit a request to a CA because it doesn't know which CA to use. .TP CA_UNREACHABLE The service was unable to contact the CA, but it will try again later. .TP CA_UNCONFIGURED The service is missing configuration which will be needed in order to successfully contact the CA. .TP CA_REJECTED The CA rejected the signing request. .TP CA_WORKING The CA has not yet approved or rejected the request. The service will check on the status of the request later. .TP NEED_TO_SAVE_CERT The CA approved the signing request, and the service is about to save the issued certificate to the location where it has been told to save it. .TP PRE_SAVE_CERT The service is running a configured pre-saving command before saving the newly-issued certificate to the location where it has been told to save it. .TP START_SAVING_CERT The service is starting to save the issued certificate to the location where it has been told to save it. .TP SAVING_CERT The service is attempting to save the issued certificate to the location where it has been told to save it. .TP NEED_CERTSAVE_PERMS The service encountered a filesystem permission error while attempting to save the newly-issued certificate to the location where it has been told to save it. .TP NEED_CERTSAVE_TOKEN The service is unable to find the token in which the newly-issued certificate is to be stored. .TP NEED_CERTSAVE_PIN The service is missing the PIN which is required to access an NSS database in order to save the newly-issued certificate to the location where it has been told to save it. .TP NEED_TO_SAVE_CA_CERTS The service is about to save the certificate of the issuing CA to the locations where it has been told to save them. .TP START_SAVING_CA_CERTS The service is starting to save the certificate of the issuing CA to the locations where it has been told to save them. .TP SAVING_CA_CERTS The service is saving the certificate of the issuing CA to the locations where it has been told to save them. .TP NEED_TO_SAVE_ONLY_CA_CERTS The service is about to save the certificate of the issuing CA to the locations where it has been told to save them. .TP START_SAVING_ONLY_CA_CERTS The service is starting to save the certificate of the issuing CA to the locations where it has been told to save them. .TP SAVING_ONLY_CA_CERTS The service is saving the certificate of the issuing CA to the locations where it has been told to save them. .TP NEED_CA_CERT_SAVE_PERMS NEED_ONLY_CA_CERT_SAVE_PERMS The service encountered a filesystem permission error while attempting to save the certificate of the issuing CA to the locations where it has been told to save them. .TP NEED_TO_READ_CERT The service is about to read the issued certificate from the location where it has been told to save it. .TP READING_CERT The service is reading the issued certificate from the location where it has been told to save it. .TP SAVED_CERT The service has finished finished saving the issued certificate and the issuer's certificate to the locations where it has been told to save them. .TP POST_SAVED_CERT The service is running a configured post-saving command after saving the newly-issued certificate to the location where it has been told to save them. .TP MONITORING The service is monitoring the certificate and waiting for its not-valid-after date to approach. This is expected to be the status most often seen. .TP NEED_TO_NOTIFY_VALIDITY The service is about to notify the system administrator that the certificate's not-valid-after date is approaching. .TP NOTIFYING_VALIDITY The service is notifying the system administrator that the certificate's not-valid-after date is approaching. .TP NEED_TO_NOTIFY_REJECTION The service is about to notify the system administrator that the CA rejected the signing request. .TP NOTIFYING_REJECTION The service is notifying the system administrator that the CA rejected the signing request. .TP NEED_TO_NOTIFY_ISSUED_SAVE_FAILED The service is needs to notify the system administrator that the CA issued a certificate, but that there was a problem saving the certificate to the location where the service was told to save it. .TP NOTIFYING_ISSUED_SAVE_FAILED The service is is notifying the system administrator that the CA issued a certificate, but that there was a problem saving the certificate to the location where the service was told to save it. .TP NEED_TO_NOTIFY_ISSUED_CA_SAVE_FAILED The service is needs to notify the system administrator that the CA issued a certificate, and the issued certificate was saved to the location where the service has been told to save it, but that there was a problem saving the CA's certificate to the locations where the service was told to save it. .TP NOTIFYING_ISSUED_CA_SAVE_FAILED The service is notifying the system administrator that the CA issued a certificate, and the issued certificate was saved to the location where the service has been told to save it, but that there was a problem saving the CA's certificate to the locations where the service was told to save it. .TP NEED_TO_NOTIFY_ISSUED_SAVED The service is needs to notify the system administrator that the CA issued a certificate and it has been saved to the location where the service has been told to save it. .TP NOTIFYING_ISSUED_SAVED The service is notifying the system administrator that the CA issued a certificate and it has been saved to the location where the service has been told to save it. .TP NEED_TO_NOTIFY_ONLY_CA_SAVE_FAILED The service needs to notify the system administrator that there was a problem saving the CA's certificates to the specified location. .TP NOTIFYING_ONLY_CA_SAVE_FAILED The service is notifying the system administrator that there was a problem saving the CA's certificates to the specified location. .TP NEED_GUIDANCE An unhandled error was encountered while attempting to contact the CA, or there is the service has just been told to monitor a certificate which does not exist and for which it has no location specified for storing a key pair that could be used to generate a signing request to obtain one. .TP NEWLY_ADDED The service has just been told to track a certificate, or to generate a signing request to obtain one. .TP NEWLY_ADDED_START_READING_KEYINFO The service has just been told to track a certificate, or to generate a signing request to obtain one, and is about to check if there is already a key pair present. .TP NEWLY_ADDED_READING_KEYINFO The service has just been told to track a certificate, or to generate a signing request to obtain one, and is checking if there is already a key pair present. .TP NEWLY_ADDED_NEED_KEYINFO_READ_PIN The service has just been told to track a certificate, or to generate a signing request to obtain one, and was unable to check if a key pair was present because it is missing the PIN which is required to access an NSS database, or because it has an incorrect PIN for a database. .TP NEWLY_ADDED_NEED_KEYINFO_READ_TOKEN The service has just been told to track a certificate, or to generate a signing request to obtain one, and was unable to check if a key pair was present because the token which should be used for storing the key pair is not present. .TP NEWLY_ADDED_START_READING_CERT The service has just been told to track a certificate, or to generate a signing request to obtain one, and is about to check if a certificate is already present in the specified location. .TP NEWLY_ADDED_READING_CERT The service has just been told to track a certificate, or to generate a signing request to obtain one, and is checking if a certificate is already present in the specified location. .TP NEWLY_ADDED_DECIDING The service has just been told to track a certificate, or to generate a signing request to obtain one, and is determining its next course of action. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-list-cas.1.in0000664000175000017500000000173712645513264015354 00000000000000.TH certmonger 1 "3 November 2009" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert list-cas [options] .SH DESCRIPTION Queries \fIcertmonger\fR for a list of known CAs. .SH OPTIONS .TP \fB\-c\fR NAME List only information about the CA which has the specified nickname. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-add-scep-ca.1.in0000664000175000017500000000600212645513264015664 00000000000000.TH certmonger 1 "24 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert add-scep-ca [options] .SH DESCRIPTION Adds a CA configuration to \fIcertmonger\fR, which can subsequently be used to enroll certificates. The configuration will use the bundled \fIscep-submit\fR helper. The \fIadd-scep-ca\fR command is more or less a wrapper for the \fIadd-ca\fR command. .SH OPTIONS .TP \fB\-c\fR NAME The nickname to give to this CA configuration. This same value can later be passed in to \fIgetcert\fR's \fIrequest\fR, \fIresubmit\fR, and \fIstart-tracking\fR commands using the \fB-c\fR flag. .TP \fB\-u\fR URL The location of the SCEP server's enrollment interface. This option must be specified. .TP \fB\-R\fR ca-certificate-file The location of a PEM-formatted copy of the SCEP server's CA's certificate. A discovered value is supplied by the certmonger daemon for use in verifying the signature on data returned by the SCEP server, but it is not used for verifying HTTPS server certificates. This option must be specified if the URL is an \fIhttps\fR location. .TP \fB\-r\fR ra-certificate-file The location of a PEM-formatted copy of the SCEP server's RA's certificate. A discovered value is normally supplied by the certmonger daemon, but one can be specified for troubleshooting purposes. .TP \fB\-I\fR other-certificates-file The location of a file containing other PEM-formatted certificates which may be needed in order to properly verify signed responses sent by the SCEP server back to the client. A discovered set is normally supplied by the certmonger daemon, but can be specified for troubleshooting purposes. .TP \fB\-i\fR identifier A CA identifier value which will passed to the server when the \fIscep-submit\fR helper is used to retrieve copies of the server's certificates. .TP \fB\-n\fR The SCEP Renewal feature allows a client with a previously-issued certificate to use that certificate and the associated private key to request a new certificate for a different key pair, and can be used to support \fIcertmonger\fR's rekeying feature if the SCEP server advertises support for it. This option forces the \fIscep-submit\fR helper to issue requests without making use of this feature. .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/getcert-add-ca.1.in0000664000175000017500000000301012645513264014730 00000000000000.TH certmonger 1 "24 February 2015" "certmonger Manual" .SH NAME getcert .SH SYNOPSIS getcert add-ca [options] .SH DESCRIPTION Adds a CA configuration to \fIcertmonger\fR, which can subsequently be used to enroll certificates. .SH OPTIONS .TP \fB\-c\fR NAME The nickname to give to this CA configuration. This same value can later be passed in to \fIgetcert\fR's \fIrequest\fR, \fIresubmit\fR, and \fIstart-tracking\fR commands using the \fB-c\fR flag. .TP \fB\-e\fR COMMAND The helper command to run for communicating with the CA. The helper will be used to pass signing requests to the CA, relay the CA's responses back to the \fIcertmonger\fR service, and to read information about the CA. .TP \fB\-v\fR Be verbose about errors. Normally, the details of an error received from the daemon will be suppressed if the client can make a diagnostic suggestion. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/config.h.in0000664000175000017500000003434312645513271013533 00000000000000/* src/config.h.in. Generated from configure.ac by autoheader. */ /* Define to the variable name used to pass the location of the private D-Bus connection to subprocesses. */ #undef CERTMONGER_PVT_ADDRESS_ENV /* Define to the name that the default certmaster CA will be known by. */ #undef CM_CERTMASTER_CA_NAME /* Define to the path of the CERTMASTER submission helper. */ #undef CM_CERTMASTER_HELPER_PATH /* Define to the path of the certmonger daemon after installation. */ #undef CM_CERTMONGER_DAEMON_PATH /* Define to the path of the certmonger main node. */ #undef CM_DBUS_BASE_PATH /* Define to the name of the certmonger service. */ #undef CM_DBUS_NAME /* Define to the amount of time to wait between attempts to reconnect to the message bus if we get disconnected. */ #undef CM_DBUS_RECONNECT_TIMEOUT /* Define to the default certificate lifetime for self-signed certificates. */ #undef CM_DEFAULT_CERT_LIFETIME /* Define to the default nickname given to certificates. */ #undef CM_DEFAULT_CERT_NICKNAME /* Define to the default starting serial number for self-signed certificates. */ #undef CM_DEFAULT_CERT_SERIAL /* Define to the default location of storage used for certificates. */ #undef CM_DEFAULT_CERT_STORAGE_LOCATION /* Define to the default type of storage used for certificates. */ #undef CM_DEFAULT_CERT_STORAGE_TYPE /* Define to the last-ditch default CN value for a signing request. */ #undef CM_DEFAULT_CERT_SUBJECT_CN /* Define to the default token used to store certificates. */ #undef CM_DEFAULT_CERT_TOKEN /* Define to the default path of submission helpers. */ #undef CM_DEFAULT_HELPER_PATH /* Define to the default idle-timeout when bus-activated. */ #undef CM_DEFAULT_IDLE_TIMEOUT /* Define to the default nickname given to keys. */ #undef CM_DEFAULT_KEY_NICKNAME /* Define to the default location of storage used for keys. */ #undef CM_DEFAULT_KEY_STORAGE_LOCATION /* Define to the default type of storage used for keys. */ #undef CM_DEFAULT_KEY_STORAGE_TYPE /* Define to the default token used for holding keys. */ #undef CM_DEFAULT_KEY_TOKEN /* Define to the address where notification mail should be sent by default. */ #undef CM_DEFAULT_NOTIFICATION_MAIL /* Define to the default method of notification. */ #undef CM_DEFAULT_NOTIFICATION_METHOD /* Define to the syslog facility from which notification messages should be sent by default. */ #undef CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY /* Define to the default for the selfsign/populate_unique_id configuration setting. */ #undef CM_DEFAULT_POPULATE_UNIQUE_ID /* Define to the default public key size. */ #undef CM_DEFAULT_PUBKEY_SIZE /* Define to the default public key type. */ #undef CM_DEFAULT_PUBKEY_TYPE /* Define to the default RSA key exponent. */ #undef CM_DEFAULT_RSA_EXPONENT /* Define to the list of default time-left thresholds at which we need to warn the user. */ #undef CM_DEFAULT_TTL_LIST /* Define to the time to wait between attempts to fetch the CA certificate, if it was unreachable. */ #undef CM_DELAY_CADATA_POLL /* Define to the time to wait between attempts to see if the CA issued a certificate. */ #undef CM_DELAY_CA_POLL /* Define to the absolute maximum time to wait between attempts to see if the CA issued a certificate. */ #undef CM_DELAY_CA_POLL_MAXIMUM /* Define to the absolute minimum time to wait between attempts to see if the CA issued a certificate. */ #undef CM_DELAY_CA_POLL_MINIMUM /* Define to the time to wait between attempts to re-read a certificate and check for expiration. */ #undef CM_DELAY_MONITOR_POLL /* Define to the absolute minimum time to wait between attempts to re-read a certificate and check for expiration. */ #undef CM_DELAY_MONITOR_POLL_MINIMUM /* Define to the time to wait after a netlink routing notification to retry submissions. */ #undef CM_DELAY_NETLINK /* Define to the time to wait for something that will happen soon. */ #undef CM_DELAY_SOON /* Define to the time to wait for something that will happen soon, but not that soon. */ #undef CM_DELAY_SOONISH /* Define to the maximum size (in bytes) of supported digests. */ #undef CM_DIGEST_MAX /* Define to enable DSA support. */ #undef CM_ENABLE_DSA /* Define to enable EC support. */ #undef CM_ENABLE_EC /* Define to the directory holding various getcert commands after installation. */ #undef CM_GETCERT_DIR /* Define to the default location to be used for storing temporary files. */ #undef CM_HOMEDIR /* Define to the name that the default IPA CA will be known by. */ #undef CM_IPA_CA_NAME /* Define to the path of the IPA submission helper. */ #undef CM_IPA_HELPER_PATH /* Define to the name that the local CA will be known by. */ #undef CM_LOCAL_CA_NAME /* Define to the path of the local submission helper. */ #undef CM_LOCAL_HELPER_PATH /* Define to the minimum key size when generating DSA parameters and keys. Requests to generate smaller keys will be forced to this key size. */ #undef CM_MINIMUM_DSA_KEY_SIZE /* Define to the minimum key size when selecting elliptic curve parameters. Requests to generate smaller keys will be forced to this key size. */ #undef CM_MINIMUM_EC_KEY_SIZE /* Define to the minimum key size when generating RSA keys. Requests to generate smaller keys will be forced to this key size. */ #undef CM_MINIMUM_RSA_KEY_SIZE /* Define to the variable name to be used to hold a notification message. */ #undef CM_NOTIFICATION_ENV /* Define to the path of the SCEP submission helper. */ #undef CM_SCEP_HELPER_PATH /* Define to the name that the internal self-signing not-really-a-CA will be known by. */ #undef CM_SELF_SIGN_CA_NAME /* Define to the default path for CA tracking files. */ #undef CM_STORE_CAS_DIRECTORY /* Define to the name of the environment variable which can specify the directory for tracking CAs. */ #undef CM_STORE_CAS_DIRECTORY_ENV /* Define to the directory which holds configuration files. */ #undef CM_STORE_CONFIG_DIRECTORY /* Define to the name of the environment variable which can specify the directory which holds configuration files. */ #undef CM_STORE_CONFIG_DIRECTORY_ENV /* Define to the default path for data belonging to the local CA. */ #undef CM_STORE_LOCAL_CA_DIRECTORY /* Define to the name of the environment variable which can specify the directory for the local CA. */ #undef CM_STORE_LOCAL_CA_DIRECTORY_ENV /* Define to the default path for request tracking files. */ #undef CM_STORE_REQUESTS_DIRECTORY /* Define to the name of the environment variable which can specify the directory for tracking requests. */ #undef CM_STORE_REQUESTS_DIRECTORY_ENV /* Define to the default path for user CA tracking files. */ #undef CM_STORE_SESSION_CAS_DIRECTORY /* Define to the directory which holds user configuration files. */ #undef CM_STORE_SESSION_CONFIG_DIRECTORY /* Define to the default path for data belonging to the user CA. */ #undef CM_STORE_SESSION_LOCAL_CA_DIRECTORY /* Define to the default path for user request tracking files. */ #undef CM_STORE_SESSION_REQUESTS_DIRECTORY /* Define to the default path for the system daemon lock file. */ #undef CM_STORE_SYSTEM_LOCK_FILE /* Define to the name of the environment variable which can specify the location of the system daemon lock file. */ #undef CM_STORE_SYSTEM_LOCK_FILE_ENV /* Define to the default location to be used for storing temporary files. */ #undef CM_TMPDIR /* Define to the default location to be used for storing temporary files. */ #undef CM_TMPDIR_ENV /* Define if dnsName subjectAltNames should be encoded properly, and if international domain names should be handled during service location. */ #undef CM_USE_IDN /* Define to 1 if translation of program messages to the user's native language is requested. */ #undef ENABLE_NLS /* Define to 1 if you have the header file. */ #undef HAVE_ARPA_NAMESER_H /* Define to 1 if you have the MacOS X function CFLocaleCopyCurrent in the CoreFoundation framework. */ #undef HAVE_CFLOCALECOPYCURRENT /* Define to 1 if you have the MacOS X function CFPreferencesCopyAppValue in the CoreFoundation framework. */ #undef HAVE_CFPREFERENCESCOPYAPPVALUE /* Define to 1 if you have the `clearenv' function. */ #undef HAVE_CLEARENV /* Define if your copy of NSS supports DBMite databases. */ #undef HAVE_DBM_NSSDB /* Define to 1 if you have the `dbus_watch_get_fd' function. */ #undef HAVE_DBUS_WATCH_GET_FD /* Define to 1 if you have the `dbus_watch_get_unix_fd' function. */ #undef HAVE_DBUS_WATCH_GET_UNIX_FD /* Define if the GNU dcgettext() function is already present or preinstalled. */ #undef HAVE_DCGETTEXT /* Define to 1 if you have the declaration of `CURLOPT_KEYPASSWD', and to 0 if you don't. */ #undef HAVE_DECL_CURLOPT_KEYPASSWD /* Define to 1 if you have the declaration of `CURLOPT_SSLCERTPASSWD', and to 0 if you don't. */ #undef HAVE_DECL_CURLOPT_SSLCERTPASSWD /* Define to 1 if you have the declaration of `CURLOPT_SSLKEYPASSWD', and to 0 if you don't. */ #undef HAVE_DECL_CURLOPT_SSLKEYPASSWD /* Define to 1 if you have the declaration of `krb5_princ_component', and to 0 if you don't. */ #undef HAVE_DECL_KRB5_PRINC_COMPONENT /* Define to 1 if you have the declaration of `krb5_princ_name', and to 0 if you don't. */ #undef HAVE_DECL_KRB5_PRINC_NAME /* Define to 1 if you have the declaration of `krb5_princ_set_realm_length', and to 0 if you don't. */ #undef HAVE_DECL_KRB5_PRINC_SET_REALM_LENGTH /* Define to 1 if you have the declaration of `krb5_princ_size', and to 0 if you don't. */ #undef HAVE_DECL_KRB5_PRINC_SIZE /* Define to 1 if you have the declaration of `krb5_princ_type', and to 0 if you don't. */ #undef HAVE_DECL_KRB5_PRINC_TYPE /* Define to 1 if you have the declaration of `OpenSSL_add_all_algorithms', and to 0 if you don't. */ #undef HAVE_DECL_OPENSSL_ADD_ALL_ALGORITHMS /* Define to 1 if you have the declaration of `OpenSSL_add_ssl_algorithms', and to 0 if you don't. */ #undef HAVE_DECL_OPENSSL_ADD_SSL_ALGORITHMS /* Define to 1 if you have the declaration of `OPENSSL_free', and to 0 if you don't. */ #undef HAVE_DECL_OPENSSL_FREE /* Define to 1 if you have the declaration of `strtold', and to 0 if you don't. */ #undef HAVE_DECL_STRTOLD /* Define if the GNU gettext() function is already present or preinstalled. */ #undef HAVE_GETTEXT /* Define if you have GMP for hex-to-decimal conversions. */ #undef HAVE_GMP /* Define to 1 if you have the header file. */ #undef HAVE_GMP_H /* Define if you have the iconv() function and it works. */ #undef HAVE_ICONV /* Define to 1 if you have the header file. */ #undef HAVE_INTTYPES_H /* Define to 1 if you have the `krb5_free_unparsed_name' function. */ #undef HAVE_KRB5_FREE_UNPARSED_NAME /* Define to 1 if you have the `krb5_get_error_message' function. */ #undef HAVE_KRB5_GET_ERROR_MESSAGE /* Define to 1 if you have the `krb5_get_init_creds_opt_alloc' function. */ #undef HAVE_KRB5_GET_INIT_CREDS_OPT_ALLOC /* Define to 1 if you have the `crypto' library (-lcrypto). */ #undef HAVE_LIBCRYPTO /* Define to 1 if you have the `ldap' library (-lldap). */ #undef HAVE_LIBLDAP /* Define to 1 if you have the `popt' library (-lpopt). */ #undef HAVE_LIBPOPT /* Define to 1 if you have the header file. */ #undef HAVE_LINUX_NETLINK_H /* Define to 1 if you have the header file. */ #undef HAVE_LINUX_RTNETLINK_H /* Define to 1 if you have the header file. */ #undef HAVE_LINUX_TYPES_H /* Define to 1 if you have the header file. */ #undef HAVE_MEMORY_H /* Define if you have NSS. */ #undef HAVE_NSS /* Define if you have ns_initparse() and want to use SRV location */ #undef HAVE_NS_INITPARSE /* Define if you have OpenSSL. */ #undef HAVE_OPENSSL /* Define to 1 if you have the `PK11_PrivDecrypt' function. */ #undef HAVE_PK11_PRIVDECRYPT /* Define to 1 if you have the header file. */ #undef HAVE_POPT_H /* Define to 1 if you have the header file. */ #undef HAVE_RESOLV_H /* Define to 1 if you have the `SECKEY_CreateECPrivateKey' function. */ #undef HAVE_SECKEY_CREATEECPRIVATEKEY /* Define if your copy of NSS supports SQLite databases. */ #undef HAVE_SQL_NSSDB /* Define to 1 if you have the header file. */ #undef HAVE_STDINT_H /* Define to 1 if you have the header file. */ #undef HAVE_STDLIB_H /* Define to 1 if you have the header file. */ #undef HAVE_STRINGS_H /* Define to 1 if you have the header file. */ #undef HAVE_STRING_H /* Define to 1 if `gssapi_delegation' is a member of `struct xmlrpc_curl_xportparms'. */ #undef HAVE_STRUCT_XMLRPC_CURL_XPORTPARMS_GSSAPI_DELEGATION /* Define to 1 if you have the header file. */ #undef HAVE_SYSTEMD_SD_LOGIN_H /* Define to 1 if you have the header file. */ #undef HAVE_SYS_SOCKET_H /* Define to 1 if you have the header file. */ #undef HAVE_SYS_STAT_H /* Define to 1 if you have the header file. */ #undef HAVE_SYS_TYPES_H /* Define to 1 if you have the header file. */ #undef HAVE_UNISTD_H /* Define to have the ability to populate subjectUniqueID in self-signed certs. */ #undef HAVE_UUID /* Define to 1 if you have the header file. */ #undef HAVE_UUID_H /* Define to 1 if you have the header file. */ #undef HAVE_UUID_UUID_H /* Define as const if the declaration of iconv() needs const. */ #undef ICONV_CONST /* Define to the name of the directory under which locale data will be installed. */ #undef MYLOCALEDIR /* Name of package */ #undef PACKAGE /* Define to the address where bug reports for this package should be sent. */ #undef PACKAGE_BUGREPORT /* Define to the full name of this package. */ #undef PACKAGE_NAME /* Define to the full name and version of this package. */ #undef PACKAGE_STRING /* Define to the one symbol short name of this package. */ #undef PACKAGE_TARNAME /* Define to the home page for this package. */ #undef PACKAGE_URL /* Define to the version of this package. */ #undef PACKAGE_VERSION /* Define to 1 if you have the ANSI C header files. */ #undef STDC_HEADERS /* Version number of package */ #undef VERSION /* Define to ensure that there's always a CERTMASTER CA defined. */ #undef WITH_CERTMASTER /* Define to ensure that there's always an IPA CA defined. */ #undef WITH_IPA /* Define to ensure that there's always a local CA defined. */ #undef WITH_LOCAL certmonger-0.78.6/src/certmonger.conf.5.in0000664000175000017500000001325612645513264015276 00000000000000.TH certmonger.conf 5 "12 May 2015" "certmonger Manual" .SH NAME certmonger.conf - configuration file for certmonger .SH DESCRIPTION The \fIcertmonger.conf\fR file contains default settings used by certmonger. Its format is more or less that of a typical INI-style file. The only sections currently of note are named \fIdefaults\fR and \fIselfsign\fR. .SH DEFAULTS Within the \fIdefaults\fR section, these variables and values are recognized: .IP notify_ttls This is the list of times, given in seconds, before a certificate's not-after validity date (often referred to as its expiration time) when \fIcertmonger\fR should warn that the certificate will soon no longer be valid. If this value is not specified, \fIcertmonger\fR will attempt to use the value of the \fIttls\fR setting. The default list of values is "@CM_DEFAULT_TTL_LIST@". .IP enroll_ttls This is the list of times, given in seconds, before a certificate's not-after validity date (often referred to as its expiration time) when \fIcertmonger\fR should attempt to automatically renew the certificate, if it is configured to do so. If this value is not specified, \fIcertmonger\fR will attempt to use the value of the \fIttls\fR setting. The default list of values is "@CM_DEFAULT_TTL_LIST@". .IP notification_method This is the method by which \fIcertmonger\fP will notify the system administrator that a certificate will soon become invalid. The recognized values are \fIsyslog\fP, \fImail\fP, and \fIcommand\fP. The default is \fIsyslog\fP. When sending mail, the notification message will be the mail message subject. When invoking a command, the notification message will be available in the "@CM_NOTIFICATION_ENV@" environment variable. .IP notification_destination This is the destination to which \fIcertmonger\fP will send notifications. It can be a syslog priority and/or facility, separated by a period, it can be an email address, or it can be a command to run. The default value is \fI@CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@\fP. .IP key_type This is the type of key pair which will be generated, used in certificate signing requests, and used when self-signing certificates. @NO_MAN_DSA@\fIRSA\fR is supported. @MAN_DSA@\fIRSA\fR and \fIDSA\fR are supported. @MAN_EC@\fIEC\fR (also known as \fIECDSA\fR) is also supported. The default is \fIRSA\fP. .IP symmetric_cipher This is the symmetric cipher which will be used to encrypt private keys stored in OpenSSL's PEM format. Recognized values include \fIaes128\fP and \fIaes256\fP. The default is \fIaes128\fP. It is not recommended that this value be changed except in cases where the default is incompatible with other software. .IP digest This is the digest algorithm which will be used when signing certificate signing requests and self-signed certificates. Recognized values include \fIsha1\fP, \fIsha256\fP, \fIsha384\fP, and \fIsha512\fP. The default is \fIsha256\fP. It is not recommended that this value be changed except in cases where the default is incompatible with other software. .IP nss_ca_trust These are the trust attributes which are applied to CA certificates which should be trusted, when they are saved to NSS databases. The default is \fICT,C,C\fP. .IP nss_other_trust These are the trust attributes which are applied to certificates which are not necessarily to be trusted, when they are saved to NSS databases. The default is \fI,,\fP. .IP max_key_use_count When attempting to replace a certificate, if \fIcertmonger\fR has previously obtained at least this number of certificates using the current key pair, it will generate a new key pair to use before proceeding. There is effectively no default for this setting. .IP max_key_lifetime The amount of time after a key was first generated when \fIcertmonger\fR will attempt to generate a new key pair to replace it, as part of the process of replacing a certificate. The value is specified as a combination of years (y), months (M), weeks (w), days (d), hours (h), minutes (m), and/or seconds (s). If no unit of time is specified, seconds are assumed. The date when a key was generated is not recorded if the key was not generated by \fIcertmonger\fR, or if the key was generated with a version of \fIcertmonger\fR older than 0.78, and for those cases, this option has no effect. There is effectively no default for this setting. .SH SELFSIGN Within the \fIselfsign\fR section, these variables and values are recognized: .IP validity_period This is the validity period given to self-signed certificates. The value is specified as a combination of years (y), months (M), weeks (w), days (d), hours (h), minutes (m), and/or seconds (s). If no unit of time is specified, seconds are assumed. The default value is \fI@CM_DEFAULT_CERT_LIFETIME@\fR. .IP populate_unique_id This controls whether or not self-signed certificates will have their subjectUniqueID and issuerUniqueID fields populated. While RFC5280 prohibits their use, they may be needed and/or used by older applications. The default value is \fI@CM_DEFAULT_POPULATE_UNIQUE_ID@\fR. .SH LOCAL Within the \fIlocal\fR section, these variables and values are recognized: .IP validity_period This is the validity period given to the locally-signed CA's certificate when it is generated. The value is specified as a combination of years (y), months (M), weeks (w), days (d), hours (h), minutes (m), and/or seconds (s). If no unit of time is specified, seconds are assumed. If not set, the value of the \fIvalidity_period\fR setting from the \fIselfsign\fR section, if one is set there, will be used. The default value is \fI@CM_DEFAULT_CERT_LIFETIME@\fR. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmonger.8.in0000664000175000017500000000712012645513264014346 00000000000000.TH certmonger 8 "14 June 2015" "certmonger Manual" .SH NAME certmonger .SH SYNOPSIS certmonger [-s|-S] [-L|-l] [-P SOCKET] [-b TIMEOUT|-B] [-n|-f] [-d LEVEL] [-p FILE] [-F] [-c cmd] [-v] .SH DESCRIPTION The \fIcertmonger\fR daemon monitors certificates for impending expiration, and can optionally refresh soon-to-be-expired certificates with the help of a CA. If told to, it can drive the entire enrollment process from key generation through enrollment and refresh. The daemon provides a control interface via the \fI@CM_DBUS_NAME@\fR service, with which client tools such as \fBgetcert\fR(1) interact. .SH OPTIONS .TP -s Listen on the session bus rather than the system bus. .TP -S Listen on the system bus rather than the session bus. This is the default. .TP -l Also listen on a private socket for connections from clients running under the same UID. .TP -L Listen only on a private socket for connections from clients running under the same UID, and skip connecting to a bus. .TP -P Specify a location for the private listening socket. If the location beings with a '/' character, it will be prefixed with 'unix:path=', otherwise it will be prefixed with 'unix:'. If this option is not specified, the listening socket, if one is created, will be placed in the abstract namespace. .TP -b TIMEOUT Behave as a bus-activated service: if there are no certificates to be monitored or obtained, and no requests are received within TIMEOUT seconds, exit. Not compatible with the -c option. .TP -B Don't behave as a bus-activated service. This is the default. .TP -n Don't fork, and log messages to stderr rather than syslog. .TP -f Do fork, and log messages to syslog rather than stderr. This is the default. .TP -d LEVEL Set debugging level. Higher values produce more debugging output. Implies -n. .TP -p FILE Store the daemon's process ID in the named file. .TP -F Force NSS to be initialized in FIPS mode. The default behavior is to heed the setting stored in \fI/proc/sys/crypto/fips_enabled\fR. .TP -c cmd After the service has initialized, run the specified command, then shut down the service after the command exits. If the -l or -L option was also specified, the command will be run with the \fI@CERTMONGER_PVT_ADDRESS_ENV@\fR environment variable set to the listening socket's location. Not compatible with the -b option. .TP -v Print version information and exit. .SH FILES The set of certificates being monitored or signed is tracked using files stored under \fI@CM_STORE_REQUESTS_DIRECTORY@\fR, or in a directory named by the \fI@CM_STORE_REQUESTS_DIRECTORY_ENV@\fR environment variable. The set of known CAs is tracked using files stored under \fI@CM_STORE_CAS_DIRECTORY@\fR, or in a directory named by the \fI@CM_STORE_CAS_DIRECTORY_ENV@\fR environment variable. Temporary files will be stored in "\fI@CM_TMPDIR@\fR", or in the directory named by the \fI@CM_TMPDIR_ENV@\fR environment variable if that value was not given at compile time. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmonger-scep-submit.8.in0000664000175000017500000001157012645513264016603 00000000000000.TH certmonger 8 "20 June 2015" "certmonger Manual" .SH NAME scep-submit .SH SYNOPSIS scep-submit -u SERVER-URL [-r ra-cert-file] [-R ca-cert-file] [-I other-certs-file] [-i ca-identifier] [-v] [-n] [-c|-C|-g|-p] [pkimessage-filename] .SH DESCRIPTION \fIscep-submit\fR is the helper which \fIcertmonger\fR can use to transmit certificate enrollment and renewal requests to servers using SCEP. It is not normally run interactively, but it can be for troubleshooting purposes. The request which is to be submitted should be a PEM-encoded SCEP pkiMessage either in a file whose name is given as an argument, or fed into \fIscep-submit\fR via stdin. .SH MODES .TP \fB\-c\fR \fIscep-submit\fR will issue a \fIGetCACaps\fR request to the server and print the results. .TP \fB\-C\fR \fIscep-submit\fR will issue \fIGetCACert\fR and \fIGetCAChain\fR requests to the server, parse the responses, and then print, in order, the RA certificate, the CA certificate, and any additional certificates. .TP \fB\-p\fR \fIscep-submit\fR will issue a \fIPKIOperation\fR request to the server using the passed-in message as the message content. It will parse the server's response, verify the signature, and if the response includes an issued certificate, it will output the \fIpkcsPKIEnvelope\fR in PEM format. If the response indicates an error, it will print the error. .TP \fB\-g\fR \fIscep-submit\fR will issue a \fIPKIOperation\fR request to the server using the passed-in message as the message content. It will parse the server's response, verify the signature, and if the response includes an issued certificate, it will output the \fIpkcsPKIEnvelope\fR in PEM format. If the response indicates an error, it will print the error. .SH OPTIONS .TP \fB\-u\fR SERVER-URL The location of the SCEP interface provided by the CA. This is typically \fIhttp://\fBSERVER\fP/cgi-bin/PKICLIENT.EXE\fR or \fIhttp://\fBSERVER\fP/certsrv/mscep/mscep.dll\fR. This option is always required. .TP \fB\-R\fR CA-certificate-file The location of the SCEP server's CA certificate, which was used to issue the SCEP server's certificate, or the SCEP server's own certificate, if it is self-signed, in PEM form. If the URL specified with the \fB-u\fR option is an \fIhttps\fR URL, then this option is required. .TP \fB\-r\fR RA-certificate-file The location of the SCEP server's RA certificate, which is expected to be used for signing responses sent by the SCEP server back to the client. This option is required when either the \fB-g\fR flag or the \fB-p\fR flag is specified. .TP \fB\-I\fR other-certificates-file The location of a file containing other PEM-formatted certificates which may be needed in order to properly verify signed responses sent by the SCEP server back to the client. This option may be necessary when either the \fB-g\fR flag or the \fB-p\fR flag is specified. .TP \fB\-i\fR ca-identifier When called with the \fB-c\fR or \fB-C\fR flag, this option can be used to specify the CA identifier which is passed to the server as part of the client's request. The default is "0". .TP \fB\-n\fR The SCEP Renewal feature allows a client with a previously-issued certificate to use that certificate and the associated private key to request a new certificate for a different key pair, and can be used to support \fIcertmonger\fR's rekeying feature if the SCEP server advertises support for it. This option forces the \fIscep-submit\fR helper to prefer to issue requests which do not make use of this feature. .TP \fB-v\fR Increases the logging level. Use twice for more logging. This option is mainly useful for troubleshooting. .SH EXIT STATUS .TP 0 if the certificate was issued. The pkcsPKIEnvelope will be printed in PEM-encoded form. .TP 1 if the CA is still thinking. A cookie (state) value will be printed. .TP 2 if the CA rejected the request. An error message may be printed. .TP 3 if the CA was unreachable. An error message may be printed. .TP 4 if critical configuration information is missing. An error message may be printed. .TP 5 if the CA is still thinking. A suggested poll delay (specified in seconds) and a cookie (state) value will be printed. .TP 16 if the helper needs an SCEP pkiMessage, but couldn't read one. .TP 17 if the CA indicates that the client needs to attempt enrollment using a new key pair. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmonger-local-submit.8.in0000664000175000017500000000500212645513264016734 00000000000000.TH certmonger 8 "7 June 2014" "certmonger Manual" .SH NAME local-submit .SH SYNOPSIS local-submit [-d state-directory] [-v] [csrfile] .SH DESCRIPTION \fIlocal-submit\fR is the helper which \fIcertmonger\fR uses to implement its local signer. It is not normally run interactively, but it can be for troubleshooting purposes. The signing request which is to be submitted should either be in a file whose name is given as an argument, or fed into \fIlocal-submit\fR via stdin. The local signer is currently hard-coded to generate and use a @CM_DEFAULT_PUBKEY_SIZE@-bit RSA key and a name and initial serial number based on a UUID, replacing that key and certificate at roughly the midpoint of their useful lifetime. \fBcertmonger\fR supports retrieving the list of current and previously-used local CA certificates. See \fBgetcert-request\fR(1) and \fBgetcert-resubmit\fR(1) for information about specifying where those certificates should be stored. .SH OPTIONS .TP \fB\-d\fR state-directory Identifies the directory which contains the local signer's private key, certificates, and other data used by the local signer. .TP \fB\-v\fR Increases the verbosity of the tool's diagnostic logging. .SH EXIT STATUS .TP 0 if the certificate was issued. The new certificate will be printed. .TP 3 if the helper needs to be called again. An error message may be printed. .TP 4 if critical configuration information is missing. An error message may be printed. .SH FILES .TP .I creds is currently a PKCS#12 bundle containing the local signer's current signing key and current and previously-used signer certificates. It should not be modified except by the local signer. A new key is currently generated when ever a new signer certificate is needed. .TP .I serial currently contains the serial number which will be used for the next issued certificate. It should not be modified except by the local signer. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmonger-ipa-submit.8.in0000664000175000017500000001055512645513264016424 00000000000000.TH certmonger 8 "16 April 2015" "certmonger Manual" .SH NAME ipa-submit .SH SYNOPSIS ipa-submit [-h serverHost] [-H serverURL] [-c cafile] [-C capath] [[-K] | [-t keytab] [-k submitterPrincipal]] [-P principalOfRequest] [-T profile] [csrfile] .SH DESCRIPTION \fIipa-submit\fR is the helper which \fIcertmonger\fR uses to make requests to IPA-based CAs. It is not normally run interactively, but it can be for troubleshooting purposes. The signing request which is to be submitted should either be in a file whose name is given as an argument, or fed into \fIipa-submit\fR via stdin. \fBcertmonger\fR supports retrieving trusted certificates from IPA CAs. See \fBgetcert-request\fR(1) and \fBgetcert-resubmit\fR(1) for information about specifying where those certificates should be stored on the local system. Trusted certificates are retrieved from the \fBcaCertificate\fR attribute of entries present at and below \fIcn=cacert,cn=ipa,cn=etc,\fR$BASE in the IPA LDAP server's directory tree, where $BASE defaults to the value of the \fBbasedn\fR setting in \fB/etc/ipa/default.conf\fR. .SH OPTIONS .TP \fB\-P\fR csrPrincipal Identifies the principal name of the service for which the certificate is being issued. This setting is required by IPA and must always be specified. .TP \fB\-T\fR profile Requests that the certificate be processed using the specified certificate profile. By default, if this flag is not specified, and the \fBCERTMONGER_CA_PROFILE\fR variable is set in the environment, then the value of the environment variable will be used. This setting is optional, and if a server returns error 3005, indicating that it does not understand multiple profiles, the request will be re-submitted without specifying a profile. .TP \fB\-h\fR serverHost Submit the request to the IPA server running on the named host. The default is to read the location of the host from \fB/etc/ipa/default.conf\fR. .TP \fB\-H\fR serverURL Submit the request to the IPA server at the specified location. The default is to read the location of the host from \fB/etc/ipa/default.conf\fR. .TP \fB\-c\fR cafile The server's certificate was issued by the CA whose certificate is in the named file. The default value is \fI/etc/ipa/ca.crt\fR. .TP \fB\-C\fR capath Trust the server if its certificate was issued by a CA whose certificate is in a file in the named directory. There is no default for this option, and it is not expected to be necessary. .TP \fB\-t\fR keytab Authenticate to the IPA server using credentials derived from keys stored in the named keytab. The default value can vary, but it is usually \fI/etc/krb5.keytab\fR. This option conflicts with the \fB-K\fR option. .TP \fB\-k\fR authPrincipal Authenticate to the IPA server using credentials derived from keys stored in the named keytab for this principal name. The default value is the \fBhost\fR service for the local host in the local realm. This option conflicts with the \fB-K\fR option. .TP \fB\-K\fR Authenticate to the IPA server using credentials derived from the default credential cache rather than a keytab. This option conflicts with the \fB-k\fR option. .SH EXIT STATUS .TP 0 if the certificate was issued. The certificate will be printed. .TP 1 if the CA is still thinking. A cookie value will be printed. .TP 2 if the CA rejected the request. An error message may be printed. .TP 3 if the CA was unreachable. An error message may be printed. .TP 4 if critical configuration information is missing. An error message may be printed. .TP 17 if the CA indicates that the client needs to attempt enrollment using a new key pair. .SH FILES .TP .I /etc/ipa/default.conf is the IPA client configuration file. This file is consulted to determine the URL for the IPA server's XML-RPC interface. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmonger-dogtag-submit.8.in0000664000175000017500000002140712645513264017116 00000000000000.TH certmonger 8 "27 Oct 2015" "certmonger Manual" .SH NAME dogtag-submit .SH SYNOPSIS dogtag-submit -E EE-URL -A AGENT-URL [-d dbdir] [-n nickname] [-i cainfo] [-C capath] [-c certfile] [-k keyfile] [-p pinfile] [-P pin] [-s serial (hex)] [-D serial (decimal)] [-S state] [-T profile] [-O param=value] [-N | -R] [-t] [-o option=value] [-a ] [-u username] [-U userdn] [-W userpassword] [-w userpasswordfile] [-Y userpin] [-y userpinfile] [-v] [csrfile] .SH DESCRIPTION \fIdogtag-submit\fR is the helper which \fIcertmonger\fR can use to make certificate enrollment and renewal requests to Dogtag servers. It is not normally run interactively, but it can be for troubleshooting purposes. The preferred option is to request a renewal of an already-issued certificate, using its serial number, which can be read from a PEM-formatted certificate provided in the \fICERTMONGER_CERTIFICATE\fR environment variable, or via the \fB-s\fR or \fB-D\fR option on the command line. If no serial number is provided, then the client will attempt to obtain a new certificate by submitting a signing request to the CA. The signing request which is to be submitted should either be in a file whose name is given as an argument, or fed into \fIdogtag-submit\fR via stdin. \fBcertmonger\fR does not yet support retrieving trust information from Dogtag CAs. .SH OPTIONS .TP \fB\-E\fR EE-URL The top-level URL for the end-entity interface provided by the CA, through which the initial enrollment request will be submitted. This is typically \fIhttp://\fBSERVER\fP:\fBEEPORT\fP/ca/ee/ca\fR. .TP \fB\-A\fR AGENT-URL The top-level URL for the agent interface provided by the CA, through which the request can be approved using agent credentials. This is typically \fIhttps://\fBSERVER\fP:\fBAGENTPORT\fP/ca/agent/ca\fR. .TP \fB\-d\fR dbdir \fB\-n\fR nickname \fB\-c\fR certfile \fB\-k\fR keyfile The location of the key and certificate which the client should use to authenticate to the CA's agent interface. Exactly which values are meaningful depend on which cryptography library your copy of libcurl was linked with. .TP \fB\-p\fR pinfile The name of a file which contains a PIN/password which will be needed in order to make use of the agent credentials. .TP \fB\-i\fR cainfo \fB\-C\fR capath The location of a file containing a copy of the CA's certificate, against which the CA server's certificate will be verified, or a directory containing, among other things, such a file. .TP \fB-s\fR serial The serial number of an already-issued certificate for which the client should attempt to obtain a new certificate, in hexadecimal form, if one can not be read from the \fICERTMONGER_CERTIFICATE\fR environment variable. .TP \fB-D\fR serial The serial number of an already-issued certificate for which the client should attempt to obtain a new certificate, in decimal form, if one can not be read from the \fICERTMONGER_CERTIFICATE\fR environment variable. .TP \fB-S\fR state A cookie value provided by a previous instance of this helper, if the helper is being asked to continue a multi-step enrollment process. If the \fICERTMONGER_COOKIE\fR environment variable is set, its value is used. .TP \fB-T\fR profile/template The name of the type of certificate which the client should request from the CA if it is not renewing a certificate (per the \fB-s\fR option above). If the \fICERTMONGER_CA_PROFILE\fR environment variable is set, its value is used. Otherwise, the default value is \fBcaServerCert\fP. .TP \fB-O\fR param=value An additional parameter to pass to the server when approving the signing request using agent credentials. By default, any server-supplied default settings are applied. This option can be used either to override a server-supplied default setting, or to supply one which would otherwise have not been used. Requires the \fB-A\fR option. .TP \fB-N\fR Even if an already-issued certificate is available in the \fICERTMONGER_CERTIFICATE\fR environment variable, or a serial number has been provided, don't attempt to renew a certificate using its serial number. Instead, attempt to obtain a new certificate using the signing request. The default behavior is to request a renewal if possible. .TP \fB-R\fR Negates the effect of the \fB-N\fR flag. .TP \fB-t\fR Instead of attempting to obtain a new certificate, query the server for a list of the enabled enrollment profiles. .TP \fB-o\fR param=value When initially submitting a request to the CA, add the specified parameter and value along with any request parameters which would otherwise be sent. .TP \fB-a\fR Use agent credentials, specified using some combination of the \fB\-d\fR, \fB\-n\fR, \fB\-c\fR, and \fB\-k\fR flags, to authenticate to the CA when initially submitting a request to the CA or retrieving the list of enabled enrollment profiles. This is typically required when the enrollment profile being used uses \fIAgentCertAuth\fR-based authentication, and requires that the URL specified using the \fB-E\fR flag be an HTTPS URL, or when the URL specified using the \fB-E\fR flag is an HTTPS URL. .TP \fB-u username\fR When initially submitting a request to the CA, supply the specified value as a user name. This is typically required when the enrollment profile being used uses \fIUidPwdDirAuth\fR-based or \fINISAuth\fR-based authentication. .TP \fB-U userdn\fR When initially submitting a request to the CA, supply the specified value as the DN (distinguished name) of the user's entry in a directory server which the CA is configured to use for checking the user's password. This is typically required when the enrollment profile being used uses \fIUdnPwdDirAuth\fR-based authentication. .TP \fB-W userpassword\fR When initially submitting a request to the CA, supply the specified value as the password for the user whose name is specified with the \fB-u\fR option, or whose DN is specified with the \fB-U\fR option. This is typically only required when the enrollment profile being used uses \fIUidPwdDirAuth\fR-based, \fIUserPwdDirAuth\fR-based, or \fINISAuth\fR-based authentication. If the URL specified using the \fB-E\fR flag is not an HTTPS URL, this value will not be encrypted. .TP \fB-w userpasswordfile\fR When initially submitting a request to the CA, read from the specified file a password to supply for the user whose name is specified with the \fB-u\fR option, or whose DN is specified with the \fB-U\fR option. This is typically only required when the enrollment profile being used uses \fIUidPwdDirAuth\fR-based, \fIUserPwdDirAuth\fR-based, or \fINISAuth\fR-based authentication. If the URL specified using the \fB-E\fR flag is not an HTTPS URL, this value will not be encrypted. .TP \fB-Y userpin\fR When initially submitting a request to the CA, supply the specified value as the PIN for the user whose name is specified with the \fB-u\fR option, or whose DN is specified with the \fB-U\fR option. This is typically only required when the enrollment profile being used uses \fIUidPwdPinDirAuth\fR-based authentication. If the URL specified using the \fB-E\fR flag is not an HTTPS URL, this value will not be encrypted. .TP \fB-y userpinfile\fR When initially submitting a request to the CA, read from the specified file a PIN to supply for the user whose name is specified with the \fB-u\fR option, or whose DN is specified with the \fB-U\fR option. This is typically only required when the enrollment profile being used uses \fIUidPwdPinDirAuth\fR-based authentication. If the URL specified using the \fB-E\fR flag is not an HTTPS URL, this value will not be encrypted. .TP \fB-v\fR Increases the logging level. Use twice for more logging. This option is mainly useful for troubleshooting. .SH EXIT STATUS .TP 0 if the certificate was issued. The certificate will be printed. .TP 1 if the CA is still thinking. A cookie (state) value will be printed. .TP 2 if the CA rejected the request. An error message may be printed. .TP 3 if the CA was unreachable. An error message may be printed. .TP 4 if critical configuration information is missing. An error message may be printed. .TP 5 if the CA is still thinking. A suggested poll delay (specified in seconds) and a cookie (state) value will be printed. .TP 17 if the CA indicates that the client needs to attempt enrollment using a new key pair. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmonger-dogtag-ipa-renew-agent-submit.8.in0000664000175000017500000001723112645513264022077 00000000000000.TH certmonger 8 "27 Oct 2015" "certmonger Manual" .SH NAME dogtag-ipa-renew-agent-submit .SH SYNOPSIS dogtag-ipa-renew-agent-submit -E EE-URL -A AGENT-URL [-d dbdir] [-n nickname] [-i cainfo] [-C capath] [-c certfile] [-k keyfile] [-p pinfile] [-P pin] [-s serial (hex)] [-D serial (decimal)] [-S state] [-T profile] [-O param=value] [-N | -R] [-t] [-o option=value] [-v] [csrfile] .SH DESCRIPTION \fIdogtag-ipa-renew-agent-submit\fR is the helper which \fIcertmonger\fR uses to make certificate renewal requests to Dogtag instances running on IPA servers. It is not normally run interactively, but it can be for troubleshooting purposes. The preferred option is to request a renewal of an already-issued certificate, using its serial number, which can be read from a PEM-formatted certificate provided in the \fICERTMONGER_CERTIFICATE\fR environment variable, or via the \fB-s\fR or \fB-D\fR option on the command line. If no serial number is provided, then the client will attempt to obtain a new certificate by submitting a signing request to the CA. The signing request which is to be submitted should either be in a file whose name is given as an argument, or fed into \fIdogtag-ipa-renew-agent-submit\fR via stdin. \fBcertmonger\fR does not yet support retrieving trust information from Dogtag CAs. .SH OPTIONS .TP \fB\-E\fR EE-URL The top-level URL for the end-entity interface provided by the CA. In IPA installations, this is typically \fIhttp://\fBSERVER\fP:\fBEEPORT\fP/ca/ee/ca\fR. If no URL is specified, the \fIhost\fR named in the \fI[global]\fR section in the \fI/etc/ipa/default.conf\fR file is used as the value of \fBSERVER\fR, and the value of \fBEEPORT\fR will be inferred based on the value of the \fIdogtag_version\fR in the \fI[global]\fR section in the \fI/etc/ipa/default.conf\fR file: if \fIdogtag_version\fR is set to \fI10\fR or more, \fBEEPORT\fR will be set to 8080. Otherwise it will be 9180. .TP \fB\-A\fR AGENT-URL The top-level URL for the agent interface provided by the CA. In IPA installations, this is typically \fIhttps://\fBSERVER\fP:\fBAGENTPORT\fP/ca/agent/ca\fR. If no URL is specified, the \fIhost\fR named in the \fI[global]\fR section in the \fI/etc/ipa/default.conf\fR file is used as the value of \fBSERVER\fR, and the value of \fBAGENTPORT\fR will be inferred based on the value of the \fIdogtag_version\fR in the \fI[global]\fR section in the \fI/etc/ipa/default.conf\fR file: if \fIdogtag_version\fR is set to \fI10\fR or more, \fBAGENTPORT\fR will be set to 8443. Otherwise it will be 9443. .TP \fB\-d\fR dbdir \fB\-n\fR nickname \fB\-c\fR certfile \fB\-k\fR keyfile The location of the key and certificate which the client should use to authenticate to the CA's agent interface. Exactly which values are meaningful depend on which cryptography library your copy of libcurl was linked with. If none of these options are specified, and none of the \fB-p\fR, \fB-P\fR, \fB-i\fR, nor \fB-C\fR options are specified, then this set of defaults is used: \fB-i\fR \fI/etc/ipa/ca.crt\fR \fB-d\fR \fI/etc/httpd/alias\fR \fB-n\fR \fIipaCert\fR \fB-p\fR \fI/etc/httpd/alias/pwdfile.txt\fR .TP \fB\-p\fR pinfile The name of a file which contains a PIN/password which will be needed in order to make use of the agent credentials. If this option is not specified, and none of the \fB-d\fR, \fB-n\fR, \fB-c\fR, \fB-k\fR, \fB-P\fR, \fB-i\fR, nor \fB-C\fR options are specified, then this set of defaults is used: \fB-i\fR \fI/etc/ipa/ca.crt\fR \fB-d\fR \fI/etc/httpd/alias\fR \fB-n\fR \fIipaCert\fR \fB-p\fR \fI/etc/httpd/alias/pwdfile.txt\fR .TP \fB\-i\fR cainfo \fB\-C\fR capath The location of a file containing a copy of the CA's certificate, against which the CA server's certificate will be verified, or a directory containing, among other things, such a file. If these options are not specified, and none of the \fB-d\fR, \fB-n\fR, \fB-c\fR, \fB-k\fR, \fB-p\fR, nor \fB-P\fR options are specified, then this set of defaults is used: \fB-i\fR \fI/etc/ipa/ca.crt\fR \fB-d\fR \fI/etc/httpd/alias\fR \fB-n\fR \fIipaCert\fR \fB-p\fR \fI/etc/httpd/alias/pwdfile.txt\fR .TP \fB-s\fR serial The serial number of an already-issued certificate for which the client should attempt to obtain a new certificate, in hexadecimal form, if one can not be read from the \fICERTMONGER_CERTIFICATE\fR environment variable. .TP \fB-D\fR serial The serial number of an already-issued certificate for which the client should attempt to obtain a new certificate, in decimal form, if one can not be read from the \fICERTMONGER_CERTIFICATE\fR environment variable. .TP \fB-S\fR state A cookie value provided by a previous instance of this helper, if the helper is being asked to continue a multi-step enrollment process. If the \fICERTMONGER_COOKIE\fR environment variable is set, its value is used. .TP \fB-T\fR profile/template The name of the type of certificate which the client should request from the CA if it is not renewing a certificate (per the \fB-s\fR option above). If the \fICERTMONGER_CA_PROFILE\fR environment variable is set, its value is used. Otherwise, the default value is \fBcaServerCert\fP. .TP \fB-O\fR param=value An additional parameter to pass to the server when approving the signing request using the agent's credentials. By default, any server-supplied default settings are applied. This option can be used either to override a server-supplied default setting, or to supply one which would otherwise have not been used. .TP \fB-N\fR Even if an already-issued certificate is available in the \fICERTMONGER_CERTIFICATE\fR environment variable, or a serial number has been provided, don't attempt to renew a certificate using its serial number. Instead, attempt to obtain a new certificate using the signing request. The default behavior is to request a renewal if possible. .TP \fB-R\fR Negates the effect of the \fB-N\fR flag. .TP \fB-t\fR Instead of attempting to obtain a new certificate, query the server for a list of the enabled enrollment profiles. .TP \fB-o\fR param=value When initially submitting a request to the CA, add the specified parameter and value along with any request parameters which would otherwise be sent. This option is not typically used. .TP \fB-v\fR Increases the logging level. Use twice for more logging. This option is mainly useful for troubleshooting. .SH EXIT STATUS .TP 0 if the certificate was issued. The certificate will be printed. .TP 1 if the CA is still thinking. A cookie (state) value will be printed. .TP 2 if the CA rejected the request. An error message may be printed. .TP 3 if the CA was unreachable. An error message may be printed. .TP 4 if critical configuration information is missing. An error message may be printed. .TP 5 if the CA is still thinking. A suggested poll delay (specified in seconds) and a cookie (state) value will be printed. .TP 17 if the CA indicates that the client needs to attempt enrollment using a new key pair. .SH FILES .TP .I /etc/ipa/default.conf is the IPA client configuration file. This file is consulted to determine the URL for the Dogtag server's end-entity and agent interfaces if they are not supplied as arguments. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmonger-certmaster-submit.8.in0000664000175000017500000000565112645513264020025 00000000000000.TH certmonger 8 "7 June 2010" "certmonger Manual" .SH NAME certmaster-submit .SH SYNOPSIS certmaster-submit [-h serverHost] [-c cafile] [-C capath] [csrfile] .SH DESCRIPTION \fIcertmaster-submit\fR is the helper which \fIcertmonger\fR uses to make requests to certmaster-based CAs. It is not normally run interactively, but it can be for troubleshooting purposes. The signing request which is to be submitted should either be in a file whose name is given as an argument, or fed into \fIcertmaster-submit\fR via stdin. There is no standard authenticated method for obtaining the root certificate from certmaster CAs, so \fBcertmonger\fR does not support retrieving trust information from them. .SH OPTIONS .TP \fB\-h\fR serverHost Submit the request to the certmaster instance running on the named host. The default is \fIlocalhost:51235\fR if a file named \fB/var/run/certmaster.pid\fR is found on the local system, and is read from \fB/etc/certmaster/minion.conf\fR if that file is not found. .TP \fB\-c\fR cafile Submit the request over HTTPS instead of HTTP, and only trust the server if its certificate was issued by the CA whose certificate is in the named file. .TP \fB\-C\fR capath Submit the request over HTTPS instead of HTTP, and only trust the server if its certificate was issued by a CA whose certificate is in a file in the named directory. .SH EXIT STATUS .TP 0 if the certificate was issued. The certificate will be printed. .TP 1 if the CA is still thinking. A cookie value will be printed. .TP 2 if the CA rejected the request. An error message may be printed. .TP 3 if the CA was unreachable. An error message may be printed. .TP 4 if critical configuration information is missing. An error message may be printed. .SH FILES .TP .I /var/run/certmaster.pid the certmaster service's PID file. Its presence is taken to indicate that this system is a CA, and that requests should be submitted to a certmaster server running on the local system. .TP .I /etc/certmaster/minion.conf the certmaster minion configuration file. If there is no indication that the local system is a certmaster server, then this file is consulted to determine the location of the certmaster server. .SH KNOWN BUGS Checking for the existence of certmaster's PID file is a terrible way to figure out whether we're a minion or not. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/certmaster-getcert.1.in0000664000175000017500000000430112645513264015774 00000000000000.TH certmonger 1 "23 November 2009" "certmonger Manual" .SH NAME certmaster-getcert .SH SYNOPSIS certmaster-getcert request [options] certmaster-getcert resubmit [options] certmaster-getcert start-tracking [options] certmaster-getcert status [options] certmaster-getcert stop-tracking [options] certmaster-getcert list [options] certmaster-getcert list-cas [options] certmaster-getcert refresh-cas [options] .SH DESCRIPTION The \fIcertmaster-getcert\fR tool issues requests to a @CM_DBUS_NAME@ service on behalf of the invoking user. It can ask the service to begin enrollment, optionally generating a key pair to use, it can ask the service to begin monitoring a certificate in a specified location for expiration, and optionally to refresh it when expiration nears, it can list the set of certificates that the service is already monitoring, or it can list the set of CAs that the service is capable of using. If no command is given as the first command-line argument, \fIcertmaster-getcert\fR will print short usage information for each of its functions. The \fIcertmaster-getcert\fR tool behaves identically to the generic \fIgetcert\fR tool when it is used with the \fB-c \fI@CM_CERTMASTER_CA_NAME@\fR option. There is no standard authenticated method for obtaining the root certificate from certmaster CAs, so \fBcertmonger\fR does not support retrieving trust information from them. While the \fB-F\fR and \fB-a\fR options will still be recognized, they will effectively be ignored. .SH BUGS Please file tickets for any that you find at https://fedorahosted.org/certmonger/ .SH SEE ALSO \fBcertmonger\fR(8) \fBgetcert\fR(1) \fBgetcert-add-ca\fR(1) \fBgetcert-add-scep-ca\fR(1) \fBgetcert-list-cas\fR(1) \fBgetcert-list\fR(1) \fBgetcert-modify-ca\fR(1) \fBgetcert-refresh-ca\fR(1) \fBgetcert-refresh\fR(1) \fBgetcert-remove-ca\fR(1) \fBgetcert-request\fR(1) \fBgetcert-resubmit\fR(1) \fBgetcert-start-tracking\fR(1) \fBgetcert-status\fR(1) \fBgetcert-stop-tracking\fR(1) \fBcertmonger-certmaster-submit\fR(8) \fBcertmonger-dogtag-ipa-renew-agent-submit\fR(8) \fBcertmonger-dogtag-submit\fR(8) \fBcertmonger-ipa-submit\fR(8) \fBcertmonger-local-submit\fR(8) \fBcertmonger-scep-submit\fR(8) \fBcertmonger_selinux\fR(8) certmonger-0.78.6/src/Makefile.in0000664000175000017500000120221212645513271013546 00000000000000# Makefile.in generated by automake 1.15 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2014 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @PIE_TRUE@am__append_1 = -fPIC @PIE_TRUE@am__append_2 = -fPIC -pie @NOW_TRUE@am__append_3 = -Wl,-z,relro,-z,now EXTRA_PROGRAMS = @HAVE_OPENSSL_TRUE@am__append_4 = \ @HAVE_OPENSSL_TRUE@ certread-o.c \ @HAVE_OPENSSL_TRUE@ certsave-o.c \ @HAVE_OPENSSL_TRUE@ csrgen-o.c \ @HAVE_OPENSSL_TRUE@ keygen-o.c \ @HAVE_OPENSSL_TRUE@ keyiread-o.c \ @HAVE_OPENSSL_TRUE@ pkcs7.c \ @HAVE_OPENSSL_TRUE@ pkcs7.h \ @HAVE_OPENSSL_TRUE@ prefs-o.c \ @HAVE_OPENSSL_TRUE@ prefs-o.h \ @HAVE_OPENSSL_TRUE@ scep-o.c \ @HAVE_OPENSSL_TRUE@ scep-o.h \ @HAVE_OPENSSL_TRUE@ scepgen-o.c \ @HAVE_OPENSSL_TRUE@ submit-so.c \ @HAVE_OPENSSL_TRUE@ submit-o.c \ @HAVE_OPENSSL_TRUE@ submit-o.h \ @HAVE_OPENSSL_TRUE@ util-o.c \ @HAVE_OPENSSL_TRUE@ util-o.h bin_PROGRAMS = getcert$(EXEEXT) $(am__EXEEXT_1) \ selfsign-getcert$(EXEEXT) local-getcert$(EXEEXT) pkglibexec_PROGRAMS = certmonger-session$(EXEEXT) $(am__EXEEXT_2) \ $(am__EXEEXT_3) dogtag-ipa-renew-agent-submit$(EXEEXT) \ dogtag-submit$(EXEEXT) $(am__EXEEXT_4) @WITH_IPA_TRUE@am__append_5 = ipa-getcert certmaster-getcert sbin_PROGRAMS = certmonger$(EXEEXT) noinst_PROGRAMS = tdbusm-check$(EXEEXT) serial-check$(EXEEXT) \ nl-check$(EXEEXT) submit-x$(EXEEXT) tlslayer$(EXEEXT) \ toklist$(EXEEXT) submit-h$(EXEEXT) submit-d$(EXEEXT) @WITH_CERTMASTER_TRUE@am__append_6 = certmaster-submit @WITH_IPA_TRUE@am__append_7 = ipa-submit @HAVE_OPENSSL_TRUE@am__append_8 = local-submit scep-submit @HAVE_OPENSSL_TRUE@am__append_9 = tlslayer-o.c subdir = src ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/gettext.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/intlmacosx.m4 \ $(top_srcdir)/m4/lib-ld.m4 $(top_srcdir)/m4/lib-link.m4 \ $(top_srcdir)/m4/lib-prefix.m4 $(top_srcdir)/m4/nls.m4 \ $(top_srcdir)/m4/po.m4 $(top_srcdir)/m4/progtest.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = config.h CONFIG_CLEAN_FILES = introspect.sh certmonger.8 getcert.1 \ getcert-request.1 getcert-list.1 getcert-list-cas.1 \ getcert-start-tracking.1 getcert-stop-tracking.1 \ selfsign-getcert.1 ipa-getcert.1 getcert-resubmit.1 \ certmonger-certmaster-submit.8 certmonger-ipa-submit.8 \ certmonger-dogtag-ipa-renew-agent-submit.8 \ certmaster-getcert.1 certmonger.conf.5 certmonger.conf \ getcert-refresh.1 getcert-refresh-ca.1 local-getcert.1 \ certmonger-local-submit.8 getcert-status.1 \ certmonger-dogtag-submit.8 certmonger-scep-submit.8 \ getcert-add-ca.1 getcert-add-scep-ca.1 getcert-modify-ca.1 \ getcert-remove-ca.1 CONFIG_CLEAN_VPATH_FILES = LIBRARIES = $(noinst_LIBRARIES) AR = ar ARFLAGS = cru AM_V_AR = $(am__v_AR_@AM_V@) am__v_AR_ = $(am__v_AR_@AM_DEFAULT_V@) am__v_AR_0 = @echo " AR " $@; am__v_AR_1 = libcm_o_a_AR = $(AR) $(ARFLAGS) libcm_o_a_LIBADD = am__libcm_o_a_SOURCES_DIST = certread-o.c certsave-o.c csrgen-o.c \ keygen-o.c keyiread-o.c pkcs7.c pkcs7.h prefs-o.c prefs-o.h \ scep-o.c scep-o.h scepgen-o.c submit-so.c submit-o.c \ submit-o.h util-o.c util-o.h @HAVE_OPENSSL_TRUE@am__objects_1 = libcm_o_a-certread-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-certsave-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-csrgen-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-keygen-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-keyiread-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-pkcs7.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-prefs-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-scep-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-scepgen-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-submit-so.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-submit-o.$(OBJEXT) \ @HAVE_OPENSSL_TRUE@ libcm_o_a-util-o.$(OBJEXT) am_libcm_o_a_OBJECTS = $(am__objects_1) libcm_o_a_OBJECTS = $(am_libcm_o_a_OBJECTS) libcm_a_AR = $(AR) $(ARFLAGS) libcm_a_DEPENDENCIES = $(libcm_o_a_OBJECTS) am_libcm_a_OBJECTS = libcm_a-cadata.$(OBJEXT) libcm_a-casave.$(OBJEXT) \ libcm_a-canalyze.$(OBJEXT) libcm_a-certext.$(OBJEXT) \ libcm_a-certread.$(OBJEXT) libcm_a-certread-n.$(OBJEXT) \ libcm_a-certsave.$(OBJEXT) libcm_a-certsave-n.$(OBJEXT) \ libcm_a-cm.$(OBJEXT) libcm_a-csrgen.$(OBJEXT) \ libcm_a-csrgen-n.$(OBJEXT) libcm_a-env-shared.$(OBJEXT) \ libcm_a-hook.$(OBJEXT) libcm_a-iterate.$(OBJEXT) \ libcm_a-json.$(OBJEXT) libcm_a-keygen.$(OBJEXT) \ libcm_a-keygen-n.$(OBJEXT) libcm_a-keyiread.$(OBJEXT) \ libcm_a-keyiread-n.$(OBJEXT) libcm_a-kudict.$(OBJEXT) \ libcm_a-log.$(OBJEXT) libcm_a-netlink.$(OBJEXT) \ libcm_a-notify.$(OBJEXT) libcm_a-oiddict.$(OBJEXT) \ libcm_a-pin.$(OBJEXT) libcm_a-prefs.$(OBJEXT) \ libcm_a-prefs-n.$(OBJEXT) libcm_a-scepgen.$(OBJEXT) \ libcm_a-scepgen-n.$(OBJEXT) libcm_a-store-files.$(OBJEXT) \ libcm_a-store-gen.$(OBJEXT) libcm_a-submit.$(OBJEXT) \ libcm_a-submit-e.$(OBJEXT) libcm_a-submit-n.$(OBJEXT) \ libcm_a-submit-sn.$(OBJEXT) libcm_a-submit-u.$(OBJEXT) \ libcm_a-submit-x.$(OBJEXT) libcm_a-subproc.$(OBJEXT) \ libcm_a-tdbus.$(OBJEXT) libcm_a-tdbush.$(OBJEXT) \ libcm_a-tdbusm.$(OBJEXT) libcm_a-util.$(OBJEXT) \ libcm_a-util-m.$(OBJEXT) libcm_a-util-n.$(OBJEXT) libcm_a_OBJECTS = $(am_libcm_a_OBJECTS) @WITH_IPA_TRUE@am__EXEEXT_1 = ipa-getcert$(EXEEXT) \ @WITH_IPA_TRUE@ certmaster-getcert$(EXEEXT) am__installdirs = "$(DESTDIR)$(bindir)" "$(DESTDIR)$(pkglibexecdir)" \ "$(DESTDIR)$(sbindir)" "$(DESTDIR)$(man1dir)" \ "$(DESTDIR)$(man5dir)" "$(DESTDIR)$(man8dir)" \ "$(DESTDIR)$(pkgsysconfdir)" @WITH_CERTMASTER_TRUE@am__EXEEXT_2 = certmaster-submit$(EXEEXT) @WITH_IPA_TRUE@am__EXEEXT_3 = ipa-submit$(EXEEXT) @HAVE_OPENSSL_TRUE@am__EXEEXT_4 = local-submit$(EXEEXT) \ @HAVE_OPENSSL_TRUE@ scep-submit$(EXEEXT) PROGRAMS = $(bin_PROGRAMS) $(noinst_PROGRAMS) $(pkglibexec_PROGRAMS) \ $(sbin_PROGRAMS) am__certmaster_getcert_SOURCES_DIST = certmaster-getcert.c tm.c tm.h @WITH_IPA_TRUE@am_certmaster_getcert_OBJECTS = certmaster_getcert-certmaster-getcert.$(OBJEXT) \ @WITH_IPA_TRUE@ certmaster_getcert-tm.$(OBJEXT) certmaster_getcert_OBJECTS = $(am_certmaster_getcert_OBJECTS) am__DEPENDENCIES_1 = am__DEPENDENCIES_2 = libcm.a $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) @WITH_IPA_TRUE@certmaster_getcert_DEPENDENCIES = \ @WITH_IPA_TRUE@ $(am__DEPENDENCIES_2) certmaster_getcert_LINK = $(CCLD) $(certmaster_getcert_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_certmaster_submit_OBJECTS = certmaster.$(OBJEXT) submit-x.$(OBJEXT) \ submit-u.$(OBJEXT) util.$(OBJEXT) log.$(OBJEXT) tm.$(OBJEXT) certmaster_submit_OBJECTS = $(am_certmaster_submit_OBJECTS) certmaster_submit_DEPENDENCIES = $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) am_certmonger_OBJECTS = main.$(OBJEXT) env-system.$(OBJEXT) \ tm.$(OBJEXT) certmonger_OBJECTS = $(am_certmonger_OBJECTS) certmonger_DEPENDENCIES = libcm.a $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) am_certmonger_session_OBJECTS = main.$(OBJEXT) env-session.$(OBJEXT) \ tm.$(OBJEXT) certmonger_session_OBJECTS = $(am_certmonger_session_OBJECTS) certmonger_session_DEPENDENCIES = libcm.a $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) am_dogtag_ipa_renew_agent_submit_OBJECTS = \ dogtag_ipa_renew_agent_submit-dogtag.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-submit-d.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-submit-h.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-util-m.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-util-n.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-submit-u.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-util.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-log.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-store-gen.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-tm.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-prefs.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-dogtag-ipa.$(OBJEXT) \ dogtag_ipa_renew_agent_submit-env-system.$(OBJEXT) dogtag_ipa_renew_agent_submit_OBJECTS = \ $(am_dogtag_ipa_renew_agent_submit_OBJECTS) dogtag_ipa_renew_agent_submit_DEPENDENCIES = $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) dogtag_ipa_renew_agent_submit_LINK = $(CCLD) \ $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_dogtag_submit_OBJECTS = dogtag_submit-dogtag.$(OBJEXT) \ dogtag_submit-submit-d.$(OBJEXT) \ dogtag_submit-submit-h.$(OBJEXT) \ dogtag_submit-util-m.$(OBJEXT) dogtag_submit-util-n.$(OBJEXT) \ dogtag_submit-submit-u.$(OBJEXT) dogtag_submit-util.$(OBJEXT) \ dogtag_submit-log.$(OBJEXT) dogtag_submit-store-gen.$(OBJEXT) \ dogtag_submit-tm.$(OBJEXT) dogtag_submit-prefs.$(OBJEXT) \ dogtag_submit-env-system.$(OBJEXT) dogtag_submit_OBJECTS = $(am_dogtag_submit_OBJECTS) dogtag_submit_DEPENDENCIES = $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) dogtag_submit_LINK = $(CCLD) $(dogtag_submit_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_getcert_OBJECTS = getcert-getcert.$(OBJEXT) getcert-tm.$(OBJEXT) getcert_OBJECTS = $(am_getcert_OBJECTS) getcert_DEPENDENCIES = libcm.a $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) getcert_LINK = $(CCLD) $(getcert_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ am__ipa_getcert_SOURCES_DIST = ipa-getcert.c tm.c tm.h @WITH_IPA_TRUE@am_ipa_getcert_OBJECTS = \ @WITH_IPA_TRUE@ ipa_getcert-ipa-getcert.$(OBJEXT) \ @WITH_IPA_TRUE@ ipa_getcert-tm.$(OBJEXT) ipa_getcert_OBJECTS = $(am_ipa_getcert_OBJECTS) @WITH_IPA_TRUE@ipa_getcert_DEPENDENCIES = $(am__DEPENDENCIES_2) ipa_getcert_LINK = $(CCLD) $(ipa_getcert_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_ipa_submit_OBJECTS = ipa.$(OBJEXT) srvloc.$(OBJEXT) \ store-gen.$(OBJEXT) submit-x.$(OBJEXT) submit-u.$(OBJEXT) \ util.$(OBJEXT) log.$(OBJEXT) tm.$(OBJEXT) ipa_submit_OBJECTS = $(am_ipa_submit_OBJECTS) ipa_submit_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) am_local_getcert_OBJECTS = local_getcert-local-getcert.$(OBJEXT) \ local_getcert-tm.$(OBJEXT) local_getcert_OBJECTS = $(am_local_getcert_OBJECTS) local_getcert_DEPENDENCIES = $(am__DEPENDENCIES_2) local_getcert_LINK = $(CCLD) $(local_getcert_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_local_submit_OBJECTS = local_submit-local.$(OBJEXT) \ local_submit-store-gen.$(OBJEXT) \ local_submit-submit-o.$(OBJEXT) \ local_submit-submit-u.$(OBJEXT) \ local_submit-env-session.$(OBJEXT) \ local_submit-env-shared.$(OBJEXT) local_submit-log.$(OBJEXT) \ local_submit-prefs.$(OBJEXT) local_submit-prefs-o.$(OBJEXT) \ local_submit-tm.$(OBJEXT) local_submit-util.$(OBJEXT) \ local_submit-util-o.$(OBJEXT) local_submit-pin.$(OBJEXT) local_submit_OBJECTS = $(am_local_submit_OBJECTS) local_submit_DEPENDENCIES = $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) local_submit_LINK = $(CCLD) $(local_submit_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ nl_check_SOURCES = nl-check.c nl_check_OBJECTS = nl-check.$(OBJEXT) nl_check_DEPENDENCIES = libcm.a $(am__DEPENDENCIES_1) am_scep_submit_OBJECTS = scep_submit-scep.$(OBJEXT) \ scep_submit-submit-h.$(OBJEXT) scep_submit-util-m.$(OBJEXT) \ scep_submit-util-o.$(OBJEXT) scep_submit-submit-u.$(OBJEXT) \ scep_submit-util.$(OBJEXT) scep_submit-log.$(OBJEXT) \ scep_submit-pkcs7.$(OBJEXT) scep_submit-store-gen.$(OBJEXT) \ scep_submit-tm.$(OBJEXT) scep_submit-prefs.$(OBJEXT) \ scep_submit-prefs-o.$(OBJEXT) scep_submit-scep-o.$(OBJEXT) \ scep_submit-env-system.$(OBJEXT) scep_submit_OBJECTS = $(am_scep_submit_OBJECTS) scep_submit_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) scep_submit_LINK = $(CCLD) $(scep_submit_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ am_selfsign_getcert_OBJECTS = \ selfsign_getcert-selfsign-getcert.$(OBJEXT) \ selfsign_getcert-tm.$(OBJEXT) selfsign_getcert_OBJECTS = $(am_selfsign_getcert_OBJECTS) selfsign_getcert_DEPENDENCIES = $(am__DEPENDENCIES_2) selfsign_getcert_LINK = $(CCLD) $(selfsign_getcert_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ serial_check_SOURCES = serial-check.c serial_check_OBJECTS = serial-check.$(OBJEXT) serial_check_DEPENDENCIES = libcm.a $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) am_submit_d_OBJECTS = submit_d-submit-d.$(OBJEXT) \ submit_d-submit-h.$(OBJEXT) submit_d-submit-u.$(OBJEXT) \ submit_d-log.$(OBJEXT) submit_d-tm.$(OBJEXT) \ submit_d-util-m.$(OBJEXT) submit_d_OBJECTS = $(am_submit_d_OBJECTS) submit_d_DEPENDENCIES = libcm-o.a $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) submit_d_LINK = $(CCLD) $(submit_d_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ am_submit_h_OBJECTS = submit_h-submit-h.$(OBJEXT) \ submit_h-log.$(OBJEXT) submit_h-tm.$(OBJEXT) submit_h_OBJECTS = $(am_submit_h_OBJECTS) submit_h_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) submit_h_LINK = $(CCLD) $(submit_h_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ am_submit_x_OBJECTS = submit_x-submit-x.$(OBJEXT) \ submit_x-submit-u.$(OBJEXT) submit_x-log.$(OBJEXT) \ submit_x-tm.$(OBJEXT) submit_x_OBJECTS = $(am_submit_x_OBJECTS) submit_x_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) submit_x_LINK = $(CCLD) $(submit_x_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ am_tdbusm_check_OBJECTS = tdbusm-check.$(OBJEXT) tm.$(OBJEXT) tdbusm_check_OBJECTS = $(am_tdbusm_check_OBJECTS) tdbusm_check_DEPENDENCIES = libcm.a $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) am__tlslayer_SOURCES_DIST = tlslayer.c tlslayer-n.c tlslayer.h \ tlslayer-int.h tlslayer-o.c @HAVE_OPENSSL_TRUE@am__objects_2 = tlslayer-tlslayer-o.$(OBJEXT) am_tlslayer_OBJECTS = tlslayer-tlslayer.$(OBJEXT) \ tlslayer-tlslayer-n.$(OBJEXT) $(am__objects_2) tlslayer_OBJECTS = $(am_tlslayer_OBJECTS) tlslayer_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) tlslayer_LINK = $(CCLD) $(tlslayer_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ toklist_SOURCES = toklist.c toklist_OBJECTS = toklist-toklist.$(OBJEXT) toklist_DEPENDENCIES = $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) toklist_LINK = $(CCLD) $(toklist_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = DEFAULT_INCLUDES = -I.@am__isrc@ depcomp = $(SHELL) $(top_srcdir)/depcomp am__depfiles_maybe = depfiles am__mv = mv -f AM_V_lt = $(am__v_lt_@AM_V@) am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) am__v_lt_0 = --silent am__v_lt_1 = COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) AM_V_CC = $(am__v_CC_@AM_V@) am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) am__v_CC_0 = @echo " CC " $@; am__v_CC_1 = CCLD = $(CC) LINK = $(CCLD) $(AM_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_CCLD = $(am__v_CCLD_@AM_V@) am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) am__v_CCLD_0 = @echo " CCLD " $@; am__v_CCLD_1 = SOURCES = $(libcm_o_a_SOURCES) $(libcm_a_SOURCES) \ $(certmaster_getcert_SOURCES) $(certmaster_submit_SOURCES) \ $(certmonger_SOURCES) $(certmonger_session_SOURCES) \ $(dogtag_ipa_renew_agent_submit_SOURCES) \ $(dogtag_submit_SOURCES) $(getcert_SOURCES) \ $(ipa_getcert_SOURCES) $(ipa_submit_SOURCES) \ $(local_getcert_SOURCES) $(local_submit_SOURCES) nl-check.c \ $(scep_submit_SOURCES) $(selfsign_getcert_SOURCES) \ serial-check.c $(submit_d_SOURCES) $(submit_h_SOURCES) \ $(submit_x_SOURCES) $(tdbusm_check_SOURCES) \ $(tlslayer_SOURCES) toklist.c DIST_SOURCES = $(am__libcm_o_a_SOURCES_DIST) $(libcm_a_SOURCES) \ $(am__certmaster_getcert_SOURCES_DIST) \ $(certmaster_submit_SOURCES) $(certmonger_SOURCES) \ $(certmonger_session_SOURCES) \ $(dogtag_ipa_renew_agent_submit_SOURCES) \ $(dogtag_submit_SOURCES) $(getcert_SOURCES) \ $(am__ipa_getcert_SOURCES_DIST) $(ipa_submit_SOURCES) \ $(local_getcert_SOURCES) $(local_submit_SOURCES) nl-check.c \ $(scep_submit_SOURCES) $(selfsign_getcert_SOURCES) \ serial-check.c $(submit_d_SOURCES) $(submit_h_SOURCES) \ $(submit_x_SOURCES) $(tdbusm_check_SOURCES) \ $(am__tlslayer_SOURCES_DIST) toklist.c am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } man1dir = $(mandir)/man1 man5dir = $(mandir)/man5 man8dir = $(mandir)/man8 NROFF = nroff MANS = $(man_MANS) DATA = $(pkgsysconf_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) \ $(LISP)config.h.in # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags am__DIST_COMMON = $(srcdir)/Makefile.in \ $(srcdir)/certmaster-getcert.1.in \ $(srcdir)/certmonger-certmaster-submit.8.in \ $(srcdir)/certmonger-dogtag-ipa-renew-agent-submit.8.in \ $(srcdir)/certmonger-dogtag-submit.8.in \ $(srcdir)/certmonger-ipa-submit.8.in \ $(srcdir)/certmonger-local-submit.8.in \ $(srcdir)/certmonger-scep-submit.8.in \ $(srcdir)/certmonger.8.in $(srcdir)/certmonger.conf.5.in \ $(srcdir)/certmonger.conf.in $(srcdir)/config.h.in \ $(srcdir)/getcert-add-ca.1.in \ $(srcdir)/getcert-add-scep-ca.1.in \ $(srcdir)/getcert-list-cas.1.in $(srcdir)/getcert-list.1.in \ $(srcdir)/getcert-modify-ca.1.in \ $(srcdir)/getcert-refresh-ca.1.in \ $(srcdir)/getcert-refresh.1.in \ $(srcdir)/getcert-remove-ca.1.in \ $(srcdir)/getcert-request.1.in $(srcdir)/getcert-resubmit.1.in \ $(srcdir)/getcert-start-tracking.1.in \ $(srcdir)/getcert-status.1.in \ $(srcdir)/getcert-stop-tracking.1.in $(srcdir)/getcert.1.in \ $(srcdir)/introspect.sh.in $(srcdir)/ipa-getcert.1.in \ $(srcdir)/local-getcert.1.in $(srcdir)/selfsign-getcert.1.in \ $(top_srcdir)/depcomp DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) pkglibexecdir = $(libexecdir)/$(PACKAGE) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CERTMONGER_CFLAGS = @CERTMONGER_CFLAGS@ CERTMONGER_LIBS = @CERTMONGER_LIBS@ CERTMONGER_PVT_ADDRESS_ENV = @CERTMONGER_PVT_ADDRESS_ENV@ CFLAGS = @CFLAGS@ $(am__append_1) CM_CERTMASTER_CA_NAME = @CM_CERTMASTER_CA_NAME@ CM_DBUS_NAME = @CM_DBUS_NAME@ CM_DEFAULT_CERT_LIFETIME = @CM_DEFAULT_CERT_LIFETIME@ CM_DEFAULT_IDLE_TIMEOUT = @CM_DEFAULT_IDLE_TIMEOUT@ CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ CM_DEFAULT_POPULATE_UNIQUE_ID = @CM_DEFAULT_POPULATE_UNIQUE_ID@ CM_DEFAULT_PUBKEY_SIZE = @CM_DEFAULT_PUBKEY_SIZE@ CM_DEFAULT_TTL_LIST = @CM_DEFAULT_TTL_LIST@ CM_HOMEDIR = @CM_HOMEDIR@ CM_IPA_CA_NAME = @CM_IPA_CA_NAME@ CM_LOCAL_CA_NAME = @CM_LOCAL_CA_NAME@ CM_MINIMUM_DSA_KEY_SIZE = @CM_MINIMUM_DSA_KEY_SIZE@ CM_MINIMUM_EC_KEY_SIZE = @CM_MINIMUM_EC_KEY_SIZE@ CM_MINIMUM_RSA_KEY_SIZE = @CM_MINIMUM_RSA_KEY_SIZE@ CM_NOTIFICATION_ENV = @CM_NOTIFICATION_ENV@ CM_SELF_SIGN_CA_NAME = @CM_SELF_SIGN_CA_NAME@ CM_STORE_CAS_DIRECTORY = @CM_STORE_CAS_DIRECTORY@ CM_STORE_CAS_DIRECTORY_ENV = @CM_STORE_CAS_DIRECTORY_ENV@ CM_STORE_CONFIG_DIRECTORY_ENV = @CM_STORE_CONFIG_DIRECTORY_ENV@ CM_STORE_LOCAL_CA_DIRECTORY = @CM_STORE_LOCAL_CA_DIRECTORY@ CM_STORE_LOCAL_CA_DIRECTORY_ENV = @CM_STORE_LOCAL_CA_DIRECTORY_ENV@ CM_STORE_REQUESTS_DIRECTORY = @CM_STORE_REQUESTS_DIRECTORY@ CM_STORE_REQUESTS_DIRECTORY_ENV = @CM_STORE_REQUESTS_DIRECTORY_ENV@ CM_STORE_SYSTEM_LOCK_FILE = @CM_STORE_SYSTEM_LOCK_FILE@ CM_STORE_SYSTEM_LOCK_FILE_ENV = @CM_STORE_SYSTEM_LOCK_FILE_ENV@ CM_TMPDIR = @CM_TMPDIR@ CM_TMPDIR_ENV = @CM_TMPDIR_ENV@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CURL_CFLAGS = @CURL_CFLAGS@ CURL_LIBS = @CURL_LIBS@ CYGPATH_W = @CYGPATH_W@ DBUS_CFLAGS = @DBUS_CFLAGS@ DBUS_LIBS = @DBUS_LIBS@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ GETCERT_CFLAGS = @GETCERT_CFLAGS@ GETCERT_LIBS = @GETCERT_LIBS@ GETTEXT_MACRO_VERSION = @GETTEXT_MACRO_VERSION@ GMP_CFLAGS = @GMP_CFLAGS@ GMP_LIBS = @GMP_LIBS@ GMSGFMT = @GMSGFMT@ GMSGFMT_015 = @GMSGFMT_015@ GREP = @GREP@ IDN_CFLAGS = @IDN_CFLAGS@ IDN_LIBS = @IDN_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTLLIBS = @INTLLIBS@ INTL_MACOSX_LIBS = @INTL_MACOSX_LIBS@ KRB5_CFLAGS = @KRB5_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ KRB5_LIBS = @KRB5_LIBS@ LDAP_CFLAGS = @LDAP_CFLAGS@ LDAP_LIBS = @LDAP_LIBS@ LDFLAGS = $(am__append_2) $(am__append_3) LIBICONV = @LIBICONV@ LIBINTL = @LIBINTL@ LIBOBJS = @LIBOBJS@ LIBS = @LIBS@ LTLIBICONV = @LTLIBICONV@ LTLIBINTL = @LTLIBINTL@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAN_DSA = @MAN_DSA@ MAN_EC = @MAN_EC@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ MSGFMT_015 = @MSGFMT_015@ MSGMERGE = @MSGMERGE@ NO_MAN_DSA = @NO_MAN_DSA@ NO_MAN_EC = @NO_MAN_EC@ NSS_CFLAGS = @NSS_CFLAGS@ NSS_LIBS = @NSS_LIBS@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OPENSSL_SSL_CFLAGS = @OPENSSL_SSL_CFLAGS@ OPENSSL_SSL_LIBS = @OPENSSL_SSL_LIBS@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ POPT_CFLAGS = @POPT_CFLAGS@ POPT_LIBS = @POPT_LIBS@ POSUB = @POSUB@ RANLIB = @RANLIB@ RESOLV_LIBS = @RESOLV_LIBS@ SESSIONBUSSERVICESDIR = @SESSIONBUSSERVICESDIR@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ STRIP = @STRIP@ SYSTEMBUSSERVICESDIR = @SYSTEMBUSSERVICESDIR@ SYSTEMD = @SYSTEMD@ SYSTEMDSYSTEMUNITDIR = @SYSTEMDSYSTEMUNITDIR@ SYSVINIT = @SYSVINIT@ TALLOC_CFLAGS = @TALLOC_CFLAGS@ TALLOC_LIBS = @TALLOC_LIBS@ TEVENT_CFLAGS = @TEVENT_CFLAGS@ TEVENT_LIBS = @TEVENT_LIBS@ TMPFILES = @TMPFILES@ USE_NLS = @USE_NLS@ UUID_CFLAGS = @UUID_CFLAGS@ UUID_LIBS = @UUID_LIBS@ VERSION = @VERSION@ XGETTEXT = @XGETTEXT@ XGETTEXT_015 = @XGETTEXT_015@ XGETTEXT_EXTRA_OPTIONS = @XGETTEXT_EXTRA_OPTIONS@ XMLRPC_CFLAGS = @XMLRPC_CFLAGS@ XMLRPC_C_CONFIG = @XMLRPC_C_CONFIG@ XMLRPC_LIBS = @XMLRPC_LIBS@ XML_CFLAGS = @XML_CFLAGS@ XML_LIBS = @XML_LIBS@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_CC = @ac_ct_CC@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ mybindir = @mybindir@ mylibexecdir = @mylibexecdir@ mysbindir = @mysbindir@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ AM_CFLAGS = $(TALLOC_CFLAGS) $(TEVENT_CFLAGS) $(DBUS_CFLAGS) $(KRB5_CFLAGS) \ $(XMLRPC_CFLAGS) $(IDN_CFLAGS) $(UUID_CFLAGS) $(LDAP_CFLAGS) \ $(POPT_CFLAGS) man_MANS = certmonger.8 getcert.1 getcert-request.1 getcert-list.1 \ getcert-list-cas.1 getcert-start-tracking.1 getcert-stop-tracking.1 \ selfsign-getcert.1 ipa-getcert.1 certmaster-getcert.1 \ getcert-resubmit.1 certmonger-ipa-submit.8 \ certmonger-certmaster-submit.8 \ certmonger-dogtag-ipa-renew-agent-submit.8 certmonger.conf.5 \ getcert-refresh.1 getcert-refresh-ca.1 local-getcert.1 \ certmonger-local-submit.8 getcert-status.1 \ certmonger-dogtag-submit.8 certmonger-scep-submit.8 \ getcert-add-ca.1 getcert-add-scep-ca.1 getcert-modify-ca.1 \ getcert-remove-ca.1 pkgsysconfdir = $(sysconfdir)/$(PACKAGE) pkgsysconf_DATA = certmonger.conf noinst_LIBRARIES = libcm.a libcm-o.a libcm_a_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) libcm_a_SOURCES = \ cadata.c \ cadata.h \ casave.c \ casave.h \ canalyze.c \ canalyze.h \ certext.c \ certext.h \ certext-n.h \ certread.c \ certread.h \ certread-int.h \ certread-n.c \ certsave.c \ certsave.h \ certsave-int.h \ certsave-n.c \ cm.c \ cm.h \ csrgen.c \ csrgen.h \ csrgen-int.h \ csrgen-n.c \ env.h \ env-shared.c \ hook.c \ hook.h \ iterate.c \ iterate.h \ json.c \ json.h \ keygen.c \ keygen.h \ keygen-int.h \ keygen-n.c \ keyiread.c \ keyiread.h \ keyiread-int.h \ keyiread-n.c \ keyiread-n.h \ kudict.c \ kudict.h \ log.c \ log.h \ netlink.c \ netlink.h \ notify.c \ notify.h \ oiddict.c \ oiddict.h \ pin.c \ pin.h \ prefs.c \ prefs.h \ prefs-n.c \ prefs-n.h \ scep.h \ scepgen.c \ scepgen.h \ scepgen-int.h \ scepgen-n.c \ store-files.c \ store-gen.c \ store.h \ store-int.h \ submit.c \ submit-e.c \ submit-e.h \ submit.h \ submit-int.h \ submit-n.c \ submit-sn.c \ submit-u.c \ submit-u.h \ submit-x.c \ submit-x.h \ subproc.c \ subproc.h \ tdbus.c \ tdbus.h \ tdbush.c \ tdbush.h \ tdbusm.c \ tdbusm.h \ util.c \ util.h \ util-m.c \ util-m.h \ util-n.c \ util-n.h libcm_o_a_SOURCES = $(am__append_4) libcm_o_a_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) $(OPENSSL_CFLAGS) libcm_a_LIBADD = $(libcm_o_a_OBJECTS) getcert_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) $(UUID_CFLAGS) getcert_SOURCES = getcert.c tm.c tm.h getcert_LDADD = libcm.a $(GETCERT_LIBS) $(KRB5_LIBS) $(NSS_LIBS) $(UUID_LIBS) \ $(POPT_LIBS) $(LTLIBICONV) @WITH_IPA_TRUE@ipa_getcert_CFLAGS = $(getcert_CFLAGS) @WITH_IPA_TRUE@ipa_getcert_SOURCES = ipa-getcert.c tm.c tm.h @WITH_IPA_TRUE@ipa_getcert_LDADD = $(getcert_LDADD) @WITH_IPA_TRUE@certmaster_getcert_CFLAGS = $(getcert_CFLAGS) @WITH_IPA_TRUE@certmaster_getcert_SOURCES = certmaster-getcert.c tm.c tm.h @WITH_IPA_TRUE@certmaster_getcert_LDADD = $(getcert_LDADD) selfsign_getcert_CFLAGS = $(getcert_CFLAGS) selfsign_getcert_SOURCES = selfsign-getcert.c tm.c tm.h selfsign_getcert_LDADD = $(getcert_LDADD) local_getcert_CFLAGS = $(getcert_CFLAGS) local_getcert_SOURCES = local-getcert.c tm.c tm.h local_getcert_LDADD = $(getcert_LDADD) certmonger_getcert_CFLAGS = $(getcert_CFLAGS) certmonger_SOURCES = main.c env-system.c tm.c tm.h certmonger_LDADD = libcm.a \ $(OPENSSL_LIBS) $(CERTMONGER_LIBS) $(KRB5_LIBS) $(IDN_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(POPT_LIBS) $(LTLIBICONV) certmonger_session_SOURCES = main.c env-session.c tm.c tm.h certmonger_session_LDADD = libcm.a \ $(OPENSSL_LIBS) $(CERTMONGER_LIBS) $(KRB5_LIBS) $(IDN_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(POPT_LIBS) $(LTLIBICONV) tdbusm_check_SOURCES = tdbusm-check.c tm.c tm.h tdbusm_check_LDADD = libcm.a $(CERTMONGER_LIBS) $(POPT_LIBS) serial_check_LDADD = libcm.a $(CERTMONGER_LIBS) $(LTLIBICONV) nl_check_LDADD = libcm.a $(CERTMONGER_LIBS) submit_x_CFLAGS = $(AM_CFLAGS) -DCM_SUBMIT_X_MAIN submit_x_SOURCES = submit-x.c submit-x.h submit-u.c submit-u.h log.c log.h \ tm.c tm.h submit_x_LDADD = $(XMLRPC_LIBS) $(KRB5_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(POPT_LIBS) toklist_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) toklist_LDADD = $(NSS_LIBS) $(POPT_LIBS) ipa_submit_SOURCES = ipa.c srvloc.c srvloc.h store.h store-gen.c \ submit-x.c submit-x.h submit-u.c submit-u.h \ submit-e.h util.c util.h log.c log.h tm.c tm.h ipa_submit_LDADD = $(XMLRPC_LIBS) $(LDAP_LIBS) $(KRB5_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(IDN_LIBS) $(OPENSSL_LIBS) $(UUID_LIBS) \ $(RESOLV_LIBS) $(LTLIBICONV) $(POPT_LIBS) certmaster_submit_SOURCES = certmaster.c submit-x.c submit-x.h \ submit-e.h submit-u.c submit-u.h util.c util.h log.c log.h \ tm.c tm.h certmaster_submit_LDADD = $(XMLRPC_LIBS) $(KRB5_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) $(POPT_LIBS) dogtag_ipa_renew_agent_submit_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) \ $(NSS_CFLAGS) $(CURL_CFLAGS) \ -DDOGTAG_IPA_RENEW_AGENT=1 dogtag_ipa_renew_agent_submit_SOURCES = dogtag.c submit-d.c submit-d.h \ submit-h.c submit-h.h util-m.c util-m.h util-n.c util-n.h \ submit-u.c submit-u.h submit-e.h util.c util.h log.c log.h \ store.h store-gen.c tm.c tm.h prefs.c prefs.h \ dogtag-ipa.c dogtag-ipa.h env.h env-system.c dogtag_ipa_renew_agent_submit_LDADD = $(CURL_LIBS) $(XML_LIBS) $(NSS_LIBS) \ $(OPENSSL_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) dogtag_submit_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) $(NSS_CFLAGS) $(CURL_CFLAGS) dogtag_submit_SOURCES = dogtag.c submit-d.c submit-d.h \ submit-h.c submit-h.h util-m.c util-m.h util-n.c util-n.h \ submit-u.c submit-u.h submit-e.h util.c util.h log.c log.h \ store.h store-gen.c tm.c tm.h prefs.c prefs.h \ env.h env-system.c dogtag_submit_LDADD = $(CURL_LIBS) $(XML_LIBS) $(NSS_LIBS) \ $(OPENSSL_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) scep_submit_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) $(NSS_CFLAGS) $(CURL_CFLAGS) scep_submit_SOURCES = scep.c scep.h \ submit-h.c submit-h.h util-m.c util-m.h util-o.c util-o.h \ submit-u.c submit-u.h submit-e.h util.c util.h log.c log.h \ pkcs7.c pkcs7.h store.h store-gen.c tm.c tm.h prefs.c prefs.h \ prefs-o.c prefs-o.h scep-o.c scep-o.h env.h env-system.c scep_submit_LDADD = $(CURL_LIBS) $(XML_LIBS) $(NSS_LIBS) \ $(OPENSSL_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) $(POPT_LIBS) local_submit_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) local_submit_SOURCES = local.c env.h store.h store-gen.c submit-o.c submit-o.h \ submit-u.c submit-u.h env-session.c env-shared.c log.c \ log.h prefs.c prefs.h prefs-o.c prefs-o.h tm.c tm.h \ util.c util.h util-o.c util-o.h pin.c pin.h local_submit_LDADD = $(NSS_LIBS) $(OPENSSL_LIBS) $(TALLOC_LIBS) $(UUID_LIBS) \ $(POPT_LIBS) submit_d_CFLAGS = $(AM_CFLAGS) $(CURL_CFLAGS) $(XML_CFLAGS) -DCM_SUBMIT_D_MAIN submit_d_SOURCES = submit-d.c submit-d.h submit-h.c submit-h.h \ submit-u.c submit-u.h log.c log.h tm.c tm.h util-m.c util-m.h submit_d_LDADD = libcm-o.a $(CURL_LIBS) $(OPENSSL_LIBS) $(XML_LIBS) \ $(TALLOC_LIBS) $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) submit_h_CFLAGS = $(AM_CFLAGS) $(CURL_CFLAGS) $(XML_CFLAGS) -DCM_SUBMIT_H_MAIN submit_h_SOURCES = submit-h.c submit-h.h log.c log.h tm.c tm.h submit_h_LDADD = $(CURL_LIBS) $(XML_LIBS) $(TALLOC_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) tlslayer_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) $(OPENSSL_SSL_CFLAGS) \ -DCM_TLSLAYER_MAIN tlslayer_SOURCES = tlslayer.c tlslayer-n.c tlslayer.h tlslayer-int.h \ $(am__append_9) tlslayer_LDADD = $(NSS_LIBS) $(OPENSSL_SSL_LIBS) $(TALLOC_LIBS) $(POPT_LIBS) all: config.h $(MAKE) $(AM_MAKEFLAGS) all-am .SUFFIXES: .SUFFIXES: .c .o .obj $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign src/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign src/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): config.h: stamp-h1 @test -f $@ || rm -f stamp-h1 @test -f $@ || $(MAKE) $(AM_MAKEFLAGS) stamp-h1 stamp-h1: $(srcdir)/config.h.in $(top_builddir)/config.status @rm -f stamp-h1 cd $(top_builddir) && $(SHELL) ./config.status src/config.h $(srcdir)/config.h.in: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) ($(am__cd) $(top_srcdir) && $(AUTOHEADER)) rm -f stamp-h1 touch $@ distclean-hdr: -rm -f config.h stamp-h1 introspect.sh: $(top_builddir)/config.status $(srcdir)/introspect.sh.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger.8: $(top_builddir)/config.status $(srcdir)/certmonger.8.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert.1: $(top_builddir)/config.status $(srcdir)/getcert.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-request.1: $(top_builddir)/config.status $(srcdir)/getcert-request.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-list.1: $(top_builddir)/config.status $(srcdir)/getcert-list.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-list-cas.1: $(top_builddir)/config.status $(srcdir)/getcert-list-cas.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-start-tracking.1: $(top_builddir)/config.status $(srcdir)/getcert-start-tracking.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-stop-tracking.1: $(top_builddir)/config.status $(srcdir)/getcert-stop-tracking.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ selfsign-getcert.1: $(top_builddir)/config.status $(srcdir)/selfsign-getcert.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ ipa-getcert.1: $(top_builddir)/config.status $(srcdir)/ipa-getcert.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-resubmit.1: $(top_builddir)/config.status $(srcdir)/getcert-resubmit.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger-certmaster-submit.8: $(top_builddir)/config.status $(srcdir)/certmonger-certmaster-submit.8.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger-ipa-submit.8: $(top_builddir)/config.status $(srcdir)/certmonger-ipa-submit.8.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger-dogtag-ipa-renew-agent-submit.8: $(top_builddir)/config.status $(srcdir)/certmonger-dogtag-ipa-renew-agent-submit.8.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmaster-getcert.1: $(top_builddir)/config.status $(srcdir)/certmaster-getcert.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger.conf.5: $(top_builddir)/config.status $(srcdir)/certmonger.conf.5.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger.conf: $(top_builddir)/config.status $(srcdir)/certmonger.conf.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-refresh.1: $(top_builddir)/config.status $(srcdir)/getcert-refresh.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-refresh-ca.1: $(top_builddir)/config.status $(srcdir)/getcert-refresh-ca.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ local-getcert.1: $(top_builddir)/config.status $(srcdir)/local-getcert.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger-local-submit.8: $(top_builddir)/config.status $(srcdir)/certmonger-local-submit.8.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-status.1: $(top_builddir)/config.status $(srcdir)/getcert-status.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger-dogtag-submit.8: $(top_builddir)/config.status $(srcdir)/certmonger-dogtag-submit.8.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ certmonger-scep-submit.8: $(top_builddir)/config.status $(srcdir)/certmonger-scep-submit.8.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-add-ca.1: $(top_builddir)/config.status $(srcdir)/getcert-add-ca.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-add-scep-ca.1: $(top_builddir)/config.status $(srcdir)/getcert-add-scep-ca.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-modify-ca.1: $(top_builddir)/config.status $(srcdir)/getcert-modify-ca.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ getcert-remove-ca.1: $(top_builddir)/config.status $(srcdir)/getcert-remove-ca.1.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ clean-noinstLIBRARIES: -test -z "$(noinst_LIBRARIES)" || rm -f $(noinst_LIBRARIES) libcm-o.a: $(libcm_o_a_OBJECTS) $(libcm_o_a_DEPENDENCIES) $(EXTRA_libcm_o_a_DEPENDENCIES) $(AM_V_at)-rm -f libcm-o.a $(AM_V_AR)$(libcm_o_a_AR) libcm-o.a $(libcm_o_a_OBJECTS) $(libcm_o_a_LIBADD) $(AM_V_at)$(RANLIB) libcm-o.a libcm.a: $(libcm_a_OBJECTS) $(libcm_a_DEPENDENCIES) $(EXTRA_libcm_a_DEPENDENCIES) $(AM_V_at)-rm -f libcm.a $(AM_V_AR)$(libcm_a_AR) libcm.a $(libcm_a_OBJECTS) $(libcm_a_LIBADD) $(AM_V_at)$(RANLIB) libcm.a install-binPROGRAMS: $(bin_PROGRAMS) @$(NORMAL_INSTALL) @list='$(bin_PROGRAMS)'; test -n "$(bindir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(bindir)'"; \ $(MKDIR_P) "$(DESTDIR)$(bindir)" || exit 1; \ fi; \ for p in $$list; do echo "$$p $$p"; done | \ sed 's/$(EXEEXT)$$//' | \ while read p p1; do if test -f $$p \ ; then echo "$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n;h' \ -e 's|.*|.|' \ -e 'p;x;s,.*/,,;s/$(EXEEXT)$$//;$(transform);s/$$/$(EXEEXT)/' | \ sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1 } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) files[d] = files[d] " " $$1; \ else { print "f", $$3 "/" $$4, $$1; } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_PROGRAM_ENV) $(INSTALL_PROGRAM) $$files '$(DESTDIR)$(bindir)$$dir'"; \ $(INSTALL_PROGRAM_ENV) $(INSTALL_PROGRAM) $$files "$(DESTDIR)$(bindir)$$dir" || exit $$?; \ } \ ; done uninstall-binPROGRAMS: @$(NORMAL_UNINSTALL) @list='$(bin_PROGRAMS)'; test -n "$(bindir)" || list=; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 'h;s,^.*/,,;s/$(EXEEXT)$$//;$(transform)' \ -e 's/$$/$(EXEEXT)/' \ `; \ test -n "$$list" || exit 0; \ echo " ( cd '$(DESTDIR)$(bindir)' && rm -f" $$files ")"; \ cd "$(DESTDIR)$(bindir)" && rm -f $$files clean-binPROGRAMS: -test -z "$(bin_PROGRAMS)" || rm -f $(bin_PROGRAMS) clean-noinstPROGRAMS: -test -z "$(noinst_PROGRAMS)" || rm -f $(noinst_PROGRAMS) install-pkglibexecPROGRAMS: $(pkglibexec_PROGRAMS) @$(NORMAL_INSTALL) @list='$(pkglibexec_PROGRAMS)'; test -n "$(pkglibexecdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(pkglibexecdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(pkglibexecdir)" || exit 1; \ fi; \ for p in $$list; do echo "$$p $$p"; done | \ sed 's/$(EXEEXT)$$//' | \ while read p p1; do if test -f $$p \ ; then echo "$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n;h' \ -e 's|.*|.|' \ -e 'p;x;s,.*/,,;s/$(EXEEXT)$$//;$(transform);s/$$/$(EXEEXT)/' | \ sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1 } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) files[d] = files[d] " " $$1; \ else { print "f", $$3 "/" $$4, $$1; } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_PROGRAM_ENV) $(INSTALL_PROGRAM) $$files '$(DESTDIR)$(pkglibexecdir)$$dir'"; \ $(INSTALL_PROGRAM_ENV) $(INSTALL_PROGRAM) $$files "$(DESTDIR)$(pkglibexecdir)$$dir" || exit $$?; \ } \ ; done uninstall-pkglibexecPROGRAMS: @$(NORMAL_UNINSTALL) @list='$(pkglibexec_PROGRAMS)'; test -n "$(pkglibexecdir)" || list=; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 'h;s,^.*/,,;s/$(EXEEXT)$$//;$(transform)' \ -e 's/$$/$(EXEEXT)/' \ `; \ test -n "$$list" || exit 0; \ echo " ( cd '$(DESTDIR)$(pkglibexecdir)' && rm -f" $$files ")"; \ cd "$(DESTDIR)$(pkglibexecdir)" && rm -f $$files clean-pkglibexecPROGRAMS: -test -z "$(pkglibexec_PROGRAMS)" || rm -f $(pkglibexec_PROGRAMS) install-sbinPROGRAMS: $(sbin_PROGRAMS) @$(NORMAL_INSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(sbindir)'"; \ $(MKDIR_P) "$(DESTDIR)$(sbindir)" || exit 1; \ fi; \ for p in $$list; do echo "$$p $$p"; done | \ sed 's/$(EXEEXT)$$//' | \ while read p p1; do if test -f $$p \ ; then echo "$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n;h' \ -e 's|.*|.|' \ -e 'p;x;s,.*/,,;s/$(EXEEXT)$$//;$(transform);s/$$/$(EXEEXT)/' | \ sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1 } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) files[d] = files[d] " " $$1; \ else { print "f", $$3 "/" $$4, $$1; } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_PROGRAM_ENV) $(INSTALL_PROGRAM) $$files '$(DESTDIR)$(sbindir)$$dir'"; \ $(INSTALL_PROGRAM_ENV) $(INSTALL_PROGRAM) $$files "$(DESTDIR)$(sbindir)$$dir" || exit $$?; \ } \ ; done uninstall-sbinPROGRAMS: @$(NORMAL_UNINSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 'h;s,^.*/,,;s/$(EXEEXT)$$//;$(transform)' \ -e 's/$$/$(EXEEXT)/' \ `; \ test -n "$$list" || exit 0; \ echo " ( cd '$(DESTDIR)$(sbindir)' && rm -f" $$files ")"; \ cd "$(DESTDIR)$(sbindir)" && rm -f $$files clean-sbinPROGRAMS: -test -z "$(sbin_PROGRAMS)" || rm -f $(sbin_PROGRAMS) certmaster-getcert$(EXEEXT): $(certmaster_getcert_OBJECTS) $(certmaster_getcert_DEPENDENCIES) $(EXTRA_certmaster_getcert_DEPENDENCIES) @rm -f certmaster-getcert$(EXEEXT) $(AM_V_CCLD)$(certmaster_getcert_LINK) $(certmaster_getcert_OBJECTS) $(certmaster_getcert_LDADD) $(LIBS) certmaster-submit$(EXEEXT): $(certmaster_submit_OBJECTS) $(certmaster_submit_DEPENDENCIES) $(EXTRA_certmaster_submit_DEPENDENCIES) @rm -f certmaster-submit$(EXEEXT) $(AM_V_CCLD)$(LINK) $(certmaster_submit_OBJECTS) $(certmaster_submit_LDADD) $(LIBS) certmonger$(EXEEXT): $(certmonger_OBJECTS) $(certmonger_DEPENDENCIES) $(EXTRA_certmonger_DEPENDENCIES) @rm -f certmonger$(EXEEXT) $(AM_V_CCLD)$(LINK) $(certmonger_OBJECTS) $(certmonger_LDADD) $(LIBS) certmonger-session$(EXEEXT): $(certmonger_session_OBJECTS) $(certmonger_session_DEPENDENCIES) $(EXTRA_certmonger_session_DEPENDENCIES) @rm -f certmonger-session$(EXEEXT) $(AM_V_CCLD)$(LINK) $(certmonger_session_OBJECTS) $(certmonger_session_LDADD) $(LIBS) dogtag-ipa-renew-agent-submit$(EXEEXT): $(dogtag_ipa_renew_agent_submit_OBJECTS) $(dogtag_ipa_renew_agent_submit_DEPENDENCIES) $(EXTRA_dogtag_ipa_renew_agent_submit_DEPENDENCIES) @rm -f dogtag-ipa-renew-agent-submit$(EXEEXT) $(AM_V_CCLD)$(dogtag_ipa_renew_agent_submit_LINK) $(dogtag_ipa_renew_agent_submit_OBJECTS) $(dogtag_ipa_renew_agent_submit_LDADD) $(LIBS) dogtag-submit$(EXEEXT): $(dogtag_submit_OBJECTS) $(dogtag_submit_DEPENDENCIES) $(EXTRA_dogtag_submit_DEPENDENCIES) @rm -f dogtag-submit$(EXEEXT) $(AM_V_CCLD)$(dogtag_submit_LINK) $(dogtag_submit_OBJECTS) $(dogtag_submit_LDADD) $(LIBS) getcert$(EXEEXT): $(getcert_OBJECTS) $(getcert_DEPENDENCIES) $(EXTRA_getcert_DEPENDENCIES) @rm -f getcert$(EXEEXT) $(AM_V_CCLD)$(getcert_LINK) $(getcert_OBJECTS) $(getcert_LDADD) $(LIBS) ipa-getcert$(EXEEXT): $(ipa_getcert_OBJECTS) $(ipa_getcert_DEPENDENCIES) $(EXTRA_ipa_getcert_DEPENDENCIES) @rm -f ipa-getcert$(EXEEXT) $(AM_V_CCLD)$(ipa_getcert_LINK) $(ipa_getcert_OBJECTS) $(ipa_getcert_LDADD) $(LIBS) ipa-submit$(EXEEXT): $(ipa_submit_OBJECTS) $(ipa_submit_DEPENDENCIES) $(EXTRA_ipa_submit_DEPENDENCIES) @rm -f ipa-submit$(EXEEXT) $(AM_V_CCLD)$(LINK) $(ipa_submit_OBJECTS) $(ipa_submit_LDADD) $(LIBS) local-getcert$(EXEEXT): $(local_getcert_OBJECTS) $(local_getcert_DEPENDENCIES) $(EXTRA_local_getcert_DEPENDENCIES) @rm -f local-getcert$(EXEEXT) $(AM_V_CCLD)$(local_getcert_LINK) $(local_getcert_OBJECTS) $(local_getcert_LDADD) $(LIBS) local-submit$(EXEEXT): $(local_submit_OBJECTS) $(local_submit_DEPENDENCIES) $(EXTRA_local_submit_DEPENDENCIES) @rm -f local-submit$(EXEEXT) $(AM_V_CCLD)$(local_submit_LINK) $(local_submit_OBJECTS) $(local_submit_LDADD) $(LIBS) nl-check$(EXEEXT): $(nl_check_OBJECTS) $(nl_check_DEPENDENCIES) $(EXTRA_nl_check_DEPENDENCIES) @rm -f nl-check$(EXEEXT) $(AM_V_CCLD)$(LINK) $(nl_check_OBJECTS) $(nl_check_LDADD) $(LIBS) scep-submit$(EXEEXT): $(scep_submit_OBJECTS) $(scep_submit_DEPENDENCIES) $(EXTRA_scep_submit_DEPENDENCIES) @rm -f scep-submit$(EXEEXT) $(AM_V_CCLD)$(scep_submit_LINK) $(scep_submit_OBJECTS) $(scep_submit_LDADD) $(LIBS) selfsign-getcert$(EXEEXT): $(selfsign_getcert_OBJECTS) $(selfsign_getcert_DEPENDENCIES) $(EXTRA_selfsign_getcert_DEPENDENCIES) @rm -f selfsign-getcert$(EXEEXT) $(AM_V_CCLD)$(selfsign_getcert_LINK) $(selfsign_getcert_OBJECTS) $(selfsign_getcert_LDADD) $(LIBS) serial-check$(EXEEXT): $(serial_check_OBJECTS) $(serial_check_DEPENDENCIES) $(EXTRA_serial_check_DEPENDENCIES) @rm -f serial-check$(EXEEXT) $(AM_V_CCLD)$(LINK) $(serial_check_OBJECTS) $(serial_check_LDADD) $(LIBS) submit-d$(EXEEXT): $(submit_d_OBJECTS) $(submit_d_DEPENDENCIES) $(EXTRA_submit_d_DEPENDENCIES) @rm -f submit-d$(EXEEXT) $(AM_V_CCLD)$(submit_d_LINK) $(submit_d_OBJECTS) $(submit_d_LDADD) $(LIBS) submit-h$(EXEEXT): $(submit_h_OBJECTS) $(submit_h_DEPENDENCIES) $(EXTRA_submit_h_DEPENDENCIES) @rm -f submit-h$(EXEEXT) $(AM_V_CCLD)$(submit_h_LINK) $(submit_h_OBJECTS) $(submit_h_LDADD) $(LIBS) submit-x$(EXEEXT): $(submit_x_OBJECTS) $(submit_x_DEPENDENCIES) $(EXTRA_submit_x_DEPENDENCIES) @rm -f submit-x$(EXEEXT) $(AM_V_CCLD)$(submit_x_LINK) $(submit_x_OBJECTS) $(submit_x_LDADD) $(LIBS) tdbusm-check$(EXEEXT): $(tdbusm_check_OBJECTS) $(tdbusm_check_DEPENDENCIES) $(EXTRA_tdbusm_check_DEPENDENCIES) @rm -f tdbusm-check$(EXEEXT) $(AM_V_CCLD)$(LINK) $(tdbusm_check_OBJECTS) $(tdbusm_check_LDADD) $(LIBS) tlslayer$(EXEEXT): $(tlslayer_OBJECTS) $(tlslayer_DEPENDENCIES) $(EXTRA_tlslayer_DEPENDENCIES) @rm -f tlslayer$(EXEEXT) $(AM_V_CCLD)$(tlslayer_LINK) $(tlslayer_OBJECTS) $(tlslayer_LDADD) $(LIBS) toklist$(EXEEXT): $(toklist_OBJECTS) $(toklist_DEPENDENCIES) $(EXTRA_toklist_DEPENDENCIES) @rm -f toklist$(EXEEXT) $(AM_V_CCLD)$(toklist_LINK) $(toklist_OBJECTS) $(toklist_LDADD) $(LIBS) mostlyclean-compile: -rm -f *.$(OBJEXT) distclean-compile: -rm -f *.tab.c @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/certmaster.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/certmaster_getcert-certmaster-getcert.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/certmaster_getcert-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag-ipa.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-env-system.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-prefs.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-store-gen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-d.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-h.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-util-m.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-util-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_ipa_renew_agent_submit-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-dogtag.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-env-system.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-prefs.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-store-gen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-submit-d.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-submit-h.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-util-m.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-util-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/dogtag_submit-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/env-session.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/env-system.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/getcert-getcert.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/getcert-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/ipa.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/ipa_getcert-ipa-getcert.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/ipa_getcert-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-cadata.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-canalyze.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-casave.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-certext.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-certread-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-certread.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-certsave-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-certsave.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-cm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-csrgen-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-csrgen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-env-shared.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-hook.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-iterate.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-json.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-keygen-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-keygen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-keyiread-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-keyiread.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-kudict.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-netlink.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-notify.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-oiddict.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-pin.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-prefs-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-prefs.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-scepgen-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-scepgen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-store-files.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-store-gen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-submit-e.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-submit-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-submit-sn.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-submit-x.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-submit.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-subproc.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-tdbus.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-tdbush.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-tdbusm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-util-m.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-util-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_a-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-certread-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-certsave-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-csrgen-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-keygen-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-keyiread-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-pkcs7.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-prefs-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-scep-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-scepgen-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-submit-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-submit-so.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libcm_o_a-util-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_getcert-local-getcert.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_getcert-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-env-session.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-env-shared.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-local.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-pin.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-prefs-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-prefs.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-store-gen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-submit-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-util-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/local_submit-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/main.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/nl-check.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-env-system.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-pkcs7.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-prefs-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-prefs.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-scep-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-scep.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-store-gen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-submit-h.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-util-m.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-util-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/scep_submit-util.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/selfsign_getcert-selfsign-getcert.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/selfsign_getcert-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/serial-check.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/srvloc.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/store-gen.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit-x.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_d-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_d-submit-d.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_d-submit-h.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_d-submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_d-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_d-util-m.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_h-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_h-submit-h.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_h-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_x-log.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_x-submit-u.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_x-submit-x.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/submit_x-tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tdbusm-check.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tlslayer-tlslayer-n.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tlslayer-tlslayer-o.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tlslayer-tlslayer.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/tm.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/toklist-toklist.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/util.Po@am__quote@ .c.o: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.o$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ $< &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< .c.obj: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.obj$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ `$(CYGPATH_W) '$<'` &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` libcm_o_a-certread-o.o: certread-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-certread-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-certread-o.Tpo -c -o libcm_o_a-certread-o.o `test -f 'certread-o.c' || echo '$(srcdir)/'`certread-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-certread-o.Tpo $(DEPDIR)/libcm_o_a-certread-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certread-o.c' object='libcm_o_a-certread-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-certread-o.o `test -f 'certread-o.c' || echo '$(srcdir)/'`certread-o.c libcm_o_a-certread-o.obj: certread-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-certread-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-certread-o.Tpo -c -o libcm_o_a-certread-o.obj `if test -f 'certread-o.c'; then $(CYGPATH_W) 'certread-o.c'; else $(CYGPATH_W) '$(srcdir)/certread-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-certread-o.Tpo $(DEPDIR)/libcm_o_a-certread-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certread-o.c' object='libcm_o_a-certread-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-certread-o.obj `if test -f 'certread-o.c'; then $(CYGPATH_W) 'certread-o.c'; else $(CYGPATH_W) '$(srcdir)/certread-o.c'; fi` libcm_o_a-certsave-o.o: certsave-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-certsave-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-certsave-o.Tpo -c -o libcm_o_a-certsave-o.o `test -f 'certsave-o.c' || echo '$(srcdir)/'`certsave-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-certsave-o.Tpo $(DEPDIR)/libcm_o_a-certsave-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certsave-o.c' object='libcm_o_a-certsave-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-certsave-o.o `test -f 'certsave-o.c' || echo '$(srcdir)/'`certsave-o.c libcm_o_a-certsave-o.obj: certsave-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-certsave-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-certsave-o.Tpo -c -o libcm_o_a-certsave-o.obj `if test -f 'certsave-o.c'; then $(CYGPATH_W) 'certsave-o.c'; else $(CYGPATH_W) '$(srcdir)/certsave-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-certsave-o.Tpo $(DEPDIR)/libcm_o_a-certsave-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certsave-o.c' object='libcm_o_a-certsave-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-certsave-o.obj `if test -f 'certsave-o.c'; then $(CYGPATH_W) 'certsave-o.c'; else $(CYGPATH_W) '$(srcdir)/certsave-o.c'; fi` libcm_o_a-csrgen-o.o: csrgen-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-csrgen-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-csrgen-o.Tpo -c -o libcm_o_a-csrgen-o.o `test -f 'csrgen-o.c' || echo '$(srcdir)/'`csrgen-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-csrgen-o.Tpo $(DEPDIR)/libcm_o_a-csrgen-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='csrgen-o.c' object='libcm_o_a-csrgen-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-csrgen-o.o `test -f 'csrgen-o.c' || echo '$(srcdir)/'`csrgen-o.c libcm_o_a-csrgen-o.obj: csrgen-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-csrgen-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-csrgen-o.Tpo -c -o libcm_o_a-csrgen-o.obj `if test -f 'csrgen-o.c'; then $(CYGPATH_W) 'csrgen-o.c'; else $(CYGPATH_W) '$(srcdir)/csrgen-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-csrgen-o.Tpo $(DEPDIR)/libcm_o_a-csrgen-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='csrgen-o.c' object='libcm_o_a-csrgen-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-csrgen-o.obj `if test -f 'csrgen-o.c'; then $(CYGPATH_W) 'csrgen-o.c'; else $(CYGPATH_W) '$(srcdir)/csrgen-o.c'; fi` libcm_o_a-keygen-o.o: keygen-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-keygen-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-keygen-o.Tpo -c -o libcm_o_a-keygen-o.o `test -f 'keygen-o.c' || echo '$(srcdir)/'`keygen-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-keygen-o.Tpo $(DEPDIR)/libcm_o_a-keygen-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keygen-o.c' object='libcm_o_a-keygen-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-keygen-o.o `test -f 'keygen-o.c' || echo '$(srcdir)/'`keygen-o.c libcm_o_a-keygen-o.obj: keygen-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-keygen-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-keygen-o.Tpo -c -o libcm_o_a-keygen-o.obj `if test -f 'keygen-o.c'; then $(CYGPATH_W) 'keygen-o.c'; else $(CYGPATH_W) '$(srcdir)/keygen-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-keygen-o.Tpo $(DEPDIR)/libcm_o_a-keygen-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keygen-o.c' object='libcm_o_a-keygen-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-keygen-o.obj `if test -f 'keygen-o.c'; then $(CYGPATH_W) 'keygen-o.c'; else $(CYGPATH_W) '$(srcdir)/keygen-o.c'; fi` libcm_o_a-keyiread-o.o: keyiread-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-keyiread-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-keyiread-o.Tpo -c -o libcm_o_a-keyiread-o.o `test -f 'keyiread-o.c' || echo '$(srcdir)/'`keyiread-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-keyiread-o.Tpo $(DEPDIR)/libcm_o_a-keyiread-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keyiread-o.c' object='libcm_o_a-keyiread-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-keyiread-o.o `test -f 'keyiread-o.c' || echo '$(srcdir)/'`keyiread-o.c libcm_o_a-keyiread-o.obj: keyiread-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-keyiread-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-keyiread-o.Tpo -c -o libcm_o_a-keyiread-o.obj `if test -f 'keyiread-o.c'; then $(CYGPATH_W) 'keyiread-o.c'; else $(CYGPATH_W) '$(srcdir)/keyiread-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-keyiread-o.Tpo $(DEPDIR)/libcm_o_a-keyiread-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keyiread-o.c' object='libcm_o_a-keyiread-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-keyiread-o.obj `if test -f 'keyiread-o.c'; then $(CYGPATH_W) 'keyiread-o.c'; else $(CYGPATH_W) '$(srcdir)/keyiread-o.c'; fi` libcm_o_a-pkcs7.o: pkcs7.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-pkcs7.o -MD -MP -MF $(DEPDIR)/libcm_o_a-pkcs7.Tpo -c -o libcm_o_a-pkcs7.o `test -f 'pkcs7.c' || echo '$(srcdir)/'`pkcs7.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-pkcs7.Tpo $(DEPDIR)/libcm_o_a-pkcs7.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pkcs7.c' object='libcm_o_a-pkcs7.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-pkcs7.o `test -f 'pkcs7.c' || echo '$(srcdir)/'`pkcs7.c libcm_o_a-pkcs7.obj: pkcs7.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-pkcs7.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-pkcs7.Tpo -c -o libcm_o_a-pkcs7.obj `if test -f 'pkcs7.c'; then $(CYGPATH_W) 'pkcs7.c'; else $(CYGPATH_W) '$(srcdir)/pkcs7.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-pkcs7.Tpo $(DEPDIR)/libcm_o_a-pkcs7.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pkcs7.c' object='libcm_o_a-pkcs7.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-pkcs7.obj `if test -f 'pkcs7.c'; then $(CYGPATH_W) 'pkcs7.c'; else $(CYGPATH_W) '$(srcdir)/pkcs7.c'; fi` libcm_o_a-prefs-o.o: prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-prefs-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-prefs-o.Tpo -c -o libcm_o_a-prefs-o.o `test -f 'prefs-o.c' || echo '$(srcdir)/'`prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-prefs-o.Tpo $(DEPDIR)/libcm_o_a-prefs-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-o.c' object='libcm_o_a-prefs-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-prefs-o.o `test -f 'prefs-o.c' || echo '$(srcdir)/'`prefs-o.c libcm_o_a-prefs-o.obj: prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-prefs-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-prefs-o.Tpo -c -o libcm_o_a-prefs-o.obj `if test -f 'prefs-o.c'; then $(CYGPATH_W) 'prefs-o.c'; else $(CYGPATH_W) '$(srcdir)/prefs-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-prefs-o.Tpo $(DEPDIR)/libcm_o_a-prefs-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-o.c' object='libcm_o_a-prefs-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-prefs-o.obj `if test -f 'prefs-o.c'; then $(CYGPATH_W) 'prefs-o.c'; else $(CYGPATH_W) '$(srcdir)/prefs-o.c'; fi` libcm_o_a-scep-o.o: scep-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-scep-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-scep-o.Tpo -c -o libcm_o_a-scep-o.o `test -f 'scep-o.c' || echo '$(srcdir)/'`scep-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-scep-o.Tpo $(DEPDIR)/libcm_o_a-scep-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scep-o.c' object='libcm_o_a-scep-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-scep-o.o `test -f 'scep-o.c' || echo '$(srcdir)/'`scep-o.c libcm_o_a-scep-o.obj: scep-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-scep-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-scep-o.Tpo -c -o libcm_o_a-scep-o.obj `if test -f 'scep-o.c'; then $(CYGPATH_W) 'scep-o.c'; else $(CYGPATH_W) '$(srcdir)/scep-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-scep-o.Tpo $(DEPDIR)/libcm_o_a-scep-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scep-o.c' object='libcm_o_a-scep-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-scep-o.obj `if test -f 'scep-o.c'; then $(CYGPATH_W) 'scep-o.c'; else $(CYGPATH_W) '$(srcdir)/scep-o.c'; fi` libcm_o_a-scepgen-o.o: scepgen-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-scepgen-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-scepgen-o.Tpo -c -o libcm_o_a-scepgen-o.o `test -f 'scepgen-o.c' || echo '$(srcdir)/'`scepgen-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-scepgen-o.Tpo $(DEPDIR)/libcm_o_a-scepgen-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scepgen-o.c' object='libcm_o_a-scepgen-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-scepgen-o.o `test -f 'scepgen-o.c' || echo '$(srcdir)/'`scepgen-o.c libcm_o_a-scepgen-o.obj: scepgen-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-scepgen-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-scepgen-o.Tpo -c -o libcm_o_a-scepgen-o.obj `if test -f 'scepgen-o.c'; then $(CYGPATH_W) 'scepgen-o.c'; else $(CYGPATH_W) '$(srcdir)/scepgen-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-scepgen-o.Tpo $(DEPDIR)/libcm_o_a-scepgen-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scepgen-o.c' object='libcm_o_a-scepgen-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-scepgen-o.obj `if test -f 'scepgen-o.c'; then $(CYGPATH_W) 'scepgen-o.c'; else $(CYGPATH_W) '$(srcdir)/scepgen-o.c'; fi` libcm_o_a-submit-so.o: submit-so.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-submit-so.o -MD -MP -MF $(DEPDIR)/libcm_o_a-submit-so.Tpo -c -o libcm_o_a-submit-so.o `test -f 'submit-so.c' || echo '$(srcdir)/'`submit-so.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-submit-so.Tpo $(DEPDIR)/libcm_o_a-submit-so.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-so.c' object='libcm_o_a-submit-so.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-submit-so.o `test -f 'submit-so.c' || echo '$(srcdir)/'`submit-so.c libcm_o_a-submit-so.obj: submit-so.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-submit-so.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-submit-so.Tpo -c -o libcm_o_a-submit-so.obj `if test -f 'submit-so.c'; then $(CYGPATH_W) 'submit-so.c'; else $(CYGPATH_W) '$(srcdir)/submit-so.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-submit-so.Tpo $(DEPDIR)/libcm_o_a-submit-so.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-so.c' object='libcm_o_a-submit-so.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-submit-so.obj `if test -f 'submit-so.c'; then $(CYGPATH_W) 'submit-so.c'; else $(CYGPATH_W) '$(srcdir)/submit-so.c'; fi` libcm_o_a-submit-o.o: submit-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-submit-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-submit-o.Tpo -c -o libcm_o_a-submit-o.o `test -f 'submit-o.c' || echo '$(srcdir)/'`submit-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-submit-o.Tpo $(DEPDIR)/libcm_o_a-submit-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-o.c' object='libcm_o_a-submit-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-submit-o.o `test -f 'submit-o.c' || echo '$(srcdir)/'`submit-o.c libcm_o_a-submit-o.obj: submit-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-submit-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-submit-o.Tpo -c -o libcm_o_a-submit-o.obj `if test -f 'submit-o.c'; then $(CYGPATH_W) 'submit-o.c'; else $(CYGPATH_W) '$(srcdir)/submit-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-submit-o.Tpo $(DEPDIR)/libcm_o_a-submit-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-o.c' object='libcm_o_a-submit-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-submit-o.obj `if test -f 'submit-o.c'; then $(CYGPATH_W) 'submit-o.c'; else $(CYGPATH_W) '$(srcdir)/submit-o.c'; fi` libcm_o_a-util-o.o: util-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-util-o.o -MD -MP -MF $(DEPDIR)/libcm_o_a-util-o.Tpo -c -o libcm_o_a-util-o.o `test -f 'util-o.c' || echo '$(srcdir)/'`util-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-util-o.Tpo $(DEPDIR)/libcm_o_a-util-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-o.c' object='libcm_o_a-util-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-util-o.o `test -f 'util-o.c' || echo '$(srcdir)/'`util-o.c libcm_o_a-util-o.obj: util-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -MT libcm_o_a-util-o.obj -MD -MP -MF $(DEPDIR)/libcm_o_a-util-o.Tpo -c -o libcm_o_a-util-o.obj `if test -f 'util-o.c'; then $(CYGPATH_W) 'util-o.c'; else $(CYGPATH_W) '$(srcdir)/util-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_o_a-util-o.Tpo $(DEPDIR)/libcm_o_a-util-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-o.c' object='libcm_o_a-util-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_o_a_CFLAGS) $(CFLAGS) -c -o libcm_o_a-util-o.obj `if test -f 'util-o.c'; then $(CYGPATH_W) 'util-o.c'; else $(CYGPATH_W) '$(srcdir)/util-o.c'; fi` libcm_a-cadata.o: cadata.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-cadata.o -MD -MP -MF $(DEPDIR)/libcm_a-cadata.Tpo -c -o libcm_a-cadata.o `test -f 'cadata.c' || echo '$(srcdir)/'`cadata.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-cadata.Tpo $(DEPDIR)/libcm_a-cadata.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='cadata.c' object='libcm_a-cadata.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-cadata.o `test -f 'cadata.c' || echo '$(srcdir)/'`cadata.c libcm_a-cadata.obj: cadata.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-cadata.obj -MD -MP -MF $(DEPDIR)/libcm_a-cadata.Tpo -c -o libcm_a-cadata.obj `if test -f 'cadata.c'; then $(CYGPATH_W) 'cadata.c'; else $(CYGPATH_W) '$(srcdir)/cadata.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-cadata.Tpo $(DEPDIR)/libcm_a-cadata.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='cadata.c' object='libcm_a-cadata.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-cadata.obj `if test -f 'cadata.c'; then $(CYGPATH_W) 'cadata.c'; else $(CYGPATH_W) '$(srcdir)/cadata.c'; fi` libcm_a-casave.o: casave.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-casave.o -MD -MP -MF $(DEPDIR)/libcm_a-casave.Tpo -c -o libcm_a-casave.o `test -f 'casave.c' || echo '$(srcdir)/'`casave.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-casave.Tpo $(DEPDIR)/libcm_a-casave.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='casave.c' object='libcm_a-casave.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-casave.o `test -f 'casave.c' || echo '$(srcdir)/'`casave.c libcm_a-casave.obj: casave.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-casave.obj -MD -MP -MF $(DEPDIR)/libcm_a-casave.Tpo -c -o libcm_a-casave.obj `if test -f 'casave.c'; then $(CYGPATH_W) 'casave.c'; else $(CYGPATH_W) '$(srcdir)/casave.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-casave.Tpo $(DEPDIR)/libcm_a-casave.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='casave.c' object='libcm_a-casave.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-casave.obj `if test -f 'casave.c'; then $(CYGPATH_W) 'casave.c'; else $(CYGPATH_W) '$(srcdir)/casave.c'; fi` libcm_a-canalyze.o: canalyze.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-canalyze.o -MD -MP -MF $(DEPDIR)/libcm_a-canalyze.Tpo -c -o libcm_a-canalyze.o `test -f 'canalyze.c' || echo '$(srcdir)/'`canalyze.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-canalyze.Tpo $(DEPDIR)/libcm_a-canalyze.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='canalyze.c' object='libcm_a-canalyze.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-canalyze.o `test -f 'canalyze.c' || echo '$(srcdir)/'`canalyze.c libcm_a-canalyze.obj: canalyze.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-canalyze.obj -MD -MP -MF $(DEPDIR)/libcm_a-canalyze.Tpo -c -o libcm_a-canalyze.obj `if test -f 'canalyze.c'; then $(CYGPATH_W) 'canalyze.c'; else $(CYGPATH_W) '$(srcdir)/canalyze.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-canalyze.Tpo $(DEPDIR)/libcm_a-canalyze.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='canalyze.c' object='libcm_a-canalyze.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-canalyze.obj `if test -f 'canalyze.c'; then $(CYGPATH_W) 'canalyze.c'; else $(CYGPATH_W) '$(srcdir)/canalyze.c'; fi` libcm_a-certext.o: certext.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certext.o -MD -MP -MF $(DEPDIR)/libcm_a-certext.Tpo -c -o libcm_a-certext.o `test -f 'certext.c' || echo '$(srcdir)/'`certext.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certext.Tpo $(DEPDIR)/libcm_a-certext.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certext.c' object='libcm_a-certext.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certext.o `test -f 'certext.c' || echo '$(srcdir)/'`certext.c libcm_a-certext.obj: certext.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certext.obj -MD -MP -MF $(DEPDIR)/libcm_a-certext.Tpo -c -o libcm_a-certext.obj `if test -f 'certext.c'; then $(CYGPATH_W) 'certext.c'; else $(CYGPATH_W) '$(srcdir)/certext.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certext.Tpo $(DEPDIR)/libcm_a-certext.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certext.c' object='libcm_a-certext.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certext.obj `if test -f 'certext.c'; then $(CYGPATH_W) 'certext.c'; else $(CYGPATH_W) '$(srcdir)/certext.c'; fi` libcm_a-certread.o: certread.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certread.o -MD -MP -MF $(DEPDIR)/libcm_a-certread.Tpo -c -o libcm_a-certread.o `test -f 'certread.c' || echo '$(srcdir)/'`certread.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certread.Tpo $(DEPDIR)/libcm_a-certread.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certread.c' object='libcm_a-certread.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certread.o `test -f 'certread.c' || echo '$(srcdir)/'`certread.c libcm_a-certread.obj: certread.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certread.obj -MD -MP -MF $(DEPDIR)/libcm_a-certread.Tpo -c -o libcm_a-certread.obj `if test -f 'certread.c'; then $(CYGPATH_W) 'certread.c'; else $(CYGPATH_W) '$(srcdir)/certread.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certread.Tpo $(DEPDIR)/libcm_a-certread.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certread.c' object='libcm_a-certread.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certread.obj `if test -f 'certread.c'; then $(CYGPATH_W) 'certread.c'; else $(CYGPATH_W) '$(srcdir)/certread.c'; fi` libcm_a-certread-n.o: certread-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certread-n.o -MD -MP -MF $(DEPDIR)/libcm_a-certread-n.Tpo -c -o libcm_a-certread-n.o `test -f 'certread-n.c' || echo '$(srcdir)/'`certread-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certread-n.Tpo $(DEPDIR)/libcm_a-certread-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certread-n.c' object='libcm_a-certread-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certread-n.o `test -f 'certread-n.c' || echo '$(srcdir)/'`certread-n.c libcm_a-certread-n.obj: certread-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certread-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-certread-n.Tpo -c -o libcm_a-certread-n.obj `if test -f 'certread-n.c'; then $(CYGPATH_W) 'certread-n.c'; else $(CYGPATH_W) '$(srcdir)/certread-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certread-n.Tpo $(DEPDIR)/libcm_a-certread-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certread-n.c' object='libcm_a-certread-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certread-n.obj `if test -f 'certread-n.c'; then $(CYGPATH_W) 'certread-n.c'; else $(CYGPATH_W) '$(srcdir)/certread-n.c'; fi` libcm_a-certsave.o: certsave.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certsave.o -MD -MP -MF $(DEPDIR)/libcm_a-certsave.Tpo -c -o libcm_a-certsave.o `test -f 'certsave.c' || echo '$(srcdir)/'`certsave.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certsave.Tpo $(DEPDIR)/libcm_a-certsave.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certsave.c' object='libcm_a-certsave.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certsave.o `test -f 'certsave.c' || echo '$(srcdir)/'`certsave.c libcm_a-certsave.obj: certsave.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certsave.obj -MD -MP -MF $(DEPDIR)/libcm_a-certsave.Tpo -c -o libcm_a-certsave.obj `if test -f 'certsave.c'; then $(CYGPATH_W) 'certsave.c'; else $(CYGPATH_W) '$(srcdir)/certsave.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certsave.Tpo $(DEPDIR)/libcm_a-certsave.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certsave.c' object='libcm_a-certsave.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certsave.obj `if test -f 'certsave.c'; then $(CYGPATH_W) 'certsave.c'; else $(CYGPATH_W) '$(srcdir)/certsave.c'; fi` libcm_a-certsave-n.o: certsave-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certsave-n.o -MD -MP -MF $(DEPDIR)/libcm_a-certsave-n.Tpo -c -o libcm_a-certsave-n.o `test -f 'certsave-n.c' || echo '$(srcdir)/'`certsave-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certsave-n.Tpo $(DEPDIR)/libcm_a-certsave-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certsave-n.c' object='libcm_a-certsave-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certsave-n.o `test -f 'certsave-n.c' || echo '$(srcdir)/'`certsave-n.c libcm_a-certsave-n.obj: certsave-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-certsave-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-certsave-n.Tpo -c -o libcm_a-certsave-n.obj `if test -f 'certsave-n.c'; then $(CYGPATH_W) 'certsave-n.c'; else $(CYGPATH_W) '$(srcdir)/certsave-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-certsave-n.Tpo $(DEPDIR)/libcm_a-certsave-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certsave-n.c' object='libcm_a-certsave-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-certsave-n.obj `if test -f 'certsave-n.c'; then $(CYGPATH_W) 'certsave-n.c'; else $(CYGPATH_W) '$(srcdir)/certsave-n.c'; fi` libcm_a-cm.o: cm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-cm.o -MD -MP -MF $(DEPDIR)/libcm_a-cm.Tpo -c -o libcm_a-cm.o `test -f 'cm.c' || echo '$(srcdir)/'`cm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-cm.Tpo $(DEPDIR)/libcm_a-cm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='cm.c' object='libcm_a-cm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-cm.o `test -f 'cm.c' || echo '$(srcdir)/'`cm.c libcm_a-cm.obj: cm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-cm.obj -MD -MP -MF $(DEPDIR)/libcm_a-cm.Tpo -c -o libcm_a-cm.obj `if test -f 'cm.c'; then $(CYGPATH_W) 'cm.c'; else $(CYGPATH_W) '$(srcdir)/cm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-cm.Tpo $(DEPDIR)/libcm_a-cm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='cm.c' object='libcm_a-cm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-cm.obj `if test -f 'cm.c'; then $(CYGPATH_W) 'cm.c'; else $(CYGPATH_W) '$(srcdir)/cm.c'; fi` libcm_a-csrgen.o: csrgen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-csrgen.o -MD -MP -MF $(DEPDIR)/libcm_a-csrgen.Tpo -c -o libcm_a-csrgen.o `test -f 'csrgen.c' || echo '$(srcdir)/'`csrgen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-csrgen.Tpo $(DEPDIR)/libcm_a-csrgen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='csrgen.c' object='libcm_a-csrgen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-csrgen.o `test -f 'csrgen.c' || echo '$(srcdir)/'`csrgen.c libcm_a-csrgen.obj: csrgen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-csrgen.obj -MD -MP -MF $(DEPDIR)/libcm_a-csrgen.Tpo -c -o libcm_a-csrgen.obj `if test -f 'csrgen.c'; then $(CYGPATH_W) 'csrgen.c'; else $(CYGPATH_W) '$(srcdir)/csrgen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-csrgen.Tpo $(DEPDIR)/libcm_a-csrgen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='csrgen.c' object='libcm_a-csrgen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-csrgen.obj `if test -f 'csrgen.c'; then $(CYGPATH_W) 'csrgen.c'; else $(CYGPATH_W) '$(srcdir)/csrgen.c'; fi` libcm_a-csrgen-n.o: csrgen-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-csrgen-n.o -MD -MP -MF $(DEPDIR)/libcm_a-csrgen-n.Tpo -c -o libcm_a-csrgen-n.o `test -f 'csrgen-n.c' || echo '$(srcdir)/'`csrgen-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-csrgen-n.Tpo $(DEPDIR)/libcm_a-csrgen-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='csrgen-n.c' object='libcm_a-csrgen-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-csrgen-n.o `test -f 'csrgen-n.c' || echo '$(srcdir)/'`csrgen-n.c libcm_a-csrgen-n.obj: csrgen-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-csrgen-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-csrgen-n.Tpo -c -o libcm_a-csrgen-n.obj `if test -f 'csrgen-n.c'; then $(CYGPATH_W) 'csrgen-n.c'; else $(CYGPATH_W) '$(srcdir)/csrgen-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-csrgen-n.Tpo $(DEPDIR)/libcm_a-csrgen-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='csrgen-n.c' object='libcm_a-csrgen-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-csrgen-n.obj `if test -f 'csrgen-n.c'; then $(CYGPATH_W) 'csrgen-n.c'; else $(CYGPATH_W) '$(srcdir)/csrgen-n.c'; fi` libcm_a-env-shared.o: env-shared.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-env-shared.o -MD -MP -MF $(DEPDIR)/libcm_a-env-shared.Tpo -c -o libcm_a-env-shared.o `test -f 'env-shared.c' || echo '$(srcdir)/'`env-shared.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-env-shared.Tpo $(DEPDIR)/libcm_a-env-shared.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-shared.c' object='libcm_a-env-shared.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-env-shared.o `test -f 'env-shared.c' || echo '$(srcdir)/'`env-shared.c libcm_a-env-shared.obj: env-shared.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-env-shared.obj -MD -MP -MF $(DEPDIR)/libcm_a-env-shared.Tpo -c -o libcm_a-env-shared.obj `if test -f 'env-shared.c'; then $(CYGPATH_W) 'env-shared.c'; else $(CYGPATH_W) '$(srcdir)/env-shared.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-env-shared.Tpo $(DEPDIR)/libcm_a-env-shared.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-shared.c' object='libcm_a-env-shared.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-env-shared.obj `if test -f 'env-shared.c'; then $(CYGPATH_W) 'env-shared.c'; else $(CYGPATH_W) '$(srcdir)/env-shared.c'; fi` libcm_a-hook.o: hook.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-hook.o -MD -MP -MF $(DEPDIR)/libcm_a-hook.Tpo -c -o libcm_a-hook.o `test -f 'hook.c' || echo '$(srcdir)/'`hook.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-hook.Tpo $(DEPDIR)/libcm_a-hook.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='hook.c' object='libcm_a-hook.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-hook.o `test -f 'hook.c' || echo '$(srcdir)/'`hook.c libcm_a-hook.obj: hook.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-hook.obj -MD -MP -MF $(DEPDIR)/libcm_a-hook.Tpo -c -o libcm_a-hook.obj `if test -f 'hook.c'; then $(CYGPATH_W) 'hook.c'; else $(CYGPATH_W) '$(srcdir)/hook.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-hook.Tpo $(DEPDIR)/libcm_a-hook.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='hook.c' object='libcm_a-hook.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-hook.obj `if test -f 'hook.c'; then $(CYGPATH_W) 'hook.c'; else $(CYGPATH_W) '$(srcdir)/hook.c'; fi` libcm_a-iterate.o: iterate.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-iterate.o -MD -MP -MF $(DEPDIR)/libcm_a-iterate.Tpo -c -o libcm_a-iterate.o `test -f 'iterate.c' || echo '$(srcdir)/'`iterate.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-iterate.Tpo $(DEPDIR)/libcm_a-iterate.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='iterate.c' object='libcm_a-iterate.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-iterate.o `test -f 'iterate.c' || echo '$(srcdir)/'`iterate.c libcm_a-iterate.obj: iterate.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-iterate.obj -MD -MP -MF $(DEPDIR)/libcm_a-iterate.Tpo -c -o libcm_a-iterate.obj `if test -f 'iterate.c'; then $(CYGPATH_W) 'iterate.c'; else $(CYGPATH_W) '$(srcdir)/iterate.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-iterate.Tpo $(DEPDIR)/libcm_a-iterate.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='iterate.c' object='libcm_a-iterate.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-iterate.obj `if test -f 'iterate.c'; then $(CYGPATH_W) 'iterate.c'; else $(CYGPATH_W) '$(srcdir)/iterate.c'; fi` libcm_a-json.o: json.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-json.o -MD -MP -MF $(DEPDIR)/libcm_a-json.Tpo -c -o libcm_a-json.o `test -f 'json.c' || echo '$(srcdir)/'`json.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-json.Tpo $(DEPDIR)/libcm_a-json.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='json.c' object='libcm_a-json.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-json.o `test -f 'json.c' || echo '$(srcdir)/'`json.c libcm_a-json.obj: json.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-json.obj -MD -MP -MF $(DEPDIR)/libcm_a-json.Tpo -c -o libcm_a-json.obj `if test -f 'json.c'; then $(CYGPATH_W) 'json.c'; else $(CYGPATH_W) '$(srcdir)/json.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-json.Tpo $(DEPDIR)/libcm_a-json.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='json.c' object='libcm_a-json.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-json.obj `if test -f 'json.c'; then $(CYGPATH_W) 'json.c'; else $(CYGPATH_W) '$(srcdir)/json.c'; fi` libcm_a-keygen.o: keygen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keygen.o -MD -MP -MF $(DEPDIR)/libcm_a-keygen.Tpo -c -o libcm_a-keygen.o `test -f 'keygen.c' || echo '$(srcdir)/'`keygen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keygen.Tpo $(DEPDIR)/libcm_a-keygen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keygen.c' object='libcm_a-keygen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keygen.o `test -f 'keygen.c' || echo '$(srcdir)/'`keygen.c libcm_a-keygen.obj: keygen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keygen.obj -MD -MP -MF $(DEPDIR)/libcm_a-keygen.Tpo -c -o libcm_a-keygen.obj `if test -f 'keygen.c'; then $(CYGPATH_W) 'keygen.c'; else $(CYGPATH_W) '$(srcdir)/keygen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keygen.Tpo $(DEPDIR)/libcm_a-keygen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keygen.c' object='libcm_a-keygen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keygen.obj `if test -f 'keygen.c'; then $(CYGPATH_W) 'keygen.c'; else $(CYGPATH_W) '$(srcdir)/keygen.c'; fi` libcm_a-keygen-n.o: keygen-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keygen-n.o -MD -MP -MF $(DEPDIR)/libcm_a-keygen-n.Tpo -c -o libcm_a-keygen-n.o `test -f 'keygen-n.c' || echo '$(srcdir)/'`keygen-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keygen-n.Tpo $(DEPDIR)/libcm_a-keygen-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keygen-n.c' object='libcm_a-keygen-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keygen-n.o `test -f 'keygen-n.c' || echo '$(srcdir)/'`keygen-n.c libcm_a-keygen-n.obj: keygen-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keygen-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-keygen-n.Tpo -c -o libcm_a-keygen-n.obj `if test -f 'keygen-n.c'; then $(CYGPATH_W) 'keygen-n.c'; else $(CYGPATH_W) '$(srcdir)/keygen-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keygen-n.Tpo $(DEPDIR)/libcm_a-keygen-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keygen-n.c' object='libcm_a-keygen-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keygen-n.obj `if test -f 'keygen-n.c'; then $(CYGPATH_W) 'keygen-n.c'; else $(CYGPATH_W) '$(srcdir)/keygen-n.c'; fi` libcm_a-keyiread.o: keyiread.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keyiread.o -MD -MP -MF $(DEPDIR)/libcm_a-keyiread.Tpo -c -o libcm_a-keyiread.o `test -f 'keyiread.c' || echo '$(srcdir)/'`keyiread.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keyiread.Tpo $(DEPDIR)/libcm_a-keyiread.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keyiread.c' object='libcm_a-keyiread.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keyiread.o `test -f 'keyiread.c' || echo '$(srcdir)/'`keyiread.c libcm_a-keyiread.obj: keyiread.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keyiread.obj -MD -MP -MF $(DEPDIR)/libcm_a-keyiread.Tpo -c -o libcm_a-keyiread.obj `if test -f 'keyiread.c'; then $(CYGPATH_W) 'keyiread.c'; else $(CYGPATH_W) '$(srcdir)/keyiread.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keyiread.Tpo $(DEPDIR)/libcm_a-keyiread.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keyiread.c' object='libcm_a-keyiread.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keyiread.obj `if test -f 'keyiread.c'; then $(CYGPATH_W) 'keyiread.c'; else $(CYGPATH_W) '$(srcdir)/keyiread.c'; fi` libcm_a-keyiread-n.o: keyiread-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keyiread-n.o -MD -MP -MF $(DEPDIR)/libcm_a-keyiread-n.Tpo -c -o libcm_a-keyiread-n.o `test -f 'keyiread-n.c' || echo '$(srcdir)/'`keyiread-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keyiread-n.Tpo $(DEPDIR)/libcm_a-keyiread-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keyiread-n.c' object='libcm_a-keyiread-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keyiread-n.o `test -f 'keyiread-n.c' || echo '$(srcdir)/'`keyiread-n.c libcm_a-keyiread-n.obj: keyiread-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-keyiread-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-keyiread-n.Tpo -c -o libcm_a-keyiread-n.obj `if test -f 'keyiread-n.c'; then $(CYGPATH_W) 'keyiread-n.c'; else $(CYGPATH_W) '$(srcdir)/keyiread-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-keyiread-n.Tpo $(DEPDIR)/libcm_a-keyiread-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='keyiread-n.c' object='libcm_a-keyiread-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-keyiread-n.obj `if test -f 'keyiread-n.c'; then $(CYGPATH_W) 'keyiread-n.c'; else $(CYGPATH_W) '$(srcdir)/keyiread-n.c'; fi` libcm_a-kudict.o: kudict.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-kudict.o -MD -MP -MF $(DEPDIR)/libcm_a-kudict.Tpo -c -o libcm_a-kudict.o `test -f 'kudict.c' || echo '$(srcdir)/'`kudict.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-kudict.Tpo $(DEPDIR)/libcm_a-kudict.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='kudict.c' object='libcm_a-kudict.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-kudict.o `test -f 'kudict.c' || echo '$(srcdir)/'`kudict.c libcm_a-kudict.obj: kudict.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-kudict.obj -MD -MP -MF $(DEPDIR)/libcm_a-kudict.Tpo -c -o libcm_a-kudict.obj `if test -f 'kudict.c'; then $(CYGPATH_W) 'kudict.c'; else $(CYGPATH_W) '$(srcdir)/kudict.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-kudict.Tpo $(DEPDIR)/libcm_a-kudict.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='kudict.c' object='libcm_a-kudict.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-kudict.obj `if test -f 'kudict.c'; then $(CYGPATH_W) 'kudict.c'; else $(CYGPATH_W) '$(srcdir)/kudict.c'; fi` libcm_a-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-log.o -MD -MP -MF $(DEPDIR)/libcm_a-log.Tpo -c -o libcm_a-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-log.Tpo $(DEPDIR)/libcm_a-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='libcm_a-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c libcm_a-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-log.obj -MD -MP -MF $(DEPDIR)/libcm_a-log.Tpo -c -o libcm_a-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-log.Tpo $(DEPDIR)/libcm_a-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='libcm_a-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` libcm_a-netlink.o: netlink.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-netlink.o -MD -MP -MF $(DEPDIR)/libcm_a-netlink.Tpo -c -o libcm_a-netlink.o `test -f 'netlink.c' || echo '$(srcdir)/'`netlink.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-netlink.Tpo $(DEPDIR)/libcm_a-netlink.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='netlink.c' object='libcm_a-netlink.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-netlink.o `test -f 'netlink.c' || echo '$(srcdir)/'`netlink.c libcm_a-netlink.obj: netlink.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-netlink.obj -MD -MP -MF $(DEPDIR)/libcm_a-netlink.Tpo -c -o libcm_a-netlink.obj `if test -f 'netlink.c'; then $(CYGPATH_W) 'netlink.c'; else $(CYGPATH_W) '$(srcdir)/netlink.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-netlink.Tpo $(DEPDIR)/libcm_a-netlink.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='netlink.c' object='libcm_a-netlink.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-netlink.obj `if test -f 'netlink.c'; then $(CYGPATH_W) 'netlink.c'; else $(CYGPATH_W) '$(srcdir)/netlink.c'; fi` libcm_a-notify.o: notify.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-notify.o -MD -MP -MF $(DEPDIR)/libcm_a-notify.Tpo -c -o libcm_a-notify.o `test -f 'notify.c' || echo '$(srcdir)/'`notify.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-notify.Tpo $(DEPDIR)/libcm_a-notify.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='notify.c' object='libcm_a-notify.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-notify.o `test -f 'notify.c' || echo '$(srcdir)/'`notify.c libcm_a-notify.obj: notify.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-notify.obj -MD -MP -MF $(DEPDIR)/libcm_a-notify.Tpo -c -o libcm_a-notify.obj `if test -f 'notify.c'; then $(CYGPATH_W) 'notify.c'; else $(CYGPATH_W) '$(srcdir)/notify.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-notify.Tpo $(DEPDIR)/libcm_a-notify.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='notify.c' object='libcm_a-notify.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-notify.obj `if test -f 'notify.c'; then $(CYGPATH_W) 'notify.c'; else $(CYGPATH_W) '$(srcdir)/notify.c'; fi` libcm_a-oiddict.o: oiddict.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-oiddict.o -MD -MP -MF $(DEPDIR)/libcm_a-oiddict.Tpo -c -o libcm_a-oiddict.o `test -f 'oiddict.c' || echo '$(srcdir)/'`oiddict.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-oiddict.Tpo $(DEPDIR)/libcm_a-oiddict.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oiddict.c' object='libcm_a-oiddict.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-oiddict.o `test -f 'oiddict.c' || echo '$(srcdir)/'`oiddict.c libcm_a-oiddict.obj: oiddict.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-oiddict.obj -MD -MP -MF $(DEPDIR)/libcm_a-oiddict.Tpo -c -o libcm_a-oiddict.obj `if test -f 'oiddict.c'; then $(CYGPATH_W) 'oiddict.c'; else $(CYGPATH_W) '$(srcdir)/oiddict.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-oiddict.Tpo $(DEPDIR)/libcm_a-oiddict.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oiddict.c' object='libcm_a-oiddict.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-oiddict.obj `if test -f 'oiddict.c'; then $(CYGPATH_W) 'oiddict.c'; else $(CYGPATH_W) '$(srcdir)/oiddict.c'; fi` libcm_a-pin.o: pin.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-pin.o -MD -MP -MF $(DEPDIR)/libcm_a-pin.Tpo -c -o libcm_a-pin.o `test -f 'pin.c' || echo '$(srcdir)/'`pin.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-pin.Tpo $(DEPDIR)/libcm_a-pin.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pin.c' object='libcm_a-pin.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-pin.o `test -f 'pin.c' || echo '$(srcdir)/'`pin.c libcm_a-pin.obj: pin.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-pin.obj -MD -MP -MF $(DEPDIR)/libcm_a-pin.Tpo -c -o libcm_a-pin.obj `if test -f 'pin.c'; then $(CYGPATH_W) 'pin.c'; else $(CYGPATH_W) '$(srcdir)/pin.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-pin.Tpo $(DEPDIR)/libcm_a-pin.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pin.c' object='libcm_a-pin.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-pin.obj `if test -f 'pin.c'; then $(CYGPATH_W) 'pin.c'; else $(CYGPATH_W) '$(srcdir)/pin.c'; fi` libcm_a-prefs.o: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-prefs.o -MD -MP -MF $(DEPDIR)/libcm_a-prefs.Tpo -c -o libcm_a-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-prefs.Tpo $(DEPDIR)/libcm_a-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='libcm_a-prefs.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c libcm_a-prefs.obj: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-prefs.obj -MD -MP -MF $(DEPDIR)/libcm_a-prefs.Tpo -c -o libcm_a-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-prefs.Tpo $(DEPDIR)/libcm_a-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='libcm_a-prefs.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` libcm_a-prefs-n.o: prefs-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-prefs-n.o -MD -MP -MF $(DEPDIR)/libcm_a-prefs-n.Tpo -c -o libcm_a-prefs-n.o `test -f 'prefs-n.c' || echo '$(srcdir)/'`prefs-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-prefs-n.Tpo $(DEPDIR)/libcm_a-prefs-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-n.c' object='libcm_a-prefs-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-prefs-n.o `test -f 'prefs-n.c' || echo '$(srcdir)/'`prefs-n.c libcm_a-prefs-n.obj: prefs-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-prefs-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-prefs-n.Tpo -c -o libcm_a-prefs-n.obj `if test -f 'prefs-n.c'; then $(CYGPATH_W) 'prefs-n.c'; else $(CYGPATH_W) '$(srcdir)/prefs-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-prefs-n.Tpo $(DEPDIR)/libcm_a-prefs-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-n.c' object='libcm_a-prefs-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-prefs-n.obj `if test -f 'prefs-n.c'; then $(CYGPATH_W) 'prefs-n.c'; else $(CYGPATH_W) '$(srcdir)/prefs-n.c'; fi` libcm_a-scepgen.o: scepgen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-scepgen.o -MD -MP -MF $(DEPDIR)/libcm_a-scepgen.Tpo -c -o libcm_a-scepgen.o `test -f 'scepgen.c' || echo '$(srcdir)/'`scepgen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-scepgen.Tpo $(DEPDIR)/libcm_a-scepgen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scepgen.c' object='libcm_a-scepgen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-scepgen.o `test -f 'scepgen.c' || echo '$(srcdir)/'`scepgen.c libcm_a-scepgen.obj: scepgen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-scepgen.obj -MD -MP -MF $(DEPDIR)/libcm_a-scepgen.Tpo -c -o libcm_a-scepgen.obj `if test -f 'scepgen.c'; then $(CYGPATH_W) 'scepgen.c'; else $(CYGPATH_W) '$(srcdir)/scepgen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-scepgen.Tpo $(DEPDIR)/libcm_a-scepgen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scepgen.c' object='libcm_a-scepgen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-scepgen.obj `if test -f 'scepgen.c'; then $(CYGPATH_W) 'scepgen.c'; else $(CYGPATH_W) '$(srcdir)/scepgen.c'; fi` libcm_a-scepgen-n.o: scepgen-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-scepgen-n.o -MD -MP -MF $(DEPDIR)/libcm_a-scepgen-n.Tpo -c -o libcm_a-scepgen-n.o `test -f 'scepgen-n.c' || echo '$(srcdir)/'`scepgen-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-scepgen-n.Tpo $(DEPDIR)/libcm_a-scepgen-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scepgen-n.c' object='libcm_a-scepgen-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-scepgen-n.o `test -f 'scepgen-n.c' || echo '$(srcdir)/'`scepgen-n.c libcm_a-scepgen-n.obj: scepgen-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-scepgen-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-scepgen-n.Tpo -c -o libcm_a-scepgen-n.obj `if test -f 'scepgen-n.c'; then $(CYGPATH_W) 'scepgen-n.c'; else $(CYGPATH_W) '$(srcdir)/scepgen-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-scepgen-n.Tpo $(DEPDIR)/libcm_a-scepgen-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scepgen-n.c' object='libcm_a-scepgen-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-scepgen-n.obj `if test -f 'scepgen-n.c'; then $(CYGPATH_W) 'scepgen-n.c'; else $(CYGPATH_W) '$(srcdir)/scepgen-n.c'; fi` libcm_a-store-files.o: store-files.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-store-files.o -MD -MP -MF $(DEPDIR)/libcm_a-store-files.Tpo -c -o libcm_a-store-files.o `test -f 'store-files.c' || echo '$(srcdir)/'`store-files.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-store-files.Tpo $(DEPDIR)/libcm_a-store-files.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-files.c' object='libcm_a-store-files.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-store-files.o `test -f 'store-files.c' || echo '$(srcdir)/'`store-files.c libcm_a-store-files.obj: store-files.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-store-files.obj -MD -MP -MF $(DEPDIR)/libcm_a-store-files.Tpo -c -o libcm_a-store-files.obj `if test -f 'store-files.c'; then $(CYGPATH_W) 'store-files.c'; else $(CYGPATH_W) '$(srcdir)/store-files.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-store-files.Tpo $(DEPDIR)/libcm_a-store-files.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-files.c' object='libcm_a-store-files.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-store-files.obj `if test -f 'store-files.c'; then $(CYGPATH_W) 'store-files.c'; else $(CYGPATH_W) '$(srcdir)/store-files.c'; fi` libcm_a-store-gen.o: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-store-gen.o -MD -MP -MF $(DEPDIR)/libcm_a-store-gen.Tpo -c -o libcm_a-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-store-gen.Tpo $(DEPDIR)/libcm_a-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='libcm_a-store-gen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c libcm_a-store-gen.obj: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-store-gen.obj -MD -MP -MF $(DEPDIR)/libcm_a-store-gen.Tpo -c -o libcm_a-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-store-gen.Tpo $(DEPDIR)/libcm_a-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='libcm_a-store-gen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` libcm_a-submit.o: submit.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit.o -MD -MP -MF $(DEPDIR)/libcm_a-submit.Tpo -c -o libcm_a-submit.o `test -f 'submit.c' || echo '$(srcdir)/'`submit.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit.Tpo $(DEPDIR)/libcm_a-submit.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit.c' object='libcm_a-submit.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit.o `test -f 'submit.c' || echo '$(srcdir)/'`submit.c libcm_a-submit.obj: submit.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit.obj -MD -MP -MF $(DEPDIR)/libcm_a-submit.Tpo -c -o libcm_a-submit.obj `if test -f 'submit.c'; then $(CYGPATH_W) 'submit.c'; else $(CYGPATH_W) '$(srcdir)/submit.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit.Tpo $(DEPDIR)/libcm_a-submit.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit.c' object='libcm_a-submit.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit.obj `if test -f 'submit.c'; then $(CYGPATH_W) 'submit.c'; else $(CYGPATH_W) '$(srcdir)/submit.c'; fi` libcm_a-submit-e.o: submit-e.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-e.o -MD -MP -MF $(DEPDIR)/libcm_a-submit-e.Tpo -c -o libcm_a-submit-e.o `test -f 'submit-e.c' || echo '$(srcdir)/'`submit-e.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-e.Tpo $(DEPDIR)/libcm_a-submit-e.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-e.c' object='libcm_a-submit-e.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-e.o `test -f 'submit-e.c' || echo '$(srcdir)/'`submit-e.c libcm_a-submit-e.obj: submit-e.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-e.obj -MD -MP -MF $(DEPDIR)/libcm_a-submit-e.Tpo -c -o libcm_a-submit-e.obj `if test -f 'submit-e.c'; then $(CYGPATH_W) 'submit-e.c'; else $(CYGPATH_W) '$(srcdir)/submit-e.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-e.Tpo $(DEPDIR)/libcm_a-submit-e.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-e.c' object='libcm_a-submit-e.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-e.obj `if test -f 'submit-e.c'; then $(CYGPATH_W) 'submit-e.c'; else $(CYGPATH_W) '$(srcdir)/submit-e.c'; fi` libcm_a-submit-n.o: submit-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-n.o -MD -MP -MF $(DEPDIR)/libcm_a-submit-n.Tpo -c -o libcm_a-submit-n.o `test -f 'submit-n.c' || echo '$(srcdir)/'`submit-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-n.Tpo $(DEPDIR)/libcm_a-submit-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-n.c' object='libcm_a-submit-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-n.o `test -f 'submit-n.c' || echo '$(srcdir)/'`submit-n.c libcm_a-submit-n.obj: submit-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-submit-n.Tpo -c -o libcm_a-submit-n.obj `if test -f 'submit-n.c'; then $(CYGPATH_W) 'submit-n.c'; else $(CYGPATH_W) '$(srcdir)/submit-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-n.Tpo $(DEPDIR)/libcm_a-submit-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-n.c' object='libcm_a-submit-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-n.obj `if test -f 'submit-n.c'; then $(CYGPATH_W) 'submit-n.c'; else $(CYGPATH_W) '$(srcdir)/submit-n.c'; fi` libcm_a-submit-sn.o: submit-sn.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-sn.o -MD -MP -MF $(DEPDIR)/libcm_a-submit-sn.Tpo -c -o libcm_a-submit-sn.o `test -f 'submit-sn.c' || echo '$(srcdir)/'`submit-sn.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-sn.Tpo $(DEPDIR)/libcm_a-submit-sn.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-sn.c' object='libcm_a-submit-sn.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-sn.o `test -f 'submit-sn.c' || echo '$(srcdir)/'`submit-sn.c libcm_a-submit-sn.obj: submit-sn.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-sn.obj -MD -MP -MF $(DEPDIR)/libcm_a-submit-sn.Tpo -c -o libcm_a-submit-sn.obj `if test -f 'submit-sn.c'; then $(CYGPATH_W) 'submit-sn.c'; else $(CYGPATH_W) '$(srcdir)/submit-sn.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-sn.Tpo $(DEPDIR)/libcm_a-submit-sn.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-sn.c' object='libcm_a-submit-sn.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-sn.obj `if test -f 'submit-sn.c'; then $(CYGPATH_W) 'submit-sn.c'; else $(CYGPATH_W) '$(srcdir)/submit-sn.c'; fi` libcm_a-submit-u.o: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-u.o -MD -MP -MF $(DEPDIR)/libcm_a-submit-u.Tpo -c -o libcm_a-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-u.Tpo $(DEPDIR)/libcm_a-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='libcm_a-submit-u.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c libcm_a-submit-u.obj: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-u.obj -MD -MP -MF $(DEPDIR)/libcm_a-submit-u.Tpo -c -o libcm_a-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-u.Tpo $(DEPDIR)/libcm_a-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='libcm_a-submit-u.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` libcm_a-submit-x.o: submit-x.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-x.o -MD -MP -MF $(DEPDIR)/libcm_a-submit-x.Tpo -c -o libcm_a-submit-x.o `test -f 'submit-x.c' || echo '$(srcdir)/'`submit-x.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-x.Tpo $(DEPDIR)/libcm_a-submit-x.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-x.c' object='libcm_a-submit-x.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-x.o `test -f 'submit-x.c' || echo '$(srcdir)/'`submit-x.c libcm_a-submit-x.obj: submit-x.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-submit-x.obj -MD -MP -MF $(DEPDIR)/libcm_a-submit-x.Tpo -c -o libcm_a-submit-x.obj `if test -f 'submit-x.c'; then $(CYGPATH_W) 'submit-x.c'; else $(CYGPATH_W) '$(srcdir)/submit-x.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-submit-x.Tpo $(DEPDIR)/libcm_a-submit-x.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-x.c' object='libcm_a-submit-x.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-submit-x.obj `if test -f 'submit-x.c'; then $(CYGPATH_W) 'submit-x.c'; else $(CYGPATH_W) '$(srcdir)/submit-x.c'; fi` libcm_a-subproc.o: subproc.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-subproc.o -MD -MP -MF $(DEPDIR)/libcm_a-subproc.Tpo -c -o libcm_a-subproc.o `test -f 'subproc.c' || echo '$(srcdir)/'`subproc.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-subproc.Tpo $(DEPDIR)/libcm_a-subproc.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='subproc.c' object='libcm_a-subproc.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-subproc.o `test -f 'subproc.c' || echo '$(srcdir)/'`subproc.c libcm_a-subproc.obj: subproc.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-subproc.obj -MD -MP -MF $(DEPDIR)/libcm_a-subproc.Tpo -c -o libcm_a-subproc.obj `if test -f 'subproc.c'; then $(CYGPATH_W) 'subproc.c'; else $(CYGPATH_W) '$(srcdir)/subproc.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-subproc.Tpo $(DEPDIR)/libcm_a-subproc.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='subproc.c' object='libcm_a-subproc.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-subproc.obj `if test -f 'subproc.c'; then $(CYGPATH_W) 'subproc.c'; else $(CYGPATH_W) '$(srcdir)/subproc.c'; fi` libcm_a-tdbus.o: tdbus.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-tdbus.o -MD -MP -MF $(DEPDIR)/libcm_a-tdbus.Tpo -c -o libcm_a-tdbus.o `test -f 'tdbus.c' || echo '$(srcdir)/'`tdbus.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-tdbus.Tpo $(DEPDIR)/libcm_a-tdbus.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tdbus.c' object='libcm_a-tdbus.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-tdbus.o `test -f 'tdbus.c' || echo '$(srcdir)/'`tdbus.c libcm_a-tdbus.obj: tdbus.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-tdbus.obj -MD -MP -MF $(DEPDIR)/libcm_a-tdbus.Tpo -c -o libcm_a-tdbus.obj `if test -f 'tdbus.c'; then $(CYGPATH_W) 'tdbus.c'; else $(CYGPATH_W) '$(srcdir)/tdbus.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-tdbus.Tpo $(DEPDIR)/libcm_a-tdbus.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tdbus.c' object='libcm_a-tdbus.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-tdbus.obj `if test -f 'tdbus.c'; then $(CYGPATH_W) 'tdbus.c'; else $(CYGPATH_W) '$(srcdir)/tdbus.c'; fi` libcm_a-tdbush.o: tdbush.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-tdbush.o -MD -MP -MF $(DEPDIR)/libcm_a-tdbush.Tpo -c -o libcm_a-tdbush.o `test -f 'tdbush.c' || echo '$(srcdir)/'`tdbush.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-tdbush.Tpo $(DEPDIR)/libcm_a-tdbush.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tdbush.c' object='libcm_a-tdbush.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-tdbush.o `test -f 'tdbush.c' || echo '$(srcdir)/'`tdbush.c libcm_a-tdbush.obj: tdbush.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-tdbush.obj -MD -MP -MF $(DEPDIR)/libcm_a-tdbush.Tpo -c -o libcm_a-tdbush.obj `if test -f 'tdbush.c'; then $(CYGPATH_W) 'tdbush.c'; else $(CYGPATH_W) '$(srcdir)/tdbush.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-tdbush.Tpo $(DEPDIR)/libcm_a-tdbush.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tdbush.c' object='libcm_a-tdbush.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-tdbush.obj `if test -f 'tdbush.c'; then $(CYGPATH_W) 'tdbush.c'; else $(CYGPATH_W) '$(srcdir)/tdbush.c'; fi` libcm_a-tdbusm.o: tdbusm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-tdbusm.o -MD -MP -MF $(DEPDIR)/libcm_a-tdbusm.Tpo -c -o libcm_a-tdbusm.o `test -f 'tdbusm.c' || echo '$(srcdir)/'`tdbusm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-tdbusm.Tpo $(DEPDIR)/libcm_a-tdbusm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tdbusm.c' object='libcm_a-tdbusm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-tdbusm.o `test -f 'tdbusm.c' || echo '$(srcdir)/'`tdbusm.c libcm_a-tdbusm.obj: tdbusm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-tdbusm.obj -MD -MP -MF $(DEPDIR)/libcm_a-tdbusm.Tpo -c -o libcm_a-tdbusm.obj `if test -f 'tdbusm.c'; then $(CYGPATH_W) 'tdbusm.c'; else $(CYGPATH_W) '$(srcdir)/tdbusm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-tdbusm.Tpo $(DEPDIR)/libcm_a-tdbusm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tdbusm.c' object='libcm_a-tdbusm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-tdbusm.obj `if test -f 'tdbusm.c'; then $(CYGPATH_W) 'tdbusm.c'; else $(CYGPATH_W) '$(srcdir)/tdbusm.c'; fi` libcm_a-util.o: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-util.o -MD -MP -MF $(DEPDIR)/libcm_a-util.Tpo -c -o libcm_a-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-util.Tpo $(DEPDIR)/libcm_a-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='libcm_a-util.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c libcm_a-util.obj: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-util.obj -MD -MP -MF $(DEPDIR)/libcm_a-util.Tpo -c -o libcm_a-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-util.Tpo $(DEPDIR)/libcm_a-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='libcm_a-util.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` libcm_a-util-m.o: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-util-m.o -MD -MP -MF $(DEPDIR)/libcm_a-util-m.Tpo -c -o libcm_a-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-util-m.Tpo $(DEPDIR)/libcm_a-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='libcm_a-util-m.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c libcm_a-util-m.obj: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-util-m.obj -MD -MP -MF $(DEPDIR)/libcm_a-util-m.Tpo -c -o libcm_a-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-util-m.Tpo $(DEPDIR)/libcm_a-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='libcm_a-util-m.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` libcm_a-util-n.o: util-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-util-n.o -MD -MP -MF $(DEPDIR)/libcm_a-util-n.Tpo -c -o libcm_a-util-n.o `test -f 'util-n.c' || echo '$(srcdir)/'`util-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-util-n.Tpo $(DEPDIR)/libcm_a-util-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-n.c' object='libcm_a-util-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-util-n.o `test -f 'util-n.c' || echo '$(srcdir)/'`util-n.c libcm_a-util-n.obj: util-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -MT libcm_a-util-n.obj -MD -MP -MF $(DEPDIR)/libcm_a-util-n.Tpo -c -o libcm_a-util-n.obj `if test -f 'util-n.c'; then $(CYGPATH_W) 'util-n.c'; else $(CYGPATH_W) '$(srcdir)/util-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libcm_a-util-n.Tpo $(DEPDIR)/libcm_a-util-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-n.c' object='libcm_a-util-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libcm_a_CFLAGS) $(CFLAGS) -c -o libcm_a-util-n.obj `if test -f 'util-n.c'; then $(CYGPATH_W) 'util-n.c'; else $(CYGPATH_W) '$(srcdir)/util-n.c'; fi` certmaster_getcert-certmaster-getcert.o: certmaster-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -MT certmaster_getcert-certmaster-getcert.o -MD -MP -MF $(DEPDIR)/certmaster_getcert-certmaster-getcert.Tpo -c -o certmaster_getcert-certmaster-getcert.o `test -f 'certmaster-getcert.c' || echo '$(srcdir)/'`certmaster-getcert.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/certmaster_getcert-certmaster-getcert.Tpo $(DEPDIR)/certmaster_getcert-certmaster-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certmaster-getcert.c' object='certmaster_getcert-certmaster-getcert.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -c -o certmaster_getcert-certmaster-getcert.o `test -f 'certmaster-getcert.c' || echo '$(srcdir)/'`certmaster-getcert.c certmaster_getcert-certmaster-getcert.obj: certmaster-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -MT certmaster_getcert-certmaster-getcert.obj -MD -MP -MF $(DEPDIR)/certmaster_getcert-certmaster-getcert.Tpo -c -o certmaster_getcert-certmaster-getcert.obj `if test -f 'certmaster-getcert.c'; then $(CYGPATH_W) 'certmaster-getcert.c'; else $(CYGPATH_W) '$(srcdir)/certmaster-getcert.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/certmaster_getcert-certmaster-getcert.Tpo $(DEPDIR)/certmaster_getcert-certmaster-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='certmaster-getcert.c' object='certmaster_getcert-certmaster-getcert.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -c -o certmaster_getcert-certmaster-getcert.obj `if test -f 'certmaster-getcert.c'; then $(CYGPATH_W) 'certmaster-getcert.c'; else $(CYGPATH_W) '$(srcdir)/certmaster-getcert.c'; fi` certmaster_getcert-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -MT certmaster_getcert-tm.o -MD -MP -MF $(DEPDIR)/certmaster_getcert-tm.Tpo -c -o certmaster_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/certmaster_getcert-tm.Tpo $(DEPDIR)/certmaster_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='certmaster_getcert-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -c -o certmaster_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c certmaster_getcert-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -MT certmaster_getcert-tm.obj -MD -MP -MF $(DEPDIR)/certmaster_getcert-tm.Tpo -c -o certmaster_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/certmaster_getcert-tm.Tpo $(DEPDIR)/certmaster_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='certmaster_getcert-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(certmaster_getcert_CFLAGS) $(CFLAGS) -c -o certmaster_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` dogtag_ipa_renew_agent_submit-dogtag.o: dogtag.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-dogtag.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag.Tpo -c -o dogtag_ipa_renew_agent_submit-dogtag.o `test -f 'dogtag.c' || echo '$(srcdir)/'`dogtag.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dogtag.c' object='dogtag_ipa_renew_agent_submit-dogtag.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-dogtag.o `test -f 'dogtag.c' || echo '$(srcdir)/'`dogtag.c dogtag_ipa_renew_agent_submit-dogtag.obj: dogtag.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-dogtag.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag.Tpo -c -o dogtag_ipa_renew_agent_submit-dogtag.obj `if test -f 'dogtag.c'; then $(CYGPATH_W) 'dogtag.c'; else $(CYGPATH_W) '$(srcdir)/dogtag.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dogtag.c' object='dogtag_ipa_renew_agent_submit-dogtag.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-dogtag.obj `if test -f 'dogtag.c'; then $(CYGPATH_W) 'dogtag.c'; else $(CYGPATH_W) '$(srcdir)/dogtag.c'; fi` dogtag_ipa_renew_agent_submit-submit-d.o: submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-submit-d.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-d.Tpo -c -o dogtag_ipa_renew_agent_submit-submit-d.o `test -f 'submit-d.c' || echo '$(srcdir)/'`submit-d.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-d.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-d.c' object='dogtag_ipa_renew_agent_submit-submit-d.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-submit-d.o `test -f 'submit-d.c' || echo '$(srcdir)/'`submit-d.c dogtag_ipa_renew_agent_submit-submit-d.obj: submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-submit-d.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-d.Tpo -c -o dogtag_ipa_renew_agent_submit-submit-d.obj `if test -f 'submit-d.c'; then $(CYGPATH_W) 'submit-d.c'; else $(CYGPATH_W) '$(srcdir)/submit-d.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-d.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-d.c' object='dogtag_ipa_renew_agent_submit-submit-d.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-submit-d.obj `if test -f 'submit-d.c'; then $(CYGPATH_W) 'submit-d.c'; else $(CYGPATH_W) '$(srcdir)/submit-d.c'; fi` dogtag_ipa_renew_agent_submit-submit-h.o: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-submit-h.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-h.Tpo -c -o dogtag_ipa_renew_agent_submit-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-h.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='dogtag_ipa_renew_agent_submit-submit-h.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c dogtag_ipa_renew_agent_submit-submit-h.obj: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-submit-h.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-h.Tpo -c -o dogtag_ipa_renew_agent_submit-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-h.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='dogtag_ipa_renew_agent_submit-submit-h.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` dogtag_ipa_renew_agent_submit-util-m.o: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-util-m.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-m.Tpo -c -o dogtag_ipa_renew_agent_submit-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-m.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='dogtag_ipa_renew_agent_submit-util-m.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c dogtag_ipa_renew_agent_submit-util-m.obj: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-util-m.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-m.Tpo -c -o dogtag_ipa_renew_agent_submit-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-m.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='dogtag_ipa_renew_agent_submit-util-m.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` dogtag_ipa_renew_agent_submit-util-n.o: util-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-util-n.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-n.Tpo -c -o dogtag_ipa_renew_agent_submit-util-n.o `test -f 'util-n.c' || echo '$(srcdir)/'`util-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-n.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-n.c' object='dogtag_ipa_renew_agent_submit-util-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-util-n.o `test -f 'util-n.c' || echo '$(srcdir)/'`util-n.c dogtag_ipa_renew_agent_submit-util-n.obj: util-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-util-n.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-n.Tpo -c -o dogtag_ipa_renew_agent_submit-util-n.obj `if test -f 'util-n.c'; then $(CYGPATH_W) 'util-n.c'; else $(CYGPATH_W) '$(srcdir)/util-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-n.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-util-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-n.c' object='dogtag_ipa_renew_agent_submit-util-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-util-n.obj `if test -f 'util-n.c'; then $(CYGPATH_W) 'util-n.c'; else $(CYGPATH_W) '$(srcdir)/util-n.c'; fi` dogtag_ipa_renew_agent_submit-submit-u.o: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-submit-u.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-u.Tpo -c -o dogtag_ipa_renew_agent_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-u.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='dogtag_ipa_renew_agent_submit-submit-u.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c dogtag_ipa_renew_agent_submit-submit-u.obj: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-submit-u.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-u.Tpo -c -o dogtag_ipa_renew_agent_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-u.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='dogtag_ipa_renew_agent_submit-submit-u.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` dogtag_ipa_renew_agent_submit-util.o: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-util.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-util.Tpo -c -o dogtag_ipa_renew_agent_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-util.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='dogtag_ipa_renew_agent_submit-util.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c dogtag_ipa_renew_agent_submit-util.obj: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-util.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-util.Tpo -c -o dogtag_ipa_renew_agent_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-util.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='dogtag_ipa_renew_agent_submit-util.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` dogtag_ipa_renew_agent_submit-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-log.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-log.Tpo -c -o dogtag_ipa_renew_agent_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-log.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='dogtag_ipa_renew_agent_submit-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c dogtag_ipa_renew_agent_submit-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-log.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-log.Tpo -c -o dogtag_ipa_renew_agent_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-log.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='dogtag_ipa_renew_agent_submit-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` dogtag_ipa_renew_agent_submit-store-gen.o: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-store-gen.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-store-gen.Tpo -c -o dogtag_ipa_renew_agent_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-store-gen.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='dogtag_ipa_renew_agent_submit-store-gen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c dogtag_ipa_renew_agent_submit-store-gen.obj: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-store-gen.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-store-gen.Tpo -c -o dogtag_ipa_renew_agent_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-store-gen.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='dogtag_ipa_renew_agent_submit-store-gen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` dogtag_ipa_renew_agent_submit-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-tm.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-tm.Tpo -c -o dogtag_ipa_renew_agent_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-tm.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='dogtag_ipa_renew_agent_submit-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c dogtag_ipa_renew_agent_submit-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-tm.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-tm.Tpo -c -o dogtag_ipa_renew_agent_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-tm.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='dogtag_ipa_renew_agent_submit-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` dogtag_ipa_renew_agent_submit-prefs.o: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-prefs.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-prefs.Tpo -c -o dogtag_ipa_renew_agent_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-prefs.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='dogtag_ipa_renew_agent_submit-prefs.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c dogtag_ipa_renew_agent_submit-prefs.obj: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-prefs.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-prefs.Tpo -c -o dogtag_ipa_renew_agent_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-prefs.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='dogtag_ipa_renew_agent_submit-prefs.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` dogtag_ipa_renew_agent_submit-dogtag-ipa.o: dogtag-ipa.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-dogtag-ipa.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag-ipa.Tpo -c -o dogtag_ipa_renew_agent_submit-dogtag-ipa.o `test -f 'dogtag-ipa.c' || echo '$(srcdir)/'`dogtag-ipa.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag-ipa.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag-ipa.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dogtag-ipa.c' object='dogtag_ipa_renew_agent_submit-dogtag-ipa.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-dogtag-ipa.o `test -f 'dogtag-ipa.c' || echo '$(srcdir)/'`dogtag-ipa.c dogtag_ipa_renew_agent_submit-dogtag-ipa.obj: dogtag-ipa.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-dogtag-ipa.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag-ipa.Tpo -c -o dogtag_ipa_renew_agent_submit-dogtag-ipa.obj `if test -f 'dogtag-ipa.c'; then $(CYGPATH_W) 'dogtag-ipa.c'; else $(CYGPATH_W) '$(srcdir)/dogtag-ipa.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag-ipa.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-dogtag-ipa.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dogtag-ipa.c' object='dogtag_ipa_renew_agent_submit-dogtag-ipa.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-dogtag-ipa.obj `if test -f 'dogtag-ipa.c'; then $(CYGPATH_W) 'dogtag-ipa.c'; else $(CYGPATH_W) '$(srcdir)/dogtag-ipa.c'; fi` dogtag_ipa_renew_agent_submit-env-system.o: env-system.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-env-system.o -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-env-system.Tpo -c -o dogtag_ipa_renew_agent_submit-env-system.o `test -f 'env-system.c' || echo '$(srcdir)/'`env-system.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-env-system.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-env-system.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-system.c' object='dogtag_ipa_renew_agent_submit-env-system.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-env-system.o `test -f 'env-system.c' || echo '$(srcdir)/'`env-system.c dogtag_ipa_renew_agent_submit-env-system.obj: env-system.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -MT dogtag_ipa_renew_agent_submit-env-system.obj -MD -MP -MF $(DEPDIR)/dogtag_ipa_renew_agent_submit-env-system.Tpo -c -o dogtag_ipa_renew_agent_submit-env-system.obj `if test -f 'env-system.c'; then $(CYGPATH_W) 'env-system.c'; else $(CYGPATH_W) '$(srcdir)/env-system.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_ipa_renew_agent_submit-env-system.Tpo $(DEPDIR)/dogtag_ipa_renew_agent_submit-env-system.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-system.c' object='dogtag_ipa_renew_agent_submit-env-system.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_ipa_renew_agent_submit_CFLAGS) $(CFLAGS) -c -o dogtag_ipa_renew_agent_submit-env-system.obj `if test -f 'env-system.c'; then $(CYGPATH_W) 'env-system.c'; else $(CYGPATH_W) '$(srcdir)/env-system.c'; fi` dogtag_submit-dogtag.o: dogtag.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-dogtag.o -MD -MP -MF $(DEPDIR)/dogtag_submit-dogtag.Tpo -c -o dogtag_submit-dogtag.o `test -f 'dogtag.c' || echo '$(srcdir)/'`dogtag.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-dogtag.Tpo $(DEPDIR)/dogtag_submit-dogtag.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dogtag.c' object='dogtag_submit-dogtag.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-dogtag.o `test -f 'dogtag.c' || echo '$(srcdir)/'`dogtag.c dogtag_submit-dogtag.obj: dogtag.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-dogtag.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-dogtag.Tpo -c -o dogtag_submit-dogtag.obj `if test -f 'dogtag.c'; then $(CYGPATH_W) 'dogtag.c'; else $(CYGPATH_W) '$(srcdir)/dogtag.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-dogtag.Tpo $(DEPDIR)/dogtag_submit-dogtag.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dogtag.c' object='dogtag_submit-dogtag.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-dogtag.obj `if test -f 'dogtag.c'; then $(CYGPATH_W) 'dogtag.c'; else $(CYGPATH_W) '$(srcdir)/dogtag.c'; fi` dogtag_submit-submit-d.o: submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-submit-d.o -MD -MP -MF $(DEPDIR)/dogtag_submit-submit-d.Tpo -c -o dogtag_submit-submit-d.o `test -f 'submit-d.c' || echo '$(srcdir)/'`submit-d.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-submit-d.Tpo $(DEPDIR)/dogtag_submit-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-d.c' object='dogtag_submit-submit-d.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-submit-d.o `test -f 'submit-d.c' || echo '$(srcdir)/'`submit-d.c dogtag_submit-submit-d.obj: submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-submit-d.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-submit-d.Tpo -c -o dogtag_submit-submit-d.obj `if test -f 'submit-d.c'; then $(CYGPATH_W) 'submit-d.c'; else $(CYGPATH_W) '$(srcdir)/submit-d.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-submit-d.Tpo $(DEPDIR)/dogtag_submit-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-d.c' object='dogtag_submit-submit-d.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-submit-d.obj `if test -f 'submit-d.c'; then $(CYGPATH_W) 'submit-d.c'; else $(CYGPATH_W) '$(srcdir)/submit-d.c'; fi` dogtag_submit-submit-h.o: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-submit-h.o -MD -MP -MF $(DEPDIR)/dogtag_submit-submit-h.Tpo -c -o dogtag_submit-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-submit-h.Tpo $(DEPDIR)/dogtag_submit-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='dogtag_submit-submit-h.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c dogtag_submit-submit-h.obj: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-submit-h.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-submit-h.Tpo -c -o dogtag_submit-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-submit-h.Tpo $(DEPDIR)/dogtag_submit-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='dogtag_submit-submit-h.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` dogtag_submit-util-m.o: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-util-m.o -MD -MP -MF $(DEPDIR)/dogtag_submit-util-m.Tpo -c -o dogtag_submit-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-util-m.Tpo $(DEPDIR)/dogtag_submit-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='dogtag_submit-util-m.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c dogtag_submit-util-m.obj: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-util-m.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-util-m.Tpo -c -o dogtag_submit-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-util-m.Tpo $(DEPDIR)/dogtag_submit-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='dogtag_submit-util-m.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` dogtag_submit-util-n.o: util-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-util-n.o -MD -MP -MF $(DEPDIR)/dogtag_submit-util-n.Tpo -c -o dogtag_submit-util-n.o `test -f 'util-n.c' || echo '$(srcdir)/'`util-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-util-n.Tpo $(DEPDIR)/dogtag_submit-util-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-n.c' object='dogtag_submit-util-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-util-n.o `test -f 'util-n.c' || echo '$(srcdir)/'`util-n.c dogtag_submit-util-n.obj: util-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-util-n.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-util-n.Tpo -c -o dogtag_submit-util-n.obj `if test -f 'util-n.c'; then $(CYGPATH_W) 'util-n.c'; else $(CYGPATH_W) '$(srcdir)/util-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-util-n.Tpo $(DEPDIR)/dogtag_submit-util-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-n.c' object='dogtag_submit-util-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-util-n.obj `if test -f 'util-n.c'; then $(CYGPATH_W) 'util-n.c'; else $(CYGPATH_W) '$(srcdir)/util-n.c'; fi` dogtag_submit-submit-u.o: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-submit-u.o -MD -MP -MF $(DEPDIR)/dogtag_submit-submit-u.Tpo -c -o dogtag_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-submit-u.Tpo $(DEPDIR)/dogtag_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='dogtag_submit-submit-u.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c dogtag_submit-submit-u.obj: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-submit-u.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-submit-u.Tpo -c -o dogtag_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-submit-u.Tpo $(DEPDIR)/dogtag_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='dogtag_submit-submit-u.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` dogtag_submit-util.o: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-util.o -MD -MP -MF $(DEPDIR)/dogtag_submit-util.Tpo -c -o dogtag_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-util.Tpo $(DEPDIR)/dogtag_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='dogtag_submit-util.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c dogtag_submit-util.obj: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-util.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-util.Tpo -c -o dogtag_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-util.Tpo $(DEPDIR)/dogtag_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='dogtag_submit-util.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` dogtag_submit-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-log.o -MD -MP -MF $(DEPDIR)/dogtag_submit-log.Tpo -c -o dogtag_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-log.Tpo $(DEPDIR)/dogtag_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='dogtag_submit-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c dogtag_submit-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-log.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-log.Tpo -c -o dogtag_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-log.Tpo $(DEPDIR)/dogtag_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='dogtag_submit-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` dogtag_submit-store-gen.o: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-store-gen.o -MD -MP -MF $(DEPDIR)/dogtag_submit-store-gen.Tpo -c -o dogtag_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-store-gen.Tpo $(DEPDIR)/dogtag_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='dogtag_submit-store-gen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c dogtag_submit-store-gen.obj: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-store-gen.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-store-gen.Tpo -c -o dogtag_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-store-gen.Tpo $(DEPDIR)/dogtag_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='dogtag_submit-store-gen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` dogtag_submit-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-tm.o -MD -MP -MF $(DEPDIR)/dogtag_submit-tm.Tpo -c -o dogtag_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-tm.Tpo $(DEPDIR)/dogtag_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='dogtag_submit-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c dogtag_submit-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-tm.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-tm.Tpo -c -o dogtag_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-tm.Tpo $(DEPDIR)/dogtag_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='dogtag_submit-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` dogtag_submit-prefs.o: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-prefs.o -MD -MP -MF $(DEPDIR)/dogtag_submit-prefs.Tpo -c -o dogtag_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-prefs.Tpo $(DEPDIR)/dogtag_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='dogtag_submit-prefs.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c dogtag_submit-prefs.obj: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-prefs.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-prefs.Tpo -c -o dogtag_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-prefs.Tpo $(DEPDIR)/dogtag_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='dogtag_submit-prefs.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` dogtag_submit-env-system.o: env-system.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-env-system.o -MD -MP -MF $(DEPDIR)/dogtag_submit-env-system.Tpo -c -o dogtag_submit-env-system.o `test -f 'env-system.c' || echo '$(srcdir)/'`env-system.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-env-system.Tpo $(DEPDIR)/dogtag_submit-env-system.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-system.c' object='dogtag_submit-env-system.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-env-system.o `test -f 'env-system.c' || echo '$(srcdir)/'`env-system.c dogtag_submit-env-system.obj: env-system.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -MT dogtag_submit-env-system.obj -MD -MP -MF $(DEPDIR)/dogtag_submit-env-system.Tpo -c -o dogtag_submit-env-system.obj `if test -f 'env-system.c'; then $(CYGPATH_W) 'env-system.c'; else $(CYGPATH_W) '$(srcdir)/env-system.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/dogtag_submit-env-system.Tpo $(DEPDIR)/dogtag_submit-env-system.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-system.c' object='dogtag_submit-env-system.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(dogtag_submit_CFLAGS) $(CFLAGS) -c -o dogtag_submit-env-system.obj `if test -f 'env-system.c'; then $(CYGPATH_W) 'env-system.c'; else $(CYGPATH_W) '$(srcdir)/env-system.c'; fi` getcert-getcert.o: getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -MT getcert-getcert.o -MD -MP -MF $(DEPDIR)/getcert-getcert.Tpo -c -o getcert-getcert.o `test -f 'getcert.c' || echo '$(srcdir)/'`getcert.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/getcert-getcert.Tpo $(DEPDIR)/getcert-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='getcert.c' object='getcert-getcert.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -c -o getcert-getcert.o `test -f 'getcert.c' || echo '$(srcdir)/'`getcert.c getcert-getcert.obj: getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -MT getcert-getcert.obj -MD -MP -MF $(DEPDIR)/getcert-getcert.Tpo -c -o getcert-getcert.obj `if test -f 'getcert.c'; then $(CYGPATH_W) 'getcert.c'; else $(CYGPATH_W) '$(srcdir)/getcert.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/getcert-getcert.Tpo $(DEPDIR)/getcert-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='getcert.c' object='getcert-getcert.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -c -o getcert-getcert.obj `if test -f 'getcert.c'; then $(CYGPATH_W) 'getcert.c'; else $(CYGPATH_W) '$(srcdir)/getcert.c'; fi` getcert-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -MT getcert-tm.o -MD -MP -MF $(DEPDIR)/getcert-tm.Tpo -c -o getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/getcert-tm.Tpo $(DEPDIR)/getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='getcert-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -c -o getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c getcert-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -MT getcert-tm.obj -MD -MP -MF $(DEPDIR)/getcert-tm.Tpo -c -o getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/getcert-tm.Tpo $(DEPDIR)/getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='getcert-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(getcert_CFLAGS) $(CFLAGS) -c -o getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` ipa_getcert-ipa-getcert.o: ipa-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -MT ipa_getcert-ipa-getcert.o -MD -MP -MF $(DEPDIR)/ipa_getcert-ipa-getcert.Tpo -c -o ipa_getcert-ipa-getcert.o `test -f 'ipa-getcert.c' || echo '$(srcdir)/'`ipa-getcert.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/ipa_getcert-ipa-getcert.Tpo $(DEPDIR)/ipa_getcert-ipa-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ipa-getcert.c' object='ipa_getcert-ipa-getcert.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -c -o ipa_getcert-ipa-getcert.o `test -f 'ipa-getcert.c' || echo '$(srcdir)/'`ipa-getcert.c ipa_getcert-ipa-getcert.obj: ipa-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -MT ipa_getcert-ipa-getcert.obj -MD -MP -MF $(DEPDIR)/ipa_getcert-ipa-getcert.Tpo -c -o ipa_getcert-ipa-getcert.obj `if test -f 'ipa-getcert.c'; then $(CYGPATH_W) 'ipa-getcert.c'; else $(CYGPATH_W) '$(srcdir)/ipa-getcert.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/ipa_getcert-ipa-getcert.Tpo $(DEPDIR)/ipa_getcert-ipa-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ipa-getcert.c' object='ipa_getcert-ipa-getcert.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -c -o ipa_getcert-ipa-getcert.obj `if test -f 'ipa-getcert.c'; then $(CYGPATH_W) 'ipa-getcert.c'; else $(CYGPATH_W) '$(srcdir)/ipa-getcert.c'; fi` ipa_getcert-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -MT ipa_getcert-tm.o -MD -MP -MF $(DEPDIR)/ipa_getcert-tm.Tpo -c -o ipa_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/ipa_getcert-tm.Tpo $(DEPDIR)/ipa_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='ipa_getcert-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -c -o ipa_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c ipa_getcert-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -MT ipa_getcert-tm.obj -MD -MP -MF $(DEPDIR)/ipa_getcert-tm.Tpo -c -o ipa_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/ipa_getcert-tm.Tpo $(DEPDIR)/ipa_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='ipa_getcert-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(ipa_getcert_CFLAGS) $(CFLAGS) -c -o ipa_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` local_getcert-local-getcert.o: local-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -MT local_getcert-local-getcert.o -MD -MP -MF $(DEPDIR)/local_getcert-local-getcert.Tpo -c -o local_getcert-local-getcert.o `test -f 'local-getcert.c' || echo '$(srcdir)/'`local-getcert.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_getcert-local-getcert.Tpo $(DEPDIR)/local_getcert-local-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='local-getcert.c' object='local_getcert-local-getcert.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -c -o local_getcert-local-getcert.o `test -f 'local-getcert.c' || echo '$(srcdir)/'`local-getcert.c local_getcert-local-getcert.obj: local-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -MT local_getcert-local-getcert.obj -MD -MP -MF $(DEPDIR)/local_getcert-local-getcert.Tpo -c -o local_getcert-local-getcert.obj `if test -f 'local-getcert.c'; then $(CYGPATH_W) 'local-getcert.c'; else $(CYGPATH_W) '$(srcdir)/local-getcert.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_getcert-local-getcert.Tpo $(DEPDIR)/local_getcert-local-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='local-getcert.c' object='local_getcert-local-getcert.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -c -o local_getcert-local-getcert.obj `if test -f 'local-getcert.c'; then $(CYGPATH_W) 'local-getcert.c'; else $(CYGPATH_W) '$(srcdir)/local-getcert.c'; fi` local_getcert-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -MT local_getcert-tm.o -MD -MP -MF $(DEPDIR)/local_getcert-tm.Tpo -c -o local_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_getcert-tm.Tpo $(DEPDIR)/local_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='local_getcert-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -c -o local_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c local_getcert-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -MT local_getcert-tm.obj -MD -MP -MF $(DEPDIR)/local_getcert-tm.Tpo -c -o local_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_getcert-tm.Tpo $(DEPDIR)/local_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='local_getcert-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_getcert_CFLAGS) $(CFLAGS) -c -o local_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` local_submit-local.o: local.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-local.o -MD -MP -MF $(DEPDIR)/local_submit-local.Tpo -c -o local_submit-local.o `test -f 'local.c' || echo '$(srcdir)/'`local.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-local.Tpo $(DEPDIR)/local_submit-local.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='local.c' object='local_submit-local.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-local.o `test -f 'local.c' || echo '$(srcdir)/'`local.c local_submit-local.obj: local.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-local.obj -MD -MP -MF $(DEPDIR)/local_submit-local.Tpo -c -o local_submit-local.obj `if test -f 'local.c'; then $(CYGPATH_W) 'local.c'; else $(CYGPATH_W) '$(srcdir)/local.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-local.Tpo $(DEPDIR)/local_submit-local.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='local.c' object='local_submit-local.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-local.obj `if test -f 'local.c'; then $(CYGPATH_W) 'local.c'; else $(CYGPATH_W) '$(srcdir)/local.c'; fi` local_submit-store-gen.o: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-store-gen.o -MD -MP -MF $(DEPDIR)/local_submit-store-gen.Tpo -c -o local_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-store-gen.Tpo $(DEPDIR)/local_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='local_submit-store-gen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c local_submit-store-gen.obj: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-store-gen.obj -MD -MP -MF $(DEPDIR)/local_submit-store-gen.Tpo -c -o local_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-store-gen.Tpo $(DEPDIR)/local_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='local_submit-store-gen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` local_submit-submit-o.o: submit-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-submit-o.o -MD -MP -MF $(DEPDIR)/local_submit-submit-o.Tpo -c -o local_submit-submit-o.o `test -f 'submit-o.c' || echo '$(srcdir)/'`submit-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-submit-o.Tpo $(DEPDIR)/local_submit-submit-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-o.c' object='local_submit-submit-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-submit-o.o `test -f 'submit-o.c' || echo '$(srcdir)/'`submit-o.c local_submit-submit-o.obj: submit-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-submit-o.obj -MD -MP -MF $(DEPDIR)/local_submit-submit-o.Tpo -c -o local_submit-submit-o.obj `if test -f 'submit-o.c'; then $(CYGPATH_W) 'submit-o.c'; else $(CYGPATH_W) '$(srcdir)/submit-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-submit-o.Tpo $(DEPDIR)/local_submit-submit-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-o.c' object='local_submit-submit-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-submit-o.obj `if test -f 'submit-o.c'; then $(CYGPATH_W) 'submit-o.c'; else $(CYGPATH_W) '$(srcdir)/submit-o.c'; fi` local_submit-submit-u.o: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-submit-u.o -MD -MP -MF $(DEPDIR)/local_submit-submit-u.Tpo -c -o local_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-submit-u.Tpo $(DEPDIR)/local_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='local_submit-submit-u.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c local_submit-submit-u.obj: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-submit-u.obj -MD -MP -MF $(DEPDIR)/local_submit-submit-u.Tpo -c -o local_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-submit-u.Tpo $(DEPDIR)/local_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='local_submit-submit-u.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` local_submit-env-session.o: env-session.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-env-session.o -MD -MP -MF $(DEPDIR)/local_submit-env-session.Tpo -c -o local_submit-env-session.o `test -f 'env-session.c' || echo '$(srcdir)/'`env-session.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-env-session.Tpo $(DEPDIR)/local_submit-env-session.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-session.c' object='local_submit-env-session.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-env-session.o `test -f 'env-session.c' || echo '$(srcdir)/'`env-session.c local_submit-env-session.obj: env-session.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-env-session.obj -MD -MP -MF $(DEPDIR)/local_submit-env-session.Tpo -c -o local_submit-env-session.obj `if test -f 'env-session.c'; then $(CYGPATH_W) 'env-session.c'; else $(CYGPATH_W) '$(srcdir)/env-session.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-env-session.Tpo $(DEPDIR)/local_submit-env-session.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-session.c' object='local_submit-env-session.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-env-session.obj `if test -f 'env-session.c'; then $(CYGPATH_W) 'env-session.c'; else $(CYGPATH_W) '$(srcdir)/env-session.c'; fi` local_submit-env-shared.o: env-shared.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-env-shared.o -MD -MP -MF $(DEPDIR)/local_submit-env-shared.Tpo -c -o local_submit-env-shared.o `test -f 'env-shared.c' || echo '$(srcdir)/'`env-shared.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-env-shared.Tpo $(DEPDIR)/local_submit-env-shared.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-shared.c' object='local_submit-env-shared.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-env-shared.o `test -f 'env-shared.c' || echo '$(srcdir)/'`env-shared.c local_submit-env-shared.obj: env-shared.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-env-shared.obj -MD -MP -MF $(DEPDIR)/local_submit-env-shared.Tpo -c -o local_submit-env-shared.obj `if test -f 'env-shared.c'; then $(CYGPATH_W) 'env-shared.c'; else $(CYGPATH_W) '$(srcdir)/env-shared.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-env-shared.Tpo $(DEPDIR)/local_submit-env-shared.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-shared.c' object='local_submit-env-shared.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-env-shared.obj `if test -f 'env-shared.c'; then $(CYGPATH_W) 'env-shared.c'; else $(CYGPATH_W) '$(srcdir)/env-shared.c'; fi` local_submit-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-log.o -MD -MP -MF $(DEPDIR)/local_submit-log.Tpo -c -o local_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-log.Tpo $(DEPDIR)/local_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='local_submit-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c local_submit-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-log.obj -MD -MP -MF $(DEPDIR)/local_submit-log.Tpo -c -o local_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-log.Tpo $(DEPDIR)/local_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='local_submit-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` local_submit-prefs.o: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-prefs.o -MD -MP -MF $(DEPDIR)/local_submit-prefs.Tpo -c -o local_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-prefs.Tpo $(DEPDIR)/local_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='local_submit-prefs.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c local_submit-prefs.obj: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-prefs.obj -MD -MP -MF $(DEPDIR)/local_submit-prefs.Tpo -c -o local_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-prefs.Tpo $(DEPDIR)/local_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='local_submit-prefs.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` local_submit-prefs-o.o: prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-prefs-o.o -MD -MP -MF $(DEPDIR)/local_submit-prefs-o.Tpo -c -o local_submit-prefs-o.o `test -f 'prefs-o.c' || echo '$(srcdir)/'`prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-prefs-o.Tpo $(DEPDIR)/local_submit-prefs-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-o.c' object='local_submit-prefs-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-prefs-o.o `test -f 'prefs-o.c' || echo '$(srcdir)/'`prefs-o.c local_submit-prefs-o.obj: prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-prefs-o.obj -MD -MP -MF $(DEPDIR)/local_submit-prefs-o.Tpo -c -o local_submit-prefs-o.obj `if test -f 'prefs-o.c'; then $(CYGPATH_W) 'prefs-o.c'; else $(CYGPATH_W) '$(srcdir)/prefs-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-prefs-o.Tpo $(DEPDIR)/local_submit-prefs-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-o.c' object='local_submit-prefs-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-prefs-o.obj `if test -f 'prefs-o.c'; then $(CYGPATH_W) 'prefs-o.c'; else $(CYGPATH_W) '$(srcdir)/prefs-o.c'; fi` local_submit-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-tm.o -MD -MP -MF $(DEPDIR)/local_submit-tm.Tpo -c -o local_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-tm.Tpo $(DEPDIR)/local_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='local_submit-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c local_submit-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-tm.obj -MD -MP -MF $(DEPDIR)/local_submit-tm.Tpo -c -o local_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-tm.Tpo $(DEPDIR)/local_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='local_submit-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` local_submit-util.o: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-util.o -MD -MP -MF $(DEPDIR)/local_submit-util.Tpo -c -o local_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-util.Tpo $(DEPDIR)/local_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='local_submit-util.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c local_submit-util.obj: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-util.obj -MD -MP -MF $(DEPDIR)/local_submit-util.Tpo -c -o local_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-util.Tpo $(DEPDIR)/local_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='local_submit-util.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` local_submit-util-o.o: util-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-util-o.o -MD -MP -MF $(DEPDIR)/local_submit-util-o.Tpo -c -o local_submit-util-o.o `test -f 'util-o.c' || echo '$(srcdir)/'`util-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-util-o.Tpo $(DEPDIR)/local_submit-util-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-o.c' object='local_submit-util-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-util-o.o `test -f 'util-o.c' || echo '$(srcdir)/'`util-o.c local_submit-util-o.obj: util-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-util-o.obj -MD -MP -MF $(DEPDIR)/local_submit-util-o.Tpo -c -o local_submit-util-o.obj `if test -f 'util-o.c'; then $(CYGPATH_W) 'util-o.c'; else $(CYGPATH_W) '$(srcdir)/util-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-util-o.Tpo $(DEPDIR)/local_submit-util-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-o.c' object='local_submit-util-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-util-o.obj `if test -f 'util-o.c'; then $(CYGPATH_W) 'util-o.c'; else $(CYGPATH_W) '$(srcdir)/util-o.c'; fi` local_submit-pin.o: pin.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-pin.o -MD -MP -MF $(DEPDIR)/local_submit-pin.Tpo -c -o local_submit-pin.o `test -f 'pin.c' || echo '$(srcdir)/'`pin.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-pin.Tpo $(DEPDIR)/local_submit-pin.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pin.c' object='local_submit-pin.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-pin.o `test -f 'pin.c' || echo '$(srcdir)/'`pin.c local_submit-pin.obj: pin.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -MT local_submit-pin.obj -MD -MP -MF $(DEPDIR)/local_submit-pin.Tpo -c -o local_submit-pin.obj `if test -f 'pin.c'; then $(CYGPATH_W) 'pin.c'; else $(CYGPATH_W) '$(srcdir)/pin.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/local_submit-pin.Tpo $(DEPDIR)/local_submit-pin.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pin.c' object='local_submit-pin.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(local_submit_CFLAGS) $(CFLAGS) -c -o local_submit-pin.obj `if test -f 'pin.c'; then $(CYGPATH_W) 'pin.c'; else $(CYGPATH_W) '$(srcdir)/pin.c'; fi` scep_submit-scep.o: scep.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-scep.o -MD -MP -MF $(DEPDIR)/scep_submit-scep.Tpo -c -o scep_submit-scep.o `test -f 'scep.c' || echo '$(srcdir)/'`scep.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-scep.Tpo $(DEPDIR)/scep_submit-scep.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scep.c' object='scep_submit-scep.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-scep.o `test -f 'scep.c' || echo '$(srcdir)/'`scep.c scep_submit-scep.obj: scep.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-scep.obj -MD -MP -MF $(DEPDIR)/scep_submit-scep.Tpo -c -o scep_submit-scep.obj `if test -f 'scep.c'; then $(CYGPATH_W) 'scep.c'; else $(CYGPATH_W) '$(srcdir)/scep.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-scep.Tpo $(DEPDIR)/scep_submit-scep.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scep.c' object='scep_submit-scep.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-scep.obj `if test -f 'scep.c'; then $(CYGPATH_W) 'scep.c'; else $(CYGPATH_W) '$(srcdir)/scep.c'; fi` scep_submit-submit-h.o: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-submit-h.o -MD -MP -MF $(DEPDIR)/scep_submit-submit-h.Tpo -c -o scep_submit-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-submit-h.Tpo $(DEPDIR)/scep_submit-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='scep_submit-submit-h.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c scep_submit-submit-h.obj: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-submit-h.obj -MD -MP -MF $(DEPDIR)/scep_submit-submit-h.Tpo -c -o scep_submit-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-submit-h.Tpo $(DEPDIR)/scep_submit-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='scep_submit-submit-h.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` scep_submit-util-m.o: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-util-m.o -MD -MP -MF $(DEPDIR)/scep_submit-util-m.Tpo -c -o scep_submit-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-util-m.Tpo $(DEPDIR)/scep_submit-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='scep_submit-util-m.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c scep_submit-util-m.obj: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-util-m.obj -MD -MP -MF $(DEPDIR)/scep_submit-util-m.Tpo -c -o scep_submit-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-util-m.Tpo $(DEPDIR)/scep_submit-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='scep_submit-util-m.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` scep_submit-util-o.o: util-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-util-o.o -MD -MP -MF $(DEPDIR)/scep_submit-util-o.Tpo -c -o scep_submit-util-o.o `test -f 'util-o.c' || echo '$(srcdir)/'`util-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-util-o.Tpo $(DEPDIR)/scep_submit-util-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-o.c' object='scep_submit-util-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-util-o.o `test -f 'util-o.c' || echo '$(srcdir)/'`util-o.c scep_submit-util-o.obj: util-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-util-o.obj -MD -MP -MF $(DEPDIR)/scep_submit-util-o.Tpo -c -o scep_submit-util-o.obj `if test -f 'util-o.c'; then $(CYGPATH_W) 'util-o.c'; else $(CYGPATH_W) '$(srcdir)/util-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-util-o.Tpo $(DEPDIR)/scep_submit-util-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-o.c' object='scep_submit-util-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-util-o.obj `if test -f 'util-o.c'; then $(CYGPATH_W) 'util-o.c'; else $(CYGPATH_W) '$(srcdir)/util-o.c'; fi` scep_submit-submit-u.o: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-submit-u.o -MD -MP -MF $(DEPDIR)/scep_submit-submit-u.Tpo -c -o scep_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-submit-u.Tpo $(DEPDIR)/scep_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='scep_submit-submit-u.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c scep_submit-submit-u.obj: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-submit-u.obj -MD -MP -MF $(DEPDIR)/scep_submit-submit-u.Tpo -c -o scep_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-submit-u.Tpo $(DEPDIR)/scep_submit-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='scep_submit-submit-u.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` scep_submit-util.o: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-util.o -MD -MP -MF $(DEPDIR)/scep_submit-util.Tpo -c -o scep_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-util.Tpo $(DEPDIR)/scep_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='scep_submit-util.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-util.o `test -f 'util.c' || echo '$(srcdir)/'`util.c scep_submit-util.obj: util.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-util.obj -MD -MP -MF $(DEPDIR)/scep_submit-util.Tpo -c -o scep_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-util.Tpo $(DEPDIR)/scep_submit-util.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util.c' object='scep_submit-util.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-util.obj `if test -f 'util.c'; then $(CYGPATH_W) 'util.c'; else $(CYGPATH_W) '$(srcdir)/util.c'; fi` scep_submit-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-log.o -MD -MP -MF $(DEPDIR)/scep_submit-log.Tpo -c -o scep_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-log.Tpo $(DEPDIR)/scep_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='scep_submit-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c scep_submit-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-log.obj -MD -MP -MF $(DEPDIR)/scep_submit-log.Tpo -c -o scep_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-log.Tpo $(DEPDIR)/scep_submit-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='scep_submit-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` scep_submit-pkcs7.o: pkcs7.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-pkcs7.o -MD -MP -MF $(DEPDIR)/scep_submit-pkcs7.Tpo -c -o scep_submit-pkcs7.o `test -f 'pkcs7.c' || echo '$(srcdir)/'`pkcs7.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-pkcs7.Tpo $(DEPDIR)/scep_submit-pkcs7.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pkcs7.c' object='scep_submit-pkcs7.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-pkcs7.o `test -f 'pkcs7.c' || echo '$(srcdir)/'`pkcs7.c scep_submit-pkcs7.obj: pkcs7.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-pkcs7.obj -MD -MP -MF $(DEPDIR)/scep_submit-pkcs7.Tpo -c -o scep_submit-pkcs7.obj `if test -f 'pkcs7.c'; then $(CYGPATH_W) 'pkcs7.c'; else $(CYGPATH_W) '$(srcdir)/pkcs7.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-pkcs7.Tpo $(DEPDIR)/scep_submit-pkcs7.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pkcs7.c' object='scep_submit-pkcs7.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-pkcs7.obj `if test -f 'pkcs7.c'; then $(CYGPATH_W) 'pkcs7.c'; else $(CYGPATH_W) '$(srcdir)/pkcs7.c'; fi` scep_submit-store-gen.o: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-store-gen.o -MD -MP -MF $(DEPDIR)/scep_submit-store-gen.Tpo -c -o scep_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-store-gen.Tpo $(DEPDIR)/scep_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='scep_submit-store-gen.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-store-gen.o `test -f 'store-gen.c' || echo '$(srcdir)/'`store-gen.c scep_submit-store-gen.obj: store-gen.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-store-gen.obj -MD -MP -MF $(DEPDIR)/scep_submit-store-gen.Tpo -c -o scep_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-store-gen.Tpo $(DEPDIR)/scep_submit-store-gen.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='store-gen.c' object='scep_submit-store-gen.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-store-gen.obj `if test -f 'store-gen.c'; then $(CYGPATH_W) 'store-gen.c'; else $(CYGPATH_W) '$(srcdir)/store-gen.c'; fi` scep_submit-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-tm.o -MD -MP -MF $(DEPDIR)/scep_submit-tm.Tpo -c -o scep_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-tm.Tpo $(DEPDIR)/scep_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='scep_submit-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c scep_submit-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-tm.obj -MD -MP -MF $(DEPDIR)/scep_submit-tm.Tpo -c -o scep_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-tm.Tpo $(DEPDIR)/scep_submit-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='scep_submit-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` scep_submit-prefs.o: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-prefs.o -MD -MP -MF $(DEPDIR)/scep_submit-prefs.Tpo -c -o scep_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-prefs.Tpo $(DEPDIR)/scep_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='scep_submit-prefs.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-prefs.o `test -f 'prefs.c' || echo '$(srcdir)/'`prefs.c scep_submit-prefs.obj: prefs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-prefs.obj -MD -MP -MF $(DEPDIR)/scep_submit-prefs.Tpo -c -o scep_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-prefs.Tpo $(DEPDIR)/scep_submit-prefs.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs.c' object='scep_submit-prefs.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-prefs.obj `if test -f 'prefs.c'; then $(CYGPATH_W) 'prefs.c'; else $(CYGPATH_W) '$(srcdir)/prefs.c'; fi` scep_submit-prefs-o.o: prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-prefs-o.o -MD -MP -MF $(DEPDIR)/scep_submit-prefs-o.Tpo -c -o scep_submit-prefs-o.o `test -f 'prefs-o.c' || echo '$(srcdir)/'`prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-prefs-o.Tpo $(DEPDIR)/scep_submit-prefs-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-o.c' object='scep_submit-prefs-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-prefs-o.o `test -f 'prefs-o.c' || echo '$(srcdir)/'`prefs-o.c scep_submit-prefs-o.obj: prefs-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-prefs-o.obj -MD -MP -MF $(DEPDIR)/scep_submit-prefs-o.Tpo -c -o scep_submit-prefs-o.obj `if test -f 'prefs-o.c'; then $(CYGPATH_W) 'prefs-o.c'; else $(CYGPATH_W) '$(srcdir)/prefs-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-prefs-o.Tpo $(DEPDIR)/scep_submit-prefs-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='prefs-o.c' object='scep_submit-prefs-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-prefs-o.obj `if test -f 'prefs-o.c'; then $(CYGPATH_W) 'prefs-o.c'; else $(CYGPATH_W) '$(srcdir)/prefs-o.c'; fi` scep_submit-scep-o.o: scep-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-scep-o.o -MD -MP -MF $(DEPDIR)/scep_submit-scep-o.Tpo -c -o scep_submit-scep-o.o `test -f 'scep-o.c' || echo '$(srcdir)/'`scep-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-scep-o.Tpo $(DEPDIR)/scep_submit-scep-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scep-o.c' object='scep_submit-scep-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-scep-o.o `test -f 'scep-o.c' || echo '$(srcdir)/'`scep-o.c scep_submit-scep-o.obj: scep-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-scep-o.obj -MD -MP -MF $(DEPDIR)/scep_submit-scep-o.Tpo -c -o scep_submit-scep-o.obj `if test -f 'scep-o.c'; then $(CYGPATH_W) 'scep-o.c'; else $(CYGPATH_W) '$(srcdir)/scep-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-scep-o.Tpo $(DEPDIR)/scep_submit-scep-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='scep-o.c' object='scep_submit-scep-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-scep-o.obj `if test -f 'scep-o.c'; then $(CYGPATH_W) 'scep-o.c'; else $(CYGPATH_W) '$(srcdir)/scep-o.c'; fi` scep_submit-env-system.o: env-system.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-env-system.o -MD -MP -MF $(DEPDIR)/scep_submit-env-system.Tpo -c -o scep_submit-env-system.o `test -f 'env-system.c' || echo '$(srcdir)/'`env-system.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-env-system.Tpo $(DEPDIR)/scep_submit-env-system.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-system.c' object='scep_submit-env-system.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-env-system.o `test -f 'env-system.c' || echo '$(srcdir)/'`env-system.c scep_submit-env-system.obj: env-system.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -MT scep_submit-env-system.obj -MD -MP -MF $(DEPDIR)/scep_submit-env-system.Tpo -c -o scep_submit-env-system.obj `if test -f 'env-system.c'; then $(CYGPATH_W) 'env-system.c'; else $(CYGPATH_W) '$(srcdir)/env-system.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/scep_submit-env-system.Tpo $(DEPDIR)/scep_submit-env-system.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='env-system.c' object='scep_submit-env-system.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(scep_submit_CFLAGS) $(CFLAGS) -c -o scep_submit-env-system.obj `if test -f 'env-system.c'; then $(CYGPATH_W) 'env-system.c'; else $(CYGPATH_W) '$(srcdir)/env-system.c'; fi` selfsign_getcert-selfsign-getcert.o: selfsign-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -MT selfsign_getcert-selfsign-getcert.o -MD -MP -MF $(DEPDIR)/selfsign_getcert-selfsign-getcert.Tpo -c -o selfsign_getcert-selfsign-getcert.o `test -f 'selfsign-getcert.c' || echo '$(srcdir)/'`selfsign-getcert.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/selfsign_getcert-selfsign-getcert.Tpo $(DEPDIR)/selfsign_getcert-selfsign-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='selfsign-getcert.c' object='selfsign_getcert-selfsign-getcert.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -c -o selfsign_getcert-selfsign-getcert.o `test -f 'selfsign-getcert.c' || echo '$(srcdir)/'`selfsign-getcert.c selfsign_getcert-selfsign-getcert.obj: selfsign-getcert.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -MT selfsign_getcert-selfsign-getcert.obj -MD -MP -MF $(DEPDIR)/selfsign_getcert-selfsign-getcert.Tpo -c -o selfsign_getcert-selfsign-getcert.obj `if test -f 'selfsign-getcert.c'; then $(CYGPATH_W) 'selfsign-getcert.c'; else $(CYGPATH_W) '$(srcdir)/selfsign-getcert.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/selfsign_getcert-selfsign-getcert.Tpo $(DEPDIR)/selfsign_getcert-selfsign-getcert.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='selfsign-getcert.c' object='selfsign_getcert-selfsign-getcert.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -c -o selfsign_getcert-selfsign-getcert.obj `if test -f 'selfsign-getcert.c'; then $(CYGPATH_W) 'selfsign-getcert.c'; else $(CYGPATH_W) '$(srcdir)/selfsign-getcert.c'; fi` selfsign_getcert-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -MT selfsign_getcert-tm.o -MD -MP -MF $(DEPDIR)/selfsign_getcert-tm.Tpo -c -o selfsign_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/selfsign_getcert-tm.Tpo $(DEPDIR)/selfsign_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='selfsign_getcert-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -c -o selfsign_getcert-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c selfsign_getcert-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -MT selfsign_getcert-tm.obj -MD -MP -MF $(DEPDIR)/selfsign_getcert-tm.Tpo -c -o selfsign_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/selfsign_getcert-tm.Tpo $(DEPDIR)/selfsign_getcert-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='selfsign_getcert-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(selfsign_getcert_CFLAGS) $(CFLAGS) -c -o selfsign_getcert-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` submit_d-submit-d.o: submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-submit-d.o -MD -MP -MF $(DEPDIR)/submit_d-submit-d.Tpo -c -o submit_d-submit-d.o `test -f 'submit-d.c' || echo '$(srcdir)/'`submit-d.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-submit-d.Tpo $(DEPDIR)/submit_d-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-d.c' object='submit_d-submit-d.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-submit-d.o `test -f 'submit-d.c' || echo '$(srcdir)/'`submit-d.c submit_d-submit-d.obj: submit-d.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-submit-d.obj -MD -MP -MF $(DEPDIR)/submit_d-submit-d.Tpo -c -o submit_d-submit-d.obj `if test -f 'submit-d.c'; then $(CYGPATH_W) 'submit-d.c'; else $(CYGPATH_W) '$(srcdir)/submit-d.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-submit-d.Tpo $(DEPDIR)/submit_d-submit-d.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-d.c' object='submit_d-submit-d.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-submit-d.obj `if test -f 'submit-d.c'; then $(CYGPATH_W) 'submit-d.c'; else $(CYGPATH_W) '$(srcdir)/submit-d.c'; fi` submit_d-submit-h.o: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-submit-h.o -MD -MP -MF $(DEPDIR)/submit_d-submit-h.Tpo -c -o submit_d-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-submit-h.Tpo $(DEPDIR)/submit_d-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='submit_d-submit-h.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c submit_d-submit-h.obj: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-submit-h.obj -MD -MP -MF $(DEPDIR)/submit_d-submit-h.Tpo -c -o submit_d-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-submit-h.Tpo $(DEPDIR)/submit_d-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='submit_d-submit-h.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` submit_d-submit-u.o: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-submit-u.o -MD -MP -MF $(DEPDIR)/submit_d-submit-u.Tpo -c -o submit_d-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-submit-u.Tpo $(DEPDIR)/submit_d-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='submit_d-submit-u.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c submit_d-submit-u.obj: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-submit-u.obj -MD -MP -MF $(DEPDIR)/submit_d-submit-u.Tpo -c -o submit_d-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-submit-u.Tpo $(DEPDIR)/submit_d-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='submit_d-submit-u.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` submit_d-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-log.o -MD -MP -MF $(DEPDIR)/submit_d-log.Tpo -c -o submit_d-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-log.Tpo $(DEPDIR)/submit_d-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='submit_d-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c submit_d-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-log.obj -MD -MP -MF $(DEPDIR)/submit_d-log.Tpo -c -o submit_d-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-log.Tpo $(DEPDIR)/submit_d-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='submit_d-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` submit_d-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-tm.o -MD -MP -MF $(DEPDIR)/submit_d-tm.Tpo -c -o submit_d-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-tm.Tpo $(DEPDIR)/submit_d-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='submit_d-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c submit_d-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-tm.obj -MD -MP -MF $(DEPDIR)/submit_d-tm.Tpo -c -o submit_d-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-tm.Tpo $(DEPDIR)/submit_d-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='submit_d-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` submit_d-util-m.o: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-util-m.o -MD -MP -MF $(DEPDIR)/submit_d-util-m.Tpo -c -o submit_d-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-util-m.Tpo $(DEPDIR)/submit_d-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='submit_d-util-m.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-util-m.o `test -f 'util-m.c' || echo '$(srcdir)/'`util-m.c submit_d-util-m.obj: util-m.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -MT submit_d-util-m.obj -MD -MP -MF $(DEPDIR)/submit_d-util-m.Tpo -c -o submit_d-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_d-util-m.Tpo $(DEPDIR)/submit_d-util-m.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='util-m.c' object='submit_d-util-m.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_d_CFLAGS) $(CFLAGS) -c -o submit_d-util-m.obj `if test -f 'util-m.c'; then $(CYGPATH_W) 'util-m.c'; else $(CYGPATH_W) '$(srcdir)/util-m.c'; fi` submit_h-submit-h.o: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -MT submit_h-submit-h.o -MD -MP -MF $(DEPDIR)/submit_h-submit-h.Tpo -c -o submit_h-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_h-submit-h.Tpo $(DEPDIR)/submit_h-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='submit_h-submit-h.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -c -o submit_h-submit-h.o `test -f 'submit-h.c' || echo '$(srcdir)/'`submit-h.c submit_h-submit-h.obj: submit-h.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -MT submit_h-submit-h.obj -MD -MP -MF $(DEPDIR)/submit_h-submit-h.Tpo -c -o submit_h-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_h-submit-h.Tpo $(DEPDIR)/submit_h-submit-h.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-h.c' object='submit_h-submit-h.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -c -o submit_h-submit-h.obj `if test -f 'submit-h.c'; then $(CYGPATH_W) 'submit-h.c'; else $(CYGPATH_W) '$(srcdir)/submit-h.c'; fi` submit_h-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -MT submit_h-log.o -MD -MP -MF $(DEPDIR)/submit_h-log.Tpo -c -o submit_h-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_h-log.Tpo $(DEPDIR)/submit_h-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='submit_h-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -c -o submit_h-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c submit_h-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -MT submit_h-log.obj -MD -MP -MF $(DEPDIR)/submit_h-log.Tpo -c -o submit_h-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_h-log.Tpo $(DEPDIR)/submit_h-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='submit_h-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -c -o submit_h-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` submit_h-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -MT submit_h-tm.o -MD -MP -MF $(DEPDIR)/submit_h-tm.Tpo -c -o submit_h-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_h-tm.Tpo $(DEPDIR)/submit_h-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='submit_h-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -c -o submit_h-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c submit_h-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -MT submit_h-tm.obj -MD -MP -MF $(DEPDIR)/submit_h-tm.Tpo -c -o submit_h-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_h-tm.Tpo $(DEPDIR)/submit_h-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='submit_h-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_h_CFLAGS) $(CFLAGS) -c -o submit_h-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` submit_x-submit-x.o: submit-x.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-submit-x.o -MD -MP -MF $(DEPDIR)/submit_x-submit-x.Tpo -c -o submit_x-submit-x.o `test -f 'submit-x.c' || echo '$(srcdir)/'`submit-x.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-submit-x.Tpo $(DEPDIR)/submit_x-submit-x.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-x.c' object='submit_x-submit-x.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-submit-x.o `test -f 'submit-x.c' || echo '$(srcdir)/'`submit-x.c submit_x-submit-x.obj: submit-x.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-submit-x.obj -MD -MP -MF $(DEPDIR)/submit_x-submit-x.Tpo -c -o submit_x-submit-x.obj `if test -f 'submit-x.c'; then $(CYGPATH_W) 'submit-x.c'; else $(CYGPATH_W) '$(srcdir)/submit-x.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-submit-x.Tpo $(DEPDIR)/submit_x-submit-x.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-x.c' object='submit_x-submit-x.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-submit-x.obj `if test -f 'submit-x.c'; then $(CYGPATH_W) 'submit-x.c'; else $(CYGPATH_W) '$(srcdir)/submit-x.c'; fi` submit_x-submit-u.o: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-submit-u.o -MD -MP -MF $(DEPDIR)/submit_x-submit-u.Tpo -c -o submit_x-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-submit-u.Tpo $(DEPDIR)/submit_x-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='submit_x-submit-u.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-submit-u.o `test -f 'submit-u.c' || echo '$(srcdir)/'`submit-u.c submit_x-submit-u.obj: submit-u.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-submit-u.obj -MD -MP -MF $(DEPDIR)/submit_x-submit-u.Tpo -c -o submit_x-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-submit-u.Tpo $(DEPDIR)/submit_x-submit-u.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='submit-u.c' object='submit_x-submit-u.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-submit-u.obj `if test -f 'submit-u.c'; then $(CYGPATH_W) 'submit-u.c'; else $(CYGPATH_W) '$(srcdir)/submit-u.c'; fi` submit_x-log.o: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-log.o -MD -MP -MF $(DEPDIR)/submit_x-log.Tpo -c -o submit_x-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-log.Tpo $(DEPDIR)/submit_x-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='submit_x-log.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-log.o `test -f 'log.c' || echo '$(srcdir)/'`log.c submit_x-log.obj: log.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-log.obj -MD -MP -MF $(DEPDIR)/submit_x-log.Tpo -c -o submit_x-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-log.Tpo $(DEPDIR)/submit_x-log.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='log.c' object='submit_x-log.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-log.obj `if test -f 'log.c'; then $(CYGPATH_W) 'log.c'; else $(CYGPATH_W) '$(srcdir)/log.c'; fi` submit_x-tm.o: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-tm.o -MD -MP -MF $(DEPDIR)/submit_x-tm.Tpo -c -o submit_x-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-tm.Tpo $(DEPDIR)/submit_x-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='submit_x-tm.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-tm.o `test -f 'tm.c' || echo '$(srcdir)/'`tm.c submit_x-tm.obj: tm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -MT submit_x-tm.obj -MD -MP -MF $(DEPDIR)/submit_x-tm.Tpo -c -o submit_x-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/submit_x-tm.Tpo $(DEPDIR)/submit_x-tm.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tm.c' object='submit_x-tm.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(submit_x_CFLAGS) $(CFLAGS) -c -o submit_x-tm.obj `if test -f 'tm.c'; then $(CYGPATH_W) 'tm.c'; else $(CYGPATH_W) '$(srcdir)/tm.c'; fi` tlslayer-tlslayer.o: tlslayer.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -MT tlslayer-tlslayer.o -MD -MP -MF $(DEPDIR)/tlslayer-tlslayer.Tpo -c -o tlslayer-tlslayer.o `test -f 'tlslayer.c' || echo '$(srcdir)/'`tlslayer.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/tlslayer-tlslayer.Tpo $(DEPDIR)/tlslayer-tlslayer.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tlslayer.c' object='tlslayer-tlslayer.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -c -o tlslayer-tlslayer.o `test -f 'tlslayer.c' || echo '$(srcdir)/'`tlslayer.c tlslayer-tlslayer.obj: tlslayer.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -MT tlslayer-tlslayer.obj -MD -MP -MF $(DEPDIR)/tlslayer-tlslayer.Tpo -c -o tlslayer-tlslayer.obj `if test -f 'tlslayer.c'; then $(CYGPATH_W) 'tlslayer.c'; else $(CYGPATH_W) '$(srcdir)/tlslayer.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/tlslayer-tlslayer.Tpo $(DEPDIR)/tlslayer-tlslayer.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tlslayer.c' object='tlslayer-tlslayer.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -c -o tlslayer-tlslayer.obj `if test -f 'tlslayer.c'; then $(CYGPATH_W) 'tlslayer.c'; else $(CYGPATH_W) '$(srcdir)/tlslayer.c'; fi` tlslayer-tlslayer-n.o: tlslayer-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -MT tlslayer-tlslayer-n.o -MD -MP -MF $(DEPDIR)/tlslayer-tlslayer-n.Tpo -c -o tlslayer-tlslayer-n.o `test -f 'tlslayer-n.c' || echo '$(srcdir)/'`tlslayer-n.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/tlslayer-tlslayer-n.Tpo $(DEPDIR)/tlslayer-tlslayer-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tlslayer-n.c' object='tlslayer-tlslayer-n.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -c -o tlslayer-tlslayer-n.o `test -f 'tlslayer-n.c' || echo '$(srcdir)/'`tlslayer-n.c tlslayer-tlslayer-n.obj: tlslayer-n.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -MT tlslayer-tlslayer-n.obj -MD -MP -MF $(DEPDIR)/tlslayer-tlslayer-n.Tpo -c -o tlslayer-tlslayer-n.obj `if test -f 'tlslayer-n.c'; then $(CYGPATH_W) 'tlslayer-n.c'; else $(CYGPATH_W) '$(srcdir)/tlslayer-n.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/tlslayer-tlslayer-n.Tpo $(DEPDIR)/tlslayer-tlslayer-n.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tlslayer-n.c' object='tlslayer-tlslayer-n.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -c -o tlslayer-tlslayer-n.obj `if test -f 'tlslayer-n.c'; then $(CYGPATH_W) 'tlslayer-n.c'; else $(CYGPATH_W) '$(srcdir)/tlslayer-n.c'; fi` tlslayer-tlslayer-o.o: tlslayer-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -MT tlslayer-tlslayer-o.o -MD -MP -MF $(DEPDIR)/tlslayer-tlslayer-o.Tpo -c -o tlslayer-tlslayer-o.o `test -f 'tlslayer-o.c' || echo '$(srcdir)/'`tlslayer-o.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/tlslayer-tlslayer-o.Tpo $(DEPDIR)/tlslayer-tlslayer-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tlslayer-o.c' object='tlslayer-tlslayer-o.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -c -o tlslayer-tlslayer-o.o `test -f 'tlslayer-o.c' || echo '$(srcdir)/'`tlslayer-o.c tlslayer-tlslayer-o.obj: tlslayer-o.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -MT tlslayer-tlslayer-o.obj -MD -MP -MF $(DEPDIR)/tlslayer-tlslayer-o.Tpo -c -o tlslayer-tlslayer-o.obj `if test -f 'tlslayer-o.c'; then $(CYGPATH_W) 'tlslayer-o.c'; else $(CYGPATH_W) '$(srcdir)/tlslayer-o.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/tlslayer-tlslayer-o.Tpo $(DEPDIR)/tlslayer-tlslayer-o.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tlslayer-o.c' object='tlslayer-tlslayer-o.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(tlslayer_CFLAGS) $(CFLAGS) -c -o tlslayer-tlslayer-o.obj `if test -f 'tlslayer-o.c'; then $(CYGPATH_W) 'tlslayer-o.c'; else $(CYGPATH_W) '$(srcdir)/tlslayer-o.c'; fi` toklist-toklist.o: toklist.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(toklist_CFLAGS) $(CFLAGS) -MT toklist-toklist.o -MD -MP -MF $(DEPDIR)/toklist-toklist.Tpo -c -o toklist-toklist.o `test -f 'toklist.c' || echo '$(srcdir)/'`toklist.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/toklist-toklist.Tpo $(DEPDIR)/toklist-toklist.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='toklist.c' object='toklist-toklist.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(toklist_CFLAGS) $(CFLAGS) -c -o toklist-toklist.o `test -f 'toklist.c' || echo '$(srcdir)/'`toklist.c toklist-toklist.obj: toklist.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(toklist_CFLAGS) $(CFLAGS) -MT toklist-toklist.obj -MD -MP -MF $(DEPDIR)/toklist-toklist.Tpo -c -o toklist-toklist.obj `if test -f 'toklist.c'; then $(CYGPATH_W) 'toklist.c'; else $(CYGPATH_W) '$(srcdir)/toklist.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/toklist-toklist.Tpo $(DEPDIR)/toklist-toklist.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='toklist.c' object='toklist-toklist.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(toklist_CFLAGS) $(CFLAGS) -c -o toklist-toklist.obj `if test -f 'toklist.c'; then $(CYGPATH_W) 'toklist.c'; else $(CYGPATH_W) '$(srcdir)/toklist.c'; fi` install-man1: $(man_MANS) @$(NORMAL_INSTALL) @list1=''; \ list2='$(man_MANS)'; \ test -n "$(man1dir)" \ && test -n "`echo $$list1$$list2`" \ || exit 0; \ echo " $(MKDIR_P) '$(DESTDIR)$(man1dir)'"; \ $(MKDIR_P) "$(DESTDIR)$(man1dir)" || exit 1; \ { for i in $$list1; do echo "$$i"; done; \ if test -n "$$list2"; then \ for i in $$list2; do echo "$$i"; done \ | sed -n '/\.1[a-z]*$$/p'; \ fi; \ } | while read p; do \ if test -f $$p; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; echo "$$p"; \ done | \ sed -e 'n;s,.*/,,;p;h;s,.*\.,,;s,^[^1][0-9a-z]*$$,1,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,' | \ sed 'N;N;s,\n, ,g' | { \ list=; while read file base inst; do \ if test "$$base" = "$$inst"; then list="$$list $$file"; else \ echo " $(INSTALL_DATA) '$$file' '$(DESTDIR)$(man1dir)/$$inst'"; \ $(INSTALL_DATA) "$$file" "$(DESTDIR)$(man1dir)/$$inst" || exit $$?; \ fi; \ done; \ for i in $$list; do echo "$$i"; done | $(am__base_list) | \ while read files; do \ test -z "$$files" || { \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(man1dir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(man1dir)" || exit $$?; }; \ done; } uninstall-man1: @$(NORMAL_UNINSTALL) @list=''; test -n "$(man1dir)" || exit 0; \ files=`{ for i in $$list; do echo "$$i"; done; \ l2='$(man_MANS)'; for i in $$l2; do echo "$$i"; done | \ sed -n '/\.1[a-z]*$$/p'; \ } | sed -e 's,.*/,,;h;s,.*\.,,;s,^[^1][0-9a-z]*$$,1,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,'`; \ dir='$(DESTDIR)$(man1dir)'; $(am__uninstall_files_from_dir) install-man5: $(man_MANS) @$(NORMAL_INSTALL) @list1=''; \ list2='$(man_MANS)'; \ test -n "$(man5dir)" \ && test -n "`echo $$list1$$list2`" \ || exit 0; \ echo " $(MKDIR_P) '$(DESTDIR)$(man5dir)'"; \ $(MKDIR_P) "$(DESTDIR)$(man5dir)" || exit 1; \ { for i in $$list1; do echo "$$i"; done; \ if test -n "$$list2"; then \ for i in $$list2; do echo "$$i"; done \ | sed -n '/\.5[a-z]*$$/p'; \ fi; \ } | while read p; do \ if test -f $$p; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; echo "$$p"; \ done | \ sed -e 'n;s,.*/,,;p;h;s,.*\.,,;s,^[^5][0-9a-z]*$$,5,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,' | \ sed 'N;N;s,\n, ,g' | { \ list=; while read file base inst; do \ if test "$$base" = "$$inst"; then list="$$list $$file"; else \ echo " $(INSTALL_DATA) '$$file' '$(DESTDIR)$(man5dir)/$$inst'"; \ $(INSTALL_DATA) "$$file" "$(DESTDIR)$(man5dir)/$$inst" || exit $$?; \ fi; \ done; \ for i in $$list; do echo "$$i"; done | $(am__base_list) | \ while read files; do \ test -z "$$files" || { \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(man5dir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(man5dir)" || exit $$?; }; \ done; } uninstall-man5: @$(NORMAL_UNINSTALL) @list=''; test -n "$(man5dir)" || exit 0; \ files=`{ for i in $$list; do echo "$$i"; done; \ l2='$(man_MANS)'; for i in $$l2; do echo "$$i"; done | \ sed -n '/\.5[a-z]*$$/p'; \ } | sed -e 's,.*/,,;h;s,.*\.,,;s,^[^5][0-9a-z]*$$,5,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,'`; \ dir='$(DESTDIR)$(man5dir)'; $(am__uninstall_files_from_dir) install-man8: $(man_MANS) @$(NORMAL_INSTALL) @list1=''; \ list2='$(man_MANS)'; \ test -n "$(man8dir)" \ && test -n "`echo $$list1$$list2`" \ || exit 0; \ echo " $(MKDIR_P) '$(DESTDIR)$(man8dir)'"; \ $(MKDIR_P) "$(DESTDIR)$(man8dir)" || exit 1; \ { for i in $$list1; do echo "$$i"; done; \ if test -n "$$list2"; then \ for i in $$list2; do echo "$$i"; done \ | sed -n '/\.8[a-z]*$$/p'; \ fi; \ } | while read p; do \ if test -f $$p; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; echo "$$p"; \ done | \ sed -e 'n;s,.*/,,;p;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,' | \ sed 'N;N;s,\n, ,g' | { \ list=; while read file base inst; do \ if test "$$base" = "$$inst"; then list="$$list $$file"; else \ echo " $(INSTALL_DATA) '$$file' '$(DESTDIR)$(man8dir)/$$inst'"; \ $(INSTALL_DATA) "$$file" "$(DESTDIR)$(man8dir)/$$inst" || exit $$?; \ fi; \ done; \ for i in $$list; do echo "$$i"; done | $(am__base_list) | \ while read files; do \ test -z "$$files" || { \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(man8dir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(man8dir)" || exit $$?; }; \ done; } uninstall-man8: @$(NORMAL_UNINSTALL) @list=''; test -n "$(man8dir)" || exit 0; \ files=`{ for i in $$list; do echo "$$i"; done; \ l2='$(man_MANS)'; for i in $$l2; do echo "$$i"; done | \ sed -n '/\.8[a-z]*$$/p'; \ } | sed -e 's,.*/,,;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,'`; \ dir='$(DESTDIR)$(man8dir)'; $(am__uninstall_files_from_dir) install-pkgsysconfDATA: $(pkgsysconf_DATA) @$(NORMAL_INSTALL) @list='$(pkgsysconf_DATA)'; test -n "$(pkgsysconfdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(pkgsysconfdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(pkgsysconfdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(pkgsysconfdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(pkgsysconfdir)" || exit $$?; \ done uninstall-pkgsysconfDATA: @$(NORMAL_UNINSTALL) @list='$(pkgsysconf_DATA)'; test -n "$(pkgsysconfdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(pkgsysconfdir)'; $(am__uninstall_files_from_dir) ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-am TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-am CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-am cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(LIBRARIES) $(PROGRAMS) $(MANS) $(DATA) config.h installdirs: for dir in "$(DESTDIR)$(bindir)" "$(DESTDIR)$(pkglibexecdir)" "$(DESTDIR)$(sbindir)" "$(DESTDIR)$(man1dir)" "$(DESTDIR)$(man5dir)" "$(DESTDIR)$(man8dir)" "$(DESTDIR)$(pkgsysconfdir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-binPROGRAMS clean-generic clean-noinstLIBRARIES \ clean-noinstPROGRAMS clean-pkglibexecPROGRAMS \ clean-sbinPROGRAMS mostlyclean-am distclean: distclean-am -rm -rf ./$(DEPDIR) -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-hdr distclean-tags dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-man install-pkgsysconfDATA @$(NORMAL_INSTALL) $(MAKE) $(AM_MAKEFLAGS) install-data-hook install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-binPROGRAMS install-pkglibexecPROGRAMS \ install-sbinPROGRAMS install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-man1 install-man5 install-man8 install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -rf ./$(DEPDIR) -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-compile mostlyclean-generic pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-binPROGRAMS uninstall-man \ uninstall-pkglibexecPROGRAMS uninstall-pkgsysconfDATA \ uninstall-sbinPROGRAMS uninstall-man: uninstall-man1 uninstall-man5 uninstall-man8 .MAKE: all install-am install-data-am install-strip .PHONY: CTAGS GTAGS TAGS all all-am check check-am clean \ clean-binPROGRAMS clean-generic clean-noinstLIBRARIES \ clean-noinstPROGRAMS clean-pkglibexecPROGRAMS \ clean-sbinPROGRAMS cscopelist-am ctags ctags-am distclean \ distclean-compile distclean-generic distclean-hdr \ distclean-tags distdir dvi dvi-am html html-am info info-am \ install install-am install-binPROGRAMS install-data \ install-data-am install-data-hook install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-man1 \ install-man5 install-man8 install-pdf install-pdf-am \ install-pkglibexecPROGRAMS install-pkgsysconfDATA install-ps \ install-ps-am install-sbinPROGRAMS install-strip installcheck \ installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-compile \ mostlyclean-generic pdf pdf-am ps ps-am tags tags-am uninstall \ uninstall-am uninstall-binPROGRAMS uninstall-man \ uninstall-man1 uninstall-man5 uninstall-man8 \ uninstall-pkglibexecPROGRAMS uninstall-pkgsysconfDATA \ uninstall-sbinPROGRAMS .PRECIOUS: Makefile install-data-hook:: chmod go-rwx $(DESTDIR)$(pkgsysconfdir)/certmonger.conf mkdir -m 700 -p $(DESTDIR)@CM_STORE_CAS_DIRECTORY@ mkdir -m 700 -p $(DESTDIR)@CM_STORE_REQUESTS_DIRECTORY@ mkdir -m 700 -p $(DESTDIR)@CM_STORE_LOCAL_CA_DIRECTORY@ # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: certmonger-0.78.6/src/Makefile.am0000664000175000017500000002130212645513264013535 00000000000000AM_CFLAGS = $(TALLOC_CFLAGS) $(TEVENT_CFLAGS) $(DBUS_CFLAGS) $(KRB5_CFLAGS) \ $(XMLRPC_CFLAGS) $(IDN_CFLAGS) $(UUID_CFLAGS) $(LDAP_CFLAGS) \ $(POPT_CFLAGS) LDFLAGS = if PIE CFLAGS += -fPIC LDFLAGS += -fPIC -pie endif if NOW LDFLAGS += -Wl,-z,relro,-z,now endif man_MANS = certmonger.8 getcert.1 getcert-request.1 getcert-list.1 \ getcert-list-cas.1 getcert-start-tracking.1 getcert-stop-tracking.1 \ selfsign-getcert.1 ipa-getcert.1 certmaster-getcert.1 \ getcert-resubmit.1 certmonger-ipa-submit.8 \ certmonger-certmaster-submit.8 \ certmonger-dogtag-ipa-renew-agent-submit.8 certmonger.conf.5 \ getcert-refresh.1 getcert-refresh-ca.1 local-getcert.1 \ certmonger-local-submit.8 getcert-status.1 \ certmonger-dogtag-submit.8 certmonger-scep-submit.8 \ getcert-add-ca.1 getcert-add-scep-ca.1 getcert-modify-ca.1 \ getcert-remove-ca.1 pkgsysconfdir = $(sysconfdir)/$(PACKAGE) pkgsysconf_DATA = certmonger.conf EXTRA_PROGRAMS = install-data-hook:: chmod go-rwx $(DESTDIR)$(pkgsysconfdir)/certmonger.conf mkdir -m 700 -p $(DESTDIR)@CM_STORE_CAS_DIRECTORY@ mkdir -m 700 -p $(DESTDIR)@CM_STORE_REQUESTS_DIRECTORY@ mkdir -m 700 -p $(DESTDIR)@CM_STORE_LOCAL_CA_DIRECTORY@ noinst_LIBRARIES = libcm.a libcm-o.a libcm_a_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) libcm_a_SOURCES = \ cadata.c \ cadata.h \ casave.c \ casave.h \ canalyze.c \ canalyze.h \ certext.c \ certext.h \ certext-n.h \ certread.c \ certread.h \ certread-int.h \ certread-n.c \ certsave.c \ certsave.h \ certsave-int.h \ certsave-n.c \ cm.c \ cm.h \ csrgen.c \ csrgen.h \ csrgen-int.h \ csrgen-n.c \ env.h \ env-shared.c \ hook.c \ hook.h \ iterate.c \ iterate.h \ json.c \ json.h \ keygen.c \ keygen.h \ keygen-int.h \ keygen-n.c \ keyiread.c \ keyiread.h \ keyiread-int.h \ keyiread-n.c \ keyiread-n.h \ kudict.c \ kudict.h \ log.c \ log.h \ netlink.c \ netlink.h \ notify.c \ notify.h \ oiddict.c \ oiddict.h \ pin.c \ pin.h \ prefs.c \ prefs.h \ prefs-n.c \ prefs-n.h \ scep.h \ scepgen.c \ scepgen.h \ scepgen-int.h \ scepgen-n.c \ store-files.c \ store-gen.c \ store.h \ store-int.h \ submit.c \ submit-e.c \ submit-e.h \ submit.h \ submit-int.h \ submit-n.c \ submit-sn.c \ submit-u.c \ submit-u.h \ submit-x.c \ submit-x.h \ subproc.c \ subproc.h \ tdbus.c \ tdbus.h \ tdbush.c \ tdbush.h \ tdbusm.c \ tdbusm.h \ util.c \ util.h \ util-m.c \ util-m.h \ util-n.c \ util-n.h libcm_o_a_SOURCES = if HAVE_OPENSSL libcm_o_a_SOURCES += \ certread-o.c \ certsave-o.c \ csrgen-o.c \ keygen-o.c \ keyiread-o.c \ pkcs7.c \ pkcs7.h \ prefs-o.c \ prefs-o.h \ scep-o.c \ scep-o.h \ scepgen-o.c \ submit-so.c \ submit-o.c \ submit-o.h \ util-o.c \ util-o.h endif libcm_o_a_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) $(OPENSSL_CFLAGS) libcm_a_LIBADD = $(libcm_o_a_OBJECTS) bin_PROGRAMS = getcert pkglibexec_PROGRAMS = certmonger-session pkglibexecdir = $(libexecdir)/$(PACKAGE) getcert_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) $(UUID_CFLAGS) getcert_SOURCES = getcert.c tm.c tm.h getcert_LDADD = libcm.a $(GETCERT_LIBS) $(KRB5_LIBS) $(NSS_LIBS) $(UUID_LIBS) \ $(POPT_LIBS) $(LTLIBICONV) if WITH_IPA bin_PROGRAMS += ipa-getcert ipa_getcert_CFLAGS = $(getcert_CFLAGS) ipa_getcert_SOURCES = ipa-getcert.c tm.c tm.h ipa_getcert_LDADD = $(getcert_LDADD) endif if WITH_IPA bin_PROGRAMS += certmaster-getcert certmaster_getcert_CFLAGS = $(getcert_CFLAGS) certmaster_getcert_SOURCES = certmaster-getcert.c tm.c tm.h certmaster_getcert_LDADD = $(getcert_LDADD) endif bin_PROGRAMS += selfsign-getcert selfsign_getcert_CFLAGS = $(getcert_CFLAGS) selfsign_getcert_SOURCES = selfsign-getcert.c tm.c tm.h selfsign_getcert_LDADD = $(getcert_LDADD) bin_PROGRAMS += local-getcert local_getcert_CFLAGS = $(getcert_CFLAGS) local_getcert_SOURCES = local-getcert.c tm.c tm.h local_getcert_LDADD = $(getcert_LDADD) sbin_PROGRAMS = certmonger certmonger_getcert_CFLAGS = $(getcert_CFLAGS) certmonger_SOURCES = main.c env-system.c tm.c tm.h certmonger_LDADD = libcm.a \ $(OPENSSL_LIBS) $(CERTMONGER_LIBS) $(KRB5_LIBS) $(IDN_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(POPT_LIBS) $(LTLIBICONV) certmonger_session_SOURCES = main.c env-session.c tm.c tm.h certmonger_session_LDADD = libcm.a \ $(OPENSSL_LIBS) $(CERTMONGER_LIBS) $(KRB5_LIBS) $(IDN_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(POPT_LIBS) $(LTLIBICONV) noinst_PROGRAMS = tdbusm-check serial-check nl-check submit-x tlslayer toklist tdbusm_check_SOURCES = tdbusm-check.c tm.c tm.h tdbusm_check_LDADD = libcm.a $(CERTMONGER_LIBS) $(POPT_LIBS) serial_check_LDADD = libcm.a $(CERTMONGER_LIBS) $(LTLIBICONV) nl_check_LDADD = libcm.a $(CERTMONGER_LIBS) submit_x_CFLAGS = $(AM_CFLAGS) -DCM_SUBMIT_X_MAIN submit_x_SOURCES = submit-x.c submit-x.h submit-u.c submit-u.h log.c log.h \ tm.c tm.h submit_x_LDADD = $(XMLRPC_LIBS) $(KRB5_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(POPT_LIBS) toklist_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) toklist_LDADD = $(NSS_LIBS) $(POPT_LIBS) if WITH_CERTMASTER pkglibexec_PROGRAMS += certmaster-submit endif if WITH_IPA pkglibexec_PROGRAMS += ipa-submit endif pkglibexec_PROGRAMS += dogtag-ipa-renew-agent-submit dogtag-submit if HAVE_OPENSSL pkglibexec_PROGRAMS += local-submit pkglibexec_PROGRAMS += scep-submit endif noinst_PROGRAMS += submit-h submit-d ipa_submit_SOURCES = ipa.c srvloc.c srvloc.h store.h store-gen.c \ submit-x.c submit-x.h submit-u.c submit-u.h \ submit-e.h util.c util.h log.c log.h tm.c tm.h ipa_submit_LDADD = $(XMLRPC_LIBS) $(LDAP_LIBS) $(KRB5_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(IDN_LIBS) $(OPENSSL_LIBS) $(UUID_LIBS) \ $(RESOLV_LIBS) $(LTLIBICONV) $(POPT_LIBS) certmaster_submit_SOURCES = certmaster.c submit-x.c submit-x.h \ submit-e.h submit-u.c submit-u.h util.c util.h log.c log.h \ tm.c tm.h certmaster_submit_LDADD = $(XMLRPC_LIBS) $(KRB5_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) $(POPT_LIBS) dogtag_ipa_renew_agent_submit_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) \ $(NSS_CFLAGS) $(CURL_CFLAGS) \ -DDOGTAG_IPA_RENEW_AGENT=1 dogtag_ipa_renew_agent_submit_SOURCES = dogtag.c submit-d.c submit-d.h \ submit-h.c submit-h.h util-m.c util-m.h util-n.c util-n.h \ submit-u.c submit-u.h submit-e.h util.c util.h log.c log.h \ store.h store-gen.c tm.c tm.h prefs.c prefs.h \ dogtag-ipa.c dogtag-ipa.h env.h env-system.c dogtag_ipa_renew_agent_submit_LDADD = $(CURL_LIBS) $(XML_LIBS) $(NSS_LIBS) \ $(OPENSSL_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) dogtag_submit_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) $(NSS_CFLAGS) $(CURL_CFLAGS) dogtag_submit_SOURCES = dogtag.c submit-d.c submit-d.h \ submit-h.c submit-h.h util-m.c util-m.h util-n.c util-n.h \ submit-u.c submit-u.h submit-e.h util.c util.h log.c log.h \ store.h store-gen.c tm.c tm.h prefs.c prefs.h \ env.h env-system.c dogtag_submit_LDADD = $(CURL_LIBS) $(XML_LIBS) $(NSS_LIBS) \ $(OPENSSL_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) scep_submit_CFLAGS = $(AM_CFLAGS) $(XML_CFLAGS) $(NSS_CFLAGS) $(CURL_CFLAGS) scep_submit_SOURCES = scep.c scep.h \ submit-h.c submit-h.h util-m.c util-m.h util-o.c util-o.h \ submit-u.c submit-u.h submit-e.h util.c util.h log.c log.h \ pkcs7.c pkcs7.h store.h store-gen.c tm.c tm.h prefs.c prefs.h \ prefs-o.c prefs-o.h scep-o.c scep-o.h env.h env-system.c scep_submit_LDADD = $(CURL_LIBS) $(XML_LIBS) $(NSS_LIBS) \ $(OPENSSL_LIBS) $(TALLOC_LIBS) \ $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) $(POPT_LIBS) local_submit_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) local_submit_SOURCES = local.c env.h store.h store-gen.c submit-o.c submit-o.h \ submit-u.c submit-u.h env-session.c env-shared.c log.c \ log.h prefs.c prefs.h prefs-o.c prefs-o.h tm.c tm.h \ util.c util.h util-o.c util-o.h pin.c pin.h local_submit_LDADD = $(NSS_LIBS) $(OPENSSL_LIBS) $(TALLOC_LIBS) $(UUID_LIBS) \ $(POPT_LIBS) submit_d_CFLAGS = $(AM_CFLAGS) $(CURL_CFLAGS) $(XML_CFLAGS) -DCM_SUBMIT_D_MAIN submit_d_SOURCES = submit-d.c submit-d.h submit-h.c submit-h.h \ submit-u.c submit-u.h log.c log.h tm.c tm.h util-m.c util-m.h submit_d_LDADD = libcm-o.a $(CURL_LIBS) $(OPENSSL_LIBS) $(XML_LIBS) \ $(TALLOC_LIBS) $(GMP_LIBS) $(UUID_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) submit_h_CFLAGS = $(AM_CFLAGS) $(CURL_CFLAGS) $(XML_CFLAGS) -DCM_SUBMIT_H_MAIN submit_h_SOURCES = submit-h.c submit-h.h log.c log.h tm.c tm.h submit_h_LDADD = $(CURL_LIBS) $(XML_LIBS) $(TALLOC_LIBS) $(LTLIBICONV) \ $(POPT_LIBS) tlslayer_CFLAGS = $(AM_CFLAGS) $(NSS_CFLAGS) $(OPENSSL_SSL_CFLAGS) \ -DCM_TLSLAYER_MAIN tlslayer_SOURCES = tlslayer.c tlslayer-n.c \ tlslayer.h tlslayer-int.h if HAVE_OPENSSL tlslayer_SOURCES += tlslayer-o.c endif tlslayer_LDADD = $(NSS_LIBS) $(OPENSSL_SSL_LIBS) $(TALLOC_LIBS) $(POPT_LIBS) certmonger-0.78.6/src/certmonger.conf.in0000664000175000017500000000126112645513264015124 00000000000000# This is the certmonger configuration file. The format is a rather basic # INI-style file. See certmonger.conf(5) for notes about individual settings. # · initial whitespace is ignored # · whitespace between the key name and "=" is ignored # · whitespace after "=" is ignored # · trailing whitespace after values is ignored # · comments begin with "#" # · keys and section names are case-sensitive # · there is no end-of-line continuation # # [defaults] # notification_method = syslog # notification_destination = @CM_DEFAULT_NOTIFICATION_SYSLOG_PRIORITY@ # # [selfsign] # validity_period = @CM_DEFAULT_CERT_LIFETIME@ # # [local] # validity_period = @CM_DEFAULT_CERT_LIFETIME@ # certmonger-0.78.6/m4/0000775000175000017500000000000012645513275011316 500000000000000certmonger-0.78.6/m4/progtest.m40000644000175000017500000000555012645513266013352 00000000000000# progtest.m4 serial 4 (gettext-0.14.2) dnl Copyright (C) 1996-2003, 2005 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl dnl This file can can be used in projects which are not available under dnl the GNU General Public License or the GNU Library General Public dnl License but which still want to provide support for the GNU gettext dnl functionality. dnl Please note that the actual code of the GNU gettext library is covered dnl by the GNU Library General Public License, and the rest of the GNU dnl gettext package package is covered by the GNU General Public License. dnl They are *not* in the public domain. dnl Authors: dnl Ulrich Drepper , 1996. AC_PREREQ(2.50) # Search path for a program which passes the given test. dnl AM_PATH_PROG_WITH_TEST(VARIABLE, PROG-TO-CHECK-FOR, dnl TEST-PERFORMED-ON-FOUND_PROGRAM [, VALUE-IF-NOT-FOUND [, PATH]]) AC_DEFUN([AM_PATH_PROG_WITH_TEST], [ # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then echo "#! /bin/sh" >conf$$.sh echo "exit 0" >>conf$$.sh chmod +x conf$$.sh if (PATH="/nonexistent;."; conf$$.sh) >/dev/null 2>&1; then PATH_SEPARATOR=';' else PATH_SEPARATOR=: fi rm -f conf$$.sh fi # Find out how to test for executable files. Don't use a zero-byte file, # as systems may use methods other than mode bits to determine executability. cat >conf$$.file <<_ASEOF #! /bin/sh exit 0 _ASEOF chmod +x conf$$.file if test -x conf$$.file >/dev/null 2>&1; then ac_executable_p="test -x" else ac_executable_p="test -f" fi rm -f conf$$.file # Extract the first word of "$2", so it can be a program name with args. set dummy $2; ac_word=[$]2 AC_MSG_CHECKING([for $ac_word]) AC_CACHE_VAL(ac_cv_path_$1, [case "[$]$1" in [[\\/]]* | ?:[[\\/]]*) ac_cv_path_$1="[$]$1" # Let the user override the test with a path. ;; *) ac_save_IFS="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in ifelse([$5], , $PATH, [$5]); do IFS="$ac_save_IFS" test -z "$ac_dir" && ac_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if $ac_executable_p "$ac_dir/$ac_word$ac_exec_ext"; then echo "$as_me: trying $ac_dir/$ac_word..." >&AS_MESSAGE_LOG_FD if [$3]; then ac_cv_path_$1="$ac_dir/$ac_word$ac_exec_ext" break 2 fi fi done done IFS="$ac_save_IFS" dnl If no 4th arg is given, leave the cache variable unset, dnl so AC_PATH_PROGS will keep looking. ifelse([$4], , , [ test -z "[$]ac_cv_path_$1" && ac_cv_path_$1="$4" ])dnl ;; esac])dnl $1="$ac_cv_path_$1" if test ifelse([$4], , [-n "[$]$1"], ["[$]$1" != "$4"]); then AC_MSG_RESULT([$]$1) else AC_MSG_RESULT(no) fi AC_SUBST($1)dnl ]) certmonger-0.78.6/m4/po.m40000644000175000017500000004460612645513266012126 00000000000000# po.m4 serial 15 (gettext-0.17) dnl Copyright (C) 1995-2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl dnl This file can can be used in projects which are not available under dnl the GNU General Public License or the GNU Library General Public dnl License but which still want to provide support for the GNU gettext dnl functionality. dnl Please note that the actual code of the GNU gettext library is covered dnl by the GNU Library General Public License, and the rest of the GNU dnl gettext package package is covered by the GNU General Public License. dnl They are *not* in the public domain. dnl Authors: dnl Ulrich Drepper , 1995-2000. dnl Bruno Haible , 2000-2003. AC_PREREQ(2.50) dnl Checks for all prerequisites of the po subdirectory. AC_DEFUN([AM_PO_SUBDIRS], [ AC_REQUIRE([AC_PROG_MAKE_SET])dnl AC_REQUIRE([AC_PROG_INSTALL])dnl AC_REQUIRE([AM_PROG_MKDIR_P])dnl defined by automake AC_REQUIRE([AM_NLS])dnl dnl Release version of the gettext macros. This is used to ensure that dnl the gettext macros and po/Makefile.in.in are in sync. AC_SUBST([GETTEXT_MACRO_VERSION], [0.17]) dnl Perform the following tests also if --disable-nls has been given, dnl because they are needed for "make dist" to work. dnl Search for GNU msgfmt in the PATH. dnl The first test excludes Solaris msgfmt and early GNU msgfmt versions. dnl The second test excludes FreeBSD msgfmt. AM_PATH_PROG_WITH_TEST(MSGFMT, msgfmt, [$ac_dir/$ac_word --statistics /dev/null >&]AS_MESSAGE_LOG_FD[ 2>&1 && (if $ac_dir/$ac_word --statistics /dev/null 2>&1 >/dev/null | grep usage >/dev/null; then exit 1; else exit 0; fi)], :) AC_PATH_PROG(GMSGFMT, gmsgfmt, $MSGFMT) dnl Test whether it is GNU msgfmt >= 0.15. changequote(,)dnl case `$MSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) MSGFMT_015=: ;; *) MSGFMT_015=$MSGFMT ;; esac changequote([,])dnl AC_SUBST([MSGFMT_015]) changequote(,)dnl case `$GMSGFMT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) GMSGFMT_015=: ;; *) GMSGFMT_015=$GMSGFMT ;; esac changequote([,])dnl AC_SUBST([GMSGFMT_015]) dnl Search for GNU xgettext 0.12 or newer in the PATH. dnl The first test excludes Solaris xgettext and early GNU xgettext versions. dnl The second test excludes FreeBSD xgettext. AM_PATH_PROG_WITH_TEST(XGETTEXT, xgettext, [$ac_dir/$ac_word --omit-header --copyright-holder= --msgid-bugs-address= /dev/null >&]AS_MESSAGE_LOG_FD[ 2>&1 && (if $ac_dir/$ac_word --omit-header --copyright-holder= --msgid-bugs-address= /dev/null 2>&1 >/dev/null | grep usage >/dev/null; then exit 1; else exit 0; fi)], :) dnl Remove leftover from FreeBSD xgettext call. rm -f messages.po dnl Test whether it is GNU xgettext >= 0.15. changequote(,)dnl case `$XGETTEXT --version | sed 1q | sed -e 's,^[^0-9]*,,'` in '' | 0.[0-9] | 0.[0-9].* | 0.1[0-4] | 0.1[0-4].*) XGETTEXT_015=: ;; *) XGETTEXT_015=$XGETTEXT ;; esac changequote([,])dnl AC_SUBST([XGETTEXT_015]) dnl Search for GNU msgmerge 0.11 or newer in the PATH. AM_PATH_PROG_WITH_TEST(MSGMERGE, msgmerge, [$ac_dir/$ac_word --update -q /dev/null /dev/null >&]AS_MESSAGE_LOG_FD[ 2>&1], :) dnl Installation directories. dnl Autoconf >= 2.60 defines localedir. For older versions of autoconf, we dnl have to define it here, so that it can be used in po/Makefile. test -n "$localedir" || localedir='${datadir}/locale' AC_SUBST([localedir]) dnl Support for AM_XGETTEXT_OPTION. test -n "${XGETTEXT_EXTRA_OPTIONS+set}" || XGETTEXT_EXTRA_OPTIONS= AC_SUBST([XGETTEXT_EXTRA_OPTIONS]) AC_CONFIG_COMMANDS([po-directories], [[ for ac_file in $CONFIG_FILES; do # Support "outfile[:infile[:infile...]]" case "$ac_file" in *:*) ac_file=`echo "$ac_file"|sed 's%:.*%%'` ;; esac # PO directories have a Makefile.in generated from Makefile.in.in. case "$ac_file" in */Makefile.in) # Adjust a relative srcdir. ac_dir=`echo "$ac_file"|sed 's%/[^/][^/]*$%%'` ac_dir_suffix="/`echo "$ac_dir"|sed 's%^\./%%'`" ac_dots=`echo "$ac_dir_suffix"|sed 's%/[^/]*%../%g'` # In autoconf-2.13 it is called $ac_given_srcdir. # In autoconf-2.50 it is called $srcdir. test -n "$ac_given_srcdir" || ac_given_srcdir="$srcdir" case "$ac_given_srcdir" in .) top_srcdir=`echo $ac_dots|sed 's%/$%%'` ;; /*) top_srcdir="$ac_given_srcdir" ;; *) top_srcdir="$ac_dots$ac_given_srcdir" ;; esac # Treat a directory as a PO directory if and only if it has a # POTFILES.in file. This allows packages to have multiple PO # directories under different names or in different locations. if test -f "$ac_given_srcdir/$ac_dir/POTFILES.in"; then rm -f "$ac_dir/POTFILES" test -n "$as_me" && echo "$as_me: creating $ac_dir/POTFILES" || echo "creating $ac_dir/POTFILES" cat "$ac_given_srcdir/$ac_dir/POTFILES.in" | sed -e "/^#/d" -e "/^[ ]*\$/d" -e "s,.*, $top_srcdir/& \\\\," | sed -e "\$s/\(.*\) \\\\/\1/" > "$ac_dir/POTFILES" POMAKEFILEDEPS="POTFILES.in" # ALL_LINGUAS, POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES depend # on $ac_dir but don't depend on user-specified configuration # parameters. if test -f "$ac_given_srcdir/$ac_dir/LINGUAS"; then # The LINGUAS file contains the set of available languages. if test -n "$OBSOLETE_ALL_LINGUAS"; then test -n "$as_me" && echo "$as_me: setting ALL_LINGUAS in configure.in is obsolete" || echo "setting ALL_LINGUAS in configure.in is obsolete" fi ALL_LINGUAS_=`sed -e "/^#/d" -e "s/#.*//" "$ac_given_srcdir/$ac_dir/LINGUAS"` # Hide the ALL_LINGUAS assigment from automake < 1.5. eval 'ALL_LINGUAS''=$ALL_LINGUAS_' POMAKEFILEDEPS="$POMAKEFILEDEPS LINGUAS" else # The set of available languages was given in configure.in. # Hide the ALL_LINGUAS assigment from automake < 1.5. eval 'ALL_LINGUAS''=$OBSOLETE_ALL_LINGUAS' fi # Compute POFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).po) # Compute UPDATEPOFILES # as $(foreach lang, $(ALL_LINGUAS), $(lang).po-update) # Compute DUMMYPOFILES # as $(foreach lang, $(ALL_LINGUAS), $(lang).nop) # Compute GMOFILES # as $(foreach lang, $(ALL_LINGUAS), $(srcdir)/$(lang).gmo) case "$ac_given_srcdir" in .) srcdirpre= ;; *) srcdirpre='$(srcdir)/' ;; esac POFILES= UPDATEPOFILES= DUMMYPOFILES= GMOFILES= for lang in $ALL_LINGUAS; do POFILES="$POFILES $srcdirpre$lang.po" UPDATEPOFILES="$UPDATEPOFILES $lang.po-update" DUMMYPOFILES="$DUMMYPOFILES $lang.nop" GMOFILES="$GMOFILES $srcdirpre$lang.gmo" done # CATALOGS depends on both $ac_dir and the user's LINGUAS # environment variable. INST_LINGUAS= if test -n "$ALL_LINGUAS"; then for presentlang in $ALL_LINGUAS; do useit=no if test "%UNSET%" != "$LINGUAS"; then desiredlanguages="$LINGUAS" else desiredlanguages="$ALL_LINGUAS" fi for desiredlang in $desiredlanguages; do # Use the presentlang catalog if desiredlang is # a. equal to presentlang, or # b. a variant of presentlang (because in this case, # presentlang can be used as a fallback for messages # which are not translated in the desiredlang catalog). case "$desiredlang" in "$presentlang"*) useit=yes;; esac done if test $useit = yes; then INST_LINGUAS="$INST_LINGUAS $presentlang" fi done fi CATALOGS= if test -n "$INST_LINGUAS"; then for lang in $INST_LINGUAS; do CATALOGS="$CATALOGS $lang.gmo" done fi test -n "$as_me" && echo "$as_me: creating $ac_dir/Makefile" || echo "creating $ac_dir/Makefile" sed -e "/^POTFILES =/r $ac_dir/POTFILES" -e "/^# Makevars/r $ac_given_srcdir/$ac_dir/Makevars" -e "s|@POFILES@|$POFILES|g" -e "s|@UPDATEPOFILES@|$UPDATEPOFILES|g" -e "s|@DUMMYPOFILES@|$DUMMYPOFILES|g" -e "s|@GMOFILES@|$GMOFILES|g" -e "s|@CATALOGS@|$CATALOGS|g" -e "s|@POMAKEFILEDEPS@|$POMAKEFILEDEPS|g" "$ac_dir/Makefile.in" > "$ac_dir/Makefile" for f in "$ac_given_srcdir/$ac_dir"/Rules-*; do if test -f "$f"; then case "$f" in *.orig | *.bak | *~) ;; *) cat "$f" >> "$ac_dir/Makefile" ;; esac fi done fi ;; esac done]], [# Capture the value of obsolete ALL_LINGUAS because we need it to compute # POFILES, UPDATEPOFILES, DUMMYPOFILES, GMOFILES, CATALOGS. But hide it # from automake < 1.5. eval 'OBSOLETE_ALL_LINGUAS''="$ALL_LINGUAS"' # Capture the value of LINGUAS because we need it to compute CATALOGS. LINGUAS="${LINGUAS-%UNSET%}" ]) ]) dnl Postprocesses a Makefile in a directory containing PO files. AC_DEFUN([AM_POSTPROCESS_PO_MAKEFILE], [ # When this code is run, in config.status, two variables have already been # set: # - OBSOLETE_ALL_LINGUAS is the value of LINGUAS set in configure.in, # - LINGUAS is the value of the environment variable LINGUAS at configure # time. changequote(,)dnl # Adjust a relative srcdir. ac_dir=`echo "$ac_file"|sed 's%/[^/][^/]*$%%'` ac_dir_suffix="/`echo "$ac_dir"|sed 's%^\./%%'`" ac_dots=`echo "$ac_dir_suffix"|sed 's%/[^/]*%../%g'` # In autoconf-2.13 it is called $ac_given_srcdir. # In autoconf-2.50 it is called $srcdir. test -n "$ac_given_srcdir" || ac_given_srcdir="$srcdir" case "$ac_given_srcdir" in .) top_srcdir=`echo $ac_dots|sed 's%/$%%'` ;; /*) top_srcdir="$ac_given_srcdir" ;; *) top_srcdir="$ac_dots$ac_given_srcdir" ;; esac # Find a way to echo strings without interpreting backslash. if test "X`(echo '\t') 2>/dev/null`" = 'X\t'; then gt_echo='echo' else if test "X`(printf '%s\n' '\t') 2>/dev/null`" = 'X\t'; then gt_echo='printf %s\n' else echo_func () { cat < "$ac_file.tmp" if grep -l '@TCLCATALOGS@' "$ac_file" > /dev/null; then # Add dependencies that cannot be formulated as a simple suffix rule. for lang in $ALL_LINGUAS; do frobbedlang=`echo $lang | sed -e 's/\..*$//' -e 'y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/'` cat >> "$ac_file.tmp" < /dev/null; then # Add dependencies that cannot be formulated as a simple suffix rule. for lang in $ALL_LINGUAS; do frobbedlang=`echo $lang | sed -e 's/_/-/g' -e 's/^sr-CS/sr-SP/' -e 's/@latin$/-Latn/' -e 's/@cyrillic$/-Cyrl/' -e 's/^sr-SP$/sr-SP-Latn/' -e 's/^uz-UZ$/uz-UZ-Latn/'` cat >> "$ac_file.tmp" <> "$ac_file.tmp" <, 1995-2000. dnl Bruno Haible , 2000-2003. AC_PREREQ(2.50) AC_DEFUN([AM_NLS], [ AC_MSG_CHECKING([whether NLS is requested]) dnl Default is enabled NLS AC_ARG_ENABLE(nls, [ --disable-nls do not use Native Language Support], USE_NLS=$enableval, USE_NLS=yes) AC_MSG_RESULT($USE_NLS) AC_SUBST(USE_NLS) ]) certmonger-0.78.6/m4/lib-prefix.m40000644000175000017500000001503612645513266013544 00000000000000# lib-prefix.m4 serial 5 (gettext-0.15) dnl Copyright (C) 2001-2005 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. dnl AC_LIB_ARG_WITH is synonymous to AC_ARG_WITH in autoconf-2.13, and dnl similar to AC_ARG_WITH in autoconf 2.52...2.57 except that is doesn't dnl require excessive bracketing. ifdef([AC_HELP_STRING], [AC_DEFUN([AC_LIB_ARG_WITH], [AC_ARG_WITH([$1],[[$2]],[$3],[$4])])], [AC_DEFUN([AC_][LIB_ARG_WITH], [AC_ARG_WITH([$1],[$2],[$3],[$4])])]) dnl AC_LIB_PREFIX adds to the CPPFLAGS and LDFLAGS the flags that are needed dnl to access previously installed libraries. The basic assumption is that dnl a user will want packages to use other packages he previously installed dnl with the same --prefix option. dnl This macro is not needed if only AC_LIB_LINKFLAGS is used to locate dnl libraries, but is otherwise very convenient. AC_DEFUN([AC_LIB_PREFIX], [ AC_BEFORE([$0], [AC_LIB_LINKFLAGS]) AC_REQUIRE([AC_PROG_CC]) AC_REQUIRE([AC_CANONICAL_HOST]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) AC_LIB_ARG_WITH([lib-prefix], [ --with-lib-prefix[=DIR] search for libraries in DIR/include and DIR/lib --without-lib-prefix don't search for libraries in includedir and libdir], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" fi fi ]) if test $use_additional = yes; then dnl Potentially add $additional_includedir to $CPPFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's already present in $CPPFLAGS, dnl 3. if it's /usr/local/include and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= for x in $CPPFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $CPPFLAGS. CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }-I$additional_includedir" fi fi fi fi dnl Potentially add $additional_libdir to $LDFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's already present in $LDFLAGS, dnl 3. if it's /usr/local/lib and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_libdir" != "X/usr/$acl_libdirstem"; then haveit= for x in $LDFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem"; then if test -n "$GCC"; then case $host_os in linux*) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LDFLAGS. LDFLAGS="${LDFLAGS}${LDFLAGS:+ }-L$additional_libdir" fi fi fi fi fi ]) dnl AC_LIB_PREPARE_PREFIX creates variables acl_final_prefix, dnl acl_final_exec_prefix, containing the values to which $prefix and dnl $exec_prefix will expand at the end of the configure script. AC_DEFUN([AC_LIB_PREPARE_PREFIX], [ dnl Unfortunately, prefix and exec_prefix get only finally determined dnl at the end of configure. if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" ]) dnl AC_LIB_WITH_FINAL_PREFIX([statement]) evaluates statement, with the dnl variables prefix and exec_prefix bound to the values they will have dnl at the end of the configure script. AC_DEFUN([AC_LIB_WITH_FINAL_PREFIX], [ acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" $1 exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" ]) dnl AC_LIB_PREPARE_MULTILIB creates a variable acl_libdirstem, containing dnl the basename of the libdir, either "lib" or "lib64". AC_DEFUN([AC_LIB_PREPARE_MULTILIB], [ dnl There is no formal standard regarding lib and lib64. The current dnl practice is that on a system supporting 32-bit and 64-bit instruction dnl sets or ABIs, 64-bit libraries go under $prefix/lib64 and 32-bit dnl libraries go under $prefix/lib. We determine the compiler's default dnl mode by looking at the compiler's library search path. If at least dnl of its elements ends in /lib64 or points to a directory whose absolute dnl pathname ends in /lib64, we assume a 64-bit ABI. Otherwise we use the dnl default, namely "lib". acl_libdirstem=lib searchpath=`(LC_ALL=C $CC -print-search-dirs) 2>/dev/null | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib64/ | */lib64 ) acl_libdirstem=lib64 ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib64 ) acl_libdirstem=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" fi ]) certmonger-0.78.6/m4/lib-link.m40000644000175000017500000007205512645513266013210 00000000000000# lib-link.m4 serial 13 (gettext-0.17) dnl Copyright (C) 2001-2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. AC_PREREQ(2.54) dnl AC_LIB_LINKFLAGS(name [, dependencies]) searches for libname and dnl the libraries corresponding to explicit and implicit dependencies. dnl Sets and AC_SUBSTs the LIB${NAME} and LTLIB${NAME} variables and dnl augments the CPPFLAGS variable. dnl Sets and AC_SUBSTs the LIB${NAME}_PREFIX variable to nonempty if libname dnl was found in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_LINKFLAGS], [ AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) define([Name],[translit([$1],[./-], [___])]) define([NAME],[translit([$1],[abcdefghijklmnopqrstuvwxyz./-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ___])]) AC_CACHE_CHECK([how to link with lib[]$1], [ac_cv_lib[]Name[]_libs], [ AC_LIB_LINKFLAGS_BODY([$1], [$2]) ac_cv_lib[]Name[]_libs="$LIB[]NAME" ac_cv_lib[]Name[]_ltlibs="$LTLIB[]NAME" ac_cv_lib[]Name[]_cppflags="$INC[]NAME" ac_cv_lib[]Name[]_prefix="$LIB[]NAME[]_PREFIX" ]) LIB[]NAME="$ac_cv_lib[]Name[]_libs" LTLIB[]NAME="$ac_cv_lib[]Name[]_ltlibs" INC[]NAME="$ac_cv_lib[]Name[]_cppflags" LIB[]NAME[]_PREFIX="$ac_cv_lib[]Name[]_prefix" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INC]NAME) AC_SUBST([LIB]NAME) AC_SUBST([LTLIB]NAME) AC_SUBST([LIB]NAME[_PREFIX]) dnl Also set HAVE_LIB[]NAME so that AC_LIB_HAVE_LINKFLAGS can reuse the dnl results of this search when this library appears as a dependency. HAVE_LIB[]NAME=yes undefine([Name]) undefine([NAME]) ]) dnl AC_LIB_HAVE_LINKFLAGS(name, dependencies, includes, testcode) dnl searches for libname and the libraries corresponding to explicit and dnl implicit dependencies, together with the specified include files and dnl the ability to compile and link the specified testcode. If found, it dnl sets and AC_SUBSTs HAVE_LIB${NAME}=yes and the LIB${NAME} and dnl LTLIB${NAME} variables and augments the CPPFLAGS variable, and dnl #defines HAVE_LIB${NAME} to 1. Otherwise, it sets and AC_SUBSTs dnl HAVE_LIB${NAME}=no and LIB${NAME} and LTLIB${NAME} to empty. dnl Sets and AC_SUBSTs the LIB${NAME}_PREFIX variable to nonempty if libname dnl was found in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_HAVE_LINKFLAGS], [ AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) define([Name],[translit([$1],[./-], [___])]) define([NAME],[translit([$1],[abcdefghijklmnopqrstuvwxyz./-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ___])]) dnl Search for lib[]Name and define LIB[]NAME, LTLIB[]NAME and INC[]NAME dnl accordingly. AC_LIB_LINKFLAGS_BODY([$1], [$2]) dnl Add $INC[]NAME to CPPFLAGS before performing the following checks, dnl because if the user has installed lib[]Name and not disabled its use dnl via --without-lib[]Name-prefix, he wants to use it. ac_save_CPPFLAGS="$CPPFLAGS" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INC]NAME) AC_CACHE_CHECK([for lib[]$1], [ac_cv_lib[]Name], [ ac_save_LIBS="$LIBS" LIBS="$LIBS $LIB[]NAME" AC_TRY_LINK([$3], [$4], [ac_cv_lib[]Name=yes], [ac_cv_lib[]Name=no]) LIBS="$ac_save_LIBS" ]) if test "$ac_cv_lib[]Name" = yes; then HAVE_LIB[]NAME=yes AC_DEFINE([HAVE_LIB]NAME, 1, [Define if you have the $1 library.]) AC_MSG_CHECKING([how to link with lib[]$1]) AC_MSG_RESULT([$LIB[]NAME]) else HAVE_LIB[]NAME=no dnl If $LIB[]NAME didn't lead to a usable library, we don't need dnl $INC[]NAME either. CPPFLAGS="$ac_save_CPPFLAGS" LIB[]NAME= LTLIB[]NAME= LIB[]NAME[]_PREFIX= fi AC_SUBST([HAVE_LIB]NAME) AC_SUBST([LIB]NAME) AC_SUBST([LTLIB]NAME) AC_SUBST([LIB]NAME[_PREFIX]) undefine([Name]) undefine([NAME]) ]) dnl Determine the platform dependent parameters needed to use rpath: dnl acl_libext, dnl acl_shlibext, dnl acl_hardcode_libdir_flag_spec, dnl acl_hardcode_libdir_separator, dnl acl_hardcode_direct, dnl acl_hardcode_minus_L. AC_DEFUN([AC_LIB_RPATH], [ dnl Tell automake >= 1.10 to complain if config.rpath is missing. m4_ifdef([AC_REQUIRE_AUX_FILE], [AC_REQUIRE_AUX_FILE([config.rpath])]) AC_REQUIRE([AC_PROG_CC]) dnl we use $CC, $GCC, $LDFLAGS AC_REQUIRE([AC_LIB_PROG_LD]) dnl we use $LD, $with_gnu_ld AC_REQUIRE([AC_CANONICAL_HOST]) dnl we use $host AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT]) dnl we use $ac_aux_dir AC_CACHE_CHECK([for shared library run path origin], acl_cv_rpath, [ CC="$CC" GCC="$GCC" LDFLAGS="$LDFLAGS" LD="$LD" with_gnu_ld="$with_gnu_ld" \ ${CONFIG_SHELL-/bin/sh} "$ac_aux_dir/config.rpath" "$host" > conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done ]) wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" dnl Determine whether the user wants rpath handling at all. AC_ARG_ENABLE(rpath, [ --disable-rpath do not hardcode runtime library paths], :, enable_rpath=yes) ]) dnl AC_LIB_LINKFLAGS_BODY(name [, dependencies]) searches for libname and dnl the libraries corresponding to explicit and implicit dependencies. dnl Sets the LIB${NAME}, LTLIB${NAME} and INC${NAME} variables. dnl Also, sets the LIB${NAME}_PREFIX variable to nonempty if libname was found dnl in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_LINKFLAGS_BODY], [ AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) define([NAME],[translit([$1],[abcdefghijklmnopqrstuvwxyz./-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ___])]) dnl Autoconf >= 2.61 supports dots in --with options. define([N_A_M_E],[m4_if(m4_version_compare(m4_defn([m4_PACKAGE_VERSION]),[2.61]),[-1],[translit([$1],[.],[_])],[$1])]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) AC_LIB_ARG_WITH([lib]N_A_M_E[-prefix], [ --with-lib]N_A_M_E[-prefix[=DIR] search for lib$1 in DIR/include and DIR/lib --without-lib]N_A_M_E[-prefix don't search for lib$1 in includedir and libdir], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" fi fi ]) dnl Search the library and its dependencies in $additional_libdir and dnl $LDFLAGS. Using breadth-first-seach. LIB[]NAME= LTLIB[]NAME= INC[]NAME= LIB[]NAME[]_PREFIX= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='$1 $2' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" dnl See if it was already located by an earlier AC_LIB_LINKFLAGS dnl or AC_LIB_HAVE_LINKFLAGS call. uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./-|ABCDEFGHIJKLMNOPQRSTUVWXYZ___|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$value" else dnl An earlier call to AC_LIB_HAVE_LINKFLAGS has determined dnl that this library doesn't exist. So just drop it. : fi else dnl Search the library lib$name in $additional_libdir and $LDFLAGS dnl and the already constructed $LIBNAME/$LTLIBNAME. found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" dnl The same code as in the loop below: dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then dnl Found the library. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then dnl Linking with a shared library. We attempt to hardcode its dnl directory into the executable's runpath, unless it's the dnl standard /usr/lib. if test "$enable_rpath" = no || test "X$found_dir" = "X/usr/$acl_libdirstem"; then dnl No hardcoding is needed. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl Use an explicit option to hardcode DIR into the resulting dnl binary. dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi dnl The hardcoding into $LIBNAME is system dependent. if test "$acl_hardcode_direct" = yes; then dnl Using DIR/libNAME.so during linking hardcodes DIR into the dnl resulting binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode DIR into the resulting dnl binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else dnl Rely on "-L$found_dir". dnl But don't add it if it's already contained in the LDFLAGS dnl or the already constructed $LIBNAME haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl We cannot use $acl_hardcode_runpath_var and LD_RUN_PATH dnl here, because this doesn't fit in flags passed to the dnl compiler. So give up. No hardcoding. This affects only dnl very old systems. dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then dnl Linking with a static library. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_a" else dnl We shouldn't come here, but anyway it's good to have a dnl fallback. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir -l$name" fi fi dnl Assume the include files are nearby. additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` LIB[]NAME[]_PREFIX="$basedir" additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then dnl Potentially add $additional_includedir to $INCNAME. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's /usr/local/include and we are using GCC on Linux, dnl 3. if it's already present in $CPPFLAGS or the already dnl constructed $INCNAME, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INC[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $INCNAME. INC[]NAME="${INC[]NAME}${INC[]NAME:+ }-I$additional_includedir" fi fi fi fi fi dnl Look for dependencies. if test -n "$found_la"; then dnl Read the .la file. It defines the variables dnl dlname, library_names, old_library, dependency_libs, current, dnl age, revision, installed, dlopen, dlpreopen, libdir. save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" dnl We use only dependency_libs. for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` dnl Potentially add $additional_libdir to $LIBNAME and $LTLIBNAME. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's /usr/local/lib and we are using GCC on Linux, dnl 3. if it's already present in $LDFLAGS or the already dnl constructed $LIBNAME, dnl 4. if it doesn't exist as a directory. if test "X$additional_libdir" != "X/usr/$acl_libdirstem"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LIBNAME. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LTLIBNAME. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) dnl Handle this in the next round. names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) dnl Handle this in the next round. Throw away the .la's dnl directory; it is already contained in a preceding -L dnl option. names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) dnl Most likely an immediate library name. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$dep" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$dep" ;; esac done fi else dnl Didn't find the library; assume it is in the system directories dnl known to the linker and runtime loader. (All the system dnl directories known to the linker should also be known to the dnl runtime loader, otherwise the system is severely misconfigured.) LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user must dnl pass all path elements in one option. We can arrange that for a dnl single library, but not when more than one $LIBNAMEs are used. alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done dnl Note: acl_hardcode_libdir_flag_spec uses $libdir and $wl. acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" else dnl The -rpath options are cumulative. for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then dnl When using libtool, the option that works for both libraries and dnl executables is -R. The -R options are cumulative. for found_dir in $ltrpathdirs; do LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-R$found_dir" done fi ]) dnl AC_LIB_APPENDTOVAR(VAR, CONTENTS) appends the elements of CONTENTS to VAR, dnl unless already present in VAR. dnl Works only for CPPFLAGS, not for LIB* variables because that sometimes dnl contains two or three consecutive elements that belong together. AC_DEFUN([AC_LIB_APPENDTOVAR], [ for element in [$2]; do haveit= for x in $[$1]; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then [$1]="${[$1]}${[$1]:+ }$element" fi done ]) dnl For those cases where a variable contains several -L and -l options dnl referring to unknown libraries and directories, this macro determines the dnl necessary additional linker options for the runtime path. dnl AC_LIB_LINKFLAGS_FROM_LIBS([LDADDVAR], [LIBSVALUE], [USE-LIBTOOL]) dnl sets LDADDVAR to linker options needed together with LIBSVALUE. dnl If USE-LIBTOOL evaluates to non-empty, linking with libtool is assumed, dnl otherwise linking without libtool is assumed. AC_DEFUN([AC_LIB_LINKFLAGS_FROM_LIBS], [ AC_REQUIRE([AC_LIB_RPATH]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) $1= if test "$enable_rpath" != no; then if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode directories into the resulting dnl binary. rpathdirs= next= for opt in $2; do if test -n "$next"; then dir="$next" dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem"; then rpathdirs="$rpathdirs $dir" fi next= else case $opt in -L) next=yes ;; -L*) dir=`echo "X$opt" | sed -e 's,^X-L,,'` dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem"; then rpathdirs="$rpathdirs $dir" fi next= ;; *) next= ;; esac fi done if test "X$rpathdirs" != "X"; then if test -n ""$3""; then dnl libtool is used for linking. Use -R options. for dir in $rpathdirs; do $1="${$1}${$1:+ }-R$dir" done else dnl The linker is used for linking directly. if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user dnl must pass all path elements in one option. alldirs= for dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="$flag" else dnl The -rpath options are cumulative. for dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="${$1}${$1:+ }$flag" done fi fi fi fi fi AC_SUBST([$1]) ]) certmonger-0.78.6/m4/lib-ld.m40000644000175000017500000000653112645513266012646 00000000000000# lib-ld.m4 serial 3 (gettext-0.13) dnl Copyright (C) 1996-2003 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl Subroutines of libtool.m4, dnl with replacements s/AC_/AC_LIB/ and s/lt_cv/acl_cv/ to avoid collision dnl with libtool.m4. dnl From libtool-1.4. Sets the variable with_gnu_ld to yes or no. AC_DEFUN([AC_LIB_PROG_LD_GNU], [AC_CACHE_CHECK([if the linker ($LD) is GNU ld], acl_cv_prog_gnu_ld, [# I'd rather use --version here, but apparently some GNU ld's only accept -v. case `$LD -v 2>&1 conf$$.sh echo "exit 0" >>conf$$.sh chmod +x conf$$.sh if (PATH="/nonexistent;."; conf$$.sh) >/dev/null 2>&1; then PATH_SEPARATOR=';' else PATH_SEPARATOR=: fi rm -f conf$$.sh fi ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. AC_MSG_CHECKING([for ld used by GCC]) case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [[\\/]* | [A-Za-z]:[\\/]*)] [re_direlt='/[^/][^/]*/\.\./'] # Canonicalize the path of ld ac_prog=`echo $ac_prog| sed 's%\\\\%/%g'` while echo $ac_prog | grep "$re_direlt" > /dev/null 2>&1; do ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then AC_MSG_CHECKING([for GNU ld]) else AC_MSG_CHECKING([for non-GNU ld]) fi AC_CACHE_VAL(acl_cv_path_LD, [if test -z "$LD"; then IFS="${IFS= }"; ac_save_ifs="$IFS"; IFS="${IFS}${PATH_SEPARATOR-:}" for ac_dir in $PATH; do test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some GNU ld's only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 < /dev/null` in *GNU* | *'with BFD'*) test "$with_gnu_ld" != no && break ;; *) test "$with_gnu_ld" != yes && break ;; esac fi done IFS="$ac_save_ifs" else acl_cv_path_LD="$LD" # Let the user override the test with a path. fi]) LD="$acl_cv_path_LD" if test -n "$LD"; then AC_MSG_RESULT($LD) else AC_MSG_RESULT(no) fi test -z "$LD" && AC_MSG_ERROR([no acceptable ld found in \$PATH]) AC_LIB_PROG_LD_GNU ]) certmonger-0.78.6/m4/intlmacosx.m40000644000175000017500000000456512645513266013671 00000000000000# intlmacosx.m4 serial 1 (gettext-0.17) dnl Copyright (C) 2004-2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl dnl This file can can be used in projects which are not available under dnl the GNU General Public License or the GNU Library General Public dnl License but which still want to provide support for the GNU gettext dnl functionality. dnl Please note that the actual code of the GNU gettext library is covered dnl by the GNU Library General Public License, and the rest of the GNU dnl gettext package package is covered by the GNU General Public License. dnl They are *not* in the public domain. dnl Checks for special options needed on MacOS X. dnl Defines INTL_MACOSX_LIBS. AC_DEFUN([gt_INTL_MACOSX], [ dnl Check for API introduced in MacOS X 10.2. AC_CACHE_CHECK([for CFPreferencesCopyAppValue], gt_cv_func_CFPreferencesCopyAppValue, [gt_save_LIBS="$LIBS" LIBS="$LIBS -Wl,-framework -Wl,CoreFoundation" AC_TRY_LINK([#include ], [CFPreferencesCopyAppValue(NULL, NULL)], [gt_cv_func_CFPreferencesCopyAppValue=yes], [gt_cv_func_CFPreferencesCopyAppValue=no]) LIBS="$gt_save_LIBS"]) if test $gt_cv_func_CFPreferencesCopyAppValue = yes; then AC_DEFINE([HAVE_CFPREFERENCESCOPYAPPVALUE], 1, [Define to 1 if you have the MacOS X function CFPreferencesCopyAppValue in the CoreFoundation framework.]) fi dnl Check for API introduced in MacOS X 10.3. AC_CACHE_CHECK([for CFLocaleCopyCurrent], gt_cv_func_CFLocaleCopyCurrent, [gt_save_LIBS="$LIBS" LIBS="$LIBS -Wl,-framework -Wl,CoreFoundation" AC_TRY_LINK([#include ], [CFLocaleCopyCurrent();], [gt_cv_func_CFLocaleCopyCurrent=yes], [gt_cv_func_CFLocaleCopyCurrent=no]) LIBS="$gt_save_LIBS"]) if test $gt_cv_func_CFLocaleCopyCurrent = yes; then AC_DEFINE([HAVE_CFLOCALECOPYCURRENT], 1, [Define to 1 if you have the MacOS X function CFLocaleCopyCurrent in the CoreFoundation framework.]) fi INTL_MACOSX_LIBS= if test $gt_cv_func_CFPreferencesCopyAppValue = yes || test $gt_cv_func_CFLocaleCopyCurrent = yes; then INTL_MACOSX_LIBS="-Wl,-framework -Wl,CoreFoundation" fi AC_SUBST([INTL_MACOSX_LIBS]) ]) certmonger-0.78.6/m4/iconv.m40000644000175000017500000001375312645513266012625 00000000000000# iconv.m4 serial AM6 (gettext-0.17) dnl Copyright (C) 2000-2002, 2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. AC_DEFUN([AM_ICONV_LINKFLAGS_BODY], [ dnl Prerequisites of AC_LIB_LINKFLAGS_BODY. AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_LIB_LINKFLAGS_BODY([iconv]) ]) AC_DEFUN([AM_ICONV_LINK], [ dnl Some systems have iconv in libc, some have it in libiconv (OSF/1 and dnl those with the standalone portable GNU libiconv installed). AC_REQUIRE([AC_CANONICAL_HOST]) dnl for cross-compiles dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_REQUIRE([AM_ICONV_LINKFLAGS_BODY]) dnl Add $INCICONV to CPPFLAGS before performing the following checks, dnl because if the user has installed libiconv and not disabled its use dnl via --without-libiconv-prefix, he wants to use it. The first dnl AC_TRY_LINK will then fail, the second AC_TRY_LINK will succeed. am_save_CPPFLAGS="$CPPFLAGS" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INCICONV]) AC_CACHE_CHECK([for iconv], am_cv_func_iconv, [ am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no AC_TRY_LINK([#include #include ], [iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);], am_cv_func_iconv=yes) if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" AC_TRY_LINK([#include #include ], [iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);], am_cv_lib_iconv=yes am_cv_func_iconv=yes) LIBS="$am_save_LIBS" fi ]) if test "$am_cv_func_iconv" = yes; then AC_CACHE_CHECK([for working iconv], am_cv_func_iconv_works, [ dnl This tests against bugs in AIX 5.1 and HP-UX 11.11. am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi AC_TRY_RUN([ #include #include int main () { /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static const char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) return 1; } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) return 1; } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ if (/* Try standardized names. */ iconv_open ("UTF-8", "EUC-JP") == (iconv_t)(-1) /* Try IRIX, OSF/1 names. */ && iconv_open ("UTF-8", "eucJP") == (iconv_t)(-1) /* Try AIX names. */ && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) return 1; return 0; }], [am_cv_func_iconv_works=yes], [am_cv_func_iconv_works=no], [case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac]) LIBS="$am_save_LIBS" ]) case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then AC_DEFINE(HAVE_ICONV, 1, [Define if you have the iconv() function and it works.]) fi if test "$am_cv_lib_iconv" = yes; then AC_MSG_CHECKING([how to link with libiconv]) AC_MSG_RESULT([$LIBICONV]) else dnl If $LIBICONV didn't lead to a usable library, we don't need $INCICONV dnl either. CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi AC_SUBST(LIBICONV) AC_SUBST(LTLIBICONV) ]) AC_DEFUN([AM_ICONV], [ AM_ICONV_LINK if test "$am_cv_func_iconv" = yes; then AC_MSG_CHECKING([for iconv declaration]) AC_CACHE_VAL(am_cv_proto_iconv, [ AC_TRY_COMPILE([ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif ], [], am_cv_proto_iconv_arg1="", am_cv_proto_iconv_arg1="const") am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);"]) am_cv_proto_iconv=`echo "[$]am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` AC_MSG_RESULT([$]{ac_t:- }[$]am_cv_proto_iconv) AC_DEFINE_UNQUOTED(ICONV_CONST, $am_cv_proto_iconv_arg1, [Define as const if the declaration of iconv() needs const.]) fi ]) certmonger-0.78.6/m4/gettext.m40000644000175000017500000003457012645513265013172 00000000000000# gettext.m4 serial 60 (gettext-0.17) dnl Copyright (C) 1995-2007 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl dnl This file can can be used in projects which are not available under dnl the GNU General Public License or the GNU Library General Public dnl License but which still want to provide support for the GNU gettext dnl functionality. dnl Please note that the actual code of the GNU gettext library is covered dnl by the GNU Library General Public License, and the rest of the GNU dnl gettext package package is covered by the GNU General Public License. dnl They are *not* in the public domain. dnl Authors: dnl Ulrich Drepper , 1995-2000. dnl Bruno Haible , 2000-2006. dnl Macro to add for using GNU gettext. dnl Usage: AM_GNU_GETTEXT([INTLSYMBOL], [NEEDSYMBOL], [INTLDIR]). dnl INTLSYMBOL can be one of 'external', 'no-libtool', 'use-libtool'. The dnl default (if it is not specified or empty) is 'no-libtool'. dnl INTLSYMBOL should be 'external' for packages with no intl directory, dnl and 'no-libtool' or 'use-libtool' for packages with an intl directory. dnl If INTLSYMBOL is 'use-libtool', then a libtool library dnl $(top_builddir)/intl/libintl.la will be created (shared and/or static, dnl depending on --{enable,disable}-{shared,static} and on the presence of dnl AM-DISABLE-SHARED). If INTLSYMBOL is 'no-libtool', a static library dnl $(top_builddir)/intl/libintl.a will be created. dnl If NEEDSYMBOL is specified and is 'need-ngettext', then GNU gettext dnl implementations (in libc or libintl) without the ngettext() function dnl will be ignored. If NEEDSYMBOL is specified and is dnl 'need-formatstring-macros', then GNU gettext implementations that don't dnl support the ISO C 99 formatstring macros will be ignored. dnl INTLDIR is used to find the intl libraries. If empty, dnl the value `$(top_builddir)/intl/' is used. dnl dnl The result of the configuration is one of three cases: dnl 1) GNU gettext, as included in the intl subdirectory, will be compiled dnl and used. dnl Catalog format: GNU --> install in $(datadir) dnl Catalog extension: .mo after installation, .gmo in source tree dnl 2) GNU gettext has been found in the system's C library. dnl Catalog format: GNU --> install in $(datadir) dnl Catalog extension: .mo after installation, .gmo in source tree dnl 3) No internationalization, always use English msgid. dnl Catalog format: none dnl Catalog extension: none dnl If INTLSYMBOL is 'external', only cases 2 and 3 can occur. dnl The use of .gmo is historical (it was needed to avoid overwriting the dnl GNU format catalogs when building on a platform with an X/Open gettext), dnl but we keep it in order not to force irrelevant filename changes on the dnl maintainers. dnl AC_DEFUN([AM_GNU_GETTEXT], [ dnl Argument checking. ifelse([$1], [], , [ifelse([$1], [external], , [ifelse([$1], [no-libtool], , [ifelse([$1], [use-libtool], , [errprint([ERROR: invalid first argument to AM_GNU_GETTEXT ])])])])]) ifelse([$2], [], , [ifelse([$2], [need-ngettext], , [ifelse([$2], [need-formatstring-macros], , [errprint([ERROR: invalid second argument to AM_GNU_GETTEXT ])])])]) define([gt_included_intl], ifelse([$1], [external], ifdef([AM_GNU_GETTEXT_][INTL_SUBDIR], [yes], [no]), [yes])) define([gt_libtool_suffix_prefix], ifelse([$1], [use-libtool], [l], [])) gt_NEEDS_INIT AM_GNU_GETTEXT_NEED([$2]) AC_REQUIRE([AM_PO_SUBDIRS])dnl ifelse(gt_included_intl, yes, [ AC_REQUIRE([AM_INTL_SUBDIR])dnl ]) dnl Prerequisites of AC_LIB_LINKFLAGS_BODY. AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) dnl Sometimes libintl requires libiconv, so first search for libiconv. dnl Ideally we would do this search only after the dnl if test "$USE_NLS" = "yes"; then dnl if { eval "gt_val=\$$gt_func_gnugettext_libc"; test "$gt_val" != "yes"; }; then dnl tests. But if configure.in invokes AM_ICONV after AM_GNU_GETTEXT dnl the configure script would need to contain the same shell code dnl again, outside any 'if'. There are two solutions: dnl - Invoke AM_ICONV_LINKFLAGS_BODY here, outside any 'if'. dnl - Control the expansions in more detail using AC_PROVIDE_IFELSE. dnl Since AC_PROVIDE_IFELSE is only in autoconf >= 2.52 and not dnl documented, we avoid it. ifelse(gt_included_intl, yes, , [ AC_REQUIRE([AM_ICONV_LINKFLAGS_BODY]) ]) dnl Sometimes, on MacOS X, libintl requires linking with CoreFoundation. gt_INTL_MACOSX dnl Set USE_NLS. AC_REQUIRE([AM_NLS]) ifelse(gt_included_intl, yes, [ BUILD_INCLUDED_LIBINTL=no USE_INCLUDED_LIBINTL=no ]) LIBINTL= LTLIBINTL= POSUB= dnl Add a version number to the cache macros. case " $gt_needs " in *" need-formatstring-macros "*) gt_api_version=3 ;; *" need-ngettext "*) gt_api_version=2 ;; *) gt_api_version=1 ;; esac gt_func_gnugettext_libc="gt_cv_func_gnugettext${gt_api_version}_libc" gt_func_gnugettext_libintl="gt_cv_func_gnugettext${gt_api_version}_libintl" dnl If we use NLS figure out what method if test "$USE_NLS" = "yes"; then gt_use_preinstalled_gnugettext=no ifelse(gt_included_intl, yes, [ AC_MSG_CHECKING([whether included gettext is requested]) AC_ARG_WITH(included-gettext, [ --with-included-gettext use the GNU gettext library included here], nls_cv_force_use_gnu_gettext=$withval, nls_cv_force_use_gnu_gettext=no) AC_MSG_RESULT($nls_cv_force_use_gnu_gettext) nls_cv_use_gnu_gettext="$nls_cv_force_use_gnu_gettext" if test "$nls_cv_force_use_gnu_gettext" != "yes"; then ]) dnl User does not insist on using GNU NLS library. Figure out what dnl to use. If GNU gettext is available we use this. Else we have dnl to fall back to GNU NLS library. if test $gt_api_version -ge 3; then gt_revision_test_code=' #ifndef __GNU_GETTEXT_SUPPORTED_REVISION #define __GNU_GETTEXT_SUPPORTED_REVISION(major) ((major) == 0 ? 0 : -1) #endif changequote(,)dnl typedef int array [2 * (__GNU_GETTEXT_SUPPORTED_REVISION(0) >= 1) - 1]; changequote([,])dnl ' else gt_revision_test_code= fi if test $gt_api_version -ge 2; then gt_expression_test_code=' + * ngettext ("", "", 0)' else gt_expression_test_code= fi AC_CACHE_CHECK([for GNU gettext in libc], [$gt_func_gnugettext_libc], [AC_TRY_LINK([#include $gt_revision_test_code extern int _nl_msg_cat_cntr; extern int *_nl_domain_bindings;], [bindtextdomain ("", ""); return * gettext ("")$gt_expression_test_code + _nl_msg_cat_cntr + *_nl_domain_bindings], [eval "$gt_func_gnugettext_libc=yes"], [eval "$gt_func_gnugettext_libc=no"])]) if { eval "gt_val=\$$gt_func_gnugettext_libc"; test "$gt_val" != "yes"; }; then dnl Sometimes libintl requires libiconv, so first search for libiconv. ifelse(gt_included_intl, yes, , [ AM_ICONV_LINK ]) dnl Search for libintl and define LIBINTL, LTLIBINTL and INCINTL dnl accordingly. Don't use AC_LIB_LINKFLAGS_BODY([intl],[iconv]) dnl because that would add "-liconv" to LIBINTL and LTLIBINTL dnl even if libiconv doesn't exist. AC_LIB_LINKFLAGS_BODY([intl]) AC_CACHE_CHECK([for GNU gettext in libintl], [$gt_func_gnugettext_libintl], [gt_save_CPPFLAGS="$CPPFLAGS" CPPFLAGS="$CPPFLAGS $INCINTL" gt_save_LIBS="$LIBS" LIBS="$LIBS $LIBINTL" dnl Now see whether libintl exists and does not depend on libiconv. AC_TRY_LINK([#include $gt_revision_test_code extern int _nl_msg_cat_cntr; extern #ifdef __cplusplus "C" #endif const char *_nl_expand_alias (const char *);], [bindtextdomain ("", ""); return * gettext ("")$gt_expression_test_code + _nl_msg_cat_cntr + *_nl_expand_alias ("")], [eval "$gt_func_gnugettext_libintl=yes"], [eval "$gt_func_gnugettext_libintl=no"]) dnl Now see whether libintl exists and depends on libiconv. if { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" != yes; } && test -n "$LIBICONV"; then LIBS="$LIBS $LIBICONV" AC_TRY_LINK([#include $gt_revision_test_code extern int _nl_msg_cat_cntr; extern #ifdef __cplusplus "C" #endif const char *_nl_expand_alias (const char *);], [bindtextdomain ("", ""); return * gettext ("")$gt_expression_test_code + _nl_msg_cat_cntr + *_nl_expand_alias ("")], [LIBINTL="$LIBINTL $LIBICONV" LTLIBINTL="$LTLIBINTL $LTLIBICONV" eval "$gt_func_gnugettext_libintl=yes" ]) fi CPPFLAGS="$gt_save_CPPFLAGS" LIBS="$gt_save_LIBS"]) fi dnl If an already present or preinstalled GNU gettext() is found, dnl use it. But if this macro is used in GNU gettext, and GNU dnl gettext is already preinstalled in libintl, we update this dnl libintl. (Cf. the install rule in intl/Makefile.in.) if { eval "gt_val=\$$gt_func_gnugettext_libc"; test "$gt_val" = "yes"; } \ || { { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" = "yes"; } \ && test "$PACKAGE" != gettext-runtime \ && test "$PACKAGE" != gettext-tools; }; then gt_use_preinstalled_gnugettext=yes else dnl Reset the values set by searching for libintl. LIBINTL= LTLIBINTL= INCINTL= fi ifelse(gt_included_intl, yes, [ if test "$gt_use_preinstalled_gnugettext" != "yes"; then dnl GNU gettext is not found in the C library. dnl Fall back on included GNU gettext library. nls_cv_use_gnu_gettext=yes fi fi if test "$nls_cv_use_gnu_gettext" = "yes"; then dnl Mark actions used to generate GNU NLS library. BUILD_INCLUDED_LIBINTL=yes USE_INCLUDED_LIBINTL=yes LIBINTL="ifelse([$3],[],\${top_builddir}/intl,[$3])/libintl.[]gt_libtool_suffix_prefix[]a $LIBICONV $LIBTHREAD" LTLIBINTL="ifelse([$3],[],\${top_builddir}/intl,[$3])/libintl.[]gt_libtool_suffix_prefix[]a $LTLIBICONV $LTLIBTHREAD" LIBS=`echo " $LIBS " | sed -e 's/ -lintl / /' -e 's/^ //' -e 's/ $//'` fi CATOBJEXT= if test "$gt_use_preinstalled_gnugettext" = "yes" \ || test "$nls_cv_use_gnu_gettext" = "yes"; then dnl Mark actions to use GNU gettext tools. CATOBJEXT=.gmo fi ]) if test -n "$INTL_MACOSX_LIBS"; then if test "$gt_use_preinstalled_gnugettext" = "yes" \ || test "$nls_cv_use_gnu_gettext" = "yes"; then dnl Some extra flags are needed during linking. LIBINTL="$LIBINTL $INTL_MACOSX_LIBS" LTLIBINTL="$LTLIBINTL $INTL_MACOSX_LIBS" fi fi if test "$gt_use_preinstalled_gnugettext" = "yes" \ || test "$nls_cv_use_gnu_gettext" = "yes"; then AC_DEFINE(ENABLE_NLS, 1, [Define to 1 if translation of program messages to the user's native language is requested.]) else USE_NLS=no fi fi AC_MSG_CHECKING([whether to use NLS]) AC_MSG_RESULT([$USE_NLS]) if test "$USE_NLS" = "yes"; then AC_MSG_CHECKING([where the gettext function comes from]) if test "$gt_use_preinstalled_gnugettext" = "yes"; then if { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" = "yes"; }; then gt_source="external libintl" else gt_source="libc" fi else gt_source="included intl directory" fi AC_MSG_RESULT([$gt_source]) fi if test "$USE_NLS" = "yes"; then if test "$gt_use_preinstalled_gnugettext" = "yes"; then if { eval "gt_val=\$$gt_func_gnugettext_libintl"; test "$gt_val" = "yes"; }; then AC_MSG_CHECKING([how to link with libintl]) AC_MSG_RESULT([$LIBINTL]) AC_LIB_APPENDTOVAR([CPPFLAGS], [$INCINTL]) fi dnl For backward compatibility. Some packages may be using this. AC_DEFINE(HAVE_GETTEXT, 1, [Define if the GNU gettext() function is already present or preinstalled.]) AC_DEFINE(HAVE_DCGETTEXT, 1, [Define if the GNU dcgettext() function is already present or preinstalled.]) fi dnl We need to process the po/ directory. POSUB=po fi ifelse(gt_included_intl, yes, [ dnl If this is used in GNU gettext we have to set BUILD_INCLUDED_LIBINTL dnl to 'yes' because some of the testsuite requires it. if test "$PACKAGE" = gettext-runtime || test "$PACKAGE" = gettext-tools; then BUILD_INCLUDED_LIBINTL=yes fi dnl Make all variables we use known to autoconf. AC_SUBST(BUILD_INCLUDED_LIBINTL) AC_SUBST(USE_INCLUDED_LIBINTL) AC_SUBST(CATOBJEXT) dnl For backward compatibility. Some configure.ins may be using this. nls_cv_header_intl= nls_cv_header_libgt= dnl For backward compatibility. Some Makefiles may be using this. DATADIRNAME=share AC_SUBST(DATADIRNAME) dnl For backward compatibility. Some Makefiles may be using this. INSTOBJEXT=.mo AC_SUBST(INSTOBJEXT) dnl For backward compatibility. Some Makefiles may be using this. GENCAT=gencat AC_SUBST(GENCAT) dnl For backward compatibility. Some Makefiles may be using this. INTLOBJS= if test "$USE_INCLUDED_LIBINTL" = yes; then INTLOBJS="\$(GETTOBJS)" fi AC_SUBST(INTLOBJS) dnl Enable libtool support if the surrounding package wishes it. INTL_LIBTOOL_SUFFIX_PREFIX=gt_libtool_suffix_prefix AC_SUBST(INTL_LIBTOOL_SUFFIX_PREFIX) ]) dnl For backward compatibility. Some Makefiles may be using this. INTLLIBS="$LIBINTL" AC_SUBST(INTLLIBS) dnl Make all documented variables known to autoconf. AC_SUBST(LIBINTL) AC_SUBST(LTLIBINTL) AC_SUBST(POSUB) ]) dnl gt_NEEDS_INIT ensures that the gt_needs variable is initialized. m4_define([gt_NEEDS_INIT], [ m4_divert_text([DEFAULTS], [gt_needs=]) m4_define([gt_NEEDS_INIT], []) ]) dnl Usage: AM_GNU_GETTEXT_NEED([NEEDSYMBOL]) AC_DEFUN([AM_GNU_GETTEXT_NEED], [ m4_divert_text([INIT_PREPARE], [gt_needs="$gt_needs $1"]) ]) dnl Usage: AM_GNU_GETTEXT_VERSION([gettext-version]) AC_DEFUN([AM_GNU_GETTEXT_VERSION], [])